1 / 28

Naoyasu Ubayashi (Kyushu University, Japan) Yasutaka Kamei (Kyushu University, Japan)

A Context Analysis Method for Embedded Systems --- Exploring a Requirement Boundary between a System and Its Context. Naoyasu Ubayashi (Kyushu University, Japan) Yasutaka Kamei (Kyushu University, Japan) Masayuki Hirayama (Nihon University, Japan)

alan-schroeder
Download Presentation

Naoyasu Ubayashi (Kyushu University, Japan) Yasutaka Kamei (Kyushu University, Japan)

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. A Context Analysis Method for Embedded Systems--- Exploring a Requirement Boundary between a System and Its Context • NaoyasuUbayashi (Kyushu University, Japan) • Yasutaka Kamei (Kyushu University, Japan) • Masayuki Hirayama (Nihon University, Japan) • Tetsuo Tamai (University of Tokyo, Japan) • September 1, 2011

  2. Overview -- Motivation • However, it is difficult to decide the boundary of the context that should be taken into account: which context element should be included as the targets of requirements analysis. • Many embedded systems not only affect their context through actuators but also are affected by their context through sensors. • It is important to provide a context analysis method for constructing reliable embedded systems. Boundary ? Embedded System Actuator Frame Problem ! Sensor Context

  3. Our approach • CAMEmb (Context Analysis Method for Embedded systems) • Only the value-context elements are extracted as the associated context elements. • We can explore only a sequence of context elements affecting the data value observed or controlled by sensors/actuators. • Other context elements not affecting the system observation and control are not taken into account because these context elements do not affect the system behavior.

  4. Contribution 1:CAMEmb Guide Words for Context Analysis

  5. Contribution 2:Model transformation Requirements Analysis Model Design Model Code Context Analysis Model Java System Analysis Model Model-Driven Requirements Engineering

  6. Outline • Motivation • CAMEmb • CAMEmb-based MDD • Discussion • Conclusions

  7. Motivation

  8. Example: an electric pot Should air pressure be taken into account ? However, faults may occur because the expected context isnot clear. ---for example, the circumstance of the low air pressure. * Boiling point is below 100 Celsius. * Water evaporates and finally its volume will be empty. * There may be climbers who use a pot up on high mountains where the air pressure is low. pot Context Boundary thermostat liquid water level sensor context Inside Outside heater system • Air Pressure Air Pressure Requirements • The pot controls the water temperature by turning on or off the heater. • The pot changes its mode to the heat-retaining mode when the temperature becomes 100 Celsius. • The pot observes the volume from the water level. Boil: () ==> () Boil() == while thermostat.GetTemperature() < 100 do heater.On(); ?

  9. Problems to be tackled • The boundary of the context should be determined from stakeholders’ requirements. • If we consider climbers as customers of the pot, we have to admit that we failed in eliciting requirements. • It is not easy to define the context boundary even if the target users of the system are determined. • A developer will be faced with the frame problem because there are unlimited context elements in the real world. McCarthy, J. and Hayes, P. J.: Some Philosophical Problems from the Standpoint of Artificial Intelligence, Machine Intelligence, 4, pp.463-502, 1969.

  10. Our approach • We provide a systematic way to relax the frame problem by providing the followings. • CAMEmb • procedure for exploring the context boundary. • validation method for detecting the conflicts between system and its context. • CAMEmb-based MDD (Model-Driven Development) • tool support for transforming system and context models into the design model that takes into account the influence of the context within the explored boundary.

  11. CAMEmb Context Analysis Methodfor Embedded systems

  12. CAMEmb Overview UML Profile for Context Analysis + Guide Words Formal Methods ( VDM++ ) CAMEmb is applied after system requirements analysis

  13. Context analysis using guide words Guide Words for Context Analysis Leveson, N. G.: Safeware: System Safety and Computers, Addison-Wesley Publishing Company, 1995.

  14. Step 1:Extract directly observed or controlled context elements UML Profile for Context Analysis System Analysis Model Class <<Sensor>> <<Actuator>> <<Context>> Association <<Observe>> <<Control>> Context Analysis Value-context element (value object)

  15. Step 2 [Initial boundary]: Extract indirectly observed or controlled context elements Association <<Transfer>> Guide word The initial context boundary is an ideal boundary in which system's observing and controlling are not affected by other factors.

  16. Step 3 [intermediate boundary]:Extract impact factors using guide words Context elements that do not change the values are ignored ! The frame problem can be avoided ! Association <<Affect>> Guide word

  17. Step 4 [Final boundary]:Determine the context boundary Focus on value-context elements Association <<Affect>> Guide word

  18. CAMEmb-based MDD Model-Driven Requirements Engineering for Context Analysis

  19. CAMEmbModeler Context model of a line trace car • Model Editor • Model Compiler • Code Generator DSL for Context Analysis Ubayashi, N., Otsubo, G., Noda, K., and Yoshida, J.: An Extensible Aspect-oriented Modeling Environment, CAiSE 2009, pp.17-31, 2009.

  20. Model Compiler + Code Generator Requirements Analysis Model Design Model Code Context Analysis Model Java System Analysis Model Model-Driven Requirements Engineering

  21. Mapping betweencontext model and design model Design Model (Module structure) Context Analysis Model We can obtain a design structure by reversing the recognition path. The top module of the design hierarchy corresponds to a context element existing within the initial context boundary. Sensed Data (physical) The context elements in a context model show the process of context recognition. physical Sensor The context boundary determines the design structure. Recognition Path Line-position recognition path: Light Sensor -> Reflected Light (light volume) -> Ground Color (black or white) -> On or outside a line Recognition Goal (logical) Initial context boundary logical

  22. Discussion

  23. Problem frames • A context diagram in the problem frames approach describes problem domains, a machine, and connections among them. • The notion of context in CAMEmb corresponds to the real world in the problem frame. Jackson, M: Problem Frame: Analyzing and Structuring Software Development Problems, Addison-Wesley, 2001.

  24. Context analysis with problem frames Required Behavior Frame Control Machine Controlled Domain Required Behavior Trace Controller (TC) AA Body (BD) a r Line Trace On if ground color is black b Transformation Frame Output AA Line Position (LP) Transformation Machine X X C a: TC! { Right, Left} BD! { Line detected, Linemissed} b: LP! { On, Off} c: LC! { Ground Color} d: LS! { Reflected Light} r: BD! { Run, Return to Course} c Line recognition Controller (LC) AA Light Sensor (LS) Input d

  25. CAMEmb vs. Problem frames • We consider that it is effective to apply CAMEmb after problem analysis is done. • The problem frames approach is strong in analysing problems in the real world. • CAMEmb provides a systematic way for determining the context boundary and refining the real world model cut off by the boundary into a design model.

  26. Conclusions

  27. Conclusions • We proposed CAMEmb, a context-dependent requirements analysis method. • The idea of value-context elements and guide words plays an important role. • We believe that the essential idea of CAMEmb can be applied to other kinds of context such as security. • As the next step, we plan to apply CAMEmb to such an application domain.

  28. Thank you for your attention.

More Related