CERTSOFT06 An International Workshop on Software Certification



Similar documents
A Software Certification Consortium and its Top 9 Hurdles

ISO/IEC Part 10 Safety Extension. Giuseppe Lami Istituto di Scienza e Tecnologie dell Informazione Consiglio Nezionale delle Ricerche Pisa

Software engineering 34 engineering DiMenSionS SepteMber/october 2011

Announcement of a new IAEA Co-ordinated Research Programme (CRP)

Mechanics of Materials and Structures Laboratory

Formal Modelling and Verification of an Asynchronous Extension of SOAP

Durability and Sustainability of Concrete Structures

Formalization of the CRM: Initial Thoughts

Sarah M. Loos. Education. Research Interests. Fellowships. Honors/Awards

MDEP Generic Common Position No DICWG 02

focus Despite more than 30 years effort to improve software quality, guest editors introduction Inspection s Role in Software Quality Assurance

Formal Methods Europe Minutes of the 45 th meeting Held at TU Eindhoven, The Netherlands 9 October 2007

Controlling Software Acquisition: Is Supplier s Software Process Capability Determination Enough?

How To Write A Contract For Software Quality Assurance

A New Quality Model for Natural Language Requirements Specifications

Achieving Functional Safety with Global Resources and Market Reach

EWICS TC7 an insider s tip for safety and security guidance 1 by Odd Nordland

Instrumentation-Based Verification for Medical-Device Software

Software Engineering Reference Framework

Envisioning a Requirements Specification Template for Medical Device Software

Final Assessment Report of the Review of the Cognitive Science Program (Option) July 2013

Nuclear Knowledge Management in Thailand

Role of the systems engineer in safety critical systems. Dr. Cecilia Haskins, CSEP Keynote address WOCS 27. September 2012

The Advantages of a Core School Competencies

Summary Report to UNESCO for UNESCO Chair program in higher education at Peking University, PR China

The forum for electrical innovation

PhD School of the Politecnico di Milano

Certification Report

National. icr Policy

Model-based Quality Assurance of Automotive Software

ULA Faculty - GIS Leaders Teaching Leadership

Round Table Italy-Russia at Dubna

REGULATIONS LUISS BUSINESS SCHOOL. SECTION I Purpose and Scope

Cyber Security and the Canadian Nuclear Industry a Canadian Regulatory Perspective

Schneider Electric DMS NS. Company Profile. Commercial Documentation

Overview: The Canadian Nuclear Industry Leadership Program

Case study Radiology department at the University Hospital of North Staffordshire, UK

CANADIAN SCIENCE POLICY CONFERENCE WORKSHOP / SYMPOSIUM 2 SCIENCE DIPLOMACY

Survey Results and Further Issues in Construction Automation Education

Security in Information Systems

Distant Sponsorship Proposal (via web-page of the conference, international journals, direct mail etc.)

Improving Embedded Software Test Effectiveness in Automotive Applications

An approach to accreditation: the path of the Italian Higher Education

Doctorate Course in Information Technologies for Engineering (ITE) Corso di dottorato di ricerca in Tecnologie dell'informazione per l'ingegneria

ISO 19600: The development

Bachelor of Science in Information Technology Program Outcome Assessment

Software Engineering

Image Archiving for Digital Pathology

Safety Analysis for Nuclear Power Plants

Curriculum of the research and teaching activities. Matteo Golfarelli

Education Programs of the Institute for Optical Sciences at the University of Toronto

Proceedings of the International Workshop on Semantic Technologies meet Recommender Systems & Big Data SeRSy 2012

Toronto Acquired Brain Injury Network. Response to the Catastrophic Impairment Report I Consultation

Corporate Challenges in Model Risk Management : Moving Beyond Model Inventory. Iain Wright Ian Francis, IBM 4 June 2015

PhD Induction Event: Department of Computer Science

Software Engineering Profession and Discipline

Joint Session with CLEReg Law Practice Management

consulting training auditing Steven R. Rakitin

Best Practices for Verification, Validation, and Test in Model- Based Design

Controlling software acquisition: is supplier s software process capability determination enough?

API Overview and Informatics Training and Education J. Mark Tuthill, M. D., Henry Ford Health System. API Overview:

The Association of Energy Engineers

asked the Software Engineering Institute Publishes Software Technology Review A Cliffs Notes Approach for PEOs, PMs, IPTs, and Support Staff

Creating a Jointly Sponsored Master of Science in Software Engineering

Governance and the Academic Medical Group

Doctorate of Philosophy Candidate, Information and Communication Technologies, January March 2015.

