Proceedings 1997 High-Assurance Engineering Workshop最新文献

{"title":"A technique to analyze the tolerance to transient overloads of a fault-tolerant real-time system","authors":"G. Bernat, J. Miró-Julià, J. Proenza","doi":"10.1109/HASE.1997.648070","DOIUrl":"https://doi.org/10.1109/HASE.1997.648070","url":null,"abstract":"Fault tolerance and real time computing have been traditionally considered as different domains. However, missing a deadline is a fault in a real time system. A real time fault tolerant architecture based on a redundancy executive (RX) is presented. The timing properties of such an executive are predictable. On this basis, a technique for predicting the temporal behaviour of a system, based on fixed priority schedulability analysis, is provided. Moreover this analysis can be applied to real time systems that present bounded transient overloads. In these systems the number of missed deadlines over a given period of time is bounded. The architecture, together with a dual time out scheme, masks both value errors and timing errors. Thus, providing a feasible mechanism for achieving fault tolerance for both the functional aspects and the timing aspects. Its application leads to cost effective systems because the resources do not have to be sized for the worst case and moreover, the response times are sometimes better than in the non fault tolerant equivalent system.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"5 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"123177350","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"A software environment for custom simulation and monitoring of real-time specifications","authors":"M. Brockmeyer, F. Jahanian, Elly Winner, C. Heitmeyer, B. Labaw","doi":"10.1109/HASE.1997.648042","DOIUrl":"https://doi.org/10.1109/HASE.1997.648042","url":null,"abstract":"The testing and validation of formal specifications of high assurance real time systems requires an extensible simulation environment with support for users to generate events, customize displays, and monitor event traces. The paper describes MTSim, a customizable simulation platform for the Modechart Toolset (MT). MTSim provides support for \"plugging in\" user defined viewers as well as user participation in the generation of simulations by allowing users to inject events into the execution trace. Moreover, MTSim provides monitoring and assertion checking of execution traces and the invocation of user specified handlers upon assertion violation. The paper also introduces a MTSim component called WebSim, a suite of simulation tools for MT, and an application specific component of MTSim, which displays the cockpit of an F-18 aircraft and models its bomb release function.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"60 ","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"120867228","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"Modeling applications for adaptive QoS-based resource management","authors":"S. Chatterjee, J. Sydir, B. Sabata, T. Lawrence","doi":"10.1109/HASE.1997.648064","DOIUrl":"https://doi.org/10.1109/HASE.1997.648064","url":null,"abstract":"The paper describes two innovative models that facilitate adaptive QoS driven resource management in distributed systems comprising heterogeneous computing, storage, and communication resources. The first model, denoted the Logical Application Stream Model (LASM), recursively captures a distributed application's structure, resource requirements, and relevant end to end quality of service (QoS) parameters. Upon invocation of the application by a user, the resource manager can use this model to initially structure the end to end application, allocate resources to this application, and schedule this application on these resources, so as to provide QoS to all applications and to efficiently utilize system resources. Later, when the system state changes, the resource manager can use this application model to dynamically reallocate, reschedule, and restructure applications. The recursive nature of the model enables application developers to easily model large scale applications. We also describe a model, denoted the Benefit Function (BF), that captures user QoS preferences and enables the resource manager to gracefully degrade application QoS under certain conditions.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"14 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"114645424","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"Scalable and reliable synchronous collaboration environment on CORBA using WWW","authors":"Min-Su Kweon, Soomyung Park, Sangjin Joung, Sunyoung Han, Moon-hae Kim","doi":"10.1109/HASE.1997.648045","DOIUrl":"https://doi.org/10.1109/HASE.1997.648045","url":null,"abstract":"Currently, object-oriented technology is being widely adopted in multimedia development environments which provide integrated real-time services. Since various user demands cannot be satisfied with the conventional structured development technology, this trend is accelerating. This paper describes an object-oriented approach in constructing a reliable synchronous collaboration environment providing integrated real-time services. The approach utilizes the CORBA framework to support distributed objects and World Wide Web (WWW) technology to handle multimedia data. Also, by extending the real-time transport protocol, the approach supports scalable and reliable transportation of multimedia data. In this paper, we present our approach with a video conferencing system requiring high reliability.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"7 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"114241565","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"Evaluation and improvement of software products and processes based on measurement","authors":"F. Maurice, A. Benzekri, Y. Raynaud","doi":"10.1109/HASE.1997.648047","DOIUrl":"https://doi.org/10.1109/HASE.1997.648047","url":null,"abstract":"A methodology including the essential steps for any software measurement activity is described. Based on previous and original works, this methodology allows one to specify, verify and validate metrics. Related to a defined goal, metrics are specified using a formal notation and then verified. Validating predictive metrics is a crucial task for any goal aiming at improving software processes or products. Potential issues and precautions that must be taken during the validation phase are presented. In order to illustrate the defined approach, an industrial application of the methodology is presented.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"4 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"124142277","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"Software complexity analysis on department of defense real-time systems","authors":"William G. Castaneda","doi":"10.1109/HASE.1997.648051","DOIUrl":"https://doi.org/10.1109/HASE.1997.648051","url":null,"abstract":"I am grateful to Mr. Ray Paul and Dr. Yen for inviting me to participate in the 2nd IEEE High Assurance Systems Engineering Workshop. As a software analyst representative from Commander, Operational Test and Evaluation Force (COMOPTEVFOR), I am eager to learn about the latest technological research in developing and evaluating high assurance systems. I would also like to share my warfighter’s perspective and expectations on high assurance systems. COMOPTEVFOR is the U.S. Navy’s sole agent for operational test and evaluation (OT&E). For new and improved capabilities proposed for fleet use, our mission includes: conducting OT&E in a realistic environment against the anticipated threat; advising the Chief of Naval Operations on system operational effectiveness, operational suitability and make recommendations