Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kestrel HCMDSS Panel Software and Systems Engineering John Anton Kestrel Institute November 16-17, 2004.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Kestrel HCMDSS Panel Software and Systems Engineering John Anton Kestrel Institute November 16-17, 2004."— Presentation transcript:

1 Kestrel HCMDSS Panel Software and Systems Engineering John Anton Kestrel Institute November 16-17, 2004

2 Kestrel State of commercial art u How it goes today (roughly): requirements --> spec (maybe UML) --> (partially automated) code production --> testing (unit, integration, model checking) [spiral] Use ‘best practices’ (e.g., CMM-N) UML-based tools Labview , MathWorks (Matlab , Stateflow , Simulink  ), Modelica  Documentation support (e.g., through UML tools, 3GL IDEs, etc.) Quality assurance In-house QA, COTS tools, outsourced services u Problems air gaps referential integrity tool semantics, tool integration code visibility/accessibility (e.g., Labview, MathWorks) code portability (e.g., MathWorks) property assessment on code MC/DC testing impracticality high assurance can be at odds with code clarity non-uniformity of product design policies and their application

3 Kestrel Some current research for high assurance code u Best practice SEI (CMM-N) Praxis (best practice on steroids) Others u Model checking CMU (strong leadership) NASA (with work from U Kansas) U Cincinnati (BDDs) Rockwell-Collins (with work from UT/Austin) Others u Code QA suppliers tool vendors service providers u “N-GL” environments Programmatica (OGI/Galois) Eclipse (IBM, public domain) Specware (Kestrel Institute, Kestrel Technology) u “Safe” code Simple (MISRA) C (JPL with Kernighan & Ritchie support) Safety critical Java (The Open Group thrust with Bush, Bollella, Locke support) u Correct-by-construction technologies Kestrel, NASA, Z, B, … u Automated certification support AutoSmart (JavaCard, FIPS 140-2, Kestrel) u Reusable (certified) modules Middleware (VU, Wash U, …) Others u Aspect weaving Code level (AspectJ,UBC, IBM) Spec level (HandlErr, etc., Kestrel) u Others …

4 Kestrel Problems to address for HCMDSS u Language Inconsistency, lack of precision Multiple disciplines for regulatory evaluators to contend with Software spectrum, domain details u Blank screen For developers, testers, evaluators u Application code reuse has not met initial promise Optimization, platforms, change impact, mismatched models, properties of composition

5 Kestrel Considerations u Formal Jargon u Libraries of specifications

6 Kestrel Toward efficient (re)certification - Formal Jargon u What is it? In each domain, a description in logic of basic terms, definitions, axioms, desirable properties, functionality, behavior, constraints Organized in a semantically rich taxonomy (systematic evolution) Developed, published and maintained as a standard u Why consider it? Communication (developers, plug & play, FDA, …) Improve economics in the certification process Basis for (abstract) specification libraries u How to get there? Consider development of a new “product line” of standards (NIST, The Open Group, OMG) Domain participants collaborate with regulatory bodies (FAA, FDA,…) Start with a single domain to serve as style-guide for others

7 Kestrel Toward efficient (re)certification - Specification and proof libraries u Use formal (standardized) language (Formal Jargon) u Libraries of specifications Standardized, domain-specific language Proven properties Support ‘plug & play’ Address functionality & behavior interfaces (static and dynamic aspects) “policies” (e.g., error handling) Include reference implementations and compliance tests Proof libraries Mechanisms for field-time certification maintenance Run-time monitoring archive review Pharmaceutical experience -- but don’t wait for bad news FAA framework for airplane maintenance

8 Kestrel Summary u Promising directions Formality Abstraction u Challenges Composition “Policy” (design-level mandates) Runtime uncertainties COTS components and certification Tech transfer

9 Kestrel Bio John Anton is the founder of Reasoning Systems, and Kestrel Technology LLC, where he is now President/CEO. He is also President/CEO/Co-founder of the non-profit Lexia Institute, whose mission is to develop and deliver technology to help dyslexic people and their teachers. In addition, he is a Manager at the Kestrel Institute. Anton has expertise in the areas of control theory, signal processing, software technologies, and their application. As VP for Advanced R&D at Systems Control, Inc., he led a team that built the Reconfigurable Inflight Control System (RIFCS) for McDonnell Aircraft – built using technology from CTRL C (the predecessor to today’s Matlab), which was also built under his leadership. Anton was an Adjunct Professor at Santa Clara University where, for 10 years, he taught courses in linear systems theory, optimal and stochastic control, and decision theory. He received a Ph.D. in Applied Mathematics from Brown, a B.S. from Notre Dame, and was a Fulbright Fellow at the Technische Hochschule, Germany.

