Improvising the Security of Software Application by the Use of Fault Tree Analysis in Decision Making
نویسنده
چکیده
Fault Tree Analysis (FTA) attempts to model and analyse failure processes of engineering and biological systems. FTA is basically composed of logic diagrams that display the state of the system and is constructed using graphical design techniques. Originally, engineers were responsible for the development of Fault Tree Analysis, as a deep knowledge of the system under analysis is required. Fault Tree Analysis usually involves events from hardware wear out, material failure or malfunctions or combinations of deterministic contributions to the event stemming from assigning a hardware/system failure rate to branches or cut sets. Typically failure rates are carefully derived from substantiated historical data such as mean time between failure of the components, unit, subsystem or function. Predictor data may be assigned. Assigning a software failure rate is elusive and not possible. Since software is a vital contributor and inclusive of the system operation it is assumed the software will function normally as intended. There is no such thing as a software fault tree unless considered in the system context. Software is an instruction set to the hardware or overall system for correct operation. Since basic software events do not fail in the physical sense, attempting to predict manifestation of software faults or coding errors with any reliability or accuracy is impossible, unless assumptions are made. Predicting and assigning human error rates is not the primary intent of a fault tree analysis, but may be attempted to gain some knowledge of what happens with improper human input or intervention at the wrong time. FTA can be used as a valuable design tool, can identify potential accidents, and can eliminate costly design changes. It can also be used as a diagnostic tool, predicting the most likely system failure in a system breakdown. FTA is used in safety and reliability engineering and in all major fields of engineering. This paper aims to provide an overview of some major uses of FTA and elaborates an appreciation of the breadth of applications of FTA in decision-making by considering an example of improvising the security of software application by the use of controlled access.
منابع مشابه
Bayes Networks and Fault Tree Analysis Application in Reliability Estimation (Case Study: Automatic Water Sprinkler System)
In this study, the application of Bayes networks and fault tree analysis in reliability estimation have been investigated. Fault tree analysis is one of the most widely used methods for estimating reliability. In recent years, a method called "Bayes Network" has been used, which is a dynamic method, and information about the probable failure of the system components will be updated according to...
متن کاملApplication of Fuzzy Fault Tree Analysis in Risk Assessment of Ammonia Tank Explosion Scenario
Introduction: Chemical industries often have risks for the environment and communities, due to the use of complex facilities and processes. Also, in the ammonia tanks, the probability of risk of explosion is high, owing to their specific characteristics. The aim of this study is to evaluate the risks of explosion scenario at the ammonia tank in the Kermanshah petrochemical complex Material and...
متن کاملApplication of Fuzzy Fault Tree Analysis on Oil and Gas Offshore Pipelines
Fault Tree Analysis (FTA) as a Probabilistic Risk Assessment (PRA) method is used to identify basic causes leading to an undesired event, to represent logical relation of these basic causes in leading to the event, and finally to calculate the probability of occurrence of this event. To conduct a quantitative FTA, one needs a fault tree along with failure data of the Basic Events (BEs). Someti...
متن کاملApplication of Decision on Beliefs for Fault Detection in uni-variate Statistical Process Control
In this research, the decision on belief (DOB) approach was employed to analyze and classify the states of uni-variate quality control systems. The concept of DOB and its application in decision making problems were introduced, and then a methodology for modeling a statistical quality control problem by DOB approach was discussed. For this iterative approach, the belief for a system being out-...
متن کاملError assessment in man-machine systems using the CREAM method and human-in-the-loop fault tree analysis
Background and Objectives: Despite contribution to catastrophic accidents, human errors have been generally ignored in the design of human-machine (HM) systems and the determination of the level of automation (LOA). This paper aims to develop a method to estimate the level of automation in the early stage of the design phase considering both human and machine performance. Methods: A quantita...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2012