mdh.sePublications
Change search
Refine search result
123 1 - 50 of 108
CiteExportLink to result list
Permanent link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Rows per page
  • 5
  • 10
  • 20
  • 50
  • 100
  • 250
Sort
  • Standard (Relevance)
  • Author A-Ö
  • Author Ö-A
  • Title A-Ö
  • Title Ö-A
  • Publication type A-Ö
  • Publication type Ö-A
  • Issued (Oldest first)
  • Issued (Newest first)
  • Created (Oldest first)
  • Created (Newest first)
  • Last updated (Oldest first)
  • Last updated (Newest first)
  • Disputation date (earliest first)
  • Disputation date (latest first)
  • Standard (Relevance)
  • Author A-Ö
  • Author Ö-A
  • Title A-Ö
  • Title Ö-A
  • Publication type A-Ö
  • Publication type Ö-A
  • Issued (Oldest first)
  • Issued (Newest first)
  • Created (Oldest first)
  • Created (Newest first)
  • Last updated (Oldest first)
  • Last updated (Newest first)
  • Disputation date (earliest first)
  • Disputation date (latest first)
Select
The maximal number of hits you can export is 250. When you want to export more records please use the 'Create feeds' function.
  • 1.
    Asplund, Lars
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Johnson, B.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Burns, Alan
    Session Summary: The Ravenscar Profile and Implementation Issues1999In: ACM SIGAda Ada Letters, Vol. XIX, no 2, p. 12-14Article in journal (Other academic)
  • 2.
    Asplund, Lars
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Safety Critical Systems Based on Formal Models2000In: ACM SIGAda Letters, ISSN 1094-3641, Vol. XX, no 4, p. 32-39Article in journal (Refereed)
    Abstract [en]

    The Ravenscar profile for high integrity systems using Ada 95 is well defined in all real-time aspects. The complexity of the run-time system has been reduced to allow full utilization of formal methods for applications using the Ravenscar profile. In the Mana project a tool set is being developed including a formal model of a Ravenscar compliant run-time system, a gnat compatible run-time system, and an ASIS based tool to allow for the verification of a system including both COTS and code that is reused.

  • 3.
    Asplund, Lars
    et al.
    Uppsala University, Sweden.
    Lundqvist, Kristina
    Massachusetts Institute of Technology, USA.
    Safety Critical Systems Based on Formal Models2000In: ACM SIGAda Ada Letters - special issue on presentations from SIGAda 2000, Vol. XX, Iss. 4, 2000Conference paper (Other academic)
  • 4.
    Asplund, Lars
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    MIT, Cambridge, MA, United States .
    The Gurkh Project: A Framework for Verification and Execution of Mission Critical Applications2003In: AIAA/IEEE Digital Avionics Systems Conference - Proceedings, vol. 2, 2003, p. 10.B.1/1-10.B.1/9Conference paper (Other academic)
    Abstract [en]

    The paper contributes with three methods that together will make a complete tool-set for verification of mission critical applications. The first method is the transformation of existing Ada or VHDL code into an intermediate form. This form is used for verification by numerous different model checkers. The second method is a predictable runtime kernel that has both a verifiable formal model and is implemented in hardware to achieve full predictability. Finally, a method for transforming the intermediate form of the complete system into a hardware unit, the SafetyChip that performs runtime control of the system. This SafetyChip can catch 'out-of-state' behaviors.

  • 5.
    Berglund, Anders
    et al.
    Uppsala University, Sweden.
    Daniels, Mats
    Uppsala University, Sweden.
    Lundqvist, Kristina
    Uppsala University, Sweden.
    Westlund, Elvy
    Mälardalen University, School of Innovation, Design and Engineering.
    Encouraging Active Participation in Programming Classes1996In: Selected papers from the 7th national conference on college teaching and learning, 1996Conference paper (Other academic)
  • 6.
    Björnander, Stefan
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Grunske, Lars
    Faculty of ICT, Swinburne University of Technology, Hawthorn VIC 3122, Australia.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Timed Simulation of Extended AADL-Based Architecture Specifications with Timed Abstract State Machines2009In: Architectures for Adaptive Software Systems: 5th International Conference on the Quality of Software Architectures, QoSA 2009, East Stroudsburg, PA, USA, June 24-26, 2009 Proceedings, Berlin: Springer, 2009, p. 101-115Chapter in book (Refereed)
    Abstract [en]

    The Architecture Analysis and Design Language (AADL) is a popular language for architectural modeling and analysis of software intensive systems in application domains such as automotive, avionics, railway and medical systems. These systems often have stringent real-time requirements. This paper presents an extension to AADL's behavior model using time annotations in order to improve the evaluation of timing properties in AADL. The translational semantics of this extension is based on mappings to the Timed Abstract State Machines (TASM) language. As a result, timing analysis with timed simulation or timed model checking is possible. The translation is supported by art Eclipse-based plug-in and the approach is validated with a case study of an industrial production cell system.

