Journal of the Korea Institute of Military Science and Technology (한국군사과학기술학회지)

The Korea Institute of Military Science and Technology (한국군사과학기술학회)
권호 표지

Formalism-Based Defense Safety/Security-Critical Software Development & Certification Criteria - Application of Formal Methods to Safety/Security-Critical Software Certification Process Activities -

정형성 기반 국방 안전/보안필수 소프트웨어 개발 및 인증 기준 - 안전/보안필수 소프트웨어 인증 프로세스에 대한 정형기법 적용 방안 연구 -

  • Published : 2007.03.30
Download PDF
⟨ Previous Next ⟩

Abstract

The paper provides the approach to apply formal methods to the development and certification criteria of defense safety/security-critical software. RTCA/DO-178B is recognized as a do facto international standard for airworthiness certification but lack of concrete activities and vagueness of verification/certification criteria have been criticized. In the case of MoD Def Stan 00-55, the guidelines based on formal methods are concrete enough and structured for the defense safety-related software. Also Common Criteria Evaluation Assurance Level includes the strict requirements of formal methods for the certification of high-level security software. By analyzing the problems of DO-178B and comparing it with MoD Def Stan 00-55 and Common Criteria, we identity the important issues In safety and security space. And considering the identified issues, we carry out merging of DO-178B and CC EAL7 on the basis of formal methods. Also the actual case studies for formal methods applications are shown with respect to the verification and reuse of software components.

Keywords

References

  1. RTCA, "DO-178B; Software Consideration in Airborne Systems and Equipment Certification", 1992
  2. Common Criteria
  3. UK MoD, "Def Stan 00-55; Requirements for Safety Related Software in Defense Equipment Issue 2", 1997
  4. John A McDermid, "Trends in System Safety : A European View?", 7th Australian Workshop on Safety Critical Systems and Software, Adelaide, 2002
  5. Carolyn Salmon, "The Certification of Systems containing Software Developed using RTCA DO-178B", ERA, 2006
  6. Hoyt Lougee, "DO-178B Certified Software : A Formal Reuse Analysis Approach", The Journal of Defense Software Engineering, 2005
  7. Federal Aviation Regulations 25.1309, "Airworthiness Standard, Transport Category Airplanes Equipment Systems and Installations", 1977
  8. FAA Advisory Circular 25.1309-1A, "System Design and Analysis", 1988
  9. ARP 4754, "Certification Considerations for Highly Integrated or Complex Aircraft Systems", 1997
  10. ARP 4761, "Guidelines and Methods for Conducting the Safety Assessment Process on Civil Airborne Systems and Equipment", 1996
  11. Alan Burns, Brian Dobbing and Tullio Vardanega, "Guide for the Use of the Ada Ravenscar Profile in High Integrity Systems", University of York Technical Report YCS-2003-348, 2003
  12. Jagun Kwon, Andy Wellings, Steve King, "Ravenscar-Java : A High Integrity Profile for Real-Time Java", York Technical Report YCS 342, 2002
  13. David Harel, "Modeling Reactive Systems with Statecharts : The Statemate Approach", I-Logix, 1999
  14. Chang-Jin Kim, Jin-Young Choi, "Transformation of the Ravenscar Profile Based Ada Real-time Application to the Verificationready Statecharts : Reverse engineering and Statemate approach", SERP2006, 2006
  15. 김창진, 최진영, "소프트웨어 설계 모듈의 재사용을 위한 Statemate 일반화 차트의 확장", 2006