Software certification: is there a case against safety cases?

Authors:
Alan Wassyng;Tom Maibaum;Mark Lawford;Hans Bherer
Affiliations:
McMaster Centre for Software Certification, Faculty of Engineering, McMaster University, Hamilton, Ontario, Canada;McMaster Centre for Software Certification, Faculty of Engineering, McMaster University, Hamilton, Ontario, Canada;McMaster Centre for Software Certification, Faculty of Engineering, McMaster University, Hamilton, Ontario, Canada;McMaster Centre for Software Certification, Faculty of Engineering, McMaster University, Hamilton, Ontario, Canada
Venue:
FOCS'10 Proceedings of the 16th Monterey conference on Foundations of computer software: modeling, development, and verification of adaptive systems
Year:
2010

Citing 5
Cited 4

Software Engineering Programs Are Not Computer Science Programs

IEEE Software
Assurance Based Development of Critical Systems

DSN '07 Proceedings of the 37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks
Software for Dependable Systems: Sufficient Evidence?

Software for Dependable Systems: Sufficient Evidence?
Characterizing the Chain of Evidence for Software Safety Cases: A Conceptual Model Based on the IEC 61508 Standard

ICST '10 Proceedings of the 2010 Third International Conference on Software Testing, Verification and Validation
Structured Assurance Case Methodology for Assessing Software Trustworthiness

SSIRI-C '10 Proceedings of the 2010 Fourth International Conference on Secure Software Integration and Reliability Improvement Companion

Assurance cases in model-driven development of the pacemaker software

ISoLA'10 Proceedings of the 4th international conference on Leveraging applications of formal methods, verification, and validation - Volume Part II
New challenges in certification for aircraft software

EMSOFT '11 Proceedings of the ninth ACM international conference on Embedded software
Software certification experience in the canadian nuclear industry: lessons for the future

EMSOFT '11 Proceedings of the ninth ACM international conference on Embedded software
AdvoCATE: an assurance case automation toolset

SAFECOMP'12 Proceedings of the 2012 international conference on Computer Safety, Reliability, and Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Safety cases have become popular, even mandated, in a number of jurisdictions that develop products that have to be safe. Prior to their use in software certification, safety cases were already in use in domains like aviation, military applications, and the nuclear industry. Argument based methodologies/approaches have recently become the cornerstone for structuring justification and evidence to support safety claims. We believe that the safety case methodology is useful for the software certification domain, but needs to be tailored, more clearly defined, and more appropriately structured in analogy with regulatory regimes in classical engineering disciplines. This paper presents a number of reasons as to why current approaches to safety cases do not satisfy essential attributes for an effective software certification process and proposes improvements based on lessons learned from other engineering disciplines. In particular, the safety case approach lacks the highly prescriptive and domain specific nature that can be seen in other engineering specialities, in terms of engineering and analysis methods to be applied in generating the relevant evidence. Safety case approaches and corresponding methods should aim to achieve the levels of precision and effectiveness of engineering methods underpinning regulatory regimes in other engineering disciplines.