  • 7.
    Björnander, Stefan
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Land, Rikard
    System Safety CrossControl AB.
    Graydon, Patrick
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Conmy, Philippa
    University of York.
    A method to formally evaluate safety case arguments against a system architecture model2012In: Proceedings of International Symposium on Software Reliability Engineering Workshops, ISSREW, 2012, p. 337-342Conference paper (Refereed)
    Abstract [en]

    For a large and complex safety-critical system, where safety is ensured by a strict control over many properties, the safety information is structured into a safety case. As a small change to the system design may potentially affect a large section of the safety argumentation, a systematic method for evaluating the impact of system changes on the safety argumentation would be valuable. We have chosen two of the most common notations: the Goal Structuring Notation (GSN) for the safety argumentation and the Architecture Analysis and Design Language (AADL) for the system architecture model. In this paper, we address the problem of impact analysis by introducing the GSN and AADL Graph Evaluation (GAGE) method that maps safety argumentation structure against system architecture, which is also a prerequisite for successful composition of modular safety cases. In order to validate the method, we have implemented the GAGE tool that supports the mapping between the GSN and AADL notations and highlight changes in impact on the argumentation. © 2012 IEEE.

  • 8.
    Björnander, Stefan
    et al.
    CrossControl AB.
    Seceleanu, Cristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    A Formal Analysis Framework for AADL2011In: The Journal of Science and Technology, ISSN 0866-708X, Vol. 49, no 5Article in journal (Refereed)
    Abstract [en]

    As system failure of mission-critical embedded systems may result in serious consequences, the development process should include verification techniques already at the architectural design stage, in order to provide evidence that the architecture fulfils its requirements. The Architecture Analysis and Design Language (AADL) is a language designed for modeling embedded systems, and its Behavior Annex defines the behavior of the system. However, even though it is an internationally used industry standard, AADL still lacks a formal semantics and is not executable, which limits the possibility to perform formal verification. In this paper, we introduce a formal analysis framework for a subset of AADL and its Behavior Annex, which includes the following: a denotational semantics, its implementation in Standard ML, and a graphical Eclipse-based tool encapsulating the implementation. We also show how to perform model checking of AADL properties defined in the Computation Tree Logic (CTL).

  • 9.
    Björnander, Stefan
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Seceleanu, Cristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    ABV: A Verifier for the Architecture Analysis and Description Language (AADL)2011In: 16th IEEE International Conference on Engineering of Complex Computer Systems (ICECCS), 2011, 2011, p. 355-360Conference paper (Refereed)
  • 10.
    Björnander, Stefan
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Seceleanu, Cristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    The Architecture Analysis and Design Language and the Behavior Annex: A Denotational Semantics2011Report (Other academic)
    Abstract [en]

    We present a denotational semantics for the Architecture Analysis and Design Language with Behavior Annex and the Computational Tree logic. We also present tool support as an OSATE plug-in as well as the Production Cell case study.

  • 11.
    Björnfot, Lars
    et al.
    Uppsala University, Sweden.
    Asplund, Lars
    Uppsala University, Sweden.
    Lundqvist, Kristina
    Uppsala University, Sweden.
    Wall, Göran
    Uppsala University, Sweden.
    Distributed Run-Time System, a Protocol for Ada1993In: Proc. Ada-Europe'93, LNCS 688, 1993, p. 249-263Conference paper (Other academic)
    Abstract [en]

    The requirements and specification of a protocol for low level communication between the run-time systems in a distributed Ada environment is presented. This allows an Ada system to be separated into software resources and run-time controllers. Calls to the local run-time system of a node, concerning task management, are transformed into remote calls to the controller, that schedules all tasks in the application. The calls to the run-time system together with all messages, requests and replies, that are triggered as a consequence, are described. The controller will be implemented in hardware separate from the processors. Communication between processors and controllers are by means of high speed (Gigabit) networks. In the proposed system, partitioning and distribution of Ada programs can fully utilize the inherent and strong type checking in Ada.

  • 12.
    Björnfot, Lars
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Uppsala University, Uppsala, Sweden.
    Wall, Göran
    Uppsala University, Uppsala, Sweden.
    Asplund, Lars
    Uppsala University, Uppsala, Sweden.
    Distribution of Tasks Within a Centrally Scheduled Local Area Network1994In: Proc. Ada-Europe'94, LNCS 887, 1994, p. 421-432Conference paper (Other academic)
    Abstract [en]

    Distribution of a single Ada program on a local area network is accomplished by partitioning the run-time system into two parts. A central scheduling module is responsible for task management. Distributed run-time executives handle context switches and remote entry calls; however all activities are supervised by the scheduler. The scheduler can be implemented in hardware in order to achieve high efficiency. A network based on optical fibers is necessary due to the high speed required for system calls. Asynchronous Transfer Mode is suggested as the protocol for the communication. We describe an implementation of the divided run-time system on an Ethernet network, using MC68030-based micro computers as targets and an Ada program executing on a Rational host as the scheduler.

