Ayoub, Anaheed
Email Address
ORCID
Disciplines
Search Results
Now showing 1 - 6 of 6
Publication A Safety Case Pattern for Model-Based Development Approach(2012-04-01) Ayoub, Anaheed; Kim, BaekGyu; Lee, Insup; Sokolsky, OlegIn this paper, a safety case pattern is introduced to facilitate the presentation of a correctness argument for a system implemented using formal methods in the development process. We took advantage of our experience in constructing a safety case for the Patient Controlled Analgesic (PCA) infusion pump, to define this safety case pattern. The proposed pattern is appropriate to be instantiated within the safety cases constructed for systems that are developed by applying model-based approaches.Publication Assessing the Overall Sufficiency of Safety Arguments(2013-02-01) Ayoub, Anaheed; Chang, Jian; Sokolsky, Oleg; Lee, InsupSafety cases offer a means for communicating information about the system safety among the system stakeholders. Recently, the requirement for a safety case has been considered by regulators for safety-critical systems. Adopting safety cases is necessarily dependent on the value added for regulatory authorities. In this work, we outline a structured approach for assessing the level of sufficiency of safety arguments. We use the notion of basic probability assignment to provide a measure of sufficiency and insufficiency for each argument node. We use the concept of belief combination to calculate the overall sufficiency and insufficiency of a safety argument based on the sufficiency and insufficiency of its nodes. The application of the proposed approach is illustrated by examples.Publication A Causality Analysis Framework for Component-Based Real-Time Systems(2013-09-01) Wang, Shaohui; Ayoub, Anaheed; Kim, BaekGyu; Sokolsky, Oleg; Lee, Insup; Gössler, GregorWe propose an approach to enhance the fault diagnosis in black-box component-based systems, in which only events on component interfaces are observable, and assume that causal dependencies between component interface events within components are not known. For such systems, we describe a causality analysis framework that helps us establish the causal relationship between component failures and system failures, given an observed system execution trace. The analysis is based on a formalization of counterfactual reasoning, and applicable to real-time systems. We illustrate the analysis with a case study from the medical device domain.Publication Runtime Verification of Traces Under Recording Uncertainty(2011-09-01) Wang, Shaohui; Ayoub, Anaheed; Sokolsky, Oleg; Lee, InsupWe present an on-line algorithm for the runtime checking of temporal properties, expressed as past-time Linear Temporal Logic (LTL) over the traces of observations recorded by a "black box"-like device. The recorder captures the observed values but not the precise time of their occurrences, and precise truth evaluation of a temporal logic formula cannot always be obtained. In order to handle this uncertainty, the checking algorithm is based on a three-valued semantics for pasttime LTL defined in this paper. In addition to the algorithm, the paper presents results of an evaluation that aimed to study the effects of the recording uncertainty on different kinds of temporal logic properties.Publication Contract-Based Blame Assignment by Trace Analysis(2013-04-01) Wang, Shaohui; Ayoub, Anaheed; Ivanov, Radoslav; Sokolsky, Oleg; Lee, InsupFault diagnosis in networked systems has been an extensively studied field in systems engineering. Fault diagnosis generally includes the tasks of fault detection and isolation, and optionally recovery (FDIR). In this paper we further consider the blame assignment problem: given a system trace on which a system failure occurred and an identified set of faulty components, determine which subsets of faulty components are the culprits for the system failure. We provide formal definitions of the notion culprits and the blame assignment problem, under the assumptions that only one system trace is given and the system cannot be rerun. We show that the problem is equivalent to deciding the unsatisfiability of a set of logical constraints on component behaviors, and present the transformation from a blame assignment instance into an instance of unsatisfiability checking. We also apply the approach to a case study in the medical device interoperability scenario that has motivated our work.Publication A Systematic Approach to Justifying Sufficient Confidence in Software Safety Arguments(2012-06-15) Ayoub, Anaheed; Kim, Baekgyu; Lee, Insup; Sokolsky, OlegSafety arguments typically have some weaknesses. To show that the overall confidence in the safety argument is considered acceptable, it is necessary to identify the weaknesses associated with the aspects of a safety argument and supporting evidence, and manage them. Confidence arguments are built to show the existence of sufficient confidence in the developed safety arguments. In this paper, we propose an approach to systematically constructing confidence arguments and identifying the weaknesses of the software safety arguments. The proposed approach is described and illustrated with a running example.