Towards a Model-Based Evolutionary Chain of Evidence for Compliance with Safety Standards

  • Jose Luis de la Vara
  • Sunil Nair
  • Eric Verhulst
  • Janusz Studzizba
  • Piotr Pepek
  • Jerome Lambourg
  • Mehrdad Sabetzadeh
Part of the Lecture Notes in Computer Science book series (LNCS, volume 7613)


Compliance with safety standards can greatly increase the development cost and time of critical systems. Major problems arise when evolutions to a system entail reconstruction of the body of safety evidence. When changes occur in the development or certification processes, identification of the new evidence to provide, the evidence that is no longer adequate, or the evidence that can be reused poses some challenges. Therefore, practitioners need support to identify how a chain of evidence evolves as a result of the changes. Otherwise, execution of the above activities can be very costly, and it can even result in abandonment of certification efforts. This paper outlines a solution to deal with these challenges. The solution is based on the use of model-driven engineering technology, which has already been applied for safety certification but not from an evolutionary chain of evidence-based perspective. The paper also sets the background for developing the solution, describes real situations in which the solution can help industry, and discusses possible challenges for developing it. The solution will be developed as part of OPENCOSS, a research project on cross-domain evolutionary certification.


safety safety certification evidence chain of evidence evidence evolution model-driven engineering impact analysis OPENCOSS 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Altreonic: Survey on Certification Issues, (accessed May 15, 2012)
  2. 2.
    Altreonic: Trustworthy Systems Engineering with GoedelWorks, (accessed May 15, 2012)
  3. 3.
    Atego Workbench, (accessed May 15, 2012)
  4. 4.
    Bohner, S.A., Arnold, R.S.: Software Change Impact Analysis. IEEE Press (1996)Google Scholar
  5. 5.
    Briand, L., Labiche, Y., Yue, T.: Automated traceability analysis for UML model refinements. Information & Software Technology 51(2), 512–527 (2009)CrossRefGoogle Scholar
  6. 6.
    DECOS project, (accessed May 15, 2012)
  7. 7.
    Ericson, C.A.: Concise Encyclopedia of System Safety. Wiley (2011) Google Scholar
  8. 8.
    EVOLVE project, (accessed May 15, 2012)
  9. 9.
    Falessi, D., et al.: Planning for Safety Evidence Collection. IEEE Software 29(3), 64–70 (2012)CrossRefGoogle Scholar
  10. 10.
    Fenn, J., et al.: The Who, Where, How, Why and When of Modular and Incremental Certification. In: 2nd IET International Conference on System Safety (2007)Google Scholar
  11. 11.
    FormalSafe project, (accessed May 15, 2012)
  12. 12.
    Habli, I.M.: Model-based assurance of safety-critical product lines. PhD thesis, University of York (2009)Google Scholar
  13. 13.
    Herrmann, D.S.: Software Safety and Reliability. IEEE Press (1999)Google Scholar
  14. 14.
    iFEST project, (accessed May 15, 2012)
  15. 15.
    Jackson, D., Thomas, M., Millet, L.I.: Software for Dependable Systems. NAP (2007)Google Scholar
  16. 16.
    Johansson, M., Nevalainen, R.: Additional requirements for process assessment in safety–critical software and systems domain. J. Softw. Maint. Evol. (2010), doi: 10.1002/smr.499 Google Scholar
  17. 17.
    Kelly, T.P.: Can Process-Based and Product-Based Approaches to Software Safety Certification be Reconciled? In: Improvements in Systems Safety. Springer (2008)Google Scholar
