Model based system assurance using the structured assurance case metamodel

Wei, Ran; Kelly, Tim; Dai, Xiaotian; Zhao, Shuai; Hawkins, Richard

doi:10.1016/j.jss.2019.05.013

Cited by 44 publications

(34 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Consequently, there have been a number of efforts to formalise and mechanise assurance cases, both at the argumentation level [37,161] and the evidence level [32]. More recently, in MDE, the Structured Assurance Case Meta-model (SACM) 9 is a standardised meta-model that supports both structured argumentation and integration of evidence from diverse system models [172]. SACM unifies several existing argumentation notations, and also provides support for artefact traceability and terminology.…”

Section: The Desire For Early Removal Of Severe Errorsmentioning

confidence: 99%

“…The authors highlight the use of what are called integrated formal methods (iFMs) 3 in the construction of assurance cases and the production of evidence as a key opportunity to meet current RAS challenges. Particularly, computer-assisted assurance techniques [172], supported by evidence provided by iFMs, can greatly increase confidence in the sufficiency of assurance cases, and also aid in their maintenance and evolution through automation. Moreover, the use of modern FMbased tools to support holistic simulation, prototyping, and verification activities, at each stage of system, hardware, and software development, can lead to systems that are demonstrably safe, secure, and trustworthy.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

New Opportunities for Integrated Formal Methods

2019

View full text Add to dashboard Cite

Formal methods have provided approaches for investigating software engineering fundamentals and also have high potential to improve current practices in dependability assurance. In this article, we summarise known strengths and weaknesses of formal methods. From the perspective of the assurance of robots and autonomous systems (RAS), we highlight new opportunities for integrated formal methods and identify threats to the adoption of such methods. Based on these opportunities and threats, we develop an agenda for fundamental and empirical research on integrated formal methods and for successful transfer of validated research to RAS assurance. Furthermore, we outline our expectations on useful outcomes of such an agenda. AcronymsAI artificial intelligence ASIL automotive safety integrity level DA dependability assurance DAL design assurance level DSE dependable systems engineering DSL domain-specific language FDA Food and Drug Administration FI formal inspection FM formal method HCI human-computer interaction iFM integrated formal method IT information technology MBD model-based development MDE model-driven engineering ML machine learning RAS robots and autonomous systems RCA root cause analysis RE requirements engineering SACM Structured Assurance Case Meta-model SC systematic capability SIL safety integrity level SMT Satisfiability Modulo Theory SWOT strengths, weaknesses, opportunities, and threats SysML Systems Modelling Language UML Unified Modelling Language UTP Unifying Theories of ProgrammingWe view robots and autonomous systems as both dependable systems and highly automated machines capable of achieving a variety of complex tasks in support of humans. We can consider such systems by looking at four layers: the plant or process composed of the operational environment and the machine; the machine itself; the machine's controller, and the software embedded into this controller. Based on these layers, we treat "embedded system" and "embedded software" as synonyms. Machine, controller, and software can all be distributed.By dependable systems engineering, we refer to error-avoidance and error-detection activities in control system and embedded software development (e.g. according to the V-model). Avizienis et al.[7] devised a comprehensive terminology and an overview of the assessment and handling of a variety of faults, errors, and failures. For critical systems, such activities are expected to be explicit (e.g. traceable, documented), to employ best practices (e.g. design patterns), and to be driven by reasonably qualified personnel (e.g. well-trained and experienced engineers or programmers).The need for dependability often arises from the embedding of software into a cyber-physical context (i.e., an electronic execution platform, a physical process to be controlled, and other systems or human users to interact with). Dependability assurance (DA), or assurance for short, encompasses the usually cross-disciplinary task of providing evidence for an assurance case (e.g. safety, security, reliability) for a sys...

show abstract

Section: The Desire For Early Removal Of Severe Errorsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

New Opportunities for Integrated Formal Methods

2019

View full text Add to dashboard Cite

show abstract

“…Assurance cases (ACs) are structured arguments, supported by evidence, intended to demonstrate that a system meets its requirements, such as safety or security, when applied in a particular operational context [24,30]. They are recommended by several international standards, such as ISO26262 for automotive applications.…”

Section: Introductionmentioning

confidence: 99%

“…An AC consists of a hierarchical decomposition of claims, through appropriate argumentation strategies, into further claims, and eventually supporting evidence. Several AC languages exist, including the Goal Structuring Notation (GSN) [24], Claims, Arguments, and Evidence (CAE) [2], and the Structured Assurance Case Metamodel (SACM) 1 [30], a standard that unifies several notations.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Isabelle/SACM: Computer-Assisted Assurance Cases with Integrated Formal Methods

Nemouchi

Foster

Gleirscher

et al. 2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Assurance cases (ACs) are often required to certify critical systems. The use of integrated formal methods (FMs) in assurance can improve automation, increase confidence, and overcome errant reasoning. However, ACs can rarely be fully formalised, as the use of FMs is contingent on models that are validated by informal processes. Consequently, assurance techniques should support both formal and informal artifacts, with explicated inferential links between them. In this paper, we contribute a formal machine-checked interactive language for the computer-assisted construction of ACs called Isabelle/SACM. The framework guarantees well-formedness, consistency, and traceability of ACs, and allows a tight integration of formal and informal evidence of various provenance. To validate Isabelle/SACM, we present a novel formalisation of the Tokeneer benchmark, verify its security requirements, and form a mechanised AC that combines the resulting formal and informal artifacts.

show abstract

Evolution of Formal Model-Based Assurance Cases for Autonomous Robots

Gleirscher

Foster

Nemouchi

2019

Software Engineering and Formal Methods

View full text Add to dashboard Cite

An assurance case should carry sufficient evidence for a compelling argument that a system fulfils its guarantees under specific environmental assumptions. Assurance cases are often subject of maintenance, evolution, and reuse. In this paper, we demonstrate how evidence of an assurance case can be formalised, and how an assurance case can be refined using this formalisation to increase argument confidence and to react to changing operational needs. Moreover, we propose two argument patterns for construction and extension and we implement these patterns using the generic proof assistant Isabelle. We illustrate our approach for an autonomous mobile ground robot. Finally, we relate our approach to international standards (e.g. DO-178C, ISO 26262) recommending the delivery and maintenance of assurance cases.

show abstract

Model based system assurance using the structured assurance case metamodel

Cited by 44 publications

References 25 publications

New Opportunities for Integrated Formal Methods

New Opportunities for Integrated Formal Methods

Isabelle/SACM: Computer-Assisted Assurance Cases with Integrated Formal Methods

Evolution of Formal Model-Based Assurance Cases for Autonomous Robots

Contact Info

Product

Resources

About