Presentation is loading. Please wait.

Presentation is loading. Please wait.

SDRL & RTG University of Pennsylvania 8/3/2001 Formalization of CARA system requirements Oleg Sokolsky Department of Computer and Information Science University.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "SDRL & RTG University of Pennsylvania 8/3/2001 Formalization of CARA system requirements Oleg Sokolsky Department of Computer and Information Science University."— Presentation transcript:

1 SDRL & RTG University of Pennsylvania 8/3/2001 Formalization of CARA system requirements Oleg Sokolsky Department of Computer and Information Science University of Pennsylvania

2 SDRL & RTG University of Pennsylvania 8/3/2001 2 People Dave Arney (Penn) Alwyn Goodloe (Penn) Prof. Elsa Gunter (NJIT) Prof. Insup Lee (Penn) Dr. Oleg Sokolsky (Penn) Dr. Jitka Stribrna (Penn) Jiaxiang Zhou (Penn)

3 SDRL & RTG University of Pennsylvania 8/3/2001 3 Roadmap Pass 1: –Understanding of requirements, clarifications –Informal requirements  extended finite state machines (EFSM) Pass 2: –EFSM  SCR* SCR* analysis of consistency and completeness –Identification of assumptions and interfaces between components Pass 3: –Use design specification Use PARAGON and Hermes for behavioral analysis Test generation Pass 4: …

4 SDRL & RTG University of Pennsylvania 8/3/2001 4 Progress to date Pass 1 is completed –Obtained a better understanding of the system –Asked a lot of questions –Formed a basis for a more precise specification Pass 2 is under way –Most EFSMs are translated

5 SDRL & RTG University of Pennsylvania 8/3/2001 5 Pass 1: Getting organized Translated parts of informal requirements to EFSMs –Obtain an unbiased generic description that can serve as a reference model Our analysis of the requirements and the Questions/Answers document generated 30 questions of the following types: –Identifying Inconsistencies (5) –Identifying Incompleteness (10) –Clarification of specific terms (15)

6 SDRL & RTG University of Pennsylvania 8/3/2001 6 Sample Questions Clarifications of specific terms –What is an infusate ( Req16 ) Infusate is the ‘stuff’ usually a saline solution that is being pumped into the person Identifying Incompleteness –Is hardware setting on pump active in Auto-Control mode? What happens if the user meddles with the hardware flow knob in Auto-Control mode? The computer can take control of the pumping rate and thus lock out the hardware flow knob. The pump can still be shut off though.

7 SDRL & RTG University of Pennsylvania 8/3/2001 7 More Sample Questions Identifying Inconsistencies –There were several exchanges requesting clarification on the fact that the requirements indicate that a beat-to-beat source is lost after 3 minutes (Req42 and 43), but the Q/A document says it should be 2 minutes (Q120).

8 SDRL & RTG University of Pennsylvania 8/3/2001 8 Overall System Pump –The hardware Cara system –The software Environment –The user Patient –The object

9 SDRL & RTG University of Pennsylvania 8/3/2001 9 Overall System Structure Environment Pump Hardware CARA System h/w flow setting Air alarm Occ alarm dialog box buttons control voltage #2 (SysGRD) #6 (Ext_Speed_control) AirOK OccOK Back EMF Pump Wires infused fluidBP signals Pump status Current mode BP value BP source Flow rate Infused volume Messages Dialog boxes

10 SDRL & RTG University of Pennsylvania 8/3/2001 10 The Cara System Components: –Pump Monitor –Blood Pressure Detector –Control Algorithm –Display/Alarm

11 SDRL & RTG University of Pennsylvania 8/3/2001 11 The CARA System Display/Alarm Algorithm Pump Monitor Blood Pressure Monitor Manual BPSource BPValue Start A/C Terminate A/C Set BP Reset alarms Mode Infused Volume Flow rate Pumping Polling Failure Exit A/C BPSource BPValue BPAlarms* PluggedIn Air OK Occ OK Impedance Continuity Back EMF

12 SDRL & RTG University of Pennsylvania 8/3/2001 12 Blood Pressure Monitor Read BP –Read & Check Cuff Pressure –Read & Check Beat-to-Beat BP Select BP Source –Several sources: cuff pressure, arterial line, pulse wave transmission, etc) –Select control BP Corroborate BP –Corroboration Algorithm –Re-Corroboration Monitor BP Level –Check with BP Set Point –Check BP falls

13 SDRL & RTG University of Pennsylvania 8/3/2001 13 Example: ReadCuffData Wait to do a cuff reading Read cuff data into var. Cuffdat Set frequency Check data End of check First check failed source != cuff source == cuff source != cuff  SampleCuff:=0 CRTimer:=0 InvalidCuffData  CuffNotValid2:=1 CuffLostSource:=1 ValidCuffData SampleCuff==0 && source==cuff && CRTimer!=CuffFreq

14 SDRL & RTG University of Pennsylvania 8/3/2001 14 Pass 2: Detailed formalization Translate EFSMs into tabular notation using SCR* toolset

