mdh.sePublications
Change search
Link to record
Permanent link

Direct link
BETA
Publications (10 of 99) Show all publications
Sheikh Bahaei, S. (2020). A Case Study for Risk Assessment in AR-equipped Socio-technical Systems.
Open this publication in new window or tab >>A Case Study for Risk Assessment in AR-equipped Socio-technical Systems
2020 (English)Report (Other academic)
National Category
Engineering and Technology
Research subject
Computer Science
Identifiers
urn:nbn:se:mdh:diva-48049 (URN)MDH-MRTC-332/2020-1-SE (ISRN)
Available from: 2020-05-28 Created: 2020-05-28 Last updated: 2020-05-28
Bramberger, R., Martin, H., Gallina, B. & Schmittner, C. (2020). Co-engineering of Safety and Security Life Cycles for Engineering of Automotive Systems. ACM SIGAda Ada Letters, 39(2), 41-48
Open this publication in new window or tab >>Co-engineering of Safety and Security Life Cycles for Engineering of Automotive Systems
2020 (English)In: ACM SIGAda Ada Letters, ISSN 1094-3641, E-ISSN 1557-9476, Vol. 39, no 2, p. 41-48Article in journal (Refereed) Published
Abstract [en]

Nowadays systems are becoming more and more connected. Consequently, the co-engineering of (cyber)security and safety life cycles becomes paramount. Currently, no standard provides a structured co-engineering process to facilitate the communication between safety and security engineers. In this paper, we propose a process for co- engineering safety and security by the explicit systematization and management of commonalities and variabilities, implicitly stated in the requirements of the different standards. Our process treats the safety and security life cycles as members of a security-informed safety-oriented process line and so it forces safety and security engineers to come together and brainstorm on what might be considered a commonality and what might be considered a variability. We illustrate the usage of our process by systematizing commonalities and variabilities at risk analysis phase in the context of ISO 26262 and SAE J3061. We then draw lessons learnt. Finally, we sketch some directions for future work.

Place, publisher, year, edition, pages
Sweden: , 2020
Keywords
Security-informed Safety, ISO 26262, SAE J3061, Security-informed Safety-oriented Process Line Engineering (SiSoPLE), HARA, TARA
National Category
Engineering and Technology Computer Systems
Identifiers
urn:nbn:se:mdh:diva-47326 (URN)10.1145/3394514.3394519 (DOI)
Projects
AMASS - Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical SystemsSafe and Secure Adaptive Collaborative Systems
Available from: 2020-04-24 Created: 2020-04-24 Last updated: 2020-04-24Bibliographically approved
SŠljivo, I., Uriagereka, G., Puri, S. & Gallina, B. (2020). Guiding assurance of architectural design patterns for critical applications. Journal of systems architecture, 110, Article ID 101765.
Open this publication in new window or tab >>Guiding assurance of architectural design patterns for critical applications
2020 (English)In: Journal of systems architecture, ISSN 1383-7621, E-ISSN 1873-6165, Vol. 110, article id 101765Article in journal (Refereed) Published
Abstract [en]

Development of critical systems nowadays is hardly achievable without reuse of previous knowledge. Design patterns have an important role in the design of such systems as they define and document common solutions to recurring design problems. However, critical systems such as those that are safety or security related, often require specific assurances that the system is adequate to operate in a given environment. Just as with any other reused knowledge in such systems, the reuse via application of design patterns needs to be assured every time. In this paper, we present a methodology for assuring the application of design patterns in critical domains. In particular, we enrich the design patterns template to support their further assurance. We define the aspects that should be tackled during the assurance of a design pattern application. We use the information specified in the design pattern template to guide the automated instantiation of the argumentation for each design pattern application in the system. We provide tool-support for our methodology in the context of the AMASS tool-platform and evaluate it in an automotive case study.

Place, publisher, year, edition, pages
Elsevier B.V., 2020
Keywords
Assurance cases, Critical Applications, Design patterns, Safety assurance, Security assurance, Tool-support, Software engineering, Critical domain, Critical systems, Design problems, Tool support
National Category
Computer and Information Sciences
Identifiers
urn:nbn:se:mdh:diva-47556 (URN)10.1016/j.sysarc.2020.101765 (DOI)2-s2.0-85083115306 (Scopus ID)
Available from: 2020-04-23 Created: 2020-04-23 Last updated: 2020-04-23Bibliographically approved
De La Vara, J. L., Parra, E., Ruiz, A. & Gallina, B. (2020). The AMASS Tool Platform: An innovative solution for assurance and certification of cyber-physical systems. In: CEUR Workshop Proceedings, 2584: . Paper presented at Joint 26th International Conference on Requirements Engineering: Foundation for Software Quality Workshops, Doctoral Symposium, Live Studies Track, and Poster Track, REFSQ-JP 2020; Pisa; Italy; 24 March 2020 through 27 March 2020. CEUR-WS, 2584
Open this publication in new window or tab >>The AMASS Tool Platform: An innovative solution for assurance and certification of cyber-physical systems
2020 (English)In: CEUR Workshop Proceedings, 2584, CEUR-WS , 2020, Vol. 2584Conference paper, Published paper (Refereed)
Abstract [en]

