Assurance and Assurance Cases
نویسنده
چکیده
Assurance provides confidence that a system will work as required and not cause harm. Confidence is based on justified beliefs about the system and its environment, and justification can be developed and documented as an assurance case comprised of a structured argument grounded on evidence. For justification to be compelling, the argument must be indefeasible, meaning that we have so thoroughly considered everything that can go wrong (i.e., hazards to the system and defeaters to the argument) that there is no new information that could change our assessment. I show how the obligation for indefeasible justification can guide construction and interpretation of the argument and the evidence in an assurance case and how confidence in the case translates to bounds on the risk posed by the system. Assurance requires predictability in both the system and its environment; I speculate how credible assurance may be provided for recent and forthcoming systems where both kinds of predictability may be lacking.
منابع مشابه
A New Method for Writing Assurance Cases
In this paper, the authors present a new method for writing assurance cases. Assurance cases are documented bodies of evidence that provide a convincing and valid argument that a system is adequately dependable for a given application in a given environment. Assurance cases have been used mostly in the safety field, but are now beginning to be widely applied in other areas. Cyber security is on...
متن کاملFM Approaches to Assurance Cases
Assurance cases are a key concept in communicating dependability assurance of computer systems among the stakeholders. Noting an analogy between assurance cases and proofs, we plan to apply the technology of interactive proof assistants for construction and assessment of assurance cases. Fig. 1 An illustration of GSN from [5] Note The purpose of this report is to record our presentation given a...
متن کاملReviewing Assurance Arguments – A Step-By-Step Approach
An assurance case based regime requires a strong review element. Typically, one party is responsible for preparing the assurance case. Another party (the certification authority) is responsible for accepting the assurance case. Assurance cases are, by their nature, often subjective. The objective of assurance case development, therefore, is to obtain mutual acceptance of this subjective positio...
متن کاملAcquisition of Software - Reliant Capabilities
To improve the security of software systems, we need to improve the software development processes used to produce them. Software security assurance cases have been proposed as a way of establishing security properties of software at different phases of the software development lifecycle; however, these assurance cases are difficult to write, communicate and introduce into an already burdened s...
متن کاملDosimetric Study of an Indigenous and Heterogeneous Pelvic Phantom for Radiotherapy Quality Assurance
Introduction: In vitro dosimetric verification prior to patient treatment plays a key role in accurate and precision radiotherapy treatment delivery. Since the human body is a heterogeneous medium, the aim of this study was to design a heterogeneous pelvic phantom for radiotherapy quality assurance. Material and Methods: A pelvic phantom was ...
متن کاملThe future of goal-based assurance cases
Most regulations and guidelines for critical systems require a documented case that the system will meet its critical requirements, which we call an assurance case. Increasingly, the case is made using a goal-based approach, where claims are made (or goals are set) about the system and arguments and evidence are presented to support those claims. In this paper we describe Adelard’s approach to ...
متن کامل