Agile development of safety critical systems
Transcription
Agile development of safety critical systems
NOTES ON AGILE AND SAFETY-CRITICAL DEVELOPMENT Jaana Nyfjord jaananyfjord jaana@sics.se In close collaboration with Efi Papatheocharous (SICS) Jakob Axelsson (SICS) & Martin Törngren (KTH) Source: http://www.usaid.gov/ via Wikimedia Commons: http://commons.wikimedia.org/wiki/File:Coral_Reef_in_the_Red_Sea.JPG Source: http://www.photolib.noaa.gov/ via Wikimedia Commons: http://upload.wikimedia.org/wikipedia/commons/8/83/Coral-reef-bioerosion.jpg www.sics.se AGILE BEYOND SOFTWARE CHALLENGES • Language • Organisation & teams • Process synchronisation • Ownership, e.g testing • Lifecycle & time-spans • Scalability www.sics.se SOLUTIONS • Integration points • Product architecture views • Kanban • Demos • Communication system • Tools • Cyclic hardware development AGILE & SAFETY CHALLENGES • Quality not the same as safety • Method applicability • Contradictory principles SOLUTIONS • Education • Prescriptive standards • Close cultural gap/mindset • Architecture ”meet in the middle” • Close collaboration w assessors • Language • Goal-oriented safety standards www.sics.se NOW, CONCLUDING REMARKS • … www.sics.se Waterfall Few risks, sequential, late integration and testing DO-178C MIL-STD-1521 Low ceremony High ceremony Compliance, traceability Value SCRUM XP Iterative Risk-driven, continuous integration and testing Nyfjord & Hedegård, 2005 www.sics.se AGILE LEAN DEVELOPMENT OF SAFETY-CRITICAL SYSTEMS ALDES • CHALLENGE ALDES faces the challenges on ever increasing complexity and diversity of safetycritical cyber-physical systems (CPS) and aims to develop a common methodology – a collection of practices – to overcome them. • SOLUTION The theories behind Agile and Lean methods will be used to construct the ALDES framework for efficient development of safety-critical CPSs. • OBJECTIVES/SCOPE ALDES considers the special attributes of safety-critical CPSs. • Compliance: The practices are developed to ensure the compliance of standards and regulations when Agile and Lean methods are applied. • Speed: Practices for continuous verification, validation and certification are developed to locate faults early, to eliminate the need for re-design and to minimize the burden caused by these activities in the end of the product development • Collaboration: ALDES takes into account the different stakeholder interfaces present during product development processes and takes customers and suppliers closely into the process. • MAIN DELIVERABLES ALDES Methodology ALDES Knowledge Repository ALDES Tools ALDES Measurement Methods www.sics.se ALDES – CONSORTIUM Total : 45 partners Finland: 12 Spain: 9 France: 4 Sweden: 4 www.sics.se Italy: 4 Netherlands: 3 Portugal: 2 Serbia: 2 Denmark: 2 Belgium: 1 UK: 1 Greece: 1 COMPLEX ADAPTIVE SYSTEMS (CAS) Complex adaptive systems is derived from the mathematical science of complexity. Complex adaptive systems are non-linear, open, dynamic. In non-linear systems the value of the whole cannot be determined by the sum of the parts Open systems interact with its environment, receiving inputs and providing outputs, but doesn’t control it A dynamic system changes and evolves its behavior in response to its inputs Order emerges through the interaction among the system’s parts as they evolve (within the larger system) in response to the changing environment. Hence, CASs are composed of autonomous agents that seek to maximize some measure of fitness by evolving or adapting to changes as they occur. Local, often simple, rules guide the interaction among the agents and result in the system’s global behavior. www.sics.se www.sics.se Q&A • … www.sics.se