Software Safety Risk Evaluation ProcessYorick Bouma, 3407020, Group III

Contents• Background Information• Main Phases• PDD• Related Literature

BACKGROUND INFORMATION

Authors

Janice Hill

• PhD student• IV&V Facility at NASA in

Fairmont, West Virginia, USA

Scott Tilley

• Professor• Department of

Computer Sciences at Florida Institute of Technology in Melbourne, Florida, USA• Co(authored) more than

100 academic publications

Origins• SEI Software Risk Evaluation (SRE) practice

Primary functions SRE

Detection

Specification

Assessment

Consolidation

Planning & Coordination

Verification & Validation

Training & Communcation

Support functions

Purpose

• High software safety standards

NASA

• (Possibly) a lot of software safety risks

Legacy Systems

MAIN PHASES

Main Phases• Detection• Risk Specification• Assessment• Consolidation• Mitigation

Detection

Project profile

Questions regarding

software safety

Risks

PDD and example

Risk Specification• Source of risk impact

Performance

Support

Cost

Schedule

PDD and example

Assessment• Risk profile

Possible consequence

Catastrophic

Critical

Marginal

Negligible

Probability of occurrence

Likely

Probable

Possible

Unlikely

Improbable

PDD and example

Consolidation

Group similar

risks

Assign priority ranking

Determine risk area

importance

PDD and example

Mitigation

List risk areas

Develop mitigation plans

for risk areas

Develop report on project

PDD and example

PDD

RELATED LITERATURE

Related Literature• SEI Software Risk Evaluation (SRE) practice

• Higuera, R. P., & Haimes, Y. Y. (1996). Software Risk Management. Technical Report CMU/SEI-96-TR-012. Software Engineering Institute.

Primary functions SRE

Detection

Specification

Assessment

Consolidation

Mitigation

Planning & Coordination

Verification & Validation

Training & Communcation

Support functions

Related Literature• Software Safety Risk Taxonomy Based Questionnaire (TBQ)

• Hill, J., & Victor, D. (2008). The Product Engineering Class in the Software Safety Risk Taxonomy for Building Safety-Critical Systems. Proceedings of the 19th Australian Software Engineering Conference (ASWEC 2008) (pp. 617-626). IEEE CS Press.

• Legacy Systems Risk Database (LSRD) tool

Questions?