Secondary tools for Safety activities - openETCS/model-evaluation GitHub Wiki
This page concerns activities of WP7 T7.2 and is dedicated to the evaluation of tools for Safety activities.
Planning is available on the main page.
Activities covered by secondary means and tools
The following list gives the tasks linked to safety activities:
- Document production (editor, automatic generation,...)
- Hazard Analysis
- Top down approach (FTA, STAMP,...)
- Bottom-up approach (FMEA, HAZOP,...)
- Hazard Log record (central repository)
- Safety requirements record (can be linked to modelling and VnV activities)
- Safety requirements VnV (this activity is linked to the VnV activity, for tools evaluation, see Tools for VnV page )
- Safety case management
Proposed candidates
| Contact | Formalism / Tool | Link with primary means or tools | 1) Document | 2.1) HA Top down | 2.2) HA Bottom-up | 3) Hazard log | 4) Safety req. record | 5) Safety req. VnV | 6) Safety Case |
|---|---|---|---|---|---|---|---|---|---|
| Jan Welte (TU-BS) | CPN-Tools & SPENAT | Coloured PN | ? | ? | ? | ? | ? | ? | ? |
| Jan Welte (TU-BS) | Goal Structuring Notation (GSN) | Assurance Case Editor (ACEdit) | ? | ? | ? | ? | ? | ? | ? |
| Cyril Cornu (All4tec) | Safety Architect (System Safety Analysis tool) | UML/SysML (Papyrus) | ? | ? | ? | ? | ? | ? | ? |
| Matthias Güdemann (Systerel) | Rodin + pluggins (ProR, ProB, SMT solvers, IUML,...) | Event B | X | X | X | X | |||
Who is volunteer to propose means and tools to evaluate ?
Criteria for Safety analysis supports
A first set of criteria is in discussion with WP4, see [https://github.com/openETCS/validation/blob/master/SafetyCase/dok_2012-05-20_PreliminarySafetyEvaluationCriteria_2-1_jw.pdf](this document)
General criteria on means and tools
- open source approaches
- simple usability
- traceability from and to other activities
- easy integration in the tool chain
- documentation generation
Criteria linked on task 1) and 4)
This task is linked to the other task of the OpenETCS project, same tools as the other phases can be selected if they take into account requirements of safety activities.
Criteria on Hazard analysis supports
TODO
Criteria on Safety requirement VnV
This task is link to VnV activities, the tools involved in VnV activites shall ensure VnV of safety requirements. See VnV Tools page.
Criteria on Safety Case supports
TODO
Case studies
Safety telco (09-07-2013): First proposal of starting point for Hazard analysis extract from Susbset 91 :
| ID | Description | Related part of SRS 26 |
|---|---|---|
| KERNEL-6 | Manage communication session failure | §3.5.3 Establishing a communication session |
| KERNEL-9 | Speed calculation underestimates train speed | §3.13 (to confirm) |
| KERNEL-19 | Failure of train trip supervision in OS, LS and FS | §4.6.2 (Transitions Table) and §4.6.3 (Transitions Condition table) and §5 |
D2.5 § 4.2 gives some partial examples of safety analyses.
Other ideas ?
An open repository to store the models is available: safety means and tools.