摘要
安全個案 (safety case) 為一套論證 (argument) 的過程,提出足以令人信服的證據以說明一安全關鍵系統在給定的環境下符合安全的要求。在歐美各國,安全關鍵計算系統執照的申請均要求提出安全個案。而現今安全個案多數使用主觀論證,本研究提出以正規軟體發展方法應用在安全個案的論證上,發展的論證及方法包括 : 正規規格、證明符合法規之要求項目、故障樹為主之安全性論證、正規規格轉換成程式碼、規格為基礎之測試、預測測試結果及線上偵錯方法等。並以核能保護系統為範例,以上述方法作成一個完整的安全個案。使用正規方法的目的在於它具有很高的嚴謹性以及說服力,可以增加安全個案的可信任度,並確保軟體的安全性。
並列摘要
Safety case is a process of an argument. It is a documented body of evidence that provides a convincing and valid argument that a system is adequately safe for a given application in a given environment. In Europe and America, a safety case is required in the application for an operation license of a safety-critical computing system. But most of the contemporary safety cases employ subjective argument. This thesis proposes to apply formal methods to safety case argument. The developed techniques include : formal software requirements specifications、formal proof requirements、safety argument using fault tree、formal program derivation、specification-based testing、and test oracle、as well as on-line testing. Using these techniques we have developed a complete safety case for a nuclear protecting system. Formal methods provide precision and persuasion; it enhances trustworthiness of safety cases, and also ensures software safety.
參考文獻
[1] Bob Fields and Morten Elvang-Goransson, "A VDM Case Study in mural", IEEE Transactions on Software Engineering, vol. 18, no. 4, April 1992. pp. 279-295.
[2] L. M. Barroca and J. A. Mcdermid, "Formal Methods and Safety Critical Systems", The Computer Journal, vol. 35, no. 6, 1992.
[3] Juan Bicarregui and Brian Ritchie, "Invariants, Frames and Postconditions : A Comparison of the VDM and B Notations", IEEE Transactions on Software Engineering, vol. 21, no. 2, February 1995. pp. 79-89.
[6] Ralph Jeffords and Constance Heitmeyer , "Automatic Generaton of State Invariants from Requirements
[7] Nancy G. Leveson and Stephen S. Cha, "Safety Verification of ADA Programs Using Software Fault Trees".
被引用紀錄
連國廷(2008)。IEEE安全標準邏輯結構的建立與應用〔碩士論文,元智大學〕。華藝線上圖書館。https://www.airitilibrary.com/Article/Detail?DocID=U0009-2207200816130600
延伸閱讀
- 王文興(2011)。以安全分析報告產生測試案例之探討〔碩士論文,元智大學〕。華藝線上圖書館。https://www.airitilibrary.com/Article/Detail?DocID=U0009-2801201414582119
- 楊哲銘、邱文達、林靖瑛、許英娟(2009)。建構醫療機構病人安全監測指標之前驅實證研究。台灣公共衛生雜誌,28(1),78-84。https://doi.org/10.6288/TJPH2009-28-01-08
- 賴建丞(2021)。風險評估資訊系統於職業安全衛生目標訂定之應用-以研究機構為例。工業安全衛生,(383),23-30。https://doi.org/10.6311/ISHM.202105_(383).0004
- 徐順德、林明洲(2010)。探討安全衛生管理系統績效量測標準與方法。載於社團法人中華民國工業安全衛生協會(主編),海峽兩岸與香港、澳門地區職業安全健康學術研究會論文集(頁266-281)。社團法人中華民國工業安全衛生協會。https://doi.org/10.30130/safety.201012.0266
- Fan, Z., Tan, Z., Tan, C., & Li, X. (2018). An FCM-based Hierarchical Method for Evaluating Network Security Situation. 電腦學刊, 29(3), 56-72. https://doi.org/10.3966/199115992018062903006