A Comparative Study into Architecture-Based Safety Evaluation Methodologies Using AADL's Error Annex and Failure Propagation Models

Early quality evaluation and support for decisions that affect quality characteristics are among the key incentives to formally specify the architecture of a software intensive system. The Architecture Analysis and Description Language (AADL) with its error annex is a new and promising architecture modeling language that supports analysis of safety and other dependability properties. This paper reviews the key concepts that are introduced by the error annex, and compares it to the existing safety evaluation techniques regarding its ability in providing modeling, process and tool support. Based on this review and the comparison, its strengths and weaknesses are identified and possible improvements for the model-driven safety evaluation methodology based on AADLpsilas error annex are highlighted.

[1]  D. H. Stamatis,et al.  Failure Mode and Effect Analysis (FMEA) , 2002 .

[2]  J. A. McDermid,et al.  Towards integrated safety analysis and design , 1994, SIAP.

[3]  Mats P. E. Heimdahl,et al.  Behavioral Fault Modeling for Model-based Safety Analysis , 2007 .

[4]  Robyn R. Lutz,et al.  Engineering for Safety : A Roadmap , 2001 .

[5]  Kirsten Winter,et al.  Probabilistic Model-Checking Support for FMEA , 2007 .

[6]  Lars Grunske,et al.  Model-Driven safety evaluation with state-event-based component failure annotations , 2005, CBSE'05.

[7]  David Harel,et al.  Statecharts: A Visual Formalism for Complex Systems , 1987, Sci. Comput. Program..

[8]  Andrea Bondavalli,et al.  Failure classification with respect to detection , 1990, [1990] Proceedings. Second IEEE Workshop on Future Trends of Distributed Computing Systems.

[9]  Robyn R. Lutz,et al.  Integrating Product-Line Fault Tree Analysis into AADL Models , 2007, 10th IEEE High Assurance Systems Engineering Symposium (HASE'07).

[10]  Peter A. Lindsay,et al.  An Automated Failure Mode and Effect Analysis Based on High-Level Design Specification with Behavior Trees , 2005, IFM.

[11]  Holger Giese,et al.  Component-Based Hazard Analysis: Optimal Designs, Product Lines, and Online-Reconfiguration , 2006, SAFECOMP.

[12]  David John Pumfrey,et al.  The principled design of computer system safety analyses , 1999 .

[13]  Lars Grunske,et al.  Automatic generation of analyzable failure propagation models from component-level failure annotations , 2005, Fifth International Conference on Quality Software (QSIC'05).

[14]  Peter Liggesmeyer,et al.  A New Component Concept for Fault Trees , 2003, SCS.

[15]  Lars Grunske,et al.  Early quality prediction of component-based systems - A generic framework , 2007, J. Syst. Softw..

[16]  D. Pumfrey,et al.  Towards a Practicable Process for Automated Safety Analysis , 2006 .

[17]  Marco Ajmone Marsan,et al.  Modelling with Generalized Stochastic Petri Nets , 1995, PERV.

[18]  Nancy G. Leveson,et al.  Safeware: System Safety and Computers , 1995 .

[19]  John A. McDermid,et al.  Analysis and synthesis of the behaviour of complex programmable electronic systems in conditions of failure , 2001, Reliab. Eng. Syst. Saf..

[20]  D. Hickey Distritrack: Automated Average-Case Analysis , 2007 .

[21]  Bernhard Kaiser,et al.  State-Event-Fault-Trees - A Safety Analysis Model for Software Controlled Systems , 2004, SAFECOMP.

[22]  Sébastien Gérard,et al.  Towards Improving Dependability of Automotive Systems by Using the EAST-ADL Architecture Description Language , 2006, WADS.

[23]  Lars Grunske,et al.  Specification patterns for probabilistic quality properties , 2008, 2008 ACM/IEEE 30th International Conference on Software Engineering.

[24]  Nancy G. Leveson,et al.  Software Deviation Analysis , 1997, Proceedings of the (19th) International Conference on Software Engineering.

[25]  Martin Walker,et al.  Compositional Temporal Fault Tree Analysis , 2007, SAFECOMP.

[26]  Mario Trapp,et al.  Determining Configuration Probabilities of Safety-Critical Adaptive Systems , 2007, 21st International Conference on Advanced Information Networking and Applications Workshops (AINAW'07).

[27]  W E Vesely,et al.  Fault Tree Handbook , 1987 .

[28]  Pierre Bieber,et al.  Combination of Fault Tree Analysis and Model Checking for Safety Assessment of Complex System , 2002, EDCC.

[29]  Lars Grunske,et al.  Towards an Integration of Standard Component-Based Safety Evaluation Techniques with SaveCCM , 2006, QoSA.

[30]  Stefan Rothbauer,et al.  Component Fault Tree Analysis Resolves Complexity: Dependability Confirmation for a Railway Brake System , 2007, SAFECOMP.

[31]  Yiannis Papadopoulos,et al.  Model-based synthesis of fault trees from Matlab-Simulink models , 2001, 2001 International Conference on Dependable Systems and Networks.

[32]  Malcolm Wallace,et al.  Modular Architectural Representation and Analysis of Fault Propagation and Transformation , 2005, FESCA@ETAPS.

[33]  Karama Kanoun,et al.  A System Dependability Modeling Framework Using AADL and GSPNs , 2006, WADS.

[34]  Nick Bassiliades,et al.  Towards Compositional Safety Analysis via Semantic Representation of Component Failure Behaviour , 2008, JCKBSE.

[35]  Peter H. Feiler,et al.  Dependability Modeling with the Architecture Analysis & Design Language (AADL) , 2007 .

[36]  Martin Walker,et al.  A Language for Failure Patterns and Application in Safety Analysis , 2008, 2008 Third International Conference on Dependability of Computer Systems DepCoS-RELCOMEX.

[37]  John Håkansson,et al.  The SAVE approach to component-based development of vehicular systems , 2007, J. Syst. Softw..

[38]  Yiannis Papadopoulos,et al.  Evolving car designs using model-based automated safety analysis and optimisation techniques , 2005, J. Syst. Softw..

[39]  A. Joshi Automatic Generation of Static Fault Trees from AADL Models , 2007 .

[40]  Yiannis Papadopoulos,et al.  Automating the failure modes and effects analysis of safety critical systems , 2004, Eighth IEEE International Symposium on High Assurance Systems Engineering, 2004. Proceedings..

[41]  John A. McDermid,et al.  An integrated tool set for software safety analysis , 1993, J. Syst. Softw..

[42]  Salvatore J. Bavuso,et al.  Dynamic fault-tree models for fault-tolerant computer systems , 1992 .

[43]  Alessandro Birolini Reliability Engineering: Theory and Practice , 1999 .

[44]  Peter H. Feiler,et al.  The Architecture Analysis & Design Language (AADL): An Introduction , 2006 .

[45]  Mats Per Erik Heimdahl,et al.  Deviation Analysis: A New Use of Model Checking , 2005, Automated Software Engineering.

[46]  Mohammad Zulkernine,et al.  On Failure Propagation in Component-Based Software Systems , 2008, 2008 The Eighth International Conference on Quality Software.