计算机科学

计算机科学 ›› 2019, Vol. 46 ›› Issue (9): 156-161.doi: 10.11896/j.issn.1002-137X.2019.09.022

• 信息安全 • 上一篇    下一篇

基于系统多维要素的安全关键软件验证方法

吕小虎, 韩笑冬, 宫江雷, 王志杰, 刘小鲲   

  1. (中国空间技术研究院通信卫星事业部 北京100094)
  • 收稿日期:2018-07-30 出版日期:2019-09-15 发布日期:2019-09-02
  • 通讯作者: 吕小虎(1983-),硕士,高级工程师,主要研究方向为嵌入式软件设计、安全关键软件设计与验证,E-mail:xibeixiongying11@163.com
  • 作者简介:韩笑冬(1983-),博士,高级工程师,主要研究方向为嵌入式软件设计、智能控制;宫江雷(1986-),硕士,高级工程师,主要研究方向为嵌入式软件系统级设计;王志杰(1970-),硕士,高级工程师,主要研究方向为测控软件系统级设计;刘小鲲(1982-),硕士,工程师,主要研究方向为嵌入式软件测试。
  • 基金资助:
    国家自然科学基金(61471360)

Systemic Muti-factors Based Verification Method for Safety-critical Software

LV Xiao-hu, HAN Xiao-dong, GONG Jiang-lei, WANG Zhi-jie, LIU Xiao-kun   

  1. (Institute of Telecommunication Satellite,China Academy of Space Technology,Beijing 100094,China)
  • Received:2018-07-30 Online:2019-09-15 Published:2019-09-02

PDF (PC)

611

摘要: 软件密集型系统已成为发展的必然趋势。安全关键软件功能的比重持续上升,与之相关的安全性问题也日益凸显,且问题的影响因素呈现复杂、多维、动态、隐蔽等特征。因此,寻求合理的验证方法成为了迫切需要,而如何对其进行有效验证,也成为软件安全性工作的难点。结合安全关键软件的研制工作,文中研究并提出基于系统多维要素的安全关键软件验证方法,从系统的角度建模对影响软件安全性的多维危险要素;在此基础上,通过构建安全关键软件的需求约束集和验证集,给出具体的验证方法和步骤。实际应用表明,与传统的局限于软件逻辑自身的验证方法相比,文中所提方法能够有效识别大量软件潜在的深层次的问题。

关键词: 安全关键软件, 多维要素, 验证集, 约束集

Abstract: Software-intensive systems have been the inexorable development trend.The proportion of functions of safety-critical software keep growing,and the software safety problems are highlighted increasingly,in which the influence factors are characterized by complex,multidimensional,dynamic and insidious.Therefore,it’s urgent to seek a reasonable verification method for safety-critical software,and how to effectively verify it has become a difficult issue in software safety-related work.Based on the research and development of safety-critical software,this paper studied and proposed a verification method for safety-critical software based on systemic muti-factors,modeled the muti-factors that affect software safety from the point of system,and gave detailed verification methods and steps through constructing the requirement constraint sets and verification sets.The results of practical application show that the proposed method can effectively identify potential and systemic problems in safety-critical software compared with the traditional verification methods limited to software logic.

Key words: Constraint sets, Muti-factors, Safety-critical software, Verification sets

中图分类号: 

  • TP311.52
[1]ATHALYE P,MAKSIMOVIC D,ERICKSON R,et al.High-Performance front-end converter for avionics applications[J].IEEE Transactions.on Aerospace and Electronic Systems,2003,39(2):462-470.
[2]JIANG M X.Research on Safety Testing for Airborne Software[D].Nanjing:Nanjing University of Aeronautics and Astronautics,2015.(in Chinese)姜梦霞.机载软件的安全性测试研究[D].南京:南京航空航天大学,2015.
[3]GJB/Z 102A-2012.军用软件安全性设计指南[OL].http://www.gjb.corn.cn/.2012.
[4]GJB/Z 142-2004.军用软件安全性分析指南[OL].http://www.gjb.com.cn/.2004.
[5]FAN X G,CHU W K,ZHANG F M.Surveys of software safety[J].Computer Science,2011,38(5):8-13.(in Chinese)樊晓光,褚文奎,张凤鸣.软件安全性研究综述[J].计算机科学,2011,38(5):8-13.
[6]HUANG Z Q,XU B F,KAN S L,et al.Survey on EmbeddedSoftware Safety Analysis Standards,Methods and Tools for Airborne System[J].Journal of Software,2014,25(2):200-218.(in Chinese)黄志球,徐丙凤,阚双龙,等.嵌入式机载软件安全性分析标准、方法及工具研究综述[J].软件学报,2014,25(2):200-218.
[7]NASA.Software Safety:NASA-STD 8719.13C(2013)[S].NASA Technical Standard,7-77.
[8]STRINGFELLOW M,OWENS B,LEVESON N,et al.A Safety-Driven Systems Engineering Process[J].INCOSE International Symposium,2008,18(1):605-619.
[9]STRINGFELLOW M V,LEVESON N G,OWENS B D.Safety-Driven Design for Software-Intensive Aerospace and Automotive Systems[J].Proceedings of the IEEE,2010,98(4):515-525.
[10]ISHIMATSU T,LEVESON N G,THOMAS J P,et al.Hazard Analysis of Complex Spacecraft Using Systems-Theoretic Process Analysis[J].Journal of Spacecraft and Rockets,2014,51(2):509-522.
[11]ABDULKHALEQ A,WAGNER S,LEVESON N.A Comprehensive Safety Engineering Approach for Software-Intensive Systems Based on STPA[J].Procedia Engineering,2015,128(4):2-11.
[12]KNIGHT J C,LEVESON N G.Should software engineers be licensed?[J].Communications of the Acm,2002,45(11):87-90.
[13]ABDULKHALEQ A,WAGNER S.A Software Safety Verification Method Based on System-Theoretic Process Analysis[C]//International Conference on Computer Safety,Reliability,and Security.Springer International Publishing,2014.
[14]ABDULKHALEQ A,WAGNER S.Integrated Safety Analysis Using Systems-Theoretic Process Analysis and Software Model Checking[C]//International Conference on Computer Safety,Reliability,and Security.Springer,Cham,2014.
[15]FLEMING C H,LEVESON N.Integrating Systems Safety into Systems Engineering during Concept Development[J].INCOSE International Symposium,2015,25(1):989-1003.
[1] 杨志斌, 杨永强, 袁胜浩, 周勇, 薛垒, 程高辉.
安全关键软件术语推荐和需求分类方法
Terminology Recommendation and Requirement Classification Method for Safety-critical Software
计算机科学, 2021, 48(5): 32-44. https://doi.org/10.11896/jsjkx.210100105
[2] 李元平,李华,赵俊岚.
有限状态机模型测试序列生成算法研究
Research about FSM Test Sequence Generation Algorithm
计算机科学, 2016, 43(Z11): 474-481. https://doi.org/10.11896/j.issn.1002-137X.2016.11A.107
[3] .
测试资源受约束的安全关键软件加速测试方法

计算机科学, 2009, 36(5): 138-141.
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发