Addressing dependability by applying an approach for model-based risk assessment

Reliability Engineering and System Safety

Volumn 92, Issue 11, 2007, Pages 1492-1502

  Gran, Bjørn Axel ^a   Fredriksen, Rune ^a   Thunem, Atoosa P J ^a  

^a OECD HALDEN REACTOR PROJECT   (Norway)

Author keywords

Dependability; Model based risk analysis; Safety; Security; Tools; Trust case

Indexed keywords

CONTROL SYSTEMS; DIGITAL INSTRUMENTS; MATHEMATICAL MODELS; TELEMEDICINE;

MODEL-BASED RISK ANALYSIS; TRUST CASE;

RISK ASSESSMENT;

EID: 34447121305     PISSN: 09518320     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.ress.2006.10.002     Document Type: Article

References (28)

1. Thunem AP-J. Modelling of knowledge intensive computerised systems based on capability-oriented agent theory (COAT). In: International IEEE conference on integration of knowledge intensive multi-agent systems, IEEE-KIMAS'03, Cambridge, MA, USA, 2003. p. 58-63.
2. Garrett C.J., Guarro S.B., and Apostolakis G.E. The dynamic flow graph methodology for assessing the dependability of embedded software systems. IEEE Trans Syst Man Cybernet 25 5 (1985) 824-840
3. Kim I.S., and Modarres M. Application of goal tree-success tree model as the knowledge-base of operator advisory system. Nucl Eng Design J 104 (1987) 67-81
4. Jalashgar A, (Thunem AP-J). A Cognitive and formal terminology for descriptive parameters in concurrent real-time distributed software systems. In: Soft Comput Risk Eval Manage 2001; 2(3): 229-48.
5. Jalashgar A., and (Thunem A.P.-J.). Identification of hidden failures in process control systems based on the HMG method. Int J Intell Syst 13 (1998) 159-179
6. CORAS. A platform for risk analysis of security critical systems, IST-2000-25031, 2000. 〈http://coras.sourceforge.net/〉.
7. Fredriksen R, Gran BA, Stølen K, Djordjevic I. Experiences from application of model-based risk assessment. In: Proceedings of the European conference on safety and reliability (ESREL'2003) vol. 1, 2003. Swets & Zeitlinger. p. 643-48.
8. Redmill F., Chudleigh M., and Catmur J. Hazop and software hazop (1999), Wiley
9. Andrews J.D., and Moss T.R. Reliability and risk assessment. 1st ed (1993), Longman Group, UK
10. Bouti A., and Kadi A.D. A state-of-the-art review of FMEA/FMECA. Int J Reliab Qual Safety Eng 1 4 (1994) 515-543
11. Littlewood B. A reliability model for systems with markov structure. Appl Stat 24 2 (1975) 172-177
12. Barber B., and Davey J. Use of the CRAMM in Health Information Systems. In: Lun K.C., Degoulet P., Piemme T.E., and Rienhoff O. (Eds). MEDINFO 92 (1992), North Holland Publishing Co, Amsterdam 1589-1593
13. OMG. Unified modeling language specification. Version 1.4, 2001.
14. Houmb S-H, den Braber F, Soldal Lund M, Stølen K. Towards a UML profile for model-based risk assessment. In Proc. UML'2002 Satellite Workshop on Critical Systems Development with UML. Munich University of Technology. 2002. p. 79-91.
15. Contribution in response to request for proposals for UML Profile for Modelling Quality of Service and Fault Tolerance Characteristics and Mechanisms issued by the Object Management Group. Submitted by SINTEF in collaboration with OpenIT, September 9, 2002. Resubmitted in revised form, May and August, 2003.
16. Australian Standard: Risk Management. AS/NZS 4360:1999. Strathfield: Standards Australia.
17. Winther R., Johnsen O.A., and Gran B.A. Security assessments of safety critical systems using HAZOPs. In: Voges U. (Ed). Computer Safety, Reliability and Security, Lecture Notes in Computer Science, vol. 2187 (2001), Springer, Berlin 14-24
18. Stamatiou Y., et al. The CORAS approach for model-based risk management applied to a telemedicine service. Proceedings of Medical Informatics Europe (MIE'2003) (2003), IOS Press 206-211
19. Raptis D., Dimitrakos T., Gran B.A., and Stølen K. The CORAS approach for model-based risk management applied to e-commerce domain. Proceedings of communication and multimedia security (CMS-2002) (2002), Kluwer, Dordrecht 169-181
20. IEC 61508: Functional Safety of Electrical/Electronic/Programmable Electronic Safety-Related (E/E/PE) Systems, 1998-2000.
21. Herrmann D.S. Software safety and reliability (1999), IEEE Computer Society
22. den Braber F., Dimitrakos T., Gran B.A., Soldal Lund M., Stølen K., and Aagedal J.Ø. The CORAS methodology: model-based risk assessment using UML and UP. In: Liliana F. (Ed). UML and the unified process (2003), IRM Press 332-357
23. Thunem AP-J, Gran BA, Skjerve ABM. Application of model-based risk analysis in a risk-informed man, technology and organisation model. In: Proceedings of the European conference on safety and reliability (ESREL'2005) 2005. Tri City, Poland. p. 1919-24.
24. Thunem A.P.-J. A framework for dependable development process of complex computerised systems. Proceedings of ESREL04/PSAM7 conference (2004), Springer, Berlin, Germany 902-907
25. Górski J., et al. An approach to trust case development. In: Anderson S., Felici M., and Littlewood B. (Eds). Computer safety, reliability and security, Lecture Notes in Computer Science, vol. 2788 (2003), Springer, Berlin 193-206
26. Sindre G., and Opdahl A.L. Eliciting security requirements by misuse cases. Proceedings of TOOLS_PACIFIC 2000 (2000), IEEE Computer Society Press 120-131
27. Stølen K., den Braber F., Fredriksen R., Gran B.A., Houmb S.-H., Soldal Lund M., et al. Model-based risk assessment-the CORAS approach. Proc Norsk Informatikkkonferanse (NIK'2002) (2002), Tapir 239-249
28. Thunem AP-J, Fredriksen R, Gran BA. An information retrieval terminology for model-based risk assessment. Paper to appear in Proceedings from ESREL/PSAM7, Berlin, 2004.