A proposal of Fault Tree Analysis for control programs

Takahashi, Masakazu; Nanba, Reiji

doi:10.1109/sice.2014.6935296

Cited by 6 publications

(4 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Junga et al [28] proposed an automatic FT development method from software specifications written in formal specification language called NuSCR. From the results of [24] and [25], we found that the causes of the undesirable events are detected at the program level by using FT. By improving this function, FTA for various types of CSWs becomes able to conduct.…”

Section: Related Workmentioning

confidence: 97%

“…Leveson et al [24] prepared an FT template corresponding to the programming language instruction and developed an FT by combining those FT templates. Takahashi et al [25] proposed an automatic FT development method by expanding Leveson's idea. Kumar et al [26] showed that in the development of safety-critical ball position control systems, adequate CSW design could be achieved when the FTA was conducted in the software development life cycle's proper timing.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Safety Analysis Method for Control Software in Coordination with FMEA and FTA

Takahashi

Anang²,

Watanabe

2021

Information

Self Cite

View full text Add to dashboard Cite

In this study, we proposed a method to improve the safety level of control software (CSW) by managing the CSW’s design information and safety analysis results, and combining failure mode and effects analysis (FMEA) and fault tree analysis (FTA). Here, the CSW is developed using structured analysis and design methodology. In the upper stage of the CSW’s development process, as the input of the preliminary design information (data flow diagrams (DFDs) and control flow diagrams (CFDs)), the causes of undesirable events of the CSW are clarified by FMEA, and the countermeasures are reflected in the preliminary design information. In the lower stage of the CSW’s development process, as the inputs of the detailed design information (DFDs and CFDs in the lower level) and programs, the causes of the specific undesirable event are clarified by FTA, and the countermeasures are reflected in the detailed design specifications and programs. The processes are repeated until the impact of undesirable events become the acceptable safety level. By applying the proposed method to the CSW installed into a communication control equipment on the space system, we clarified several undesirable events and adopted adequate countermeasures. Consequently, a safer CSW is developed by applying the proposed method.

show abstract

Section: Related Workmentioning

confidence: 97%

Section: Related Workmentioning

confidence: 99%

A Safety Analysis Method for Control Software in Coordination with FMEA and FTA

Takahashi

Anang²,

Watanabe

2021

Information

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, as the method of combining the FT templates to develop an FT is not defined, the level of completeness of the FT is dependent on the ability of the analyst. Therefore, Takahashi et al proposed rules for combining FT templates and developing an FT while reverse-tracking the process in which faults occur [14]. Park et al, with regard to a nuclear power plant control system developed using a Function Block Diagram with a Programmable Logic Controller, proposed a method in which the FT is developed by preparing and combining FT templates in relation to the Function Block [15].…”

Section: Related Workmentioning

confidence: 99%

A Proposal of Fault Tree Analysis for Embedded Control Software

Takahashi

Anang²,

Watanabe

2020

Information

Self Cite

View full text Add to dashboard Cite

There are many industrial products in our life, and the actions of those products are controlled by embedded control software (ECSW). Recently, many troubles have been caused by ECSW. To avoid those troubles, it is necessary to clarify the causes of the troubles and take countermeasures. However, the results of those tasks depend on the skills of the analyst. This paper proposes an analytic method that clarifies the causes of troubles by applying fault tree analysis (FTA) to the ECSW. The characteristics of the proposed method are as follows: Preparation of fault tree templates (FTTs) corresponding to instructions of the ECSW, and definition of the FT development rules by combining FTTs according to the back-tracing of the instruction execution process. By complying with the proposed method strictly, when an analyst who has studied computer science and safety engineering for 2–3 years conducts FTA, the analyst can obtain an appropriate result of FTA. This indicates that the safety level of ECSW will improve. As a result of applying the proposed method to existing ECSWs, we find that we can obtain the result of FTA at the appropriate level.

show abstract

“…Leveson et al showed that the Fault Tree (FT) could be developed by preparing the FT templates corresponding to the essential instructions of the ECSW and combining those FT templates [11,12]. Takahashim, et al proposed the development rules that developed FT automatically by tracing the process that caused the accident and combining the FT templates [13]. Pai et al proposed the method that calculated the reliability of the system by inputting the design specifi cations written in the UML [14].…”

Section: Introductionmentioning

confidence: 99%

A Hazard Analysis Method for Embedded Control Software with STPA

Takahashi¹,

Anang²,

Watanabe³

2020

Trends Comput Sci Inf Technol

View full text Add to dashboard Cite

Recently, industrial products, such as cars, medical apparatuses, and aerospace apparatuses, are developed as the systems that are combined the hardware and software, and their confi guration of the apparatuses and controls become complex. As a result, unintended accidents occur when using the industrial products. Those accidents occur when hazards that are occurred by interactions between hardware and software when using an apparatus and some negative conditions that cause the accident are satisfi ed. This accident model is called as Systems-Theoretic Accident Model and Process (STAMP) model. Additionally, based on the STAMP model, the safety analysis method that clarifi es hazards and hazard scenarios is called STAMP based Process Analysis (STPA) [1]. This paper proposes a method that clarifi es the hazards and proposes safety countermeasures after completing the development of the functional specifi cations for Embedded Control Software (ECSW). In the proposed method, STPA is conducted by inputting the ECSW system specifi cations that are consisted use-case diagrams and class diagrams that are written in Unifi ed Modeling Language (UML). As a result of conducting STPA, hazards are clarifi ed, and hazard scenarios are developed. Sequence diagrams corresponding to the hazard-scenarios are developed and the Hazard Causal Factors (HCFs) are clarifi ed. In this case, the reasons of the HCFs are the execution of methods and/or the non-execution of methods in the class. Based on the STAMP model, the safety analysis method that clarifi es the hazards and the hazard scenarios is called a System-Theoretic Process Analysis (STPA). The organization of this paper is explained below. Section 2 describes the related works. Section 3 describes the outline of the proposed method. Section 4 describes the applications and evaluations of the proposed method. And section 5 describes future works.

show abstract

A proposal of Fault Tree Analysis for control programs

Cited by 6 publications

References 4 publications

A Safety Analysis Method for Control Software in Coordination with FMEA and FTA

A Safety Analysis Method for Control Software in Coordination with FMEA and FTA

A Proposal of Fault Tree Analysis for Embedded Control Software

A Hazard Analysis Method for Embedded Control Software with STPA

Contact Info

Product

Resources

About