15 SDRL & RTG University of Pennsylvania 8/3/2001 15 Example: ReadCuffData Translation of EFSMs is mostly mechanical Mode transition graphs correspond to EFSMs Additional details are needed to provide complete specifications

16 SDRL & RTG University of Pennsylvania 8/3/2001 16 SCR* analysis SCR provides a number of consistency and completeness checks In this example, same event is used to trigger two transitions in ReadCuffData

17 SDRL & RTG University of Pennsylvania 8/3/2001 17 SCR* analysis Using SCR* has forced us to disambiguate many details that were not explicitly defined in the EFSMs Several inconsistencies were identified, mostly in EFSMs, but also in the requirements: If corroboration fails, two additional readings should be made. Req. 20.3 specifies what to do if both of these readings are within 10% of the cuff reading, or both are not. –It does not seem to be specified what to do if one is within 10% and the other is not.

18 SDRL & RTG University of Pennsylvania 8/3/2001 18 Conclusions Pass 1: –Obtained a working knowledge of CARA requirements –Constructed a more precise and structured requirements specification Pass 2: –Construct a formal requirements specification –Perform consistency analysis We are preparing a list of additional questions to the CARA team based on the SCR* modeling effort

19 SDRL & RTG University of Pennsylvania 8/3/2001 19 Discussion What we provide: –EFSMs as a reference model to facilitate coordination between groups –SCR* models and analysis results What we need: –Identify the properties –Better understanding of the fault model

Download ppt "SDRL & RTG University of Pennsylvania 8/3/2001 Formalization of CARA system requirements Oleg Sokolsky Department of Computer and Information Science University."

Similar presentations

Making the System Operational

Making the System Operational
WS-JDML: A Web Service Interface for Job Submission and Monitoring Stephen M C Gough William Lee London e-Science Centre Department of Computing, Imperial.

WS-JDML: A Web Service Interface for Job Submission and Monitoring Stephen M C Gough William Lee London e-Science Centre Department of Computing, Imperial.
André Augustinus 15 March 2003 DCS Workshop Safety Interlocks.

André Augustinus 15 March 2003 DCS Workshop Safety Interlocks.
Silberschatz, Galvin and Gagne ©2013 Operating System Concepts – 9 th Edition Chapter 5: Process Synchronization.

Silberschatz, Galvin and Gagne ©2013 Operating System Concepts – 9 th Edition Chapter 5: Process Synchronization.
Grey Box testing Tor Stålhane. What is Grey Box testing Grey Box testing is testing done with limited knowledge of the internal of the system. Grey Box.

Grey Box testing Tor Stålhane. What is Grey Box testing Grey Box testing is testing done with limited knowledge of the internal of the system. Grey Box.
Analysis Concepts, Principles, and Modeling

Analysis Concepts, Principles, and Modeling
Nir Piterman Department of Computer Science TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: AAAAA Bypassing Complexity.

Nir Piterman Department of Computer Science TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: AAAAA Bypassing Complexity.
Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.

Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.
Requirements Engineering n Elicit requirements from customer  Information and control needs, product function and behavior, overall product performance,

Requirements Engineering n Elicit requirements from customer  Information and control needs, product function and behavior, overall product performance,
Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.

Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.
Pair of Wires Box 1Box 2 A Communication Example Two missile electrical boxes manufactured by different contractors were joined together by a pair of.

Pair of Wires Box 1Box 2 A Communication Example "Two missile electrical boxes manufactured by different contractors were joined together by a pair of.
6/22/011 Case Study: Computer Assisted Resuscitation Algorithm (CARA) System Insup Lee Department of Computer and Information Science University of Pennsylvania.

6/22/011 Case Study: Computer Assisted Resuscitation Algorithm (CARA) System Insup Lee Department of Computer and Information Science University of Pennsylvania.
Infusion Pump Controller Requirements Definition A Decision-Table Approach by Richard Riehle.

Infusion Pump Controller Requirements Definition A Decision-Table Approach by Richard Riehle.
Component-Level Design

Component-Level Design
Computer Science Lecture 12, page 1 CS677: Distributed OS Last Class Distributed Snapshots –Termination detection Election algorithms –Bully –Ring.

Computer Science Lecture 12, page 1 CS677: Distributed OS Last Class Distributed Snapshots –Termination detection Election algorithms –Bully –Ring.
Chapter 14: Object-Oriented Design

Chapter 14: Object-Oriented Design
Chapter 14 Chapter 14: Server Monitoring and Optimization.

Chapter 14 Chapter 14: Server Monitoring and Optimization.
Requirements Analysis Concepts & Principles

Requirements Analysis Concepts & Principles
Reliability on Web Services Pat Chan 31 Oct 2006.

Reliability on Web Services Pat Chan 31 Oct 2006.
CIS 700-3: Selected Topics in Embedded Systems Insup Lee University of Pennsylvania June 24, 2015 Introduction.

CIS 700-3: Selected Topics in Embedded Systems Insup Lee University of Pennsylvania June 24, 2015 Introduction.

Similar presentations

Ads by Google