  18. 18.
    Kornecki, A., Zalewski, J.: Certification of software for real-time safety-critical systems: state of the art. Innovations in Systems and Software Engineering 5(2), 149–161 (2009)CrossRefGoogle Scholar
  19. 19.
    Medini Analyze, (accessed May 15, 2012)
  20. 20.
    ModelME! project, (accessed May 15, 2012)
  21. 21.
    Nejati, S., et al.: A SysML-Based Approach to Traceability Management and Design Slicing of Safety Certification. Info. & Software Technology (accepted paper, 2012)Google Scholar
  22. 22.
    OMG: Argumentation Metamodel (ARM) 1.0 – Beta 1 (2010), (accessed May 15, 2012)
  23. 23.
    OMG: Object Constraint Language (OCL) Version 2.3.1 (2006), (accessed May 15, 2012)
  24. 24.
    OMG: Software Assurance Evidence Metamodel (SAEM) 1.0 – Beta 1 (2010), (accessed May 15, 2012)
  25. 25.
    OPENCOSS: Deliverable D6.1 - Baseline for the evidence management needs of the OPENCOSS platform (2012) Google Scholar
  26. 26.
    OPENCOSS, (accessed May 15, 2012)
  27. 27.
    Open-DO initiative, (accessed May 15, 2012)
  28. 28.
    Oxford Dictionaries: evidence, (accessed May 15, 2012)
  29. 29.
    Panesar-Walawege, R.K., et al.: Characterizing the Chain of Evidence for Software Safety Cases: A Conceptual Model Based on the IEC 61508 Standard. In: ICST 2010 (2010)Google Scholar
  30. 30.
    Panesar-Walawege, R.K., Skyberg Knutsen, T., Sabetzadeh, M., Briand, L.: CRESCO: Construction of Evidence Repositories for Managing Standards Compliance. In: De Troyer, O., Bauzer Medeiros, C., Billen, R., Hallot, P., Simitsis, A., Van Mingroot, H. (eds.) ER Workshops 2011. LNCS, vol. 6999, pp. 338–342. Springer, Heidelberg (2011)CrossRefGoogle Scholar
  31. 31.
    Panesar-Walawege, R.K., Sabetzadeh, M., Briand, L.: Using UML Profiles for Sector-Specific Tailoring of Safety Evidence Information. In: Jeusfeld, M., Delcambre, L., Ling, T.-W. (eds.) ER 2011. LNCS, vol. 6998, pp. 362–378. Springer, Heidelberg (2011)CrossRefGoogle Scholar
  32. 32.
    Panesar-Walawege, R.K., Sabetzadeh, M., Briand, L.: Using Model-Driven Engineering for Managing Safety Evidence: Challenges, Vision and Experience. In: WoSoCER 2011 (2011)Google Scholar
  33. 33.
    Parasoft Concerto, (accessed May 15, 2012)
  34. 34.
    Programatica project, (accessed May 15, 2012)
  35. 35.
    Sabetzadeh, M., et al.: MODUS: A goal-based approach for quantitative assessment of systems, (accessed May 15, 2012)
  36. 36.
    SafeCer project, (accessed May 15, 2012)
  37. 37.
    Schmidt, D.C.: Model-Driven Engineering. IEEE Computer 39(2), 25–31 (2006)CrossRefGoogle Scholar
  38. 38.
    Sherriff, M., Williams, L.: DevCOP. In: ISSRE 2006 (2006)Google Scholar
  39. 39.
    Sommerville, I.: Software Engineering, 7th edn. Pearson (2004)Google Scholar
  40. 40.
    Squair, M.J.: Issues in the Application of Software Safety Standards. In: SCS 2005 (2005) Google Scholar
  41. 41.
    The Qualifying Machine: In: [27] Google Scholar
  42. 42.
    Zoughbi, G., Briand, L., Labiche, Y.: Modeling safety and airworthiness (RTCA DO-178B) information: conceptual model and UML profile. SoSyM 10(3), 337–367 (2011)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2012

Authors and Affiliations

  • Jose Luis de la Vara
    • 1
  • Sunil Nair
    • 1
  • Eric Verhulst
    • 2
  • Janusz Studzizba
    • 3
  • Piotr Pepek
    • 3
  • Jerome Lambourg
    • 4
  • Mehrdad Sabetzadeh
    • 1
  1. 1.Simula Research LaboratoryLysakerNorway
  2. 2.AltreonicLindenBelgium
  3. 3.Parasoft S.A.KrakowPoland
  4. 4.AdaCoreParisFrance

Personalised recommendations