for fleet introduction. Approximately 210 naval officers and non-commissioned officers, representing every warfare area, are assigned as Operational Test Directors and responsible for planning, testing and evaluating over 38 1 programs. The most important part of their job is to make a determination of system effectiveness and suitability prior to the system being delivered to the fleet. Without a doubt, high assurance systems are of critical importance to the U.S. Navy and its ability to maintain operational readiness. From an operational tester’s perspective, “high assurance” means will the system be dependable, reliable, available, and can operators maintain the system? COMOPTEVFOR has recognized the need to become more familiar with the capabilities and limitations of systems which include software critical functionality. Early operational tester involvement into high assurance system development will support realistic operational assessment of system suitability. For the Navy, operational suitability is the capability of the system, when operated and maintained by typical fleet personnel in the expected numbers and of the expected experience level, to be reliable, maintainable, operationally available, logistically supportable when deployed, compatible, interoperable, and safe. COMOPTEVFOR early involvement and participation in risk mitigation are alive and well as exemplified during a recent visit to a contractor’s site for a review of operational-interest software code. An operational requirements-to-code trace was performed by COMOPTEVFOR representatives, subsequently leading to identifying the need for a contractor’s lab demonstration of the weapon to clarify a firing feature. The high-assurance issue at hand: “Will this weapon fire when it is not supposed to?’ The end result was an inadvertent firing and a Priority 1 Software Trouble Report (Safety). Yes, this was gloomy in a sense for the contractor, but the problem was fixed before the upcoming at-sea test and thus a safety-related failure was avoided. This early failure detection prevented an expensive fix and re-test later. A multi-service research project led by COMOPTEVFOR has b","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"144 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"116355980","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"On the development of dependability-evaluation workbench for high-assurance system designers","authors":"A. Tai, Kishor S. Trivedi, H. Hecht","doi":"10.1109/HASE.1997.648031","DOIUrl":"https://doi.org/10.1109/HASE.1997.648031","url":null,"abstract":"High-assurance system engineering requires efficient computer-aided dependability evaluation. Although various dependability evaluation techniques and tools have been developed and studied in the last two decades, no adequate attention has been paid to allow system designers not well versed in analytic modeling to easily employ these techniques and tools. Aimed at enabling designers of high-assurance systems to profit from off-the-shelf modeling techniques and tools, we have developed a user-friendly dependability-evaluation workbench, called SDDS (System Dependability evaluation for Design Solutions), which is intended to lead the user to exploit the features and capabilities of the modeling tool SHARPE (Symbolic Hierarchical Automated Reliability and Performance Evaluator). In this paper, we first discuss the means through which we realize our goal, and then we describe SDDS's graphical user interface via a simple example.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"55 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128620383","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"Analytical modelling and evaluation of phased-mission systems for space applications","authors":"A. Bondavalli, I. Mura, M. Nelli","doi":"10.1109/HASE.1997.648043","DOIUrl":"https://doi.org/10.1109/HASE.1997.648043","url":null,"abstract":"The paper deals with the modelling and evaluation of mission phased systems devoted to space applications. We propose a two level hierarchical method that allows us to model such systems and to master the complexity of the analysis. Our approach considers a separate modelling and resolution of the phases, and of the dependencies among phases caused by the usage of the same system components in the different phases. Moreover, it accounts for a dynamic choice on whether some phases have to be skipped. The proposed method provides great flexibility, easy applicability and reusability of the defined models. Furthermore, it permits us not only to obtain information on the overall behaviour of the system, but also at the same time to focus on each single phase and hence to detect system dependability bottlenecks.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"130221944","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"An automated tool for efficiently generating a massive number of random test cases","authors":"Anouar Jamoussi","doi":"10.1109/HASE.1997.648046","DOIUrl":"https://doi.org/10.1109/HASE.1997.648046","url":null,"abstract":"Certain software systems, such as process control and avionics systems, require an extremely large amount of testing to measure their reliability according to the ultra-high reliability requirements imposed on them. Therefore, it is essential to speed up the test generation process to reduce the certification time. We develop techniques to enhance the effectiveness of an automated program for generating random test data. Our approach consists of three major phases, viz. (1) a predicate decomposition phase, (2) a test data generation program creation phase and (3) a random data generation phase. During the phase 1, the predicate is decomposed into independent subpredicates resulting in a partition of the input variables. Test data can then be independently generated for every subset of variables subject to satisfying the corresponding subpredicate. During phase 2, the source code of the test data generation program is created according to the results of predicate decomposition of phase 1. The actual test data points are generated in phase 3 by compiling and running the program generated in phase 2. A preliminary performance evaluation is presented.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"43 2","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131686630","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}

{"title":"High assurance application systems and their technologies under changing situations","authors":"K. Mori","doi":"10.1109/HASE.1997.648059","DOIUrl":"https://doi.org/10.1109/HASE.1997.648059","url":null,"abstract":"Application systems have been confronted with the evolving social, economic and technical circumstances and eventually with changing customer requirements for products and services. Under these changing situations, the application system has to be continuously expanded, modified and integrated with other different applications. Some application systems are exemplified to clarify these requirements and application systems assurance is defined as the online property under such changing situations. As one solution for high assurance in the system architecture level, the ADS (Autonomous Decentralized System) is shown to be effective. But the problems of integrating the application systems with the different requirement levels without stopping their operation and evaluating the assurances remain unresolved.","PeriodicalId":319609,"journal":{"name":"Proceedings 1997 High-Assurance Engineering Workshop","volume":"16 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1997-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128223809","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}