• Proceedings of the KSR Conference
• /
• 2009.05a
• /
• pp.2056-2062
• /
• 2009

Recent advances in computer technology have brought more dependence on software to train control systems. Hence, the safety assurance of the vital software running on the railway system is very critical task and yet, not many works have been done. While much efforts have been reported to improve electronic hardware's safety, not so much systematic approaches to evaluate software's safety, especially for the vital software running on board train controllers. In this paper, we have developed the static software testing tool for railway signaling, especially Fagan Inspection supporting tool. This static testing tool for railway signaling can be utilized at the assessment phase, and also usefully at the software development stage also. It is anticipated that it will be greatly helpful for the evaluation on the software for railway signalling system.

• Journal of KIISE
• /
• v.44 no.9
• /
• pp.893-907
• /
• 2017

In safety-critical systems, software defects may have serious consequences. Therefore, defects should be considered during the requirements specification process, which is the first step of a software development lifecycle. Stakeholder requirements that are usually written in natural language are difficult to derived, and there may also be defects due to ambiguity and inaccuracy. To address these issues, we propose a requirement specification method using a standardized Boilerplate and a GSN Model. The Boilerplate is a semi-standard language that follows a predefined format. Due to its ability to provide a consistent representation of the requirements, boilerplate helps stakeholders avoid ambiguities about what they mean and to define the exact meaning of the requirement. Meanwhile, GSN is recognized notation to prepare a Safety Case to prove to authorities that a system is safe. It can be expressed as a functional goal, e.g., Safety Evidence, etc. The proposed study allows an analyst to easily identify a fault from the early stage of the software development lifecycle. The Boilerplate and GSN Model are designed to specify the requirements of safety critical systems and to prove safety conformity through a connection with Safety Evidence. In addition, the proposed approach is also useful to develop secure software by correcting deficiencies in the requirements found during this process.

• Proceedings of the Korean Nuclear Society Conference
• /
• 1996.05a
• /
• pp.446-450
• /
• 1996

본 논문은 Computer Aided Software Engineering (CASE) Tool을 이용할 경우의 Safety Critical 소프트웨어 개발 방법론인 구조적 분석 및 구조적 설계 모델링 방법론을 Teamwork CASE tool의 예를 중심으로 제안하고자 한다. 제시된 사례는 NSIS(Nuclear Safety Information System)으로서 Essential Modeling과 Implementation Modeling을 제시하였는데 Teamwork CASE 환경하에서의 분석 및 설계 절차, 지침 등을 제시하였다. Essential Modeling에서는 NSIS의 MMIS 분석범위 및 External Interface를 제시하는 환경 모델(Environmental Model)과 MMIS의 기능을 계층구조적으로 분할하는 행위모델링(Behaviroal Modeling)을 각각 Context Diagram과 Data Flow Diagram (DFD)으로 그 과정을 제시하였다. Implementation Modeling에서는 Essential Modeling으로 부터 나온 결과물을 토대로 Boss Rule, Transform Rule과 Transaction Rule 등을 거쳐 NSIS MMIS의 설계 근간이 되는 Structured Chart(SC)를 제시하였다. 본 논문에서 제시된 모델링 방법론을 통하여 Safety Critical 소프트웨어 개발시 Teamwork CASE Tool을 활용할 수 있음과 동시에 분실 및 설계의 일치성을 통하여 Safety Critical 소프트웨어의 안전성 확립과 품질보증 목표에 기여할 수 있다.

• Journal of the Korea Society for Simulation
• /
• v.24 no.4
• /
• pp.1-9
• /
• 2015

As the use of software is more wider in the safety-critical nuclear fields, so study to improve safety and quality of the software has been actively carried out for more than the past decade. In the nuclear power plant, nuclear man-machine interface systems (MMIS) performs the function of the brain and neural networks of human and consists of fully digitalized equipments. Therefore, errors in the software for nuclear MMIS may occur an abnormal operation of nuclear power plant, can result in economic loss due to the consequential trip of the nuclear power plant. Verification and validation (V&V) is a software-engineering discipline that helps to build quality into software, and the nuclear industry has been defined by laws and regulations to implement and adhere to a through verification and validation activities along the software lifecycle. V&V is a collection of analysis and testing activities across the full lifecycle and complements the efforts of other quality-engineering functions. This study propose a methodology based on V&V activities and related tool-chain to improve quality for software in the nuclear power plant. The optimized methodology consists of a document evaluation, requirement traceability, source code review, and software testing. The proposed methodology has been applied and approved to the real MMIS project for Shin-Hanul units 1&2.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.4
• /
• pp.793-805
• /
• 2015

Due to the rise of automotive security problems following automotive safety and the progress of the internet technology leading to a hyper-connected society, guaranteeing the safety of automotive requires security plans in the supply chain assurance and automotive software, and risk management plans for identifying, evaluating, and controlling the risks that may occur from the supply chain since the modern automotive is a Safety Critical system. In this paper, we propose a study on Automotive Supply Chain Risk Management (A-SCRM) procedures by person interested within the automotive Life-Cycle.

• Proceedings of the KSR Conference
• /
• 2009.05a
• /
• pp.2044-2049
• /
• 2009

Recent advances in computer technology have brought more dependence on software to railway signaling systems. Hence, the safety assurance of the vital software running on the railway signaling system is very critical task and yet, not many works have been done. While much efforts have been reported to improve electronic hardware's safety, not so much systematic approaches to evaluate software's safety. In this paper, we suggested an automated analysis tool for S/W change impact in railway signaling system, and presented its result of implementation. The analysis items in the implemented tool had referred to the international standards in relation to the software for railway signaling system, such as IEC 61508 and IEC 62279. In these international standards, 'change impact analysis' for railway signaling system S/W has to be required mandatorily. The proposed tool can be utilized at the assessment stage and also the software development stage.

• Journal of KIISE:Software and Applications
• /
• v.31 no.6
• /
• pp.750-759
• /
• 2004

The software of the nuclear power plant digital control system is a safety-critical system where many techniques must be applied to it in order to preserve safety in the whole system. Formal specifications especially allow the system to be clearly and completely specified in the early requirements specification phase therefore making it a trusted method for increasing safety. In this paper, we discuss the NuSCR, which is a qualified formal specification method for specifying nuclear power plant digital control system software requirements. To investigate the application of NuSCR, we introduce the experience of using NuSCR in formally specifying the plant protection system's software requirements, which is presently being developed at KNICS. Case study that shows that the formal specification approach NuSCR is very much qualified and specialized for the nuclear domain is also shown.

• Proceedings of the KSR Conference
• /
• 2007.05a
• /
• pp.968-973
• /
• 2007

The systems such as the railway control system, satellite control system and nuclear power plant control system are the safety critical systems because the failure of them could lead to risk significant events. These softwares of digital systems must follow the life cycle process from the beginning of software development to guarantee their safety and reliability. The NRC(Nuclear Regulatory Commission) Reg Guide of nuclear fields, the RTCA/DO-178B standard which is used to acquire the certification for software in industrial aero field in European Union and United State, the DEF STAN 00-55 standard for the safety of electronic weapon in England, the IEC 601-1-4 for medical equipment and the IEC 62279 for railway system recommended the development life cycle. This paper introduces the development process and compares each other. Also it indicates applicable development criteria for the software of systems related to railway fields and describes the detailed procedure of development criteria. We describe the procedure to make the software development criteria in nuclear filed. For the software development related to railways, the process from plan phase to maintenance phase must be satisfied. The safety and reliability is guaranteed through these standards.

• Journal of Computing Science and Engineering
• /
• v.11 no.1
• /
• pp.9-23
• /
• 2017

NuDE 2.0 (Nuclear Development Environment 2.0) is a formal-method-based software development, verification and safety analysis environment for safety-critical digital I&Cs implemented with programmable logic controller (PLC) and field-programmable gate array (FPGA). It simultaneously develops PLC/FPGA software implementations from one requirement/design specification and also helps most of the development, verification, and safety analysis to be performed mechanically and in sequence. The NuDE 2.0 now consists of 25 CASE tools and also includes an in-depth solution for indirect commercial off-the-shelf (COTS) software dedication of new FPGA-based digital I&Cs. We expect that the NuDE 2.0 will be widely used as a means of diversifying software design/implementation and model-based software development methodology.

• Proceedings of the Korean Society of Precision Engineering Conference
• /
• 2005.06a
• /
• pp.969-973
• /
• 2005

This paper presents a survey of software reliability modeling and it's application to pre-built software system combined with hardware such as numerical controller based on personal computer systems. Many a systems in these days are much more becoming software intensive and many software intensive systems are safety critical. For this reason, the technique well developed to measure of software reliability is very important for whom to assess such a system. This paper provides a brief idea of method to evaluate such a system's reliability based on hardware performance.