Download ppt "Kestrel HCMDSS Panel Software and Systems Engineering John Anton Kestrel Institute November 16-17, 2004."

Similar presentations

Object-Oriented Software Development CS 3331 Fall 2009.

Object-Oriented Software Development CS 3331 Fall 2009.
© Chinese University, CSE Dept. Software Engineering / 1 - 1 Software Engineering Topic 1: Software Engineering: A Preview Your Name: ____________________.

© Chinese University, CSE Dept. Software Engineering / Software Engineering Topic 1: Software Engineering: A Preview Your Name: ____________________.
SmartER Semantic Cloud Sevices Karuna P Joshi University of Maryland, Baltimore County Advisors: Dr. Tim Finin, Dr. Yelena Yesha.

SmartER Semantic Cloud Sevices Karuna P Joshi University of Maryland, Baltimore County Advisors: Dr. Tim Finin, Dr. Yelena Yesha.
Programmierung verteilter Systeme Lab Institut für Informatik Universität Augsburg Universitätsstraße 14, 86159 Augsburg Tel.: (+49) 821/598-2174, Fax:

Programmierung verteilter Systeme Lab Institut für Informatik Universität Augsburg Universitätsstraße 14, Augsburg Tel.: (+49) 821/ , Fax:
Building Enterprise Applications Using Visual Studio ®.NET Enterprise Architect.

Building Enterprise Applications Using Visual Studio ®.NET Enterprise Architect.
November 17, 2004Planning Meeting for HCMDSS Workshop Breakout Session 2(II): Development Summary W. Rance Cleaveland II, PhD CEO, Reactive Systems Inc.

November 17, 2004Planning Meeting for HCMDSS Workshop Breakout Session 2(II): Development Summary W. Rance Cleaveland II, PhD CEO, Reactive Systems Inc.
Page 1 Building Reliable Component-based Systems Ivica Crnkovic Chapter 9 Component Composition and Integration.

Page 1 Building Reliable Component-based Systems Ivica Crnkovic Chapter 9 Component Composition and Integration.
Azad Madni Professor Director, SAE Program Viterbi School of Engineering Platform-based Engineering: Rapid, Risk-mitigated Development.

Azad Madni Professor Director, SAE Program Viterbi School of Engineering Platform-based Engineering: Rapid, Risk-mitigated Development.
Systems & Cross-Cutting Issues Moderator: John Baras Scribe: Eric Cooper Attendees: Claire Tomlin (UC Berkeley), Mingyan Li (Boeing), Lyle Long (Penn State),

Systems & Cross-Cutting Issues Moderator: John Baras Scribe: Eric Cooper Attendees: Claire Tomlin (UC Berkeley), Mingyan Li (Boeing), Lyle Long (Penn State),
1 Software Architecture: a Roadmap David Garlen Roshanak Roshandel Yulong Liu.

1 Software Architecture: a Roadmap David Garlen Roshanak Roshandel Yulong Liu.
- 1 - Component Based Development R&D SDM 1 2009 Theo Schouten.

- 1 - Component Based Development R&D SDM Theo Schouten.
Model Driven Architecture (MDA) Partha Kuchana. Agenda What is MDA Modeling Approaches MDA in a NutShell MDA Models SDLC MDA Models (an Example) MDA -

Model Driven Architecture (MDA) Partha Kuchana. Agenda What is MDA Modeling Approaches MDA in a NutShell MDA Models SDLC MDA Models (an Example) MDA -
High Confidence Medical Device Software and Systems: A programming languages and tools perspective Mark P Jones Department of Computer Science & Electrical.

High Confidence Medical Device Software and Systems: A programming languages and tools perspective Mark P Jones Department of Computer Science & Electrical.
Building software from reusable components.

Building software from reusable components.
Software Quality Assurance For Software Engineering && Architecture and Design.

Software Quality Assurance For Software Engineering && Architecture and Design.
CSC230 Software Design (Engineering)

CSC230 Software Design (Engineering)
Basic Concepts The Unified Modeling Language (UML) SYSC 3100 - System Analysis and Design.

Basic Concepts The Unified Modeling Language (UML) SYSC System Analysis and Design.
Software Considerations in Airborne Systems

Software Considerations in Airborne Systems
Chapter : Software Process

Chapter : Software Process
Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.

Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.

Similar presentations

Ads by Google