Model-based system engineering for safety analysis of. complex systems

Similar documents
The OpenAltaRica Project

ENERGY MANAGEMENT AT DISTRICT- LEVEL: THE RESILIENT PROJECT

MOVEP 2012 Tutorial Safety, Dependability and Performance Analysis of Extended AADL Models

Techniques and benefits of incorporating Safety and Security analysis into a Model Based System Engineering Environment

EAST-ADL Introduction. EAST-ADL Tooling

Modeling and Simulation for System Reliability Analysis: The RAMSAS Method

AMASS. Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems

Multiparadigm modeling A Mechatronics and Embedded Control Systems perspective

AUTOMATING SAFETY ENGINEERING WITH MODEL-BASED TECHNIQUES

architecture (SAFE) Project Presentation SAFE project partners

FROM RESEARCH TO INDUSTRY

Automating Safety Engineering with Model-Based Techniques

Deterministic Modeling and Qualifiable Ada Code Generation for Safety-Critical Projects

AMASS. Architecture-driven, Multi-concern and Seamless Assurance and

Model-based Safety and Reliability Analysis on Functional Level for Hardware

A profile and tool for modelling safety information with design information in SysML

NDIA Test and Evaluation Conference

Exploitable Results by Third Parties

LSST Verification & Validation Process & MBSE Methodology

From Document-Based to Model-Based System and Software Engineering

Expert judgements in probabilistic risk analysis issues in nuclear power plant applications Jan-Erik Holmberg Risk Pilot AB

Modelling the Risk In Defence Engineering

HOW TO AVOID FAILURES-(FMEA and/or FTA)

GENERATION-IV SODIUM-COOLED FAST REACTORS AND THE ASTRID PROJECT

Changing the way the world thinks about software systems

Eclipse based architecture of the EDONA platform for automotive system development

11th International Workshop on the Application of FPGAs in Nuclear Power Plants

INTERNATIONAL STANDARD

Software tool support for software development

Software qualification for digital safety system in KNICS project

Model-based Development of Safety Critical Software: Opportunities and Challenges

INDUSTRIAL SAFETY. Risk analysis of complex technological systems, using the methods listed below:

THE NUMODIS PROJECT DECEMBER 10, A. Etcheverry, P. Blanchard, O. Coulaud, M. Bletry, M. Fivel, E. Ferrié, L. Dupuy and many others

INFLUENCE OF THE HYDRIDE PRECIPITATION ON THE CORROSION KINETICS OF ZIRCALOY-4:

A model-based framework for the safety analysis of computer-based railway signalling systems

EAST-ADL Introduction: Overview

MICROSTRUCTURAL EVOLUTION OF Q12 ALLOY IRRADIATED IN PWR AND COMPARISON WITH OTHER Zr BASE ALLOYS

Numerical simulation of vitrification processes: Modeling of air bubbling in molten glass

MODPROD 2017, Linköping February 8, 2017

Safety Management Center. DNV IT Global Services Safety Engineering / Management in the automotive industry. Content

WASTE MANAGEMENT STRATEGY. French Experience in Legacy Waste Management. 1 st International Forum on the Decommissioning of the Fukushima Daiichi NPS

Application of Reliability Analysis in Preliminary Design Stage of Digital I&C System

Reliability Analysis Techniques: How They Relate To Aircraft Certification

AUTOMATIC VERIFICATION OF SAFETY INSTRUMENTED SYSTEM IN CHEMICAL PROCESSES

DFTCalc: Reliability centered maintenance via fault tree analysis (tool paper)

EAST-ADL Introduction. Support for ISO26262

French R&D program on SFR and the

Introduction to RAM. What is RAM? Why choose RAM Analysis?

