AMASS. Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems

Similar documents
AMASS. Architecture-driven, Multi-concern and Seamless Assurance and

ECSEL Research and Innovation actions (RIA) AMASS

AMASS Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems

ECSEL Research and Innovation actions (RIA) AMASS

New Concept for Article 36 Networking and Management of the List

Access Control and Physical Security Management. Contents are subject to change. For the latest updates visit

AMASS Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems

Second AMASS EAB Workshop AMASS. Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems AMASS

software.sci.utah.edu (Select Visitors)

UAE PUBLIC TRAINING CALENDAR

San Francisco Housing Authority (SFHA) Leased Housing Programs October 2015

COURSE LISTING. Courses Listed. with SAP Hybris Marketing Cloud. 24 January 2018 (23:53 GMT) HY760 - SAP Hybris Marketing Cloud

Test and Evaluation of Autonomous Systems in a Model Based Engineering Context

This report is based on sampled data. Jun 1 Jul 6 Aug 10 Sep 14 Oct 19 Nov 23 Dec 28 Feb 1 Mar 8 Apr 12 May 17 Ju

Transform your Microsoft Project schedules into presentation reports with Milestones Professional.

Continual Improvement of Data Centre Energy Performance

Asks for clarification of whether a GOP must communicate to a TOP that a generator is in manual mode (no AVR) during start up or shut down.

COURSE LISTING. Courses Listed. Training for Cloud with SAP Cloud Platform in Development. 23 November 2017 (08:12 GMT) Beginner.

COURSE LISTING. Courses Listed. Training for Database & Technology with Development in SAP Cloud Platform. 1 December 2017 (22:41 GMT) Beginner

ICT PROFESSIONAL MICROSOFT OFFICE SCHEDULE MIDRAND

All King County Summary Report

COURSE LISTING. Courses Listed. Training for Database & Technology with Modeling in SAP HANA. 20 November 2017 (12:10 GMT) Beginner.

COURSE LISTING. Courses Listed. with Governance, Risk and Compliance (GRC) SAP BusinessObjects. 19 February 2018 (15:13 GMT) GRC100 -

Software Engineering with Objects and Components Open Issues and Course Summary

BANGLADESH UNIVERSITY OF PROFESSIONALS ACADEMIC CALENDAR FOR MPhil AND PHD PROGRAM 2014 (4 TH BATCH) PART I (COURSE WORK)

CALENDAR FOR THE YEAR 2018

IT Auditing and IT Fraud Detection

Seattle (NWMLS Areas: 140, 380, 385, 390, 700, 701, 705, 710) Summary

ACTIVE MICROSOFT CERTIFICATIONS:

SCI - software.sci.utah.edu (Select Visitors)

EUROCONTROL SWIM Specifications. NM B2B Tech Forum June 2018

Certificate in Security Management

Software Verification and Validation (VIMMD052) Introduction. Istvan Majzik Budapest University of Technology and Economics

ICS 52: Introduction to Software Engineering

Section 1.2: What is a Function? y = 4x

Engineering the Army Common Operating Environment (COE) Presentation To:

Semantics-Based Integration of Embedded Systems Models

PROFESSIONAL CERTIFICATES AND SHORT COURSES: MICROSOFT OFFICE. PCS.uah.edu/PDSolutions

FOUR INDEPENDENT TOOLS TO MANAGE COMPLEXITY INHERENT TO DEVELOPING STATE OF THE ART SYSTEMS. DEVELOPER SPECIFIER TESTER

SME License Order Working Group Update - Webinar #3 Call in number:

INTEGRATING SYSTEM AND SOFTWARE ENGINEERING FOR CERTIFIABLE AVIONICS APPLICATIONS

IT Methodology Webinar

e-sens Nordic & Baltic Area Meeting Stockholm April 23rd 2013

Have training enquiry? Call us at or

CIMA Asia. Interactive Timetable Live Online

2018 CALENDAR OF ACTIVITIES

ITU Workshop on Security Aspects of Blockchain (Geneva, Switzerland, 21 March 2017) Blockchains risk or mitigation?

