The dynamic flowgraph methodology for assessing the dependability of embedded software systems

The dynamic flowgraph methodology (DFM) is an integrated methodological approach to modeling and analyzing the behavior of software-driven embedded systems for the purpose of reliability/safety assessment and verification. The methodology has two fundamental goals: (1) to identify how certain postulated events may occur in a system; and (2) to identify an appropriate testing strategy based on an analysis of system functional behavior. To achieve these goals, the methodology employs a modeling framework in which system models are developed in terms of causal relationships between physical variables and temporal characteristics of the execution of software modules. These models are then analyzed to determine how a certain state (desirable or undesirable) can be reached. This is done by developing timed fault trees which take the form of logical combinations of static trees relating system parameters at different points in time. The prime implicants (multi-state analogue of minimal cut sets) of the fault trees can be used to identify and eliminate system faults resulting from unanticipated combinations of software logic errors, hardware failures and adverse environmental conditions, and to direct testing activity to more efficiently eliminate implementation errors by focusing on the neighborhood of potential failure modes arising from these combinations of system conditions. >

[1]  Sergio Guarro,et al.  The logic flowgraph: A new approach to process failure modeling and diagnosis for disturbance analysis applications , 1984 .

[2]  Nancy G. Leveson,et al.  Analyzing Software Safety , 1983, IEEE Transactions on Software Engineering.

[3]  John A. McDermid,et al.  Issues in developing software for safety critical systems , 1991 .

[4]  Tadao Murata,et al.  Petri nets: Properties, analysis and applications , 1989, Proc. IEEE.

[5]  G. E. Apostolakis,et al.  A new methodology for the computer-aided construction of fault trees , 1977 .

[6]  A. A. Aaby,et al.  Specification of real-time systems in real-time temporal interval logic , 1988, Proceedings. Real-Time Systems Symposium.

[7]  Sergio B. Guarro Prolgraf-B: A Knowledge-Based System for the Automated Construction of Nuclear Plant Diagnostic Models , 1988 .

[8]  Gary J. Powers,et al.  Computer-aided Synthesis of Fault-trees , 1977, IEEE Transactions on Reliability.

[9]  L. Caldarola Fault Tree Analysis with Multistate Components , 1980 .

[10]  Nancy G. Leveson,et al.  Software Requirements Analysis for Real-Time Process-Control Systems , 1991, IEEE Trans. Software Eng..

[11]  David Lorge Parnas,et al.  Assessment of safety-critical software in nuclear power plants , 1991 .

[12]  Peter G. Neumann,et al.  Some Computer-Related Disasters and Other Egregious Horrors , 1986, IEEE Aerospace and Electronic Systems Magazine.

[13]  S. Garribba,et al.  Multiple-Valued Logic Trees: Meaning and Prime Implicants , 1985, IEEE Transactions on Reliability.

[14]  S. L. Salem,et al.  Decision table development and application to the construction of fault trees , 1979 .

[15]  Michael M. Gorlick,et al.  Real-time interval logic for reasoning about executions of real-time programs , 1989 .

[16]  John Rushby,et al.  Critical system properties: survey and taxonomy , 1994 .

[17]  G. E. Apostolakis,et al.  Logic flowgraph methodology: a tool for modeling embedded systems , 1991, IEEE/AIAA 10th Digital Avionics Systems Conference.

[18]  Rami R. Razouk,et al.  Interactive State-Space Analysis of Concurrent Systems , 1987, IEEE Transactions on Software Engineering.

[19]  Nancy G. Leveson,et al.  Safety verification in MURPHY using fault tree analysis , 1988, Proceedings. [1989] 11th International Conference on Software Engineering.

[20]  Amrit L. Goel,et al.  Software Reliability Models: Assumptions, Limitations, and Applicability , 1985, IEEE Transactions on Software Engineering.

[21]  Lorenzo Strigini Considerations on current research issues in software safety , 1994 .

[22]  Nancy G. Leveson,et al.  Safety Analysis Using Petri Nets , 1987, IEEE Transactions on Software Engineering.

[23]  Sergio B. Guarro A logic flowgraph based concept for decision support and management of nuclear plant operation , 1987 .