An experimental evaluation of the assumption of independence in multiversion programming
IEEE Transactions on Software Engineering
PODS—A project on diverse software
IEEE Transactions on Software Engineering - Special issue on reliability and safety in real-time process control
Functional program testing and analysis
Functional program testing and analysis
Quality programming: developing and testing software with statistical quality control
Quality programming: developing and testing software with statistical quality control
Dependability Modeling and Evaluation of Software Fault-Tolerant Systems
IEEE Transactions on Computers
Some experiences of critical software development
ICSE '90 Proceedings of the 12th international conference on Software engineering
The B-book: assigning programs to meanings
The B-book: assigning programs to meanings
Targeting safety-related errors during software requirements analysis
Journal of Systems and Software
Formal methods: state of the art and future directions
ACM Computing Surveys (CSUR) - Special ACM 50th-anniversary issue: strategic directions in computing research
Some Conservative Stopping Rules for the Operational Testing of Safety-Critical Software
IEEE Transactions on Software Engineering
Modeling software design diversity: a review
ACM Computing Surveys (CSUR)
The Infeasibility of Quantifying the Reliability of Life-Critical Real-Time Software
IEEE Transactions on Software Engineering
From Safety Analysis to Software Requirements
IEEE Transactions on Software Engineering
Good Enough versus High Assurance Software Testing and Evaluation Methods
HASE '98 The 3rd IEEE International Symposium on High-Assurance Systems Engineering
Theorem Proving for Verification
MOVEP '00 Proceedings of the 4th Summer School on Modeling and Verification of Parallel Processes
Combination of Fault Tree Analysis and Model Checking for Safety Assessment of Complex System
EDCC-4 Proceedings of the 4th European Dependable Computing Conference on Dependable Computing
Microprocessor Entomology: A Taxonomy of Design Faults in COTS Microprocessors
DCCA '99 Proceedings of the conference on Dependable Computing for Critical Applications
Avionics software problem occurrence rates
ISSRE '96 Proceedings of the The Seventh International Symposium on Software Reliability Engineering
Modeling Class Operations in B: Application to UML Behavioral Diagrams
Proceedings of the 16th IEEE international conference on Automated software engineering
FTCS '95 Proceedings of the Twenty-Fifth International Symposium on Fault-Tolerant Computing
Generating Efficient Test Sets with a Model Checker
SEFM '04 Proceedings of the Software Engineering and Formal Methods, Second International Conference
| Hi-index | 0.00 |
The paper reports about a study conducted for RATP, the utility organisation for public transportation in Paris and region. RATP has developed since the mid eighties a mathematically formal approach for the development of safety-critical software, based on the B method. The question raised, in the context of evolutions in software development, was: Is it possible to demonstrate the same level of safety without resorting to mathematically formal approaches? In order to respond this question, several steps were considered: 1) reminding the infeasibility of quantifying safety-critical software, and its consequences on the development process, and on the system vision, 2) situating the current RATP approach with respect to other safety-critical domains, 3) examining and comparing alternate approaches for developing safety-critical software, 4) coming back to the RATP approach, for examining underlying assumptions. The conclusion was the recommendation to pursue the mathematically formal development approach.