ACTIVE MICROSOFT CERTIFICATIONS:

HIGH RISK REPORT J.CREW GROUP, INC. September 14, 2017

Maritime Cyber Security Project Work Plan. Maritime Cyber Security. Work Plan Draft

On Reshaping of Clustering Coefficients in Degreebased Topology Generators

Transition in the Automotive Industry. Presented by: Desmond Govender

Banner 9 Overview and Transition timeline August Edgar Coronel Paddy Wong

NORTHWEST. Course Schedule: Through June 2018 MICROSOFT ACCESS. Access 2016 / Access 2010 / Last Revised: 11/13/2017

Deep Knowledge Test Generators & Functional Verification Methodology

ISACA MANILA CHAPTER CALENDAR OF ACTIVITIES

Transition Implementation Status Reporting. 31 March 2016

EUROCONTROL SWIM Standards Evolution Workshop

Seattle (NWMLS Areas: 140, 380, 385, 390, 700, 701, 705, 710) Summary

Powering Your Website Content with Magento PageBuilder

Seattle (NWMLS Areas: 140, 380, 385, 390, 700, 701, 705, 710) Summary

Standards capability in Central America and lessons learned from training programs Sungnam CHOI

ISACA MANILA CHAPTER CALENDAR OF ACTIVITIES

ISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION

NEN sets the standard. Annual Report 2014

Software architecture in ASPICE and Even-André Karlsson

Alexandre Esper, Geoffrey Nelissen, Vincent Nélis, Eduardo Tovar

Martin Purvis CEO. Presentation following the AGM. 26 April 2012

COURSE LISTING. Courses Listed. with SAP HANA. 15 February 2018 (05:18 GMT) HA100 - SAP HANA. HA250 - Migration to SAP HANA using DMO

Test Architect A Key Role defined by Siemens

In-House Training Training Calendar

CMIS 102 Hands-On Lab

HPE Security Data Security. HPE SecureData. Product Lifecycle Status. End of Support Dates. Date: April 20, 2017 Version:

CIMA Asia. Interactive Timetable Live Online

10th Maintenance Cost Conference Chairman s Report Athens Sept 10& Tiymor Kalimat Manager Technical Procurement Royal Jordanian Airlines

Project implementation plan Annual work plan for (incl. outlook to )

A Roadmap-Based Framework for Acquiring More Agile and Responsive C4I Systems. GMU-AFCEA C4I Symposium 19 May 2010 Eric Yuan

GWDG Software Archive - FTP Site Statistics. Top 20 Directories Sorted by Disk Space

COURSE LISTING. Courses Listed. with ABAP Dialog Programming. 25 December 2017 (08:57 GMT) NW001 - SAP NetWeaver - Overview

Westinghouse UK AP1000 GENERIC DESIGN ASSESSMENT. Criticality control in SFP. Radwaste and Decommissioning

Pennington County Government Justice Center. Schematic Design - October 27, 2015

APPENDIX E2 ADMINISTRATIVE DATA RECORD #2

Interested in learning more? Global Information Assurance Certification Paper. Copyright SANS Institute Author Retains Full Rights

Final Report of TF-CS/OTA

Undergraduate Admission File

Instructor training course schedule v3 Confirmed courses due completion by 31 st July 2019

Industrial Data Communications Protocol Training Information and Schedule

TWIC Program Overview for the Smart Cards in Government Conference March 10, 2004

Connecting Pure to the web

Defending Against Known & Unknown Threats

CIP-014. JEA Compliance Approach. FRCC Fall Compliance Workshop Presenter Daniel Mishra

Programming for Engineers Structures, Unions

CEF ehealth DSI 2018 Technical Boot Camp State of Play

Your Future with Worldpay. Shane Happach Managing Director, Worldpay ecom

IT Methodology Webinar

Stakeholder consultation process and online consultation platform

Portable Stimulus Working Group

CS Programming I: Arrays

Model-Based Design for Safety Critical Automotive Applications

Obtaining and Managing IP Addresses. Xavier Le Bris IP Resource Analyst - Trainer

Transcription:

AMASS Architecture-driven, Multi-concern and Seamless Assurance and Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems AMASS: Technical Vision First EAB Workshop Trento, September 11, 2017 Barbara Gallina, Ph.D. TM, WP6 Leader, T6.1-2 Leader

Context and motivation ISO 26262 Item definition Hazards analysis and risk assessment EN 50126 Phase1: concept INPUT SYSTEM BOUNDARY OF SYSTEM/INTERFACES ENVIRONMENT OF THE SYSTEM? OUTPUT 2

Context and motivation Process engineer addressing the safety process Architect addressing safety Process engineer addressing the security process Architect addressing security ARP4761 ISO 26262 DO-326A SAE J3061 Redundant and conflicting documentation/solutions Waste of time and money Risk for lower quality 3

