Back to home
 

Application of new hazard analysis model for embedded systems

 

KANEMOTO Shigeru1, and OTOMO Shunsuke2

 

1. School of computer science and engineering, The university of Aizu, Tsuruga, Ikki-machi, Aizuwakamatsu-city, Fukushima, 965-8580, Japan (kanemoto@u-aizu.ac.jp)

2. School of computer science and engineering, The university of Aizu, Tsuruga, Ikki-machi, Aizuwakamatsu-city, Fukushima, 965-8580, Japan (s1200034@u-aizu.ac.jp)

 
Abstract: Recently, many safety critical embedded systems are going to be involved in our daily life. Although hazards in these systems are small, their economic loss is very large by rumor propagation. So, low-cost and efficient hazard analysis methods are required. A new hazard analysis method called STAMP/STPA(Systems-Theoretic Accident Model and Process / System-Theoretic Process Analysis), which was proposed by Nancy Leveson, would be one of candidates of the above hazard analysis method. The method can analyze the hazards in complicated systems which have many interactions between human and machines. The present paper discusses its usefulness through a case study of simulated chemical plant accident model.  The model is virtual one, but, has essential safety features which are equivalent to a general safety critical system including nuclear power plants. In this case study, we found some advantages of STAMP/STPA comparing the conventional hazard analysis method, FTA, which is used in nuclear power plant hazard analysis.  Also, we point out the importance of diversity of hazard analysis by different methods and organizations.
Keyword: safety critical embedded systems; hazard analysis; STAMP/STPA; FTA

 

 
      Click here for viewing full text.