Browsing by Author "de la Vara, Jose Luis"
Now showing 1 - 5 of 5
Results Per Page
Sort Options
Item AMASS: A Large-Scale European Project to Improve the Assurance and Certification of Cyber-Physical Systems: A Large-Scale European Project to Improve the Assurance and Certification of Cyber-Physical Systems(Springer Nature, 2019) de la Vara, Jose Luis; Parra, Eugenio; Ruiz, Alejandra; Gallina, Barbara; Franch, Xavier; Männistö, Tomi; Martínez-Fernández, Silverio; QuantumMost safety-critical systems must undergo assurance and certification processes. The associated activities can be complex and labour-intensive, thus practitioners need suitable means to execute them. The activities are further becoming more challenging as a result of the evolution of the systems towards cyber-physical ones, as these systems have new assurance and certification needs. The AMASS project (Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems) tackled these issues by creating and consolidating the de-facto European-wide open tool platform, ecosystem, and self-sustainable community for assurance and certification of cyber-physical systems. The project defined a novel holistic approach for architecture-driven assurance, multi-concern assurance, seamless interoperability, and cross- and intra-domain reuse of assurance assets. AMASS results were applied in 11 industrial case studies to demonstrate the reduction of effort in assurance and certification, the reduction of (re)certification cost, the reduction of assurance and certification risks, and the increase in technology harmonisation and interoperability.Item Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems.(Springer International Publishing, 2016-09-01) Ruiz, Alejandra; Gallina, Barbara; de la Vara, Jose Luis; Mazzini, Silvia; Espinoza, Huascar; Guiochet, Jérémie; Schoitsch, Erwin; Bitsch, Friedemann; Skavhaug, Amund; Quantum; Tecnalia Research & InnovationUnlike practices in electrical and mechanical equipment engineering, Cyber-Physical Systems (CPS) do not have a set of standardized and harmonized practices for assurance and certification that ensures safe, secure and reliable operation with typical software and hardware architectures. This paper presents a recent initiative called AMASS (Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems) to promote harmonization, reuse and automation of labour-intensive certification-oriented activities via using model-based approaches and incremental techniques. AMASS will develop an integrated and holistic approach, a supporting tool ecosystem and a self-sustainable community for assurance and certification of CPS. The approach will be driven by architectural decisions (fully compatible with standards, e.g. AUTOSAR and IMA), including multiple assurance concerns such as safety, security and reliability. AMASS will support seamless interoperability between assurance/certification and engineering activities along with third-party activities (external assessments, supplier assurance). The ultimate aim is to lower certification costs in face of rapidly changing product features and market needs.Item Model-based specification of safety compliance needs for critical systems: A holistic generic metamodel: A holistic generic metamodel(2016-04-01) de la Vara, Jose Luis; Ruiz, Alejandra; Attwood, Katrina; Espinoza, Huascar; Panesar-Walawege, Rajwinder Kaur; López, Ángel; del Río, Idoya; Kelly, Tim; Quantum; Tecnalia Research & Innovation; CIBERSEC&DLT; ADV_INTER_PLATContext: Many critical systems must comply with safety standards as a way of providing assurance that they do not pose undue risks to people, property, or the environment. Safety compliance is a very demanding activity, as the standards can consist of hundreds of pages and practitioners typically have to show the fulfilment of thousands of safety-related criteria. Furthermore, the text of the standards can be ambiguous, inconsistent, and hard to understand, making it difficult to determine how to effectively structure and manage safety compliance information. These issues become even more challenging when a system is intended to be reused in another application domain with different applicable standards. Objective: This paper aims to resolve these issues by providing a metamodel for the specification of safety compliance needs for critical systems. Method: The metamodel is holistic and generic, and abstracts common concepts for demonstrating safety compliance from different standards and application domains. Its application results in the specification of “reference assurance frameworks” for safety-critical systems, which correspond to a model of the safety criteria of a given standard. For validating the metamodel with safety standards, parts of several standards have been modelled by both academic and industry personnel, and other standards have been analysed. We further augment this with feedback from practitioners, including feedback during a workshop. Results: The results from the validation show that the metamodel can be used to specify safety compliance needs for aerospace, automotive, avionics, defence, healthcare, machinery, maritime, oil and gas, process industry, railway, and robotics. Practitioners consider that the metamodel can meet their needs and find benefits in its use. Conclusion: The metamodel supports the specification of safety compliance needs for most critical computer-based and software-intensive systems. The resulting models can provide an effective means of structuring and managing safety compliance information.Item Recent Advances towards the Industrial Application of Model-Driven Engineering for Assurance of Safety-Critical Systems(SciTePress, 2018-01) de la Vara, Jose Luis; Ruiz, Alejandra; Espinoza, Huascar; Hammoudi, Slimane; Pires, Luis Ferreira; Selic, Bran; Quantum; Tecnalia Research & InnovationSafety-critical systems are typically subject to assurance processes as way to ensure that they do not pose undue risks to people, property, or the environment, usually in compliance with assurance standards. The planning, execution, and management of assurance processes can be a complex activity in practice because of issues in the application of the standards, the large amount of information to handle, and the need for providing convincing justifications of assurance adequacy, among other difficulties. As a solution, many authors have argued that the use of Model-Driven Engineering principles and techniques can facilitate and improve assurance of safety-critical systems. This paper presents some of the latest advances that have been and are being made towards the use of these principles and techniques in industry. Although models have been used for assurance of safety-critical systems for many years, e.g. to specify safety cases, it has only been recently when the full potential of Model-Driven Engineering has started to be more widely exploited. This includes aspects such as the specification of metamodels and domain specific languages for assurance, the extension and application of UML, and the use of model transformations.Item Reuse of safety certification artefacts across standards and domains: A systematic approach: A systematic approach(2017-02-01) Ruiz, Alejandra; Juez Uriagereka, Garazi; Espinoza, Huascar; de la Vara, Jose Luis; Larrucea, Xabier; Tecnalia Research & Innovation; QuantumReuse of systems and subsystem is a common practice in safety-critical systems engineering. Reuse can improve system development and assurance, and there are recommendations on reuse for some domains. Cross-domain reuse, in which a previously certified product typically needs to be assessed against different safety standards, has however received little attention. No guidance exists for this reuse scenario despite its relevance in industry, thus practitioners need new means to tackle it. This paper aims to fill this gap by presenting a systematic approach for reuse of safety certification artefacts across standards and domains. The approach is based on the analysis of the similarities and on the specification of maps between standards. These maps are used to determine the safety certification artefacts that can be reused from one domain to another and reuse consequences. The approach has been validated with practitioners in a case study on the reuse of an execution platform from railway to avionics. The results show that the approach can be effectively applied and that it can reduce the cost of safety certification across standards and domains. Therefore, the approach is a promising way of making cross-domain reuse more cost-effective in industry.