  • 13.
    Björnfot, Lars
    et al.
    Uppsala University, Sweden.
    Lundqvist, Kristina
    Uppsala University, Sweden.
    Wall, Göran
    Uppsala University, Sweden.
    Asplund, Lars
    Uppsala University, Sweden.
    Termination of Ada Tasks in Hardware1995In: Proc. TRI-Ada'95, 1995, p. 474-486Conference paper (Other academic)
  • 14. Boussemart, Yves
    et al.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    The Gurkh Framework: an Industrial Case Study and Certification Issues for Safety Critical Software2006Conference paper (Other academic)
  • 15.
    Boussemart, Yves
    et al.
    Massachusetts Institute of Technology, USA.
    Ouimet, Martin
    Massachusetts Institute of Technology, USA.
    Gorelov, Sebastien
    Massachusetts Institute of Technology, USA.
    Lundqvist, Kristina
    Massachusetts Institute of Technology, USA.
    Non-Intrusive System-Level Fault Tolerance for an Electronic Throttle Controller2006In: Proceedings ICN 2006, ICONS 2006, MVL 2006, 2006Conference paper (Refereed)
    Abstract [en]

    This paper describes the methodology used to add nonintrusive system-level fault tolerance to an electronic throttle controller. The original model of the throttle controller is a hybrid system created at a major automotive company. We use Gurkh as a framework within which we translate the hybrid model into a set of timed automata and perform analysis using formal methods. The first step of the translation process is to transform the hybrid model and its static schedule into Gurkh’s preemptive tasking paradigm. Using the UPPAAL tool, we then check the correctness of the resulting set of timed-automata by formally verifying reachability and timing properties. We also propose a method for quantifying the quality of the translation by estimating the amount of jitter thence introduced. The final step is the implementation of a Monitoring Chip based on the formal system model. The chip provides non-intrusive "out-of-path" and timing error detection which in turn allows for fault tolerance at a system level.

  • 16.
    Causevic, Aida
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Fotouhi, Hossein
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Data Security and Privacy in Cyber-Physical Systems for Healthcare2017In: Security and Privacy in Cyber-Physical Systems: Foundations, Principles, and Applications / [ed] Houbing Song D, Glenn A. Fink PhD, and Sabina Jeschke Dr. rer. nat., Wiley-IEEE Press , 2017, p. 305-320Chapter in book (Other academic)
  • 17.
    Dardar, Raghad
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Gallina, Barbara
    Mälardalen University, School of Innovation, Design and Engineering.
    Johnsen, Andreas
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Nyberg, Mattias
    Scania AB, Södertälje, Sweden.
    Industrial Experiences of Building a Safety Case in Compliance with ISO 262622012In: 23RD IEEE INTERNATIONAL SYMPOSIUM ON SOFTWARE RELIABILITY ENGINEERING WORKSHOPS (ISSREW 2012), 2012, p. 349-354Conference paper (Refereed)
    Abstract [en]

    The ISO 26262 functional safety standard provides appropriate development processes, requirements and safety integrity levels specific for the automotive domain. One crucial requirement consists of the creation of a safety case, a structured argument, which inter-relates evidence and claims, needed to show that safety-critical systems are acceptably safe. The standard is currently not mandatory to be applied to safety critical systems installed in heavy trucks; however, this is likely to be changed by 2016. This paper describes the experience gathered by applying the standard to the Fuel Level Estimation and Display System, a subsystem that together with other subsystems plays a significant role in terms of global system safety for heavy trucks manufactured by Scania. More specifically, exploratory and laborious work related to the creation of a safety case in compliance with ISO 26262 in an inexperienced industrial setting is described, and the paper ends with presenting some lessons learned together with guidelines to facilitate the adoption of ISO 26262.

  • 18.
    Forsberg, Håkan
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Ekstrand, Fredrik
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Otterskog, Magnus
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Early Results and Ideas for Enhancements of the Master of Engineering Programme in Dependable Aerospace Systems2017In: The 6th Development Conference for Swedish Engineering USIU2017, 2017Conference paper (Refereed)
    Abstract [en]

    The five-year Master of Engineering Programme in Dependable Aerospace Systems, with dependability as its silver thread, started at Mälardalen University (MDH) in 2015. This paper presents selected ideas behind the creation of the programme, together with some preliminary analysis of current results and suggested enhancements for the programme’s fourth and fifth years.

  • 19.
    Forsberg, Kristina
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems. Saab AB, Sweden.
    Mårbring Isaksson, Eva
    Saab AB, Sweden.
    Gallina, Barbara
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Penna, Achille
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Elaboration of Safety Requirements2013In: AIAA/IEEE Digital Avionics Systems Conference - Proceedings2013, 2013, p. 7C21-7C29Conference paper (Refereed)
    Abstract [en]

    According to the aircraft standard ARP4754A, requirements should be carefully traced and validated. A systematic methodology for safety requirements elaboration (refinement/decomposition as well as allocation management) is lacking. To overcome this lack, an ARP-aligned and DOORS implementable approach called RAP (Requirements Allocation Process) is proposed. RAP offers a textual as well as graphical means for managing safety requirements. Besides supporting requirements decomposition and allocation, RAP also supports design decisions. The usefulness of RAP is illustrated by an example, applying the approach to a High Lift System.

