Fault Tree Analysis with Moby/FT
نویسنده
چکیده
Fault tree analysis (FTA) is a standardised technique used by engineers to explore possible failure states of safety-critical systems. Since the FTA is generally practised informally and thus, it cannot be guaranteed that it is applied correctly, several formal approaches have been introduced in the past (e.g. [STR02]) for allowing engineers to verify that they built a fault tree considering the right events (correctness) and that they did not forget a relevant event (completeness). But without automated proof support the acceptance of such formal approaches in industry is insufficient. In this paper we present the tool Moby/FT, which offers a graphical editor for specifying and verifying fault trees. The aim of Moby/FT is to increase the reliability of real-time systems, which are often profoundly safety-critical. The tool allows the user to specify fault trees together with the semantics of their events in terms of an interval logic, Duration Calculus [ZH04], and to automatically verify the correctness and completeness of the fault trees relatively to the system model. Hence, we introduce a novel method for the automatic verification of fault trees using the continuous real-time model-checker Uppaal [UUP05] for timed automata [AD94]. Therefore, fault trees with an DC semantics have to be transformed into timed automata, which can be verified by Uppaal. The connection to Uppaal, i.e. the generation of the timed automata and the appropriate requests, is automatically performed by Moby/FT.
منابع مشابه
A Dynamic Fault Tree Analysis Model
In this paper a model for dynamic fault tree (FT) analysis is developed. The model is ussed for the analysis of a cold standby redundant system. It is shown that a typical modern fault tree analysis (FTA), resulting in the Boolean domain in a short pseudopolynomial, i.e., a polynomial in the literals of the FT input variables, can yield grave errors in case of cold standby, even though the sing...
متن کاملFault tree analysis: A survey of the state-of-the-art in modeling, analysis and tools
Fault tree analysis (FTA) is a very prominent method to analyze the risks related to safety and economically critical assets, like power plants, airplanes, data centers and web shops. FTA methods comprise of a wide variety of modelling and analysis techniques, supported by a wide range of software tools. This paper surveys over 150 papers on fault tree analysis, providing an in-depth overview o...
متن کاملIntegrating several formalisms in order to increase Fault Trees' modeling power
The Fault Tree (FT) is a widespread model in the field of Reliability, but its modeling power is very limited. Therefore several FT extensions have been proposed in the literature, each introducing particular modeling primitives, but in a separate way. In this paper, we integrate the primitives coming from three relevant FT extensions (Parametric, Dynamic, and Repairable FT), into the formalism...
متن کاملMultiple Source Dual Fault Tolerant BFS Trees
Let G = (V,E) be a graph with n vertices and m edges, with a designated set of σ sources S ⊆ V . The fault tolerant subgraph for any graph problem maintains a sparse subgraph H = (V,E) of G with E ⊆ E, such that for any set F of k failures, the solution for the graph problem on G\F is maintained in its subgraph H \F . We address the problem of maintaining a fault tolerant subgraph for computing...
متن کاملOvercoming the uncertainty in a research reactor LOCA in level-1 PSA; Fuzzy based fault-tree/event-tree analysis
Probabilistic safety assessment (PSA) which plays a crucial role in risk evaluation is a quantitative approach intended to demonstrate how a nuclear reactor meets the safety margins as part of the licensing process. Despite PSA merits, some shortcomings associated with the final results exist. Conventional PSA uses crisp values to represent the failure probabilities of basic events. This causes...
متن کامل