Cyber-physical systems are usually subject to assurance and certifica- tion processes, including thorough requirements engineering tasks, to ensure that they are acceptably dependable. The underlying activities can be complex and labour-intensive, thus practitioners need tools that facilitate them. We present the AMASS Tool Platform as an example of these tools. This Platform is an open source solution that supports the main activities for assurance and certification. It also provides advanced features such as argument fragment composition and automated assurance evidence generation and collection. In addition, we present the main insights gained from tool usage. Among them, practitioners expect improvement in relation to usability, performance, and ease of configuration. Videos showing tool usage are available online, including general usage scenarios.

Place, publisher, year, edition, pages
CEUR-WS, 2020
National Category
Computer Systems
Identifiers
urn:nbn:se:mdh:diva-47532 (URN)2-s2.0-85082689545 (Scopus ID)
Conference
Joint 26th International Conference on Requirements Engineering: Foundation for Software Quality Workshops, Doctoral Symposium, Live Studies Track, and Poster Track, REFSQ-JP 2020; Pisa; Italy; 24 March 2020 through 27 March 2020
Available from: 2020-04-16 Created: 2020-04-16 Last updated: 2020-04-16Bibliographically approved
UL Muram, F., Gallina, B. & Kanwal, S. (2019). A Tool-supported Model-based Method for Facilitating the EN50129-compliant Safety Approval Process. In: Reliability, Safety, and Security of Railway Systems. Modelling, Analysis, Verification, and Certification, RSSRail 2019: . Paper presented at 3rd International Conference Reliability, Safety and Security of Railway Systems: Modelling, Analysis, Verification and Certification RSS-Rail-2019, 04 Jun 2019, Lille, France (pp. 125-141).
Open this publication in new window or tab >>A Tool-supported Model-based Method for Facilitating the EN50129-compliant Safety Approval Process
2019 (English)In: Reliability, Safety, and Security of Railway Systems. Modelling, Analysis, Verification, and Certification, RSSRail 2019, 2019, p. 125-141Conference paper, Published paper (Refereed)
Abstract [en]

Compliance with the CENELEC series is mandatory during the planning of as well as development of railway systems. For compliance purposes, the creation of safety plans, which define safety-related activities and all other process elements relevant at the planning phase, is also needed. These plans are expected to be executed during the development phase. Specifically, EN 50129 defines the safety plan acceptance and approval process, where interactions between the applicant and the certification body are recommended: after the planning phase, to ensure the compliance between plans and standards, and after the development phase, to ensure the effective and not-deviating-unless-justified execution of plans. In this paper, we provide a tool-supported method for facilitating the safety approval processes/certification liaison processes. More specifically, the facilitation consists in guidance for modelling planned processes and the requirements listed in the standards in order to enable the automatic generation of baselines, post-planning processes and evidence models, needed during the execution phase and change impact tracking for manual monitoring of the compatibility between plans and their execution. The applicability of the proposed method is illustrated in the context of EN 50126-1 and EN 50129 standards.

Series
Lecture Notes in Computer Science, ISSN 0302-9743 ; 11495
Keywords
EN 50129, EN 50126-1, safety management, safety processes, regulatory compliance, safety plans, model transformation
National Category
Engineering and Technology Computer Systems
Identifiers
urn:nbn:se:mdh:diva-43920 (URN)10.1007/978-3-030-18744-6_8 (DOI)2-s2.0-85066850709 (Scopus ID)9783030187439 (ISBN)
Conference
3rd International Conference Reliability, Safety and Security of Railway Systems: Modelling, Analysis, Verification and Certification RSS-Rail-2019, 04 Jun 2019, Lille, France
Projects
AMASS - Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems
Available from: 2019-06-14 Created: 2019-06-14 Last updated: 2019-06-18Bibliographically approved
de la Vara, J. L., Parra, E., Ruiz, A. & Gallina, B. (2019). AMASS: A Large-Scale European Project to Improve the Assurance and Certification of Cyber-Physical Systems. In: Lecture Notes in Computer Science, vol. 11915: . Paper presented at 20th International Conference on Product-Focused Software Process Improvement, PROFES 2019; Barcelona; Spain; 27 November 2019 through 29 November 2019 (pp. 626-632). Springer
Open this publication in new window or tab >>AMASS: A Large-Scale European Project to Improve the Assurance and Certification of Cyber-Physical Systems
2019 (English)In: Lecture Notes in Computer Science, vol. 11915, Springer , 2019, p. 626-632Conference paper, Published paper (Refereed)
Abstract [en]

