Computer safety, reliability, and security : 19th international conference, SAFECOMP 2000, Rotterdam, the Netherlands, October 24-27, 2000 : proceedings

Invited Paper The Ten Most Powerful Principles for Quality in (Software and) Software Organizations for Dependable Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . .1 Tom Gilb Verification and Validation Empirical Assessment of Software On-Line Diagnostics Using Fault Injection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 John Napier, John May and Gordon Hughes Speeding-Up Fault Injection Campaigns in VHDL Models . . . . . . . . . . . . . . . . . . 27 B. Parrotta, M. Rebaudengo, M. Sonza Reorda and M. Violante Specification and Verification of a Safety Shell with Statecharts and Extended Timed Graphs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .37 Jan van Katwijk, Hans Toetenel, Abd-El-Kader Sahraoui, Eric Anderson and Janusz Zalewski Validation of Control System Specifications with Abstract Plant Models . . . .53 Wenhui Zhang A Constant Perturbation Method for Evaluation of Structural Diversity in Multiversion Software . . . . . . . . . . . . . . . . . . . . . . . . . . . .63 Luping Chen, John May and Gordon Hughes Expert Error: The Case of Trouble-Shooting in Electronics . . . . . . . . . . . . . . . . .74 Denis Besnard The Safety Management of Data-Driven Safety-Related Systems . . . . . . . . . . . 86 A. G. Faulkner, P. A. Bennett, R. H. Pierce, I. H. A. Johnston and N. Storey Software Support for Incident Reporting Systems in Safety-Critical Applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96 Chris Johnson Software Process Improvement A Dependability-Explicit Model for the Development of Computing Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .107 Mohamed Ka.aniche, Jean-Claude Laprie and Jean-Paul Blanquart VIII Table of Contents Deriving Quantified Safety Requirements in Complex Systems . . . . . . . . . . . . 117 Peter A. Lindsay, John A. McDermid and David J. Tombs Improving Software Development by Using Safe Object Oriented Development: OTCD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131 Xavier M،¦ehaut and Pierre Mor`ere A Safety Licensable PES for SIL 4 Applications . . . . . . . . . . . . . . . . . . . . . . . . . . .141 Wolfgang A. Halang, Peter Vogrin and Matja£¾z Colnari£¾c Safety and Security Issues in Electric Power Industry . . . . . . . . . . . . . . . . . . . . . 151 Zdzisl7aw Z£»urakowski Dependability of Computer Control Systems in Power Plants . . . . . . . . . . . . . 165 Cl،¦audia Almeida, Alberto Arazo, Yves Crouzet and Karama Kanoun A Method of Analysis of Fault Trees with Time Dependencies . . . . . . . . . . . . 176 Jan Magott and Pawe7l Skrobanek Formal Methods A Formal Methods Case Study: Using Light-Weight VDM for the Development of a Security System Module . . . . . . . . . . . . . . . . . . . . . . . . 187 Georg Droschl, Walter Kuhn, Gerald Sonneck and Michael Thuswald Formal Methods: The Problem Is Education . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198 Thierry Scheurer Formal Methods Diffusion: Past Lessons and Future Prospects . . . . . . . . . . . . 211 R. Bloomfield, D. Craigen, F. Koob, M. Ullmann and S.Wittmann Invited Paper Safe Tech: A Control Oriented Viewpoint . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227 Maarten Steinbuch Safety Guidelines, Standards and Certification Derivation of Safety Targets for the Random Failure of Programmable Vehicle Based Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .240 Richard Evans and Jonathan Moffett IEC 61508 ،V A Suitable Basis for the Certification of Safety-Critical Transport-Infrastructure Systems?? . . . . . . . . . . . . . . . . . . . . . 250 Derek Fowler and Phil Bennett Table of Contents IX Hardware Aspects An Approach to Software Assisted Recovery from Hardware Transient Faults for Real Time Systems . . . . . . . . . . . . . . . . . . .264 D. Basu and R. Paramasivam Programmable Electronic System Design & Verification Utilizing DFM . . . .275 Michel Houtermans, George Apostolakis, Aarnout Brombacher and Dimitrios Karydas SIMATIC S7-400F/FH: Safety-Related Programmable Logic Controller . . . 286 Andreas Schenk Safety Assessment I Assessment of the Reliability of Fault-Tolerant Software: A Bayesian Approach . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .294 Bev Littlewood, Peter Popov and Lorenzo Strigini Estimating Dependability of Programmable Systems Using BBNs . . . . . . . . . 309 Bjorn Axel Gran, Gustav Dahll, Siegfried Eisinger, Eivind J. Lund, Jan Gerhard Norstrom, Peter Strocka and Britt J. Ystanes Design for Safety Improvements in Process Control Dependability through Internet Security Technology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .321 Ferdinand J. Dafelmair A Survey on Safety-Critical Multicast Networking . . . . . . . . . . . . . . . . . . . . . . . . 333 James S. Pascoe and R. J. Loader Invited Paper Causal Reasoning about Aircraft Accidents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 344 Peter B. Ladkin Transport & Infrastructure Controlling Requirements Evolution: An Avionics Case Study . . . . . . . . . . . . .361 Stuart Anderson and Massimo Felici HAZOP Analysis of Formal Models of Safety-Critical Interactive Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 371 Andrew Hussey X Table of Contents Failure Mode and Effect Analysis for Safety-Critical Systems w ith Software Components . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 382 Tadeusz Cichocki and Janusz G،¦orski Safety Assessment II Risk Ordering of States in Safecharts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 395 Nimal Nissanke and Hamdan Dammag Dependability Evaluation: Model and Method Based on Activity Theory . . 406 Mark-Alexander Sujan, Antonio Rizzo and Alberto Pasquini Forensic Software Engineering and the Need for NewApproaches to Accident Investigation . . . . . . . . . . . . . . . . . . . . . . . . . . . . 420 Chris Johnson Author Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .431