{"title":"安全关键系统中系统功能的软件控制自主性评估","authors":"V. Tran, V. Tran, L. Tran","doi":"10.56094/jss.v57i3.206","DOIUrl":null,"url":null,"abstract":"Software Control Category (SCC) denotes the degree of control autonomy, command and control authority, and redundant fault tolerance software has over hazardous system functions of safety-critical systems. The use of SCC for determining the software contribution to system risks is a unique feature of the MIL-STD-882E System Safety Standard. A lower SCC designation means that the software system has a greater control autonomy over hazardous system functions, whereas SCC 1 means complete autonomous control. Software with greater control autonomy over hazardous system functions require greater effort to assure reliability and safety. Correct assessment of the SCC level of hazardous system functions is crucial for optimizing the safety property of a system developed under budget, schedule, and resource constraints. Beyond the categorical definitions provided by the MIL-STD-882E Standard, there is little information on conducting an SCC assessment. To close this knowledge gap, we present an SCC assessment method. Our paper will describe in detail the process and rules for assessing SCC. For illustration, we apply our method to assess the SCC of several safety-significant functions of an automobile’s brake-assist system.","PeriodicalId":250838,"journal":{"name":"Journal of System Safety","volume":"69 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Assessing the Software Control Autonomy of System Functions in Safety-Critical Systems\",\"authors\":\"V. Tran, V. Tran, L. Tran\",\"doi\":\"10.56094/jss.v57i3.206\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Software Control Category (SCC) denotes the degree of control autonomy, command and control authority, and redundant fault tolerance software has over hazardous system functions of safety-critical systems. The use of SCC for determining the software contribution to system risks is a unique feature of the MIL-STD-882E System Safety Standard. A lower SCC designation means that the software system has a greater control autonomy over hazardous system functions, whereas SCC 1 means complete autonomous control. Software with greater control autonomy over hazardous system functions require greater effort to assure reliability and safety. Correct assessment of the SCC level of hazardous system functions is crucial for optimizing the safety property of a system developed under budget, schedule, and resource constraints. Beyond the categorical definitions provided by the MIL-STD-882E Standard, there is little information on conducting an SCC assessment. To close this knowledge gap, we present an SCC assessment method. Our paper will describe in detail the process and rules for assessing SCC. For illustration, we apply our method to assess the SCC of several safety-significant functions of an automobile’s brake-assist system.\",\"PeriodicalId\":250838,\"journal\":{\"name\":\"Journal of System Safety\",\"volume\":\"69 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of System Safety\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.56094/jss.v57i3.206\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of System Safety","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.56094/jss.v57i3.206","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
软件控制类别(Software Control Category, SCC)表示对安全关键系统的危险系统功能的控制自主性、指挥控制权限和冗余容错软件的程度。使用SCC来确定软件对系统风险的贡献是MIL-STD-882E系统安全标准的一个独特功能。较低的SCC标识意味着软件系统对危险系统功能具有更大的控制自主权,而SCC 1意味着完全自主控制。对危险系统功能具有更大控制自主权的软件需要更大的努力来确保可靠性和安全性。正确评估危险系统功能的SCC水平对于优化在预算、进度和资源限制下开发的系统的安全性能至关重要。除了MIL-STD-882E标准提供的分类定义之外,很少有关于进行SCC评估的信息。为了缩小这一知识差距,我们提出了一种SCC评估方法。本文将详细介绍SCC的评估过程和规则。为了说明,我们应用我们的方法来评估汽车制动辅助系统的几个安全重要功能的SCC。
Assessing the Software Control Autonomy of System Functions in Safety-Critical Systems
Software Control Category (SCC) denotes the degree of control autonomy, command and control authority, and redundant fault tolerance software has over hazardous system functions of safety-critical systems. The use of SCC for determining the software contribution to system risks is a unique feature of the MIL-STD-882E System Safety Standard. A lower SCC designation means that the software system has a greater control autonomy over hazardous system functions, whereas SCC 1 means complete autonomous control. Software with greater control autonomy over hazardous system functions require greater effort to assure reliability and safety. Correct assessment of the SCC level of hazardous system functions is crucial for optimizing the safety property of a system developed under budget, schedule, and resource constraints. Beyond the categorical definitions provided by the MIL-STD-882E Standard, there is little information on conducting an SCC assessment. To close this knowledge gap, we present an SCC assessment method. Our paper will describe in detail the process and rules for assessing SCC. For illustration, we apply our method to assess the SCC of several safety-significant functions of an automobile’s brake-assist system.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
