ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Software engineering for safety: a roadmap
Full text PdfPdf (1.21 MB)
Source International Conference on Software Engineering archive
Proceedings of the Conference on The Future of Software Engineering table of contents
Limerick, Ireland
Pages: 213 - 226  
Year of Publication: 2000
ISBN:1-58113-253-0
Author
Robyn R. Lutz  Jet Propulsion Laboratory, California Institute of Technology, 4800 Oak Grove Drive, M/S 125-233, Pasadena, CA
Sponsors
IEEE-CS : Computer Society
SIGSOFT: ACM Special Interest Group on Software Engineering
Irish Comp Soc : Irish Computer Society
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 24,   Downloads (12 Months): 176,   Citation Count: 7
Additional Information:

references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/336512.336556
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
J.-R. Abrial, E. Borger, and H. Langmaack. Formal Methods for Industrial Applications: Specifying and Programming the Steam Boiler Control, volume 1165 of LCNS. Springer-Verlag, 1996.
 
2
Rajeev Alur , Thomas A. Henzinger, Logics and Models of Real Time: A Survey, Proceedings of the Real-Time: Theory in Practice, REX Workshop, p.74-106, June 03-07, 1991
 
3
Anish Arora , Sandeep S. Kulkarni, Component Based Design of Multitolerant Systems, IEEE Transactions on Software Engineering, v.24 n.1, p.63-78, January 1998  [doi>10.1109/32.663998]
 
4
Daniel M. Berry, The Safety Requirements Engineering Dilemma, Proceedings of the 9th international workshop on Software specification and design, p.147, April 16-18, 1998
 
5
J. Bowen. Safety-critical systems, http://archive.comlab.ox, ac.uk/safety.html.
 
6
R. W. Butler , G. B. Finelli, The Infeasibility of Quantifying the Reliability of Life-Critical Real-Time Software, IEEE Transactions on Software Engineering, v.19 n.1, p.3-12, January 1993  [doi>10.1109/32.210303]
7
Edmund M. Clarke , Jeannette M. Wing, Formal methods: state of the art and future directions, ACM Computing Surveys (CSUR), v.28 n.4, p.626-643, Dec. 1996  [doi>10.1145/242223.242257]
 
8
Paul C. Clements , Juan Antonio de la Puente, Session 4: Analysis of Software Architectures, Proceedings of the Second International ESPRIT ARES Workshop on Development and Evolution of Software Architectures for Product Families, p.140-142, February 26-27, 1998
 
9
P.-J. Courtois , D. L. Parnas, Documentation for safety critical software, Proceedings of the 15th international conference on Software Engineering, p.315-323, May 17-21, 1993, Baltimore, Maryland, United States
 
10
Carolina Cruz-Neira , Robyn R. Lutz, Using Immersive Virtual Environments for Certification, IEEE Software, v.16 n.4, p.26-30, July 1999  [doi>10.1109/52.776945]
 
11
W. J. Cullyer , S. J. Goodenough , B. A. Wichmann, The choice of computer languages for use in safety critical systems, Software Engineering Journal, v.6 n.2, p.51-58, March 1991
 
12
Rogério de Lemos , Amer Saeed , Tom Anderson, Analyzing Safety Requirements for Process-Control Systems, IEEE Software, v.12 n.3, p.42-53, May 1995  [doi>10.1109/52.382183]
 
13
L. Dumas and A. Walton. Faster, better, cheaper: an institutional view. In Proc 50th Annual 1at Astronautical Congress, 1999.
 
14
Bruno Dutertre , Victoria Stavridou, Formal Requirements Analysis of an Avionics Control System, IEEE Transactions on Software Engineering, v.23 n.5, p.267-278, May 1997  [doi>10.1109/32.588520]
 
15
Steve Easterbrook , Robyn Lutz , Richard Covington , John Kelly , Yoko Ampo , David Hamilton, Experiences Using Lightweight Formal Methods for Requirements Modeling, IEEE Transactions on Software Engineering, v.24 n.1, p.4-14, January 1998  [doi>10.1109/32.663994]
 
16
Martin S. Feather, Rapid application of lightweight formal methods for consistency analyses, IEEE Transactions on Software Engineering, v.24 n.11, p.948-959, November 1998
 
17
M. S. Feather , S. Fickas , A. Van Lamsweerde , C. Ponsard, Reconciling System Requirements and Runtime Behavior, Proceedings of the 9th international workshop on Software specification and design, p.50, April 16-18, 1998
 
18
Norman E. Fenton , Martin Neil, A Strategy for Improving Safety Related Software Engineering Standards, IEEE Transactions on Software Engineering, v.24 n.11, p.1002-1013, November 1998  [doi>10.1109/32.730547]
 
19
A. Finkelstein. Requirements engineering: a review and research agenda. In Proc 1st Asian and Pacific Software Engineering Conference, pages 10-19, 1994.
 
