CSR: EHS: Assurance-Based Development of Critical Embedded Systems

CSR：EHS：关键嵌入式系统的基于保证的开发

• 批准号: 0720794
• 负责人: John Knight
• 金额: $ 6.5万
• 依托单位: University of Virginia Main Campus
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2007
• 资助国家: 美国
• 起止时间: 2007-09-01 至 2008-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0720794&HistoricalAwards=false
• 关键词: CSR; EHS; Assurance; Based; Development

Critical systems should be built in a manner that makes them not only adequately dependable, but demonstrably adequately dependable. An assurance case is an argument that demonstrates how the specific evidence resulting from system development efforts (test results, results of static analysis, etc.) combine to support the conclusion that the system is adequately dependable. The assurance case moreover documents the rationale used to draw conclusions about each piece of evidence. In the event of a failure that is not a random event, this record can be examined to discover the faulty reasoning that led to the release of the flawed system, thus helping developers to redress the system?s flaws and to avoid making similar mistakes in future development efforts. This research is developing methods for Assurance Based Development that couples the development of the system with the development of its assurance case so that explicit criteria for the dependability impact of each development decision are available at the time the decision is made. The need for assurance of dependability drives system development, leading developers to make choices that give rise to both the needed dependability and evidence of that dependability. The explicit evaluation of dependability throughout the development process also facilitates detection and avoidance of potential assurance difficulties as they arise, rather than after development is complete?when they are much harder to address. Furthermore, knowing the assurance obligation incident on each part of the system will give developers the flexibility to deploy expensive technology, such as formal verification, only on components whose assurance needs demand it.

关键系统的构建方式不仅要使其充分可靠，而且要证明其充分可靠。一个保证案例是一个论证，它演示了系统开发工作（测试结果、静态分析结果等）产生的具体证据如何被证明是有效的。联合收割机以支持系统足够可靠的结论。此外，保证案例还记录了对每项证据得出结论所使用的理由。如果发生故障，而不是一个随机事件，这个记录可以检查，以发现错误的推理，导致释放的有缺陷的系统，从而帮助开发人员纠正系统？的缺陷，并避免在未来的发展努力中犯类似的错误。这项研究是开发方法，保证为基础的开发，耦合系统的发展与发展的保证情况下，使明确的标准，每个开发决策的可靠性影响，在作出决定的时候。对可靠性保证的需求驱动着系统开发，引导开发人员做出既能产生所需的可靠性又能证明这种可靠性的选择。在整个开发过程中对可靠性进行明确的评估，也有助于在出现潜在保证困难时（而不是在开发完成后）发现和避免这些困难。当他们更难解决的时候。 此外，了解系统每个部分的保证义务事件将使开发人员能够灵活地部署昂贵的技术，例如正式验证，仅在保证需求需要的组件上。