An investigation of proposed techniques for quantifying confidence in assurance arguments

Abstract The use of safety cases in certification raises the question of assurance argument sufficiency and the issue of confidence (or uncertainty) in the argument’s claims. Some researchers propose to model confidence quantitatively and to calculate confidence in argument conclusions. We know of little evidence to suggest that any proposed technique would deliver trustworthy results when implemented by system safety practitioners. Proponents do not usually assess the efficacy of their techniques through controlled experiment or historical study. Instead, they present an illustrative example where the calculation delivers a plausible result. In this paper, we review current proposals, claims made about them, and evidence advanced in favor of them. We then show that proposed techniques can deliver implausible results in some cases. We conclude that quantitative confidence techniques require further validation before they should be recommended as part of the basis for deciding whether an assurance argument justifies fielding a critical system.

[1]  Christopher L. Warner,et al.  Chemical Safety and Hazard Investigation Board , 2010 .

[2]  Dajian Zhang,et al.  A New Approach to Assessment of Confidence in Assurance Cases , 2012, SAFECOMP Workshops.

[3]  John B. Goodenough,et al.  Eliminative induction: A basis for arguing system confidence , 2013, 2013 35th International Conference on Software Engineering (ICSE).

[4]  Audun Jøsang,et al.  Conditional Deduction Under Uncertainty , 2005, ECSQARU.

[5]  Chris Reed,et al.  Argumentation Schemes , 2008 .

[6]  Shuichiro Yamamoto,et al.  Assuring Security through Attribute GSN , 2015, 2015 5th International Conference on IT Convergence and Security (ICITCS).

[7]  B. Littlewood,et al.  The Use of Multi-legged Arguments to Increase Confidence in Safety Claims for Software-based Systems : a Study Based on a BBN Analysis of an Idealised Example , 2005 .

[8]  Neil Walkinshaw,et al.  Quantifying Uncertainty in Safety Cases Using Evidential Reasoning , 2014, SAFECOMP Workshops.

[9]  Chris Hobbs,et al.  The Application of Bayesian Belief Networks to Assurance Case Preparation , 2012, SSS.

[10]  Lukasz Cyra,et al.  Support for argument structures review and assessment , 2011, Reliab. Eng. Syst. Saf..

[11]  Jana Maria Heinsohn,et al.  Einführung in die ISO 26262 "Functional Safety - Road Vehicles" , 2011 .

[12]  B. Guo Knowledge representation and uncertainty management: applying Bayesian belief networks to a safety assessment expert system , 2003, International Conference on Natural Language Processing and Knowledge Engineering, 2003. Proceedings. 2003.

[13]  Deming Zhong,et al.  USING D-S EVIDENCE THEORY TO EVALUATION OF CONFIDENCE IN SAFETY CASE , 2013 .

[14]  L. Cohen,et al.  The Probable and the Provable. , 1977 .

[15]  L.W.D. Cullen,et al.  The public inquiry into the Piper Alpha disaster , 1993 .

[16]  David Wright,et al.  The Use of Multilegged Arguments to Increase Confidence in Safety Claims for Software-Based Systems: A Study Based on a BBN Analysis of an Idealized Example , 2007, IEEE Transactions on Software Engineering.

[17]  H. Jeffreys A Treatise on Probability , 1922, Nature.

[18]  Audun Jøsang,et al.  A Logic for Uncertain Probabilities , 2001, Int. J. Uncertain. Fuzziness Knowl. Based Syst..

[19]  Lukasz Cyra,et al.  Supporting Expert Assessment of Argument Structures in Trust Cases , 2008 .

[20]  Per Runeson,et al.  Guidelines for conducting and reporting case study research in software engineering , 2009, Empirical Software Engineering.

[21]  William A. Florac,et al.  Goal-Driven Software Measurement. A Guidebook. , 1996 .

[22]  Insup Lee,et al.  Assessing the Overall Suffic iency of Safety Arguments , 2013 .

[23]  Patrick J. Graydon,et al.  Towards a Clearer Understanding of Context and Its Role in Assurance Argument Confidence , 2014, SAFECOMP.

[24]  Jérémie Guiochet,et al.  A Model for Safety Case Confidence Assessment , 2015, SAFECOMP.

[25]  Glenn Shafer,et al.  A Mathematical Theory of Evidence , 2020, A Mathematical Theory of Evidence.

[26]  Patrick Graydon,et al.  "Evidence" Under a Magnifying Glass: Thoughts on Safety Argument Epistemology , 2015 .

[27]  Lorenzo Strigini,et al.  Formalism and judgement in assurance cases , 2004 .

[28]  T. Kelly Reviewing Assurance Arguments – A Step-By-Step Approach , 2007 .

[29]  Patrick Graydon,et al.  Uncertainty and Confidence in Safety Logic , 2013 .

[30]  Tim Kelly,et al.  Combining Bayesian Belief Networks and the Goal Structuring Notation to Support Architectural Reasoning About Safety , 2007, SAFECOMP.

[31]  B. Littlewood,et al.  Dependability assessment of software-based systems: state of the art , 2005, Proceedings. 27th International Conference on Software Engineering, 2005. ICSE 2005..

[32]  Norman E. Fenton,et al.  Using Ranked Nodes to Model Qualitative Judgments in Bayesian Networks , 2007, IEEE Transactions on Knowledge and Data Engineering.

[33]  Karin Baier,et al.  The Uses Of Argument , 2016 .

[34]  Insup Lee,et al.  Representing Confidence in Assurance Case Evidence , 2015, SAFECOMP Workshops.

[35]  John C. Knight,et al.  Certification and Safety Cases , 2010 .

[36]  H Johnson Ralph SOME REFLECTIONS ON THE INFORMAL LOGIC INITIATIVE , 2009 .

[37]  Richard Hawkins,et al.  A New Approach to creating Clear Safety Arguments , 2011, SSS.

[38]  Audun Jøsang,et al.  Trust network analysis with subjective logic , 2006, ACSC.

[39]  Neil Walkinshaw,et al.  An evidential reasoning approach for assessing confidence in safety evidence , 2015, 2015 IEEE 26th International Symposium on Software Reliability Engineering (ISSRE).

[40]  Jian-Bo Yang,et al.  On the evidential reasoning algorithm for multiple attribute decision analysis under uncertainty , 2002, IEEE Trans. Syst. Man Cybern. Part A.

[41]  Austin Lee Nichols,et al.  The Good-Subject Effect: Investigating Participant Demand Characteristics , 2008, The Journal of general psychology.

[42]  Ewen Denney,et al.  Towards Measurement of Confidence in Safety Cases , 2011, 2011 International Symposium on Empirical Software Engineering and Measurement.