Context and motivation ISO 26262 Work products traceability DO-178C Work products traceability 4

Context and motivation ISO 26262 EN 5012x DO 178B/C DO-326A SAE J3061 Proliferation of standards thousands of pages! terminological inconsistency increasing complexity intellectual unmanageability (re)certification is inefficient (time consuming and expensive!) 5

AMASS 6

Architecture-driven INPUT Conceptual design (perimeter definition) SYSTEM High-level design Low-level design OUTPUT 7

Architecture-driven Contract-based, component based systems engineering S Semantic Requirements Analysis (supported by ForReq, OCRA,..) Verification of Requirements Against System Design 8

Multi-concern assurance Process engineer(s) addressing the security & safety process Architect jointly interacting with safety and security managers ARP4761 DO-326A Synergically conceived documentation/solutions Increased quality 9

Multi-concern assurance Trade-off analysis, Process-related co-assessment [Presented at ISSA, 2016] 10

Seamless interoperability Team RE Team HARA/TARA Team CM Team AM Team QM 11

Seamless interoperability [Presented at RSSRail, 2017] [Evolution, to be presented at WoSoCER, 2017] Safety case Safety Case-Argument that the safety requirements for an item are complete and satisfied by evidence compiled from work products of the safety activities during development. ISO 26262- Part 1, Definition 1.106 12

Cross and intra domain reuse Intra domain: Automotive normative space (A) SPICE (A)SPICE ISO 26262 ISO 26262 IEC 61508 IEC 61508 Cross-domain: Automotive/Avionics ISO 26262 AEC Q006 AEC - Q100 RTCA DO-254 Cross-domain Commonality ISO 26262 AEC Q006 AEC - Q100 RTCA DO-254 Intra-domain: Automotive cross concern reuse ISO 26262 SAE J3061 Cross-concern Commonality SAE J3061 ISO 26262 13

Anti-Sysiphus Process Assurance Case Product 14

AMASS Prototypes Three prototyping dimensions: 1. Conceptual/Research Development: development of solutions from a conceptual perspective. 2. Tool Development: development of tools implementing conceptual solutions. 3. Case Study Development: development of industrial case studies using the conceptual and tooling solutions. Prototype iterations has three phases: a) Prototype Development: Involves the three dimensions above-mentioned b) Prototype Evaluation: Results evaluated by research questions, tool objectives and case goal achievements. c) Prototype Refinement: Changes to the AMASS approach as recommended by the Evaluation phase AMASS 1 st EAB Workshop, Trento, September 11, 2017 15

Prototype Schedule (First and Second Prototype) Third Prototy 2016 Jan-Feb Mar-Apr May-Jun Jul-Ago Sep-Oct Nov-Dec 2017 Jan-Feb Mar-Apr May-Jun Jul-Ago Sep-Oct Nov-Dec 2018 Jan-Feb Mar-Apr First Prototype Core Prot-1 Tools release for Case Study evaluation Prot-1 Evaluation Results & Demo Second Prototype P1 Prot-2 Tools release for Case Study evaluation Prot-2 Evaluation Results & Demo AMASS 1 st EAB Workshop, Trento, September 11, 2017 NOW 16

Prototype Core: Baseline Tools Functional description in D2.2: AMASS Reference Architecture (a) Prototype Core has been built upon 3 pre-existing toolsets: 1. Tools from Papyrus and CHESS projects (Eclipse/PolarSys) 2. Tools from pre-existing OpenCert project (Eclipse /PolarSys) 3. Tools from EPF (Eclipse Process Framework) project (Eclipse) Papyrus + CHESS OpenCert EPF AMASS 1 st EAB Workshop, Trento, September 11, 2017 17

AMASS Platform: Standards & Process Models *Tailoring EPF Standard models into Baseline models has not implemented yet. AMASS 1 st EAB Workshop, Trento, September 11, 2017 18

AMASS Platform: Assurance Project Models *System Models are edited in Papyrus + CHESS. Its links have not been created yet. AMASS 1 st EAB Workshop, Trento, September 11, 2017 19

AMASS Platform: Importing EPF Models AMASS 1 st EAB Workshop, Trento, September 11, 2017 20

Prototype Core: Video AMASS 1 st EAB Workshop, Trento, September 11, 2017 21

Thank you for your attention!? 22

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback