Exploring the Possibilities Towards a Preliminary Safety Case for IMA Blueprints

“…One possible mechanism for transferring from one configuration to another is to employ an intermediate mapping that only has the processes in the old mapping that remain in the new mapping in the intermediate mapping and then to add in the new / changed processes to form the new configuration. There is a significant number of safety related issues that still need to be addressed (Jolliffe 2004) with this approach, this is an area of potential future research, but let us assume for the purposes of this paper that a set of system blueprints can be determined and that a reconfiguration mechanism can be developed.…”

“…A safety argument will need to be developed for the HM system used as part of the deployment of the reconfiguration on failure approach. This is beyond the scope of this paper but the framework of such an argument can be found in (Jolliffe 2004). Two safety analyses are required to assess the contribution of the HM system to a reconfiguration approach to fault tolerance for a safety critical system.…”

Health Monitoring for Reconfigurable Integrated Control Systems

“…One possible mechanism for transferring from one configuration to another is to employ an intermediate mapping that only has the processes in the old mapping that remain in the new mapping in the intermediate mapping and then to add in the new / changed processes to form the new configuration. There is a significant number of safety related issues that still need to be addressed (Jolliffe 2004) with this approach, this is an area of potential future research, but let us assume for the purposes of this paper that a set of system blueprints can be determined and that a reconfiguration mechanism can be developed.…”

“…A safety argument will need to be developed for the HM system used as part of the deployment of the reconfiguration on failure approach. This is beyond the scope of this paper but the framework of such an argument can be found in (Jolliffe 2004). Two safety analyses are required to assess the contribution of the HM system to a reconfiguration approach to fault tolerance for a safety critical system.…”

Health Monitoring for Reconfigurable Integrated Control Systems

“…However, the overall IMA safety argument needs to consider many other issues and factors, which may affect the safety of blueprints and by implication, the ability to certify such systems. This is not covered in this paper, but is expanded in more detail in the MSc project [1].…”

“…This paper will primarily concentrate upon the work carried out by the ASAAC. The full aims of the ASAAC programme, and description of the standards and guidelines is not provided in this 8.C.1-2 paper but are outlined in the supporting MSc project [1] and further information can be obtained from [1] and [8].…”

“…From the algorithm review at [1] and the conclusions of Stevens [10], it would appear that Simulated Annealing has a consensus in its favour. However, the rationale for this conclusion is not particularly strong, and is dependent on its benefits for handling hard and soft rules.…”

Producing a Safety Case for IMA Blueprints

Safety tactics for reconfigurable process control devices