20
G. C. Gannod and R. R. Lutz. An approach to architecturaJ analysis of product lines, submitted.
 
21
Stewart Gardiner , S. Gardiner, Testing Safety-Related Software: A Practical Handbook, Springer-Verlag New York, Inc., Secaucus, NJ, 1998
22
Felix C. Gärtner, Fundamentals of fault-tolerant distributed computing in asynchronous environments, ACM Computing Surveys (CSUR), v.31 n.1, p.1-26, March 1999  [doi>10.1145/311531.311532]
23
Carl Gunter , John Mitchell , David Notkin, Strategic directions in software engineering and programming languages, ACM Computing Surveys (CSUR), v.28 n.4, p.727-737, Dec. 1996  [doi>10.1145/242223.242283]
 
24
Kirsten M. Hansen , Anders P. Ravn , Victoria Stavridou, From Safety Analysis to Software Requirements, IEEE Transactions on Software Engineering, v.24 n.7, p.573-584, July 1998  [doi>10.1109/32.708570]
 
25
Mats P. E. Heimdahl , Nancy G. Leveson, Completeness and Consistency in Hierarchical State-Based Requirements, IEEE Transactions on Software Engineering, v.22 n.6, p.363-377, June 1996  [doi>10.1109/32.508311]
 
26
Constance Heitmeyer , James Kirby, Jr. , Bruce Labaw , Myla Archer , Ramesh Bharadwaj, Using Abstraction and Model Checking to Detect Safety Violations in Requirements Specifications, IEEE Transactions on Software Engineering, v.24 n.11, p.927-948, November 1998  [doi>10.1109/32.730543]
 
27
Debra S. Herrmann, Software safety and reliability: techniques, approaches, and standards of key industrial sectors, IEEE Computer Society, Washington, DC, 1999
 
28
Gerard J. Holzmann, The Model Checker SPIN, IEEE Transactions on Software Engineering, v.23 n.5, p.279-295, May 1997  [doi>10.1109/32.588521]
 
29
L. M. Ippolito and D. R. Wallace. A study on hazard anMysis in high integrity software standards and guidelines. Technical Report NISTR 5589, U.S. Department of Commerce, 1995.
 
30
Lalita Jategaonkar Jagadeesan , Carlos Puchol , James Von Olnhausen, Safety Property Verification of ESTEREL Programs and Applications to Telecommunications Software, Proceedings of the 7th International Conference on Computer Aided Verification, p.127-140, July 03-05, 1995
 
31
S. J. Keene. Developing software for safety critical systems. IEEE, NTSC ISBN 0-7803-4573-8, 1998.
 
32
J. C. Knight and L. G. Nakano. Software test techniques for system fault-tree analysis. In Proc of 16th Int Conf on Computer Safety, Reliability, and Security, 1997.
33
Jean-Claude Laprie , Bev Litlewood, Viewpoint, Communications of the ACM, v.35 n.2, p.13, Feb. 1992  [doi>10.1145/129630.376087]
34
Nancy G. Leveson, Software safety in embedded computer systems, Communications of the ACM, v.34 n.2, p.34-46, Feb. 1991  [doi>10.1145/102792.102799]
 
35
N. Leveson. Safeware. Addison-Wesley, Reading, MA, 1995.
36
Nancy G. Leveson , Mats P. E. Heimdahl , Jon Damon Reese, Designing specification languages for process control systems: lessons learned and steps to the future, Proceedings of the 7th European software engineering conference held jointly with the 7th ACM SIGSOFT international symposium on Foundations of software engineering, p.127-145, September 06-10, 1999, Toulouse, France
 
37
N. G. Leveson, L. D. Pinnel, S. D. Sandys, S. Koga, and J. D. Reese. Analyzing software specifications for mode confusion potential. In Proc Workshop on Human Error and System Development, pages 132-146, 1997.
 
38
Bev Littlewood , David Wright, Some Conservative Stopping Rules for the Operational Testing of Safety-Critical Software, IEEE Transactions on Software Engineering, v.23 n.11, p.673-683, November 1997  [doi>10.1109/32.637384]
 
39
Robyn R. Lutz, Targeting safety-related errors during software requirements analysis, Journal of Systems and Software, v.34 n.3, p.223-230, Sept. 1996  [doi>10.1016/0164-1212(95)00077-1]
 
40
Robyn R. Lutz, Extending the product family approach to support safe reuse, Journal of Systems and Software, v.53 n.3, p.207-217, Sep 15, 2000  [doi>10.1016/S0164-1212(00)00012-1]
 
41
R. R. Lutz and Y. Ampo. Experience report: Using formal methods for requirements analysis of critical spacecraft software. In Proc of 19th Annual Software Eng Workshop, pages 231-248, 1994.
 
