SMV model-based safety analysis of software requirements

Fault tree analysis (FTA) is one of the most frequently applied safety analysis techniques when developing safety-critical industrial systems such as software-based emergency shutdown systems of nuclear power plants and has been used for safety analysis of software requirements in the nuclear industry. However, the conventional method for safety analysis of software requirements has several problems in terms of correctness and efficiency: the fault tree generated from natural language specifications may contain flaws or errors while the manual work of safety verification is very labor-intensive and time-consuming. In this paper, we propose a new approach to resolve problems of the conventional method; we generate a fault tree from a symbolic model verifier (SMV) model, not from natural language specifications, and verify safety properties automatically, not manually. by a model checker SMV. To demonstrate the feasibility of this approach, we applied it to shutdown system 2 (SDS2) of Wolsong nuclear power plant (NPP). In spite of subtle ambiguities present in the approach, the results of this case study demonstrate its overall feasibility and effectiveness. (C) 2008 Elsevier Ltd. All rights reserved.
Publisher
ELSEVIER SCI LTD
Issue Date
2009-02
Language
ENG
Keywords

SPECIFICATIONS; SYSTEMS

Citation

RELIABILITY ENGINEERING SYSTEM SAFETY, v.94, no.2, pp.320 - 331

ISSN
0951-8320
DOI
10.1016/j.ress.2008.03.025
URI
http://hdl.handle.net/10203/10011
Appears in Collection
NE-Journal Papers(저널논문)
  • Hit : 193
  • Download : 8
  • Cited 0 times in thomson ci
This item is cited by other documents in WoS
⊙ Detail Information in WoSⓡClick to seewebofscience_button
⊙ Cited 3 items in WoSClick to see citing articles inrecords_button

qr_code

  • mendeley

    citeulike


rss_1.0 rss_2.0 atom_1.0