DOCTORAL PROGRAMME IN MANAGEMENT ENGINEERING

A Model-Checking Approach for Service Component Architectures

Politecnico di Milano since WC2 University Network September 1-3, 2010

AP1000 European 18. Human Factors Engineering Design Control Document

FRANCESCO BELLOCCHIO S CURRICULUM VITAE ET STUDIORUM

ANTARES A new project for Alternative Methods and REACH

Rural Development Programme. Ireland LEADER: Introduction to Stage 2. LDS Selection Process

di Milano the PhD Bovisa

Dr. Tom Pierre Najem Associate Professor Department of Political Science University of Windsor (ext:5020)

Sidrea International Workshop (SIW) Innovations in corporate governance and performance management

Thomas Risse. 2 nd International Alexandria Workshop 2015

Robert J. Robson, MDCM, MSc., FRCP(C) 116 York Street East, Elora, Ontario, Canada N0B 1S0 Phone Fax

CAROLINA PARENTS COUNCIL:

Remote services are changing your industry. World-class Remote Services Managing Remote Services in the IoT. Are you prepared for the ride?

Development and Application of POSAFE-Q PLC Platform

How To Become A Safety Engineer

Robert B. Waiser Joseph L. Rotman School of Management Phone (M):

CONFERENCE & EVENT PLANNING SERVICES

John Jay Kenagy, PhD, FHIMSS 817 East Shelby Street Seattle, Washington

Numerical modelling of the dynamic behaviour of masonry constructions

2014 Information on Awards and Research

Paolo Maistri. September 8, Personal Information 2. Education and Studies 2. Academic Activities and Affiliations 3

Quality Assurance of Engineering Education in Canada: its suitability for graduates working in global markets*

The name of this organization is Masters of Library and Information Science Student Council, hereinafter referred to as Council.

Program for 9th International Workshop on Automation of Software Test (AST 2014)

Combining Static and Dynamic Impact Analysis for Large-scale Enterprise Systems

Multiple Disciplines - Faculty Positions

2015 EXHIBITOR PROSPECTUS

Canadian Nuclear Safety Commission: Leadership in Regulating for Safety

SSA-312. ISA Security Compliance Institute System Security Assurance Security development artifacts for systems

Earning Customer Loyalty

SCHOLARSHIPS AND STUDENT SUPPORT The Saudi Model in Canada

N o 1 October 2004 Edited by Claudio Balducelli membership@tiems.org

Certification Report

Transcription:

CERTSOFT06 An International Workshop on Software Certification McMaster University, August 26 27, 2006 Stefania Gnesi 1 Tom Maibaum 2 Alan Wassyng 2 (eds.) 1 Istituto di Scienza e Tecnologie dell Informazione A. Faedo Area della Ricerca CNR, Pisa, Italy e-mail: stefania.gnesi@isti.cnr.it 2 Department of Computing and Software McMaster University, Hamilton, Ontario, Canada e-mail: {maibaum wassyng}@mcmaster.ca SQRL Report No. 34

Preface This volume contains the proceedings of CERTSOFT06, the First International Workshop on Software Certification, organized at McMaster University, Hamilton, Canada, in August 2006. The workshop is co-located with the 14th International Symposium on Formal Methods. Software is used to control medical devices, automobiles, aircraft, manufacturing plants, nuclear generating stations, space exploration systems, elevators, electric motors, automated trains, banking transactions, telecommunications devices and a growing number of devices in industry and in our homes. Software is also mission critical for many organisations, even if the software does not control what happens. Clearly, many of these systems have the potential to cause physical harm if they malfunction. Even if they do not cause physical harm, their malfunctions are capable of causing financial and political chaos. Currently there is no consistent regulation of software, and society is starting to demand that software used in critical systems must meet minimum safety, security and reliability standards. Manufacturers of these systems are in the unenviable position of not having any clear guidelines as to what may be regarded as acceptable standards in these situations. Software producers and their customers are becoming interested in methods for assuring quality that may result in software supplied with guarantees. Just recently, the U.S. government has expressed significant concern regarding the potential for large scale economic disruption caused by computer security flaws. CERTSOFT06 has been organised to address the issues raised by certification of software, to provide a forum for discussion for interested parties and to help organise the community of researchers and software professionals interested in these issues. Three distinguished speakers were selected to provide direction to the workshop: Rance Cleaveland, Professor of Computer Science, University of Maryland, and Executive and Scientific Directory of the Fraunhofer USA Center for Experimental Software Engineering: Does Certification = Verification? Formal Methods And Software Certification Glenn Archinoff, President of Candesco Corporation: Real-Time Software Certification in the Nuclear Power Industry Dave Parnas, SFI Fellow, Professor of Software Engineering, Director of the Software Quality Research Laboratory of the University of Limerick: Certification of Software: What, How, and How Confidently We would like to thank the three invited speakers for the abstracts they contributed to these proceedings and for their participation. We also have several interesting contributed papers, some on more general aspects of certification, as well as some on more technical issues related to the topic.

