Assurance of System Safety: A Survey of Design and Argument Patterns

Gleirscher, Mario; Kugele, Stefan

doi:10.48550/arxiv.1902.05537

Cited by 2 publications

(5 citation statements)

References 102 publications

(192 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Ayoub et al [130] presented a safety case pattern to argue about the correctness of implementations developed using model-based approaches. Gleischer and Kugele wrote an extensive survey of safety and arguments [67,131], where they also considered related aspects that may affect safety, including security and reliability. L. Yuan et al proposed a heterogeneous software architecture, GFTSA (Generic Fault-Tolerant Software Architecture), that can guide the development of safety-critical distributed systems [117].…”

Section: Methodologies Metamodels Architectures Tactics and Argumentsmentioning

confidence: 99%

Dependability Patterns: A Survey

Buckley,

Fernandez

2023

Computers

View full text Add to dashboard Cite

Patterns embody the experience and knowledge of designers and are effective ways to improve nonfunctional aspects of software systems. Although there are several catalogs and surveys of security patterns, there is no catalog or general survey about dependability patterns. Our survey presented an enumeration of dependability patterns, which include fault tolerance, reliability, safety, and availability patterns. After defining classification groups and showing basic pattern relationships, we showed the references to the publications where these patterns were introduced and enumerated their intents. Another objective was evaluating these patterns to see if their descriptions are appropriate for a possible catalog, which would make them useful to developers and researchers. We found that most of them need remodeling because they use ad hoc templates or no templates. We considered some models from which we can derive patterns and methodologies that incorporate the use of patterns to build dependable software systems. We also provided directions for research.

show abstract

Section: Methodologies Metamodels Architectures Tactics and Argumentsmentioning

confidence: 99%

Dependability Patterns: A Survey

Buckley,

Fernandez

2023

Computers

View full text Add to dashboard Cite

show abstract

“…Still, aside from standards, several publications related to the automotive domain give definitions for different fault tolerance regimes [24][25][26][27][28][29][30][31][32][33][34][35][36][37][38][39][40][41][42]. An overview of the covered literature is presented in Table I.…”

Section: A Fault Tolerance Regimes In the Automotive Domainmentioning

confidence: 99%

“…1) Upholding functionality: All publications referenced in this subsection, except for [39], define terms to address the continued provision of a system's functionality in the presence of a fault without performance degradation [24][25][26][27][28][29][30][31][32][33][34][35][36][37][38][40][41][42] and consistently use the term fail-operational. Still, when Author(s) Year Source f a i l -o p e r a t i o n a l f a i l -s a f e f a i l -s i l e n t f a i l -d e g r a d e d f a i l -r e d u c e d f a i l -u n s a f e o t h e r Automotive publications with defintions of fault tolerance regimes Publications in automated vehicle context using fault tolerance regimes without definitions comparing the definitions, the understanding of the term varies slightly between the publications.…”

Section: A Fault Tolerance Regimes In the Automotive Domainmentioning

confidence: 99%

“…In the first subcategory [24,40,46,47], a core functionality of the fail-operational system is maintained to achieve a defined state. The sole publication of the second subcategory [27] requires the system to maintain full functionality until the defined state is reached. It is not apparent to which subcategory each of the remaining publications [28][29][30]35] can be assigned.…”

Section: A Fault Tolerance Regimes In the Automotive Domainmentioning

confidence: 99%

“…The fail-silent property of a system is commonly described as the guarantee that no output is provided in the event of failures [24,26,27,29,32,34,41,46]. Therefore, the systems described as fail-silent usually represent (sub-)components of a larger complex system (e. g., a vehicle).…”

Section: A Fault Tolerance Regimes In the Automotive Domainmentioning

confidence: 99%

See 2 more Smart Citations

Taxonomy to Unify Fault Tolerance Regimes for Automotive Systems: Defining Fail-Operational, Fail-Degraded, and Fail-Safe

Stolte

Ackermann

Graubohm

et al. 2022

IEEE Trans. Intell. Veh.

View full text Add to dashboard Cite

This paper presents a taxonomy that allows to define the fault tolerance regimes fail-operational, fail-degraded, and failsafe in the context of automotive systems. Fault tolerance regimes such as these are widely used in recent publications related to automated driving, yet without definitions, which largely holds true for automotive safety standards, too. Moreover, we show that fault tolerance regimes defined in scientific publications related to the automotive domain are partially ambiguous as well as taxonomically unrelated. The presented taxonomy is based on terminology stemming from ISO 26262 as well as from systems engineering and uses four criteria to distinguish fault tolerance regimes. In addition to fail-operational, fail-degraded, and fail-safe, the core terminology consists of operational and fail-unsafe. These terms are supported by definitions of available performance, nominal performance, and a novel definition of the safe state. For verification, we show by means of two examples from the automotive domain that the taxonomy can be applied to hierarchical systems of different complexity. Finally, we relate the definitions to the recently published technical report ISO/TR 4804, which also presents definitions of fault tolerance regimes.

show abstract

Assurance of System Safety: A Survey of Design and Argument Patterns

Cited by 2 publications

References 102 publications

Dependability Patterns: A Survey

Dependability Patterns: A Survey

Taxonomy to Unify Fault Tolerance Regimes for Automotive Systems: Defining Fail-Operational, Fail-Degraded, and Fail-Safe

Contact Info

Product

Resources

About