Fail-stop processors: an approach to designing fault-tolerant computing systems
ACM Transactions on Computer Systems (TOCS)
Safety Critical Computer Systems
Safety Critical Computer Systems
Using Simplicity to Control Complexity
IEEE Software
HASE '99 The 4th IEEE International Symposium on High-Assurance Systems Engineering
Dependability Modeling and Evaluation of Phased Mission Systems: A DSPN Approach
DCCA '99 Proceedings of the conference on Dependable Computing for Critical Applications
Improving System Dependability with Functional Alternatives
DSN '04 Proceedings of the 2004 International Conference on Dependable Systems and Networks
Assured Reconfiguration of Fail-Stop Systems
DSN '05 Proceedings of the 2005 International Conference on Dependable Systems and Networks
Increasing system dependability through architecture-based self-repair
Architecting dependable systems
RFID survivability quantification and attack modeling
Proceedings of the third ACM conference on Wireless network security
Achieving dependable systems by synergistic development of architectures and assurance cases
Architecting dependable systems IV
Survivable RFID systems: issues, challenges, and techniques
IEEE Transactions on Systems, Man, and Cybernetics, Part C: Applications and Reviews
Component-based modeling and verification of dynamic adaptation in safety-critical embedded systems
ACM Transactions on Embedded Computing Systems (TECS)
Dynamic task-level reconfiguration in automotive software architectures
Proceedings of the 6th India Software Engineering Conference
Fault-tolerant fault tolerance for component-based automation systems
Proceedings of the 4th international ACM Sigsoft symposium on Architecting critical systems
Hi-index | 0.02 |
In many software systems, properties necessary for dependable operation are only a small subset of all desirable system properties. Assuring properties over the simpler subset can provide assurance of critical properties over the entire system. This work provides a method for constructing systems to be dependably reconfigurable. A system's primary function can have less demanding dependability requirements than the overall system because the system can reconfigure to some simpler function. Reconfiguration thus controls the effective complexity of the system without forcing that system to sacrifice desired, but unassurable, capabilities. Focusing a system's dependability argument on reconfiguration means that reconfiguration must proceed correctly with very high assurance. The system construction approach in this work also provides a method through which system dependability properties can be shown. To illustrate the ideas in this work, we have built part of a hypothetical avionics system that is typical of what might be found on an unmanned aerial vehicle.