iii We hope that this workshop is just the first in a series, and will have a continuing association with the Formal Methods Symposium in years to come. We would like to express our appreciation to all those who helped in the organization of this workshop: the Program Committee, listed below, who reviewed submitted papers, and the Organizing Committee, consisting of Alan Wassyng, Wolfram Kahl, Mark Lawford, and Jeff Zucker, who helped plan, advertise, compile the Proceedings and run the workshop. We would also like to thank Andrei Voronkov for the use of EasyChair, which was, indeed, easy to use. [ WK: insert: For financial support, our gratitude goes to the Faculty of Engineering, McMaster University. ] Finally, we must thank Emil Sekerinski, who not only took on the difficult task of General Chair for FM06, but still had time to concern himself with details of CERTSOFT. Stefania Gnesi & Tom Maibaum Program Committee Co-Chairs Alan Wassyng Organizing Committee Chair Program Committee Stefania Gnesi (Co-Chair) ISTI-CNR, Italy Tom Maibaum (Co-Chair) McMaster University, Canada Rance Cleaveland University of Maryland, USA Alessandro Fantechi University of Florence, Italy Jan Friso Groote Eindhoven University of Technology, The Netherlands Connie Heitmeyer Naval Research Laboratory, USA Paola Inverardi University of L Aquila, Italy S. Purushothaman Iyer North Carolina State University, USA Yoshiki Kinoshita CVS-AIST, Japan Dino Mandrioli Politecnico di Milano, Italy Jonathan Ostroff York University, Canada Natarajan Shankar SRI International, USA David von Oheimb Siemens AG, Germany

iv Contents Does Certification = Verification? Formal Methods And Software Certification 1 Rance Cleaveland Real-Time Software Certification in the Nuclear Power Industry 2 Glenn H. Archinoff et al. Certification of Software: What, How, and How Confidently 3 David Lorge Parnas Basic Concepts of Software Certification 4 Fabrizio Fabbrini, Mario Fusani, Giuseppe Lami A Maturity Model for Software Product Certification 17 Petra M. Heck Examining Security Certification and Access Control Conflicts Using Deontic Logic 29 M. Smith, M. Kelkar, R. Gamble A Report of the Current Situation on Software Certification in Japan 44 Daichi Mizuguchi, Satoshi Matsuoka

1 Does Certification = Verification? Formal Methods And Software Certification (Abstract of Invited Talk) Rance Cleaveland Department of Computer Science and Fraunhofer USA Center for Experimental Software Engineering University of Maryland The growing importance of software in safety-critical systems has led governmental agencies and standards bodies to devise regulations and guidelines on the development and deployment of such software. The underlying motivation for these forms of guidance may be summarized as follows: Is the software sufficiently likely to behave correctly? The resulting certification standards have tended, however, to focus on document-able proxies for absolute software correctness, such as development and V&V processes. Formal methods is also devoted to the question of software correctness, although they are not mentioned in typical certification standards. This talk is devoted to exploring why this is the case and to suggesting roles that formal methods might usefully play in certification regimes.

2 Real-Time Software Certification in the Nuclear Power Industry (Abstract of Invited Talk) G.H. Archinoff, D.K. Lau, E.D. Houldin Candesco Corporation, Toronto, Ontario, Canada Computer control has been a significant part of the Canadian nuclear power industry since its inception. The Pickering A nuclear power plant just east of Toronto began operation in the early 1970 s, and uses a dual redundant computer system to control major functions such as bulk reactor power and the spatial power distribution. More recent nuclear plants have taken advantage of advances in computer hardware and software technology, and use computers in both control and safety functions. The Canadian nuclear industry has been a leader in developing and applying methods to ensure the correctness of software used in applications that require ultra-high confidence in computer systems. This presentation summarizes the development of these methods and how they are deployed in current designs. The presentation describes the process used to categorize the safety significance of software based on its required functions relative to the overall safety of the plant, discusses methods used to qualify embedded software in systems or components supplied by third parties, and describes methods used to certify software developed for safety-critical applications. The presentation also covers regulatory oversight and approval of computer-based, real-time control and safety systems in the Canadian nuclear power industry.

3 Certification of Software: What, How, and How Confidently (Abstract of Invited Talk) David Lorge Parnas Software Quality Research Laboratory, Department of Computer Science and Information Systems Faculty of Informatics and Electronics University of Limerick, Limerick, Ireland and Department of Computing and Software, Faculty of Engineering McMaster University, Hamilton, Ontario, Canada Where other products have a warranty, software carries a disclaimer. In spite of the widespread use of software in all aspects of our lives, there are still computer experts who are afraid to trust software for such simple tasks as counting votes. One of the signs of a maturing discipline will be software that comes with a document certifying that it is fit for its intended use. This talk deals with some simple questions about certification. What exactly can we certify in the certificate? How can we be confident that the certificate is accurate? How can we measure our confidence? What can the designers do to increase our confidence? What can the designers do to decrease the expected damage if we are wrong?

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information