Development of Formal Method Application for Ensuring Safety in Train Control System

IS DIGITALIZATION JUST A BUZZ WORD FOR PROCESS SAFETY MANAGEMENT? Pascal Le Gal, PhD IIRSM Meeting, Abu Dhabi, April 4 th 2018

Using an IEC Certified RTOS Kernel for Safety-Critical Systems

Automotive Safety and Security in a Verification Continuum Context

itemis & geensys The Eclipse Modeling Platform Dr. Martin Mandischer Dr. Stephan Eberle

Predictive Analysis of Mission Critical Systems Dependability

Hazard Analysis. Techniques for. System Safety. Second Edition. Clifton A. Ericson, II Fredericksburg, Virginia. Wiley

Compliance driven Integrated circuit development based on ISO26262

FINDING THE BEST APPROACH FOR I&C MODELING IN THE PSA

About DSML Design Based on Standard and Open-Source REX from Safran Tech Work Using Papyrus SysML

Second Generation Model-based Testing

MOLY PRODUCTION IN THE JULES HOROWITZ REACTOR CAPACITY AND STATUS OF THE DEVELOPMENT

EAST-ADL Introduction. EAST-ADL Overview

FROM RESEARCH TO INDUSTRY

Model-Based Enterprise Information System Architectural Design with SysML

Separation of Decision Modeling from Business Process Modeling Using New Decision Model and Notation (DMN) for Automating Operational Decision-Making

Standardization of classical system analysis methods for fuzing systems

AIRBORNE SOFTWARE VERIFICATION FRAMEWORK AIMED AT AIRWORTHINESS

Formal Methods in Aerospace: Constraints, Assets and Challenges. Virginie Wiels ONERA/DTIM

Asset Management and Dependability Supporting the Business. James (Jim) Kennedy CPEng, CFAM, CAMA

Advancing Traffic Efficiency and Safety through Software Technology. EAST-ADL2 Overview

NEW TEXTILE STRUCTURES AND FILM-BOILING DENSIFICATION FOR SIC/SIC COMPONENTS (IV Gen.)

Model-Driven Design-Space Exploration for Software-Intensive Embedded Systems

Summary, Conclusion and Outlook

COMPARISON OF PROCESS HAZARD ANALYSIS (PHA) METHODS

Workshop Proceedings. First International Workshop on Model Based Architecting and Construction of Embedded Systems

Virtual Integration on the Basis of a Structured System Modelling Approach

MADES: Embedded Systems Engineering Approach in the Avionics Domain

Primavera Prime Projects Cloud Service

Automated System Validation By: Daniel P. Olivier & Curtis M. Egan

ALEM-T: A Modelling Tool for Autonomous Logistic Processes

Computer UCSC. The MASC Group

Space product assurance

A Multi-Criteria Framework for Screening Preliminary Product Platform Concepts

EMC2 Workshop: The S3P project. Paris, Sept, 28th, 2016

Dependability Assurance of Industrial Production Processes

9. Verification, Validation, Testing

The System Verification Manager (SVM)

Challenge H: For an even safer and more secure railway

NSF {Program (NSF ) first announced on August 20, 2004} Program Officers: Frederica Darema Helen Gill Brett Fleisch

Results of the IEC Functional Safety Assessment Universal Converter. PR electronics

Experience of an efficient and actual MDE process : design and verification of ATC onboard systems

Methodology for the definition of the preliminary architecture of a Smart Energy System (SES)

AVAILABILITY WORKBENCH

Providing a Firm Data Foundation for Integrated Operations Centers

List of Tables. Part I Guidelines for Hazard Evaluation Procedures


2014 Oct.31 International Symposium on Practical Formal Approaches to Software Development. Copyright Prof. Dr. Shuichiro Yamamoto 2014

MECHANICAL BEHAVIOR AT HIGH TEMPERATURE OF HIGHLY OXYGEN- OR HYDROGEN- ENRICHED α AND (PRIOR-) β PHASES OF ZIRCONIUM ALLOYS

TOWARDS AN EARLY CONSIDERATION OF RAMP-UP PHASE IN THE PRODUCT DEVELOPMENT OF COMPLEX PRODUCTS

Automatic Development Tools. Abstract

13. Back-End Design Flow for HardCopy Series Devices

Transcription:

Model-based system engineering for safety analysis of complex systems MBSAW 12 Nataliya YAKYMETS, Hadi JABER, Agnès LANUSSE CEA, LIST, Laboratory of Model-Driven Engineering for Embedded Systems 11 Septembre CEA 2012 31 Août 2012 PAGE 1

Motivation Classical SA techniques: Fault trees, FMEA, etc Performed mostly manually Time consuming, costly, high probability of errors Little tool support No strong links between system engineering and SA Achieved results in formal approaches Industrial toolsets (Isograph, Item, Relex, etc) : well-elaborated but costly Academic tools (FSAP-NUSMV, ARC/AltaRica, etc) : gap in graphical representation of SA information Goals To provide a support for SA engineers by integrating SA techniques into model-driven engineering To leverage features of UML/SysML to develop a toolset for model checking and fault tree generation 2

CONTENTS Motivation Model-Based Systems Engineering & Safety Analysis Safety Analysis Toolset Example Conclusion & Further work 3

SA integrated development flow Parallel V-cycle SA Methods Safety Assessment System Development Define&classify failure conditions Functional HA Preliminary HA Failure analysis Risk analysis Hazard Analysis SOPHIA PHA [1] System Concept & Requirements Validation System Acceptance & Maintenance Evaluate architecture & derive safety requirements Classical SA updated HA qualitative FTA Simulation stochastic behavior event/fault injection Formal methods model checking theorem proving Structural redundancy Preliminary System Safety Assessment SysML2NuSMV SysML2AltaRica [2] Converters Preliminary Module Safety Assessment System Design & Optimization SW/HW Module Design & Optimization Validation Validation System Integration & Test Module Integration & Test Evaluate architecture according to safety requirements Qualitative & quantitative FTA, FMEA/FMECA/FMES, simulation, formal methods, mitigation techniques System Safety Assessment Implementation [1] Cancila, D.; Terrier, F.; Belmonte, F.; Dubois, H.; Espinoza, H.; Gérard, S. & Cucurru, A. SOPHIA: a Modeling Language for Model-Based Safety Engineering 2nd Int.l Workshop On Model Based Architecting And Construction Of Embedded Systems, 2009, 11-26; [2] H. Jaber, Analyse de sûreté à partir de modèles de systèmes, M.Sc. Thesis, CEA 4

SysML Overview Engineers are finding that they can save significant time by modeling their system before building a physical prototype 5

SysML Overview Engineers are finding that they can save significant time by modeling their system before building a physical prototype Why SysML? P. David, V. Idasiak & F.Kratz (2009a). Use and improvements of SysML in reliability study. Proc. of the 55th Annual Reliability and Maintainability Symposium, RAMS 2009, Fort Worth, Texas, USA, Jan. 2009 General-purpose modeling language Semantics are flexible and expressive Global overview of architecture Combines HW & SW Integrated requirements and life cycle traceability support SCADE integrates system view with SysML Failure Behavior 6

SysML Benefits for SA J. D. Andrews and J. J. Henry, A computerized fault tree construction methodology, in Proc. of the Institution of Mechanical Engineers, 1997; 211(E), pp. 171 183 SA Tools? 7

Tool overview Comparison Safety Analysis Tool NuSMV [1] ARC, AltaRica [2] KB3 Figaro XFTA [3] HIP- HOPS [4] Open source Partners, MAENAD project Hazard Analysis Safety Architect [5] Partners, BUILD-IT- Safe project Isograph tools Item Tools Relex Tools 30 days 30 days 30 days Failure Risk analysis Risk analysis analysis FT generation FTA & optimization Event ordering analysis Model checking BDD/SAT, Plain, CTL, LTL, PSL BDD/SAT, Plain, μ-calculus, CTL* FMEA/FMECA/FMEDA FMEA FMEA FMEA FMECA FMEA FMECA Common Cause Analysis [1] A. Cimatti et al. NuSMV2: An OpenSource Tool for Symbolic Model Checking. CAV 2002, Copenhagen, Denmark, July 27-31, 2002 [2] A. Rauzy. Modes automata and their compilation into fault trees. Reliability Engineering and System Safety, 78 :1 12, 2002 [3] http://www.lix.polytechnique.fr/~rauzy/xfta/xfta.htm [4] Y. Papadopoulos et al. Engineering Failure Analysis & Design Optimisation with HiP-HOPS, Journal of Engineering Failure Analysis, 2011 [5] F. Vallée SAFETY ARCHITECT : un outil d AMDE compatible avec les concepts et outils d Ingénierie des Systèmes Complexes,MBSAW 11 8

System Modelling Environment for SA Perspectives Establishing strong links and collaboration between different communities System Modeling Benefits Integrate safety analysis techniques into system modeling environment Formal Methods Safety Experts Make available different tools for representing both qualitative and quantitative analysis 9

