Citation: | ZHU Danjiang, YAO Shuzhen, TAN Huobin, “A Software Safety Requirements Elicitation Approach Based on Hazardous Control Action Tree Modelling,” Chinese Journal of Electronics, vol. 30, no. 4, pp. 676-685, 2021, doi: 10.1049/cje.2021.05.009 |
Software safety requirements are crucial for safety assurance of safety-critical software systems. A novel accident causality model, Systems-theoretic accident modeling and processes (STAMP), has been proposed to overcome the limitations of traditional safety techniques in software safety requirements elicitation. However, the STAMP-based method is ad-hoc with no rigorous procedure to elicit software safety requirements effectively. Furthermore, the time-related safety requirements, which are important to software safety, have been paid little attention in STAMP-based method. With the purpose of overcoming these limitations, this paper strives to find a systematic approach to elicit software safety requirements with STAMP, especially the time-related safety requirements. Firstly, a new process model of STAMP is proposed to model all the system varilables and the ralationship of them in control processes. Then based on the process model, an approach HCAT-SSRA is proposed to elicit the software safety requirements by building Hazardous control action tree (HCAT) for each control action in system control processes. Additionally, several rules are proposed to guide time-related software safety requirements analysis. Finally, a case study is given to illustrate the availability and feasibility of the proposed method.
Grady Lee and Jeffrey Howard, "Safety-critical requirements specification and analysis using specTRM", Proc. 2nd Meeting of the US Soft. Syst. Safety, WG, USA, 2002.
|
A.V. Lamsweerde, "Risk-driven engineering of requirements for dependable systems", Engineering Dependable Software Systems, Vol.3, No.34, pp.207-312, 2013.
|
A.V. Lamsweerde, "Engineering requirements for system reliability and security", Software System Reliability and Security, Vol.9, No.5, pp.196-213, 2007.
|
S. Supakkul and L. Chung, "Applying a goal-oriented method for hazard analysis:A case study", International Conference on Software Engineering, Research, Management and Applications, Seattle, Washington, USA, pp.9-11, 2006.
|
Donald Firesmith, "Engineering safety-related requirements for software-intensive systems", ICSE 2005. Proceedings 27th International Conference on Software Engineering, DOI:10.1109/ICSE.2005.1553680, 2005.
|
Sam Supakkul, Tom Hill and L. Chung, "An NFR pattern approach to dealing with NFRs", IEEE International Requirements Engineering Conference (RE), 2010, Sydney, NSW, Australia, 2010.
|
Zhe Chen and Giles Motet, "System safety requirements as control structures", 33rd IEEE International Computer Software and Applications Conference, Wsahington, USA, pp.324-331, 2009.
|
C. Yang, "Software safety testing based on STPA", Procedia Engineering, Vol.80, No.9, pp.399-406, 2014.
|
John Thomas, "Extending and automating a systems-theoretic hazard analysis for requirements generation and analysis", Ph.D.Thesis, Massachusetts Institute of Technology, USA, 2013.
|
C.H. Fleming, "Safety assurance in nextGen and complex transportation systems", Safety Science, Vol.55, No.7, pp.173-189, 2013.
|
N.G. Leveson, "A new accident model for engineering safer systems", Safety Science, Vol.42, No.4, pp.237-270, 2004.
|
N.G. Leveson, "A new approach to hazard analysis for complex systems", Proceedings of the International Conference of the System Safety Society, Ottawa, Canada, 2003.
|
A.A. Wagner, "Experiences with applying STPA to software-intensive systems in the automotive domain", 2013 STAMP Conference, Cambridge, Boston, USA, 2013.
|
Robert Aps and M. Fetissov, "Towards STAMP based dynamic safety management of eco-socio-technical maritime transport system", Procedia Engineering, Vol.128, No.2, pp.64-73, 2015.
|
M.M. Chatzimichailidou, "The risk situation awareness provision capability and its degradation in the überlingen accident over time", Procedia Engineering, Vol.128, No.2, pp.44-53, 2015.
|
W. Stefan, "Open tool support for system-theoretic process analysis", Iste. Uni., Vol.3, No.4, pp.23-31, 2014.
|
N.G. Leveson, Engineering a Safer World-systems Thinking Applied to Safety, MIT Press, Cambridge, Boston, USA, 2012.
|
W.R. ASHBY, An Introduction to Cybernetics, Franklin Classics Trade Press, pp.492-493, 1957.
|
D. Ingham, "Engineering complex embedded systems with state analysis and the mission data system", Journal of Aerospace Computing Information and Communication, Vol.2, No.12, pp.507-528, 2005.
|
John Thomas, "An integrated spproach to requirements development and hazard analysis", Report, SAE Technical Paper, Rev.1, 2015.
|
N.G. Leveson, "A systems-theoretic approach to safety in software-intensive systems", IEEE Transactions on Dependable Secure Computing, Vol.1, No.1, pp.66-86, 2004.
|
N.G. Leveson, System Safety Engineering:Back to the Future, MIT Press, Cambridge, Boston, USA, 2002.
|
D.J. Zhu and S.Z. Yao, "Research on safety requirements analysis method based on control characteristics of scenarios", Journal of Beijing University of Aeronautics and Astronautics, Vol.42, No.11, pp.2358-2370, 2016.
|
B.S. Andersen and G. Romanski, "Verification of safety-critical software", Communications of the ACM, Vol.9, No.8, pp.52-57, 2011.
|
M.S. Jaffe and N.G. Leveson, "Software requirements analysis for real-time process-control systems", IEEE Transactions on Software Engineering, Vol.3, No.17, pp.241-258, 1991.
|
Asim Abdulkhaleq and S. Wagner, "Integrated safety analysis using systems-theoretic process analysis and software model checking", International Conference on Computer Safety, Reliability, and Security, Stuttgart, Germany, pp.121-134, 2015.
|
A. Dardenne, A.V. Lamsweerde and S.Fickas, "Goal-directed requirements acquisition", Science of Computer Programming, Vol.20, No.1, pp.3-50, 1993.
|
S.S. Krauss, M. Rejzek and C. Hilbes, "Tool qualification considerations for tools supporting STPA", Procedia Engineering, Vol.128, No.4, pp.15-24, 2015.
|
Jhon Thomas and N.G. Leveson, "Performing hazard analysis on complex software and human-intensive systems", Proceedings of the International System Safety Society Conference, Las Vegas, USA, 2011.
|
A. Abdulkhaleq, S. Wagner and N.G. Leveson, "A comprehensive safety engineering approach for software-intensive systems based on STPA", Procedia Engineering, Vol.128, No.3, pp.2-11, 2015.
|
Y. Wang and S. Wagner, "Towards applying a safety analysis and verification method based on STPA to agile software development", Proceedings of the International Workshop on Continuous Software Evolution and Delivery, New York, NY, USA, pp.5-11, 2016.
|
I. Friedberg, K. McLaughlin, and P. Smith, "STPA-safeSec:Safety and security analysis for cyber-physical systems", Journal of Information Security and Applications, Vol.33, No.2, pp.1-16, 2016.
|