42
Robyn R. Lutz , Johnny S. K. Wong, Detecting Unsafe Error Recovery Schedules, IEEE Transactions on Software Engineering, v.18 n.8, p.749-760, August 1992  [doi>10.1109/32.153384]
 
43
Robyn R. Lutz , Robert M. Woodhouse, Requirements analysis using forward and backward search, Annals of Software Engineering, 3, p.459-475, 1997
 
44
T. Maier. FMEA and FTA to support safe design of embedded software in safety-critical systems. In Proc CSR 12th Annual Workshop on Safety and Reliability of Software Based Systems, 1995.
 
45
John A. McDermid, Engineering safety-critical systems, Computing tomorrow: future research directions in computer science, Cambridge University Press, New York, NY, 1996
 
46
J. A. McDermid, M. Nicholson, D. J. Pumfrey, and P. Fenelon. Experience with the application of HAZOP to computer-based systems. In Proc 10th Annual Con} on Computer Assurance, pages 37-48, 1995.
 
47
Erich Mikk , Yassine Lakhnech , Michael Siegel , Gerard J. Holzmann, Implementing Statecharts in PROMELA/SPIN, Proceedings of the Second IEEE Workshop on Industrial Strength Formal Specification Techniques, p.90, October 20-23, 1998
48
Steven P. Miller, Specifying the mode logic of a flight guidance system in CoRE and SCR, Proceedings of the second workshop on Formal methods in software practice, p.44-53, March 04-05, 1998, Clearwater Beach, Florida, United States  [doi>10.1145/298595.298856]
 
49
NASA Mars Climate Orbiter Mishap Investigation Board. Phase I report, November 1999.
 
50
P. G. Neumann. The RISKS digest. http://www.csl.sri.com/-isko/risks.html; http://catless.ncl, ac.uk/Risks.
 
51
Peter G. Neumann, Computer related risks, ACM Press/Addison-Wesley Publishing Co., New York, NY, 1995
52
Peter G. Neumann, Inside risks: robust open-source software, Communications of the ACM, v.42 n.2, p.128, Feb. 1999  [doi>10.1145/293411.293491]
 
53
Northwestern University's Qualitative Reasoning Group. Welcome to the principles of operations, http://rax.arc.nasa.gov:80/activities/pofo/docs/index.htm.
 
54
Sam Owre , S. Rajan , John M. Rushby , Natarajan Shankar , Mandayam K. Srivas, PVS: Combining Specification, Proof Checking, and Model Checking, Proceedings of the 8th International Conference on Computer Aided Verification, p.411-414, August 03, 1996
55
David L. Parnas , A. John van Schouwen , Shu Po Kwan, Evaluation of safety-critical software, Communications of the ACM, v.33 n.6, p.636-648, June 1990  [doi>10.1145/78973.78974]
56
Randy Pausch , Jon Snoddy , Robert Taylor , Scott Watson , Eric Haseltine, Disney's Aladdin: first steps toward storytelling in virtual reality, Proceedings of the 23rd annual conference on Computer graphics and interactive techniques, p.193-203, August 1996  [doi>10.1145/237170.237257]
 
57
Ivars Peterson, Fatal Defect: Chasing Killer Computer Bugs, Crown Publishing Group, New York, NY, 1995
 
58
H. Petrowski. To engineer is human. Vintage Books, New York, 1992.
 
59
Shari Lawrence Pfleeger, Software engineering: theory and practice, Prentice-Hall, Inc., Upper Saddle River, NJ, 1998
 
60
President's Information Technology Advisory Committee. Information Technology Research: Investing in Our Future. February 1999.
 
61
Joseph A. Profeta III , Nikos P. Andrianos , Bing Yu , Barry W. Johnson , Todd A. DeLong , David Guaspari , Damir Jamsek, Safety-Critical Systems Built with COTS, Computer, v.29 n.11, p.54-60, November 1996  [doi>10.1109/2.544238]
 
62
D. Raheja. Assurance Technologies: principles and practices. McGraw-Hill, 1991.
 
63
Patricia Rodríguez-Dapena, Software Safety Certification: A Multidomain Problem, IEEE Software, v.16 n.4, p.31-38, July 1999  [doi>10.1109/52.776946]
 
64
J. Rushby. Critical system properties: Survey and taxonomy. Reliability Engineering and System Safety, 43(2):189-214, 1994.
 
65
J. Rushby. Formal methods and their role in the certification of critical systems. In R. Shaw, editor, Safety and Reliability of Software Based Systems, pages 1-42. Springer, 1995.
 
66
J. Rushby. Using model checking to help discover mode confusions and other automation surprises. In Proc 3rd Workshop on Human Error, Safety, and System Development, 1999.
 