CONTENTS Motivation Model Based Systems Engineering & Safety Analysis Safety Analysis Toolset Example Conclusion & Further work 10

System Modelling Environment for SA AltaRica FSAP/NuSMV SysML Modeling Support HIP-HOPS Safety Architect 11

System Modelling Environment for SA Possible tool flows XFTA Aralia2 Open- PSA Profiles Different views of safety perspectives in a system Bernardi, S.; Merseguer, J. & Petriu, D. A dependability profile within MARTE Software and Systems Modeling, Springer Berlin / Heidelberg, 2011, 10, 313-336 ARC Different language support Isograph SysML 2 AltaRica SysML 2 NuSMV FSAP/ NuSM V FaultTree+ Simfia Cecilia- OCAS SysML Profiles NuSMV XFTA HIP- HOPS SysML (EAST- ADL) 2 Hip-Hops SysML 2 Safety Architect Traces 2 OpenPSA Fault Tree XFTA Hip-Hops Model 12

Model Annotation with Failure Behaviour Methods Profiles (EAST-ADL, etc) Analytical way (Safety Architect, HIP-HOPS) System modeling diagrams (State Machine SysML diagrams, comments, etc) 13

Model Annotation with Failure Behaviour Methods System Model Failure Annotations of Components Global View of Failures: * System * Component Profiles (EAST-ADL, etc) Analytical way (Safety Architect, HIP-HOPS) System modeling diagrams (State Machine SysML diagrams, comments, etc) 14

Model Transformation Methodology SysML Metamodel Target Language Metamodel Target Language Grammar Conforms to Conforms to Conforms to SysML Model Target Language Model Target Language Code Model to Model Transformation Model to Text Transformation 15

SysML2AltaRica converter plug-in Interface 17

SysML2NuSMV converter plug-in Interface 18

CONTENTS Motivation Model Based Systems Engineering & Safety Analysis Safety Analysis Toolset Example Conclusion & Further work 19

Example Train Detection System No train G1 excites Relay core, which in turn attracts the Contact, so that Signal Circuit for Green light is closed (Green light is on, Red light is off) Train arrives Track Circuit is short-cut through the Train Axle. Therefore, the Relay is not excited, and Red light is on while Green light is off J. D. Andrews and J. J. Henry, A computerized fault tree construction methodology, in Proc. of the Institution of Mechanical Engineers, 1997; 211(E), pp. 171 183 20

Train Detection System Block Diagram Block annotation Block output deviations 21

Train Detection System Internal Block Diagram Block interconnections Propagation of faults through the system 22

Train Detection System State Machines Diagrams Each block has an associated State Machine Diagram Annotation of the failure modes for each block Failure States 23

Train Detection System NuSMV Input Model 24

Train Detection System NuSMV Results *.smv Statistics 25

Train Detection System NuSMV Results *.smv Statistics 26

Train Detection System ARC Results Fault tree in Open PSA format 27

CONTENTS Motivation Model Based Systems Engineering & Safety Analysis Safety Analysis Toolset Example Conclusion & Further work 28

Conclusion System Modelling Environment for Safety Analysis The use of UML/SysML and Papyrus platform for further model checking and fault tree generation Graphical and accessible language Modelling of system architecture, behaviour and failure logic The support of two transformation methods and associated SA flows based on ARC(AltaRica) and NuSMV Fault tree generation, optimization and analysis Graphical representation of failure data using State Machine Diagrams 29

Further Work Integrate different SA tools, plug-ins, profiles and libraries FMEA generation and analysis Develop SA profiles for SysML models Reflect the results of quantitative and qualitative safety analysis in SysML models Graphical representation of Fault Trees Distinguish failure modes in State Machines 30

PAGE 31 Commissariat à l énergie atomique et aux énergies alternatives Direction DRT CEA 31 Août 2012 Institut Carnot CEA LIST Centre de Saclay 91191 Gif-sur-Yvette Cedex Département Laboratoire DILS LISE T. +33 (0)1 XX XX XX XX F. +33 (0)1 XX XX XX XX Etablissement public à caractère industriel et commercial RCS Paris B 775 685 019

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback