计算机科学 ›› 2020, Vol. 47 ›› Issue (5): 284-294.doi: 10.11896/jsjkx.190600169
唐红英, 胡军, 陈朔, 石梦烨
TANG Hong-ying, HU Jun, CHEN Shuo, SHI Meng-ye
摘要: 基于模型的安全性分析方法能够提高对目前复杂安全关键系统的建模与分析能力。系统建模语言(System Modeling Language,SysML)是一类在工业领域被广泛应用的非形式化系统功能建模语言,AltaRica是面向系统安全性分析的形式化建模语言。针对国内目前缺乏面向SysML的系统安全性分析工具的现状,设计实现了一个面向SysML的系统安全性分析工具并进行了实例研究。首先建立了SysML设计模型到AltaRica分析模型的映射规则;同时根据映射规则设计算法实现两种模型的自动转换,并集成了Altarica的分析引擎对系统模型进行自动化安全性分析;最后以SAE-AIR6110标准中的一个复杂的机轮刹车系统(Wheel Brake System,WBS)为实例,验证了所提工具的可行性和有效性。实验结果表明,对于包含25个组件类型、34个组件实例的复杂系统,该工具可有效地完成SysML模型到AltaRica模型的转换并进行正确的安全性分析。
中图分类号:
[1]JOSHI A,HEIMDAHL M P E,MILLER S P,et al.Model-Based Safety Analysis[J].2006. [2]FRIEDENTHAL S,MOORE A,STEINER R.A Practical Guide to SysML[J].San Francisco Jung Institute Library Journal,2011,17(1):41-46. [3]BATTEUX M,PROSVIRNOVA T,RAUZY A.AltaRica 3.0 language specification[R].AltaRica Association,2015. [4]PROSVIRNOVA T.AltaRica 3.0:a model-based approach forsafety analyses[D].Ecole Polytechnique,2014. [5]PROSVIRNOVA T,BATTEUX M,BRAMERET P A,et al.The AltaRica 3.0 project for model-based safety assessment[J].IFAC Proceedings Volumes,2013,46(22):127-132. [6]SAE.Contiguous aircraft/system development process example:SAE Aerospace Information Report 6110 [S].SAE Internatio-nal,2011. [7]HAUSE M.OMG systems modeling language (OMGSysMLTM) tutorial[J].INCOSE International Symposium,2009,19(1):1840-1972. [8]DELLIGATTI L.SysML Distilled:A Brief Guide to the Systems Modeling Language[M].Addison Wesley,2013:3-10. [9]Object Management Group.XML Metadata Interchange[EB/OL].(2015-06-07)[2019-07-28].http://www.omg.org/technology/documents/formal/xmi.htm. [10]KOTUSEV S.Enterprise architecture:what did we study?[J].International Journal of Cooperative Information Systems,2017,26(4):1730002. [11]GERY E,HAREL D,PALACHI E.Rhapsody:A complete life-cycle model-based development system[C]//International Conference on Integrated Formal Methods.Springer,Berlin,Heidelberg,2002:1-10. [12]RAUZY A B.Guarded transition systems:a new states/events formalism for reliability studies[J].Proceedings of the Institution of Mechanical Engineers,Part O:Journal of Risk and Reliability,2008,222(4):495-505. [13]WOOD L,LE HORS A,APPARAO V,et al.Document object model (dom) level 1 specification[EB/OL].(1998-10-01)[2019-05-10].W3C recommendation.https://www.w3.org/TR/1998/REC-DOM-Level-1-19981001/DOM.pdf. [14]ERICSON C A.Fault tree analysis[C]//System Safety Confe-rence.Florida,1999. [15]System X.The OpenAltaRica Platform-Getting Started[EB/OL].(2017-09-04)[2019-04-23].https://www.openaltarica.fr/docs/The%20OpenAltaRica%20Platform%20-%20Getting%20Started.pdf. [16]ALESSANDRO L,MARK N. ARP4754A/ ED-79A- Guidelines for Development of Civil Aircraft and Systems-Enhancements, Novelties and Key Topics[J].Sae International Journal of Aerospace,2011,4(2):871-879. [17]SAE.Guidelines and methods for conducting the safety assessment process on civil airborne systems and equipment:SAE ARP4761 [S].SAE International,1996. [18]BOZZANO M,CIMATTI A,FERNANDES PIRES A,et al.Formal design and safety analysis of AIR6110 wheel brake system[M]//Computer Aided Verification.Cham:Springer International Publishing,2015:518-535. [19]RAUZY A.Anatomy of an efficient fault tree assessment engine[C]//Proceedings of International Joint Conference PSAM.2012. [20]HELLE P.Automatic SysML-based safety analysis[C]//International Workshop on Model Based Architecting & Construction on Embedded Systems.ACM.2012. [21]GARRO A,TUNDIS A.Enhancing the RAMSAS method for system reliability analysis-an exploitation in the automotive domain[C]//International Conference on Simulation and Mode-ling Methodologies, Technologies and Applications.SCITEPRESS,2012:328-333. [22]MHENNI F,CHOLEY J Y,NGUYEN N.An integrated design methodology for safety critical systems[C]//2016 Annual IEEE Systems Conference (SysCon).Orlando,IEEE,2016. [23]DAVID P,IDASIAK V,KRATZ F.Reliability study of complex physical systems using SysML[J].Reliability Engineering & System Safety,2010,95(4):431-450. [24]IDASIAK V,DAVID P,KRATZ F.Automating the synthesis of AltaRica data-flow models from SysML[M]//Reliability,Risk,and Safety.CRC Press,2009. [25]PARR T J,QUONG R W.ANTLR:a predicated-LL(k) parser generator[J].Software:Practice and Experience,1995,25(7):789-810. |
[1] | 张潆藜, 马佳利, 刘子昂, 刘新, 周睿. 以太坊Solidity智能合约漏洞检测方法综述 Overview of Vulnerability Detection Methods for Ethereum Solidity Smart Contracts 计算机科学, 2022, 49(3): 52-61. https://doi.org/10.11896/jsjkx.210700004 |
[2] | 祁健, 胡军, 谷青范, 荣灏, 展万里, 董彦宏. 一种AltaRica 3.0模型中类的平展化方法 Class Flattening Method for AltaRica 3.0 Model 计算机科学, 2021, 48(5): 51-59. https://doi.org/10.11896/jsjkx.200700184 |
[3] | 展万里, 胡军, 谷青范, 荣灏, 祁健, 董彦宏. 基于模型的故障树自动生成方法 Model-based Fault Tree Automatic Generation Method 计算机科学, 2021, 48(12): 159-169. https://doi.org/10.11896/jsjkx.200800177 |
[4] | 孟繁祎, 王莹, 于海, 朱志良. 复杂软件系统的重构技术:现状、问题与展望 Refactoring of Complex Software Systems Research:PresentProblem and Prospect 计算机科学, 2020, 47(12): 1-10. https://doi.org/10.11896/jsjkx.200800067 |
[5] | 陆叶杉. 系统数据迁移常见问题及案例分析 Common Issues and Case Analysis of System Data Migration 计算机科学, 2019, 46(6A): 412-416. |
[6] | 李思洁, 魏欧, 战芸娇, 王立松. 基于表格表达式的SCR需求模型转换 SCR Requirement Model Transformation Based on Table Expression 计算机科学, 2019, 46(6): 180-188. https://doi.org/10.11896/j.issn.1002-137X.2019.06.027 |
[7] | 李宛倩, 胡军, 陈松, 张维珺. 面向SysML模型的安全性分析与验证方法 Method of System Safety Analysis and Verification for SysML Models 计算机科学, 2019, 46(11): 100-108. https://doi.org/10.11896/jsjkx.181001850 |
[8] | 琚安康,郭渊博,朱泰铭. 基于开源工具集的大数据网络安全态势感知及预警架构 Framework for Big Data Network Security Situational Awareness and Threat Warning Based on Open Source Toolset 计算机科学, 2017, 44(5): 125-131. https://doi.org/10.11896/j.issn.1002-137X.2017.05.023 |
[9] | 郑炜,黄月明,吴潇雪,冯晨,蔺军. 基于本体的并发错误测试工具推荐方法研究 Research on Recommendation of Concurrency Bug Testing Tools Based on Ontology 计算机科学, 2017, 44(11): 202-206. https://doi.org/10.11896/j.issn.1002-137X.2017.11.031 |
[10] | 刘亚珺,李兵,李增扬,梁鹏,吴闽泉. 软件集成开发环境的技术债务管理研究 Study on Technical Debt Management of Integrated Development Environment 计算机科学, 2017, 44(11): 15-21. https://doi.org/10.11896/j.issn.1002-137X.2017.11.003 |
[11] | 徐文华,张育平. 基于航电系统架构模型的安全性分析工具的设计与实现 Design and Implementation of Safety Analysis Tool Based on Avionics System Architecture Model 计算机科学, 2016, 43(Z11): 536-541. https://doi.org/10.11896/j.issn.1002-137X.2016.11A.121 |
[12] | 胡军,石娇洁,程桢,陈松,王明明. 一种基于四变量模型的系统安全性建模与分析方法 System Safety Modeling and Analysis Method Based on Four-variable Model 计算机科学, 2016, 43(11): 193-199. https://doi.org/10.11896/j.issn.1002-137X.2016.11.038 |
[13] | 仵志鹏 黄志球 王珊珊 曹德建. 一种基于故障扩展SysML活动图的安全性验证框架研究 Research on Framework of Safety Verification Based on Fault-extended SysML Activity Diagram 计算机科学, 2015, 42(7): 222-228. https://doi.org/10.11896/j.issn.1002-137X.2015.07.048 |
[14] | 王飞,沈国华,黄志球,马 琳,刘 畅,李海峰,廖莉莉. 一种结合线性时序逻辑和故障树的软件安全验证方法 Method Combining Linear Temporal Logic and Fault Tree for Software Safety Verification 计算机科学, 2015, 42(12): 71-75. |
[15] | 彭鑫,王金水,付焜,赵文耘. 基于Web的多刻面交互式特征定位工具MFIE MFIE:A Web-based Multi-faceted Interactive Feature Localization Tool 计算机科学, 2014, 41(9): 80-83. https://doi.org