Most safety-critical systems must undergo assurance and certification processes. The associated activities can be complex and labour-intensive, thus practitioners need suitable means to execute them. The activities are further becoming more challenging as a result of the evolution of the systems towards cyber-physical ones, as these systems have new assurance and certification needs. The AMASS project (Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems) tackled these issues by creating and consolidating the de-facto European-wide open tool platform, ecosystem, and self-sustainable community for assurance and certification of cyber-physical systems. The project defined a novel holistic approach for architecture-driven assurance, multi-concern assurance, seamless interoperability, and cross- and intra-domain reuse of assurance assets. AMASS results were applied in 11 industrial case studies to demonstrate the reduction of effort in assurance and certification, the reduction of (re)certification cost, the reduction of assurance and certification risks, and the increase in technology harmonisation and interoperability. 

Place, publisher, year, edition, pages
Springer, 2019
Series
Lecture Notes in Computer Science, ISSN 0302-9743 ; 11915 LNCS
National Category
Computer Systems
Identifiers
urn:nbn:se:mdh:diva-46640 (URN)10.1007/978-3-030-35333-9_49 (DOI)2-s2.0-85076563257 (Scopus ID)9783030353322 (ISBN)
Conference
20th International Conference on Product-Focused Software Process Improvement, PROFES 2019; Barcelona; Spain; 27 November 2019 through 29 November 2019
Available from: 2020-01-02 Created: 2020-01-02 Last updated: 2020-01-02Bibliographically approved
Sheikh Bahaei, S. & Gallina, B. (2019). Augmented Reality-extended Humans: Towards a Taxonomy of Failures – Focus on Visual Technologies. In: Proceedings of the 29th European Safety and Reliability Conference: . Paper presented at 29th European Safety and Reliability Conference ESREL-2019, 22 Sep 2019, Hannover, Germany (pp. 207-214). Hannover, Germany: Research Publishing Services
Open this publication in new window or tab >>Augmented Reality-extended Humans: Towards a Taxonomy of Failures – Focus on Visual Technologies
2019 (English)In: Proceedings of the 29th European Safety and Reliability Conference, Hannover, Germany: Research Publishing Services , 2019, p. 207-214Conference paper, Published paper (Refereed)
Abstract [en]

Augmented reality, e.g. immersive visual technologies, augment the human's capabilities. If not properly designed, such augmentation may contribute to the decrease of the human's awareness (e.g., due to distraction) and reaction time efficiency, leading to catastrophic consequences, when included within safety-critical socio-technical systems. Current state-of-the-art taxonomies and vocabularies on human failures do not consider the augmented realityextended humans. In this paper, first, we review, harmonize and systematically organize the existing human failure taxonomies and vocabularies. More specifically, we consider the existing taxonomies as a product line and propose a feature diagram (visual specification of product lines), which includes the human's functions and the potential failures of those functions, and where commonalities and variabilities represent the evolution over time. Then, to deal with immersive visual technologies, we make the diagram evolve by including additional features. Our feature diagram-given taxonomies of taxonomies may serve as the foundation for failure logic-based analysis of imagecentric socio-technical systems.

Place, publisher, year, edition, pages
Hannover, Germany: Research Publishing Services, 2019
Keywords
Human Failure Taxonomies, Immersive Visual Technology, Augmented Reality, Safety-criticality, Socio-technical Systems, Feature Models
National Category
Engineering and Technology Computer Systems
Identifiers
urn:nbn:se:mdh:diva-45491 (URN)10.3850/978-981-11-2724-3_ 0922-cd (DOI)978-981-11-2724-3 (ISBN)
Conference
29th European Safety and Reliability Conference ESREL-2019, 22 Sep 2019, Hannover, Germany
Projects
ImmerSafe - Immersive Visual Technologies for Safety-critical Applications
Available from: 2019-10-29 Created: 2019-10-29 Last updated: 2020-05-28Bibliographically approved
Gallina, B., Javed, M. A., Martin, H. & Bramberger, R. (2019). Co-engineering of security and safety life-cycles for engineering security-informed safety-critical automotive systems in compliance with SAE J3061 and ISO 26262. In: 24th International Conference on Reliable Software Technologies Ada-Europe-2019: . Paper presented at 24th International Conference on Reliable Software Technologies Ada-Europe-2019, 10 Jun 2019, Warsaw, Poland.
Open this publication in new window or tab >>Co-engineering of security and safety life-cycles for engineering security-informed safety-critical automotive systems in compliance with SAE J3061 and ISO 26262
2019 (English)In: 24th International Conference on Reliable Software Technologies Ada-Europe-2019, 2019Conference paper, Published paper (Refereed)
National Category
Engineering and Technology Computer Systems
Identifiers
urn:nbn:se:mdh:diva-45032 (URN)
Conference
24th International Conference on Reliable Software Technologies Ada-Europe-2019, 10 Jun 2019, Warsaw, Poland
Projects
AMASS - Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems
Available from: 2019-08-26 Created: 2019-08-26 Last updated: 2019-08-26Bibliographically approved
Haider, Z., Gallina, B., Carlsson, A., Mazzini, S. & Puri, S. (2019). Concerto FLA-based multi-concern assurance for space systems. Ada User Journal, 40(1), 35-39
Open this publication in new window or tab >>Concerto FLA-based multi-concern assurance for space systems
Show others...
2019 (English)In: Ada User Journal, ISSN 1381-6551, Vol. 40, no 1, p. 35-39Article in journal (Refereed) Published
Abstract [en]

Space systems often need to be engineered in compliance with standards such as ECSS and need to ensure a certain degree of dependability. Given the multi-faceted nature of dependability (characterized by a set of concerns), assuring dependability implies multi-concern assurance, which requires the modelling of various system characteristics and their co-assessment and co-analysis, in order to enable the management of trade-offs between them. CHESS is a systems engineering methodology and an open source toolset, which includes ConcertoFLA. ConcertoFLA allows users (system architects and dependability engineers) to decorate component-based architectural models with dependability-related information, execute Failure Logic Analysis (FLA) techniques, and get the results back-propagated onto the original model. In this paper, we present the customization of the CHESS methodology and ConcertoFLA in the context of the ECSS standards to enable architects and dependability engineers to define a system and perform dependability-centered co-analysis for assuring the required non-functional properties of the system according to ECSS requirements. The proposed customization is then applied in the context of spacecraft Attitude Control Systems engineering, which is a part of satellite on-board software. 

Place, publisher, year, edition, pages
Ada-Europe, 2019
Keywords
CHESS toolset, Dependability analysis, Dependability assurance, ECSS standard series, Failure Logic Analysis, Multi-concern
National Category
Computer Systems
Identifiers
urn:nbn:se:mdh:diva-44662 (URN)2-s2.0-85067085087 (Scopus ID)
Available from: 2019-06-27 Created: 2019-06-27 Last updated: 2019-06-27Bibliographically approved
Nešić, D., Nyberg, M. & Gallina, B. (2019). Constructing product-line safety cases from contract-based specifications. In: Proceedings of the ACM Symposium on Applied Computing: . Paper presented at 34th Annual ACM Symposium on Applied Computing, SAC 2019, 8 April 2019 through 12 April 2019 (pp. 2022-2031). Association for Computing Machinery
Open this publication in new window or tab >>Constructing product-line safety cases from contract-based specifications
2019 (English)In: Proceedings of the ACM Symposium on Applied Computing, Association for Computing Machinery , 2019, p. 2022-2031Conference paper, Published paper (Refereed)
Abstract [en]

Safety cases are used to argue that safety-critical systems satisfy the requirements that are determined to mitigate the potential hazards in the systems operating environment. Although typically a manual task, safety cases have been successfully created for systems without many configuration options. However, in highly configurable systems, typically developed as a Product Line (PL), arguing about each possible configuration, and ensuring the completeness of the safety case are still open research problems. This paper presents a novel and general approach, based on Contract-Based Specification (CBS), for the construction of a safety case for an arbitrary PL. Starting from a general CBS framework, we present a PL extensions that allows expressing configurable systems and preserves the properties of the original CBS framework. Then, we define the transformation from arbitrary PL models, created using extended CBS framework, to a safety case argumentation-structure, expressed using the Goal Structuring Notation. Finally, the approach is exemplified on a simplified, but real, and currently produced system by Scania CV AB.

Place, publisher, year, edition, pages
Association for Computing Machinery, 2019
Keywords
Contract-based specification, Product line engineering, Safety case, Electric circuit breakers, Specifications, Argumentation structures, Based specification, Configuration options, Goal structuring notation, Operating environment, Safety critical systems, Safety engineering
National Category
Computer and Information Sciences
Identifiers
urn:nbn:se:mdh:diva-43503 (URN)10.1145/3297280.3297479 (DOI)000474685800280 ()2-s2.0-85065658280 (Scopus ID)
Conference
34th Annual ACM Symposium on Applied Computing, SAC 2019, 8 April 2019 through 12 April 2019
Note

Conference code: 147772; Export Date: 24 May 2019; Conference Paper

Available from: 2019-06-11 Created: 2019-06-11 Last updated: 2019-10-11Bibliographically approved
Organisations
Identifiers
ORCID iD: ORCID iD iconorcid.org/0000-0002-6952-1053

Search in DiVA

Show all publications