  • 20.
    Fotouhi, Hossein
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Causevic, Adnan
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Björkman, Mats
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Communication and Security in Health Monitoring Systems - A Review2016In: Proceedings - International Computer Software and Applications Conference, 2016, p. 545-554Conference paper (Refereed)
    Abstract [en]

    The fast development of sensing devices and radios enables more powerful and flexible remote health monitoring systems. Considering the future vision of the Internet of Things (IoT), many requirements and challenges rise to the design and implementation of such systems. Bridging the gap between sensor nodes on the human body and the Internet becomes a challenging task in terms of reliable communications. Additionally, the systems will not only have to provide functionality, but also be highly secure. In this paper, we provide a survey on existing communication protocols and security issues related to pervasive health monitoring, describing their limitations, challenges, and possible solutions. We propose a generic protocol stack design as a first step toward handling interoperability in heterogeneous low-power wireless body area networks.

  • 21.
    Gallina, Barbara
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Gallucci, Antonio
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Nyberg, Mattias
    Scania, Sweden.
    VROOM & cC: a Method to Build Safety Cases for ISO 26262-compliant Product Lines2013In: Proceedings of SASSUR@SAFECOMP. 2013, 2013Conference paper (Refereed)
  • 22.
    Gallina, Barbara
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    THRUST: A method for speeding up the creation of process-related deliverables2014Conference paper (Refereed)
    Abstract [en]

    Certification of safety-critical avionics systems is an expensive and time-consuming activity due to the necessity of providing numerous deliverables. Some of these deliverables are process-related. To reduce time and cost related to the provision of process-related deliverables, in this paper, we propose to combine three approaches: the safety-oriented process line engineering approach, the process-based argumentation line approach, and the model driven certification-oriented approach. More specifically, we focus on safety-related processes for the development of avionics systems and we define how these three approaches are combined and which techniques, tools and guidelines should be used to implement the resulting approach, called THRUST. Advantages and disadvantages of possible existing techniques and tools are discussed and proposals as well as conceptual solutions for new techniques are sketched. Based on the sketched conceptual solutions, we then apply THRUST to speed up the creation of process-related deliverables in compliance with DO-178B/C.

  • 23.
    Gallina, Barbara
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Forsberg, Kristina
    Saab AB, Jonkoping, Sweden..
    THRUST: A METHOD FOR SPEEDING UP THE CREATION OF PROCESS-RELATED DELIVERABLES2014In: 2014 IEEE/AIAA 33RD DIGITAL AVIONICS SYSTEMS CONFERENCE (DASC), IEEE , 2014Conference paper (Refereed)
    Abstract [en]

    Certification of safety-critical avionics systems is an expensive and time-consuming activity due to the necessity of providing numerous deliverables. Some of these deliverables are process-related. To reduce time and cost related to the provision of process-related deliverables, in this paper, we propose to combine three approaches: the safety-oriented process line engineering approach, the process-based argumentation line approach, and the model driven certification-oriented approach. More specifically, we focus on safety-related processes for the development of avionics systems and we define how these three approaches are combined and which techniques, tools and guidelines should be used to implement the resulting approach, called THRUST. Advantages and disadvantages of possible existing techniques and tools are discussed and proposals as well as conceptual solutions for new techniques are sketched. Based on the sketched conceptual solutions, we then apply THRUST to speed up the creation of process-related deliverables in compliance with DO-178B/C.

  • 24.
    Gallina, Barbara
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Forsberg, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems. Malardalen Univ, Sch Innovat Design & Engn, Vasteras, Sweden.;Saab AB, Jonkoping, Sweden..
    THRUST: A Method for Speeding up the Creation of Process-related Deliverables2014In: 2014 IEEE/AIAA 33RD DIGITAL AVIONICS SYSTEMS CONFERENCE (DASC), IEEE , 2014Conference paper (Refereed)
  • 25.
    Gallina, Barbara
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Pitchai, K. R.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    S-TunExSPEM: Towards an extension of SPEM 2.0 to model and exchange tunable safety-oriented processes2014In: Software Engineering Research, Management and Applications, Springer, 2014, p. 215-230Chapter in book (Refereed)
    Abstract [en]

    Prescriptive process-based safety standards (e.g. EN 50128, DO-178B, etc.) incorporate best practices to be adopted to develop safety-critical systems or software. In some domains, compliance with the standards is required to get the certificate from the certification authorities. Thus, a well-defined interpretation of the processes to be adopted is essential for certification purposes. Currently, no satisfying means allows process engineers and safety managers to model and exchange safety-oriented processes. To overcome this limitation, this paper proposes S-TunExSPEM, an extension of Software & Systems Process Engineering Meta-Model 2.0 (SPEM 2.0) to allow users to specify safety-oriented processes for the development of safety-critical systems in the context of safety standards according to the required safety level. Moreover, to enable exchange for simulation, monitoring, execution purposes, S-TunExSPEM concepts are mapped onto XML Process Definition Language 2.2 (XPDL 2.2) concepts. Finally, a case-study from the avionics domain illustrates the usage and effectiveness of the proposed extension.

