1 / 21

Safety Critical Systems

Safety Critical Systems. ITV Model-based Analysis and Design of Embedded Software Techniques and methods for Critical Software Anders P. Ravn Aalborg University August 2011. Safety Critical Systems.

quinn-vega
Download Presentation

Safety Critical Systems

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Safety Critical Systems ITV Model-based Analysis and Design of Embedded Software Techniques and methods for Critical Software Anders P. Ravn Aalborg University August 2011

  2. Safety Critical Systems • Safety is a property of a system: a failure in the operation of the system will not endanger human life or its environment. • Safety-critical system is a system of high criticality, e.g. in IEC 61508 it relates to Safety Integrity Level 4, in which the safety of the related equipment and its environment is assured. • A safety-critical system is generally one which carries an extremely high level of assurance of its safety. • Safety integrity refers to the likelihood of a safety-critical system satisfactorily performing its required safety functions under all stated conditions within a stated period of time. N. Storey. Safety-Critical Computer Systems. Addison-Wesley, 1996.

  3. Selected Safety Standards • IEC 61508, Functional Safety of electrical/ electronic/programmable electronic safety-related systems, International Electrotechnical Commission, 2010. • DO-178B, Software considerations in airborne systems and equipment certification, RTCA, 1992 • ED-12B, Software considerations in airborne systems and equipment certification,RTCA & European Organisation for Civil Aviation Equipment, • DEF STANDARD 00-56, Safety Management Requirements for Defence Systems, United Kingdom Ministry of Defence, June 2007. • FDA21 CFR part 820, Quality System (QS) Regulation/Medical Device Good Manufacturing Practice, June 1997.

  4. Safety Integrity Levels DEF STANDARD 00-56 Safety Integrity Levels

  5. Safety Integrity Levels and acceptable risks IEC 61508 Safety Integrity Levels

  6. IEC 61508 Organization - 1

  7. IEC 61508 Organization

  8. Safety Lifecycle

  9. Lifecycle in Realisation Phase

  10. Lifecycle Software Realization

  11. Lifecycle Overview 1

  12. Lifecycle Overview 2

  13. Lifecycle Overview 3

  14. Lifecycle Overview 4

  15. From S-requirements to S-functions

  16. Hazards and Risks • A hazard is a situation that poses a level of threat to life, health, property, or environment. • Most hazards are dormant or potential, with only a theoretical risk of harm; however, once a hazard becomes "active", it can create an emergency situation. • A hazard does not exist when it is not happening. • A hazardous situation that has come to pass is called an incident. • Hazard and vulnerability interact together to create risk. (Wikipedia) ”Although not within the scope of this standard, it is of primary importance that identified hazards of the EUC are eliminated at source, for example by the application of inherent safety principles and the application of good engineering practices.” IEC 61508-1 7.4.2.2 NOTE

  17. Target failure probabilities and SIL levels(low demand mode) Low demand mode: frequency of demand on safety function is less than one per year. (IEC 61508-5)

  18. Target failure probabilities and SIL levels(high demand or continuous mode)

  19. Assessment

  20. Consequences • A – minor injury • B – serious permant injury to one or more persons, death of one person • C – death of several people • D – very many people killed

  21. Exercise – Please classify • Airbus 380 control system • Airbus 380 infotainment system • High speed train control system • Cruise control in a car • Anaestetics monitoring equipment • Electronic door lock • Net banking application • Playground entertainment system

More Related