67
J. M. Rushby. Partitioning in avionics architectures: Requirements, mechanisms, and assurance. Technical reoort. SRI. March 1999.
68
Joseph Sifakis, Research directions for concurrency, ACM Computing Surveys (CSUR), v.28 n.4es, Dec. 1996  [doi>10.1145/242224.242294]
 
69
G. Slabodkin. Software glitches leave navy smart ship dead in the water, http://www.gcn.com/archives- /gcn/1998/July13/cov2.htm, July 13 1998.
 
70
Ian Sommerville, Software engineering (4th ed.): instructor's guide, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 1993
 
71
V. Stavridou. Provably dependent software architectures for adaptable avionics. In Proc 18th Digital Avionics Systems Coal, 1999.
 
72
Neil R. Storey, Safety Critical Computer Systems, Addison-Wesley Longman Publishing Co., Inc., Boston, MA, 1996
 
73
L. Strigini. Considerations on current research issues in software safety. Reliability Engineering and System Safety, 43:177-188, 1994.
 
74
Kevin J. Sullivan , Joanne Bechta Dugan , David Coppit, The Galileo Fault Tree Analysis Tool, Proceedings of the Twenty-Ninth Annual International Symposium on Fault-Tolerant Computing, p.232, June 15-18, 1999
75
Kevin Sullivan , John C. Knight , Xing Du , Steve Geist, Information survivability control systems, Proceedings of the 21st international conference on Software engineering, p.184-192, May 16-22, 1999, Los Angeles, California, United States  [doi>10.1145/302405.302464]
 
76
Nancy Talbert, The Cost of COTS, Computer, v.31 n.6, p.46-52, June 1998  [doi>10.1109/MC.1998.683007]
 
77
Wei-Tek Tsai , Ramin Mojdehbakhsh , Sanjai Rayadurgam, Capturing Safety-Critical Medical Requirements, Computer, v.31 n.4, p.40-42, April 1998
 
78
Michael A. Friedman , Jeffrey M. Voas, Software Assessment: Reliability, Safety, Testability, John Wiley & Sons, Inc., New York, NY, 1995
79
Elaine J. Weyuker, Using failure cost information for testing and reliability assessment, ACM Transactions on Software Engineering and Methodology (TOSEM), v.5 n.2, p.87-98, April 1996  [doi>10.1145/227607.227608]
 
80
Workshop on Research in Theoretical Computer Science. Challenges for theory of computing, 1999.
81
Pamela Zave, Classification of research efforts in requirements engineering, ACM Computing Surveys (CSUR), v.29 n.4, p.315-321, Dec. 1997  [doi>10.1145/267580.267581]

CITED BY  7
Hermann Kopetz, Software engineering for real-time: a roadmap, Proceedings of the Conference on The Future of Software Engineering, p.201-211, June 04-11, 2000, Limerick, Ireland
Mary Jean Harrold, Testing: a roadmap, Proceedings of the Conference on The Future of Software Engineering, p.61-72, June 04-11, 2000, Limerick, Ireland
Josh Dehlinger , Robyn R. Lutz, PLFaultCAT: A Product-Line Software Fault Tree Analysis Tool, Automated Software Engineering, v.13 n.1, p.169-193, January 2006
Mats P. E. Heimdahl, Safety and Software Intensive Systems: Challenges Old and New, 2007 Future of Software Engineering, p.137-152, May 23-25, 2007
Heinz Schmidt , Iman Poernomo , Ralf Reussner, Trust-By-Contract: Modelling, Analysing And Predicting Behaviour Of Software Architectures, Journal of Integrated Design & Process Science, v.5 n.3, p.25-51, August 2001
Jing Liu , Josh Dehlinger , Robyn Lutz, Safety analysis of software product lines using state-based modeling, Journal of Systems and Software, v.80 n.11, p.1879-1892, November, 2007
Ben Swarup Medikonda , Seetha Ramaiah Panchumarthy, A framework for software safety in safety-critical systems, ACM SIGSOFT Software Engineering Notes, v.34 n.2, March 2009

INDEX TERMS

Primary Classification:
  D. Software
  D.2 SOFTWARE ENGINEERING
      D.2.0 General
          Subjects: Protection mechanisms

Additional Classification:
  D. Software
  D.2 SOFTWARE ENGINEERING

  K. Computing Milieux
  K.4 COMPUTERS AND SOCIETY
      K.4.1 Public Policy Issues
          Subjects: Human safety
  K.7 THE COMPUTING PROFESSION


General Terms:
Design, Human Factors, Management, Performance, Reliability, Security, Theory, Verification


Keywords:
future directions, software engineering, software safety

Collaborative Colleagues:
Robyn R. Lutz: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player