  • 26.
    Hansson, Hans
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Carlson, Jan
    Mälardalen University, School of Innovation, Design and Engineering.
    Isovic, Damir
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Nolte, Thomas
    Mälardalen University, School of Innovation, Design and Engineering.
    Ouimet, Martin
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    Punnekkat, Sasikumar
    Mälardalen University, School of Innovation, Design and Engineering.
    Seceleanu, Cristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Real-Time Systems2010Book (Other academic)
    Abstract [en]

    This is a textbook developed for use in the Master Programme Module E-M.6 "Real-Time Systems" as part of the Postgraduate Distance studies organized by Fraunhofer IESE and the Distance and International Studies Center at the Technical University of Kaiserslauten, Germany.

  • 27.
    Hansson, Hans
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Nolte, Thomas
    Mälardalen University, School of Innovation, Design and Engineering.
    Axelsson, Jakob
    Mälardalen University, School of Innovation, Design and Engineering.
    Björkman, Mats
    Mälardalen University, School of Innovation, Design and Engineering.
    Carlson, Jan
    Mälardalen University, School of Innovation, Design and Engineering.
    Crnkovic, Ivica
    Mälardalen University, School of Innovation, Design and Engineering.
    Lisper, Björn
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Norström, Christer
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    Punnekkat, Sasikumar
    Mälardalen University, School of Innovation, Design and Engineering.
    Sjödin, Mikael
    Mälardalen University, School of Innovation, Design and Engineering.
    The PROGRESS Centre for Predictable Embedded Software Systems - Half-time report (edited version)2010Report (Other academic)
    Abstract [en]

    Presentation of the achievements and activities within the PROGRESS national strategic research centre 2006-2008

  • 28.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Dodig-Crnkovic, Gordana
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Hänninen, Kaj
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Risk-based decision-making fallacies: Why present functional safety standards are not enough2017In: Proceedings - 2017 IEEE International Conference on Software Architecture Workshops, ICSAW 2017: Side Track Proceedings, Institute of Electrical and Electronics Engineers Inc. , 2017, p. 153-160Conference paper (Refereed)
    Abstract [en]

    Functional safety of a system is the part of its overall safety that depends on the system operating correctly in response to its inputs. Safety is defined as the absence of unacceptable/unreasonable risk by functional safety standards, which enforce safety requirements in each phase of the development process of safety-critical software and hardware systems. Acceptability of risks is judged within a framework of analysis with contextual and cultural aspects by individuals who may introduce subjectivity and misconceptions in the assessment. While functional safety standards elaborate much on the avoidance of unreasonable risk in the development of safety-critical software and hardware systems, little is addressed on the issue of avoiding unreasonable judgments of risk. Through the studies of common fallacies in risk perception and ethics, we present a moral-psychological analysis of functional safety standards and propose plausible improvements of the involved risk-related decision making processes, with a focus on the notion of an acceptable residual risk. As a functional safety reference model, we use the functional safety standard ISO 26262, which addresses potential hazards caused by malfunctions of software and hardware systems within road vehicles and defines safety measures that are required to achieve an acceptable level of safety. The analysis points out the critical importance of a robust safety culture with developed countermeasures to the common fallacies in risk perception, which are not addressed by contemporary functional safety standards. We argue that functional safety standards should be complemented with the analysis of potential hazards caused by fallacies in risk perception, their countermeasures, and the requirement that residual risks must be explicated, motivated, and accompanied by a plan for their continuous reduction. This approach becomes especially important in contemporary developed autonomous vehicles with increasing computational control by increasingly intelligent software applications.

  • 29.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering. Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Kristina, Lundqvist
    Mälardalen University, School of Innovation, Design and Engineering. Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering. Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Hänninen, Kaj
    Mälardalen University, School of Innovation, Design and Engineering. Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Regression verification of AADL models through slicing of system dependence graphs2014In: QoSA 2014 - Proceedings of the 10th International ACM SIGSOFT Conference on Quality of Software Architectures (Part of CompArch 2014), 2014, p. 103-112Conference paper (Refereed)
    Abstract [en]

    Design artifacts of embedded systems are subjected to a number of modifications during the development process. Verified artifacts that subsequently are modified must nec- essarily be re-Verified to ensure that no faults have been introduced in response to the modification. We collectively call this type of verification as regression verification. In this paper, we contribute with a technique for selective regression verification of embedded systems modeled in the Architec- ture Analysis and Design Language (AADL). The technique can be used with any AADL-based verification technique to eficiently perform regression verification by only selecting verification sequences that cover parts that are afiected by the modification for re-execution. This allows for the avoid- ance of unnecessary re-verification, and thereby unnecessary costs. The selection is based on the concept of specification slicing through system dependence graphs (SDGs) such that the efiect of a modification can be identified.

