Objective Measurement of Safety in the Context of IEC 61508-3

Safety standards like the IEC 61508 are an important source for developing safety-critical (software) systems as they provide a set of requirements and recommendations to assist engineers in system and software development. Applying this standard in practice leads to interpretation problems due to insufficient operationalization, i.e. unclear requirements and unclear or missing acceptance criteria. This makes it hard to measure the extent to which a product fulfills the requirements of the standard. For this, we systematically developed a quality model that covers the coding-related parts of the safety standard IEC 61508. It provides refinements to the recommendations and equips them with proper measurement support by means of static code analysis tools (236 measures for C/C++ systems). We found in an evaluation study that the used approach is suitable for covering the coding-related parts of the standard with proper and meaningful operationalization. Additionally, the results indicate an adequate completeness of the modeled contents. This encourages us to go a step further and to extend the model to support compliance assessments in future work.

[1]  Tim Kelly,et al.  Arguing Safety - A Systematic Approach to Managing Safety Cases , 1998 .

[2]  Elmar Jürgens,et al.  Software quality models: Purposes, usage scenarios and requirements , 2009, 2009 ICSE Workshop on Software Quality.

[3]  Claes Wohlin,et al.  Capture-recapture in software inspections after 10 years research--theory, evaluation and application , 2004, J. Syst. Softw..

[4]  Nancy G. Leveson,et al.  Role of Software in Spacecraft Accidents , 2004 .

[5]  Mehrdad Sabetzadeh,et al.  Towards a Model-Based Evolutionary Chain of Evidence for Compliance with Safety Standards , 2012, SAFECOMP Workshops.

[6]  Mehrdad Sabetzadeh,et al.  Planning for Safety Standards Compliance: A Model-Based Tool-Supported Approach , 2012, IEEE Software.

[7]  Reinhold Plösch,et al.  The Quamoco product quality modelling and assessment approach , 2012, 2012 34th International Conference on Software Engineering (ICSE).

[8]  Josef Börcsök Functional safety : basic principles of safety-related systems , 2007 .

[9]  Richard Hawkins,et al.  Software safety: relating software assurance and software integrity , 2010, Int. J. Crit. Comput. Based Syst..

[10]  Richard Hawkins,et al.  A New Approach to creating Clear Safety Arguments , 2011, SSS.

[11]  Mehrdad Sabetzadeh,et al.  Characterizing the Chain of Evidence for Software Safety Cases: A Conceptual Model Based on the IEC 61508 Standard , 2010, 2010 Third International Conference on Software Testing, Verification and Validation.

[12]  Reinhold Plösch,et al.  A Comprehensive Code-Based Quality Model for Embedded Systems: Systematic Development and Validation by Industrial Projects , 2012, 2012 IEEE 23rd International Symposium on Software Reliability Engineering.

[13]  W. Lowrance,et al.  Of Acceptable Risk: Science and the Determination of Safety , 1976 .

[14]  R. Dromey,et al.  A Model for Software Product Quality , 1995, IEEE Trans. Software Eng..

[15]  M H Lloyd,et al.  IEC 61508 and IEC 61511 assessments - some lessons learned , 2009, ICONS 2009.

[16]  Mehrdad Sabetzadeh,et al.  A Model-Driven Engineering Approach to Support the Verification of Compliance to Safety Standards , 2011, 2011 IEEE 22nd International Symposium on Software Reliability Engineering.

[17]  Ron Bell Introduction and Revision of IEC 61508 , 2011, SSS.

[18]  Michaela Huhn,et al.  Analysing Dependability Case Arguments Using Quality Models , 2009, SAFECOMP.

[19]  Richard Hawkins,et al.  Arguing Conformance , 2012, IEEE Software.

[20]  J. E. Groves,et al.  Made in America: Science, Technology and American Modernist Poets , 1989 .

[21]  D. L. Simms,et al.  Normal Accidents: Living with High-Risk Technologies , 1986 .

[22]  Jürgen Münch,et al.  CQML Scheme: A Classification Scheme for Comprehensive Quality Model Landscapes , 2009, 2009 35th Euromicro Conference on Software Engineering and Advanced Applications.

[23]  Michaela Huhn,et al.  Arguing for Software Quality in an IEC 62304 Compliant Development Process , 2010, ISoLA.

[24]  Norman E. Fenton,et al.  A Strategy for Improving Safety Related Software Engineering Standards , 1998, IEEE Trans. Software Eng..

[25]  Reinhold Plösch,et al.  Towards an Operational Safety Standard for Software: Modelling IEC 61508 Part 3 , 2011, 2011 18th IEEE International Conference and Workshops on Engineering of Computer-Based Systems.