Journal of KIISE:Software and Applications (한국정보과학회논문지:소프트웨어및응용)

Korean Institute of Information Scientists and Engineers (한국정보과학회)
권호 표지

A Qualitative Formal Method for Requirements Specification and Safety Analysis of Hybrid Real-Time Systems

복합 실시간 계통의 요구사항 명세와 안전성 분석을 위한 정성적 정형기법

  • Published : 2000.02.15
Download PDF
⟨ Previous Next ⟩

Abstract

Major obstruction of using formal methods for hybrid real-time systems in industry is the difficulty that engineers have in understanding and applying the quantitative methods in an abstract requirements phase. While formal methods technology in safety-critical systems can help increase confidence of software, difficulty and complexity in using them can cause another hazard. In order to overcome this obstruction, we propose a framework for qualitative requirements engineering of the hybrid real-time systems. It consists of a qualitative method for requirements specification, called QFM (Qualitative Formal Method), and a safety analysis method for the requirements based on a causality information, called CRSA (Causal Requirements Safety Analysis). QFM emphasizes the idea of a causal and qualitative reasoning in formal methods to reduce the cognitive burden of designers when specifying and validating the software requirements of hybrid safety systems. CRSA can evaluate the logical contribution of the software elements to the physical hazard of systems by utilizing the causality information that is kept during specification by QFM. Using the Shutdown System 2 of Wolsong nuclear power plants as a realistic example, we demonstrate the effectiveness of our approach.

산업현장에서 복합 실시간 계통(HRTS: Hybrid Real-Time Systems) 개발을 위한 정형기법 사용의 주된 장벽은 인지적 어려움이며 이는 또 다른 위험을 초래할 수 있다. 이러한 문제를 극복하기 위해 HRTS 요구분석과 안전성 분석 시 사용자의 인지적 부담을 줄여줄 수 있는 정성적 요구분석 체계를 제안한다. 이 체계는 요구사항 명세를 위한 정성적 정형기법(QFM: Qualitative Formal Method)과 인과정보에 의한 요구사항 안전성 분석기법(CRSA: Causal Requirements Safety Analysis)으로 구성되어 있다. QFM에서는 인공지능 분야에서 연구된 정성추론 이론을 정형명세에 도입하여 요구사항 설계자와 분석자의 인지적 부담을 줄일 수 있도록 하였다. CRSA는 QFM에서 도출한 HRTS 동작의 인과 정보에 따라 체계적으로 위험 원인을 추적할 수 있도록 하여, 기존 결함 트리 분석(FTA: Fault Tree Analysis) 기법의 단점인 분석자의 주관에 의존하는 문제를 해결한다. 월성 원자력 발전소 자동정지계통(Shutdown System 2) 소프트웨어 요구사항 명세와 안전성 분석에 QFM과 CRSA를 적용하여 그 실효성을 입증하고자 하였다.

Keywords

References

  1. B. Falkenhainer, A. Farquhar, D. Bobrow, R. Fikes, K. Forbus, T. Gruber, Y. Iwasaki, and B. Kuipers, CML: A Compositional Modeling Language. KSL in SRI Technical Report (KSL-94-16), 1994
  2. Y. Iwasaki, M. Vescovi, R. Fikes and B. Chandrasekaran, A Causal Functional Representation Language with Behavior-Based Semantics, Applied Artificial Intelligence, Vol. 9(1), Jan. 1995 https://doi.org/10.1080/08839519508945465
  3. Y. Iwasaki and C. M. Low, Model generation and simulation of device behavior with continuous and discrete change, Intelligent Systems Engineering, Vol. 1(2), 1993
  4. J. S. Ostroff, Temporal Logic for Real-Time Systems, p.209, Research Studies Press, 1989
  5. B. Kuipers, Qualitative Reasoning: Modeling and Simulation with Incomplete Knowledge, p.418, MIT Press, 1994
  6. R. Alur, C. Courcoubetis, T.A. Henzinger, and P.-H. Ho, Hybrid automata: an algorithmic approach to the specification and verification of hybrid systems, Hybrid Systems Workshop, Lecture notes in computer science, Vol. 736, Springer-Verlag, pp. 209-229, 1993
  7. A. Puri and P. Varaiya, Verification of Hybrid Systems using Abstractions, Hybrid Systems Workshop II, Lecture notes in computer science, Vol. 999, Antsaklis, P., Kohn, W., Nerode, A., and Sastry, S.(Eds.), Springer-Verlag, pp. 359-369, 1995
  8. U.S. Nuclear Regulatory Commission, Fault Tree Handbook, NUREG-0492, Jan. 1981
  9. P. Fenelon and J. A. McDermid, An Integrated Tool Set for Software Safety Anlysis, J. Systems Software, Vol. 21, pp. 279-290, 1993 https://doi.org/10.1016/0164-1212(93)90029-W
  10. S. Subramanian, R. V. Vishnuvajjala, R. Mojdebakhsh, W.T. Tsai, and L. Elliott, A Framework for Designing Safe Software Systems, COMPSAC95, pp.409-414, 1995 https://doi.org/10.1109/CMPSAC.1995.524808
  11. K. M. Hansen, A. P. Ravn, and V. Stavridou, From Safety Analysis to Software Requirements, IEEE Trans. on Software Engineering, Vol. 24, no. 7, pp. 573-584, 1998 https://doi.org/10.1109/32.708570
  12. S. Liu, J. A. McDermid, Model-Oriented Approach to Safety Analysis Using Fault Trees and a Support System, J. Systems Software, Vol. 35, pp. 151-164, 1996 https://doi.org/10.1016/0164-1212(95)00094-1
  13. G. Leeb and N. Lynch, Proving Safety Properties of the Steam Boiler Controller: Formal methods for industrial applications: A case study, In J.-R. Abrial, et al., Formal methods for industrial applications: Specifying and Programming the steam boiler control, Vol. 1165, LNCS, Springer-Verlag, 1996
  14. J. Rasmussen, A. M. Pejtersen, and L. P. Goodstein, Cognitive Systems Engineering, p.378, John Wiley & Sons, Inc. 1994