  • 30.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Developing dependable software-intensive systems: AADL vs. EAST-ADL2011In: Lecture Notes in Computer Science, vol. 6652, Springer, 2011, p. 103-117Chapter in book (Refereed)
    Abstract [en]

    Dependable software-intensive systems, such as embedded systems for avionics and vehicles are often developed under severe quality, schedule and budget constraints. As the size and complexity of these systems dramatically increases, the architecture design phase becomes more and more significant in order to meet these constraints. The use of Architecture Description Languages (ADLs) provides an important basis for mutual communication, analysis and evaluation activities. Hence, selecting an ADL suitable for such activities is of great importance. In this paper we compare and investigate the two ADLs - AADL and EAST-ADL. The level of support provided to developers of dependable software-intensive systems is compared, and several critical areas of the ADLs are highlighted. Results of using an extended comparison framework showed many similarities, but also one clear distinction between the languages regarding the perspectives and the levels of abstraction in which systems are modeled. © 2011 Springer-Verlag.

  • 31.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Hänninen, Kaj
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    AQAT: The Architecture Quality Assurance Tool for Critical Embedded Systems2017In: Proceedings - International Symposium on Software Reliability Engineering, ISSRE, Volume 2017, 2017, p. 260-270, article id 8109092Conference paper (Refereed)
    Abstract [en]

    Architectural engineering of embedded systems comprehensively affects both the development processes and the abilities of the systems. Verification of architectural engineering is consequently essential in the development of safety- and mission-critical embedded system to avoid costly and hazardous faults. In this paper, we present the Architecture Quality Assurance Tool (AQAT), an application program developed to provide a holistic, formal, and automatic verification process for architectural engineering of critical embedded systems. AQAT includes architectural model checking, model-based testing, and selective regression verification features to effectively and efficiently detect design faults, implementation faults, and faults created by maintenance modifications. Furthermore, the tool includes a feature that analyzes architectural dependencies, which in addition to providing essential information for impact analyzes of architectural design changes may be used for hazard analysis, such as the identification of potential error propagations, common cause failures, and single point failures. Overviews of both the graphical user interface and the back-end processes of AQAT are presented with a sensor-to-actuator system example.

  • 32.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Hänninen, Kaj
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Torelm, M.
    Bombardier Transportation Sweden AB, Västerås, Sweden.
    AQAF: An architecture quality assurance framework for systems modeled in AADL2016In: Proceedings - 2016 12th International ACM SIGSOFT Conference on Quality of Software Architectures, QoSA 2016, 2016, p. 31-40Conference paper (Refereed)
    Abstract [en]

    Architecture engineering is essential to achieve dependability of critical embedded systems and affects large parts of the system life cycle. There is consequently little room for faults, which may cause substantial costs and devastating harm. Verification in architecture engineering should therefore be holistically and systematically managed in the development of critical embedded systems, from requirements analysis and design to implementation and maintenance. In this paper, we address this problem by presenting AQAF: an Architecture Quality Assurance Framework for critical embedded systems modeled in the Architecture Analysis and Design Language (AADL). The framework provides a holistic set of verification techniques with a common formalism and semantic domain, architecture flow graphs and timed automata, enabling completely formal and automated verification processes covering virtually the entire life cycle. The effectiveness and efficiency of the framework are validated in a case study comprising a safety-critical train control system. 

  • 33.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    Architecture-Based Regression Verification of AADL SpecificationsManuscript (preprint) (Other academic)
    Abstract [en]

    Design artifacts of dependable embedded systems, and the systems themselves, are subjected to a number of modifications during the development process. Verified artifacts that subsequently are modified must necessarily be re-verified to ensure that no faults have been introduced in response to the modification. We collectively call this type of verification as regression verification. Studies show that regression testing alone consumes a vast amount of the total development cost. This is likely a result of unnecessary verification of parts that are not affected by the modification. In this paper, we propose an architecture-based selective regression verification technique for the development process of dependable embedded systems specified in the Architecture Analysis and Design Language (AADL). The selection of necessary regression verification sequences is based on the concept of specification slicing through System Dependence Graphs (SDGs). This allows for the avoidance of unnecessary re-verification, and thereby unnecessary costs.

  • 34.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Hänninen, Kaj
    Mälardalen University, School of Innovation, Design and Engineering, Embedded Systems.
    Torelm, Martin
    Bombardier Transp., Sweden .
    Experience Report: Evaluating Fault Detection Effectiveness and Resource Efficiency of the Architecture Quality Assurance Framework and Tool2017In: Proceedings - International Symposium on Software Reliability Engineering, ISSRE. Volume 2017, 2017, p. 271-281, article id 8109093Conference paper (Refereed)
    Abstract [en]

    The Architecture Quality Assurance Framework (AQAF) is a theory developed to provide a holistic and formal verification process for architectural engineering of critical embedded systems. AQAF encompasses integrated architectural model checking, model-based testing, and selective regression verification techniques to achieve this goal. The Architecture Quality Assurance Tool (AQAT) implements the theory of AQAF and enables automated application of the framework. In this paper, we present an evaluation of AQAT and the underlying AQAF theory by means of an industrial case study, where resource efficiency and fault detection effectiveness are the targeted properties of evaluation. The method of fault injection is utilized to guarantee coverage of fault types and to generate a data sample size adequate for statistical analysis. We discovered important areas of improvement in this study, which required further development of the framework before satisfactory results could be achieved. The final results present a 100% fault detection rate at the design level, a 98.5% fault detection rate at the implementation level, and an average increased efficiency of 6.4% with the aid of the selective regression verification technique.

  • 35.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    Jaradat, Omar
    Mälardalen University, School of Innovation, Design and Engineering.
    Automated Verification of AADL-Specifications Using UPPAAL2012In: Proceedings of the 14th IEEE International Symposium on High Assurance Systems Engineering (HASE), 2012, p. 130-138Conference paper (Refereed)
    Abstract [en]

    The Architecture Analysis and Design Language (AADL) is used to represent architecture design decisions of safety-critical and real-time embedded systems. Due to the far-reaching effects these decisions have on the development process, an architecture design fault is likely to have a significant deteriorating impact through the complete process. Automated fault avoidance of architecture design decisions therefore has the potential to significantly reduce the cost of the development while increasing the dependability of the end product. To provide means for automated fault avoidance when developing systems specified in AADL, a formal verification technique has been developed to ensure completeness and consistency of an AADL specification as well as its conformity with the end product. The approach requires the semantics of AADL to be formalized and implemented. We use the methodology of semantic anchoring to contribute with a formal and implemented semantics of a subset of AADL through a set of transformation rules to timed automata constructs. In addition, the verification technique, including the transformation rules, is validated using a case study of a safety-critical fuel-level system developed by a major vehicle manufacturer.

  • 36.
    Johnsen, Andreas
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Pettersson, Paul
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    An Architecture-Based Verification Technique for AADL Specifications2011Conference paper (Refereed)
    Abstract [en]

    Quality assurance processes of software-intensive systems are an increasing challenge as the complexity of these systems dramatically increases. The use of Architecture Description Languages (ADLs) provide an important basis for evaluation. The Architecture Analysis and Design Language (AADL) is an ADL developed for designing software intensive systems. In this paper, we propose an architecture-based verification technique covering the entire development process by adapting a combination of model-checking and model-based testing approaches to AADL specifications. The technique reveals inconsistencies of early design decisions and ensures a system's conformity with its AADL specification. The objective and criteria (test-selection) of the verification technique is derived from traditional integration testing.

  • 37.
    Kienle, Holger
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Sundmark, Daniel
    Mälardalen University, School of Innovation, Design and Engineering.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Johnsen, Andreas
    Mälardalen University, School of Innovation, Design and Engineering.
    Liability for Software in Safety-Critical Mechatronic Systems: An Industrial Questionnaire2012In: 2012 2nd International Workshop on Software Engineering for Embedded Systems, SEES 2012 - Proceedings, 2012, p. 44-50Conference paper (Refereed)
    Abstract [en]

    There is very little research on how industry is dealing with the risk of legal liability when constructing safety- critical mechatronic systems that are also software intensive. In this paper we propose a case study approach with the goal to understand how liability concerns in this setting impact software development in industry. The approach takes into account that software development is embedded into a complex socio-technical context involving stakeholders from technical, managerial and legal backgrounds. We present first results of our case study from a questionnaire involving six companies that develop software- intensive, safety-critical systems in the vehicular and avionics domains. The results of the questionnaire shed light on current industrial practices and concerns. The results indicate that liability seems indeed a concern and that a more in-depth analysis of this topic would be desirable to better understand the strategies that are used by industry to address liability risks.

  • 38.
    Lundqvist, Kristina
    Mälardalen University, School of Innovation, Design and Engineering.
    Towards System-level Fault-tolerance Using Formal Methods And Soc Methodologies2007In: Unique Chips and Systems, CRC Press, 2007, p. 299-324Chapter in book (Other academic)
  • 39.
    Lundqvist, Kristina
    et al.
    Uppsala Univ., Sweden.
    Asplund, Lars
    Uppsala Univ., Sweden.
    A Formal Model of a Run-Time Kernel for Ravenscar1999In: Proc. 6th International Conference on Real-Time Computing Systems and Applications - RTCSA'99, Hong-Kong, 1999, p. 504-507Conference paper (Other academic)
    Abstract [en]

    The Ravenscar tasking profile for Ada 95 has been designed to allow implementation of highly safety critical systems in Ada. Ravenscar defines a tasking run-time system with deterministic behaviour and low complexity. We provide a formal model of the primitives provided by Ravenscar including exceptions. This formal model can be used to verify safety properties of applications targeting a Ravenscar-compliant run-time system. As an illustration of this, we model a sample application using all features of Ravenscar and formally verify its correctness using the real-time model checker UPPAAL

  • 40.
    Lundqvist, Kristina
    et al.
    Uppsala University, Sweden.
    Asplund, Lars
    Uppsala University, Sweden.
    A Formal Model of the Ada Ravenscar Tasking Profile; Delay Until1999In: Proc. ACM SIGAda Annual International Conference'99, 1999, p. 15-21Conference paper (Other academic)
    Abstract [en]

    The definition of the Ravenscar Tasking Profile for Ada 95 provides a definition of a tasking runtime system with deterministic behaviour and low enough complexity to permit a formal description and verification of the model. A complete run-time system is being modeled using the real-time model checker UPPAAL, and this work describes the handling of delay until. Since scheduling is not yet modelled a simple non-preemptive scheduler has been used when verifying the delay queue.

  • 41.
    Lundqvist, Kristina
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Asplund, Lars
    Mälardalen University, School of Innovation, Design and Engineering.
    A Ravenscar-Compliant Run-Time Kernel for Safety-Critical Systems2003In: The International Journal of Time-Critical Comuting, Vol. 24, no 1, p. 29-54Article in journal (Refereed)
    Abstract [en]

    The Ravenscar tasking profile for Ada 95 has been designed to allow implementation of highly safety critical systems. Ravenscar defines a tasking system with deterministic behavior and low complexity. We provide a formal model using UPPAAL of the primitives provided by Ravenscar including exceptions. This formal model is used to verify the correctness of the Ravenscar model and can be used to verify safety properties of applications using the Ravenscar profile. As an illustration of this, we model a sample application using all features of Ravenscar and formally verify its correctness. Furthermore, an introduction to the Ravenscar model is given.

  • 42.
    Lundqvist, Kristina
    et al.
    Uppsala University, Uppsala, Sweden.
    Asplund, Lars
    Uppsala University, Uppsala, Sweden.
    Michell, Stephen
    Maurya Software, Ontario, Canada.
    A Formal Model of the Ada Ravenscar Tasking Profile; Protected Objects1999In: Proc. Reliable Software Technologies, Ada-Europe'99, LNCS 1622, 1999, p. 12-25Conference paper (Other academic)
  • 43.
    Lundqvist, Kristina
    et al.
    Mälardalen University, School of Innovation, Design and Engineering.
    Srinivasan, J.
    Mälardalen University, School of Innovation, Design and Engineering.
    Why is Aerospace Software Development and Sustainment Hard?2005Other (Other academic)
  • 44.
    Lundqvist, Kristina
    et al.
    Massachusetts Institute of Technology, United States.
    Srinivasan, Jayakanth
    Massachusetts Institute of Technology, United States.
    A First Course in Software Engineering for Aerospace Engineers2006In: Software Engineering Education Conference, Proceedings, Volume 2006, 2006, p. 77-84Conference paper (Other academic)
  • 45.
    Lundqvist, Kristina
    et al.
    Massachusetts Institute of Technology, USA.
    Srinivasan, Jayakanth
    Massachusetts Institute of Technology, USA.
    Gorelov, Sebastien
    Massachusetts Institute of Technology, USA.
    Non-Intrusive System-Level Fault Tolerance2005In: Lecture Notes in Computer Science, Volume 3555, 2005, p. 156-166Conference paper (Other academic)
  • 46.
    Lundqvist, Kristina
    et al.
    Uppsala universitet.
    Wall, Göran
    Uppsala universitet.
    A Rendezvous with Linda1997In: ACM SIGAda Letters, ISSN 1094-3641, Vol. XVII, no 3, p. 87-96Article in journal (Refereed)
  • 47. Lundqvist, Kristina
    et al.
    Wall, Göran
    A Rendezvous with Linda1996In: Proc. Washington Ada Symposium'96, 1996Conference paper (Other academic)
  • 48.
    Lundqvist, Kristina
    et al.
    Uppsala University, Sweden.
    Wall, Göran
    Uppsala University, Sweden.
    Using Object Oriented Methods in Ada 95 to implement Linda1996In: Lecture Notes in Computer Science, Volume 1088, 1996, p. 211-222Conference paper (Other academic)
  • 49.
    Michell, Stephen
    et al.
    Maurya Software, Canada.
    Lundqvist, Kristina
    Uppsala University, Sweden.
    Extendable Dispatchable Task Communication Mechanisms1999In: IRTAW '99 Proceedings of the ninth international workshop on Real-time AdaPages 54-59, 1999, p. 54-59Conference paper (Other academic)
    Abstract [en]

    The addition of object-oriented features to Ada has left a disconnection between the object-oriented paradigm and the intertask communication and synchronisation paradigms. The lack of extensibility of tasks and protected types as well as the task synchronisation inheritance anomaly has made design of systems that use them with object oriented features more difficult. This paper proposes Ada language changes that would make protected types and tasks partners in object oriented programming and would cure the inheritance anomaly.

  • 50.
    Naeser, Gustaf
    et al.
    Mälardalen University, Department of Computer Science and Electronics.
    Lundqvist, Kristina
    Massachusetts Institute of Technology.
    Component-Based Approach to Run-Time Kernel Specification and Verification2005In: Proceedings - Euromicro Conference on Real-Time Systems, 2005, p. 68-76Conference paper (Other academic)
123 1 - 50 of 108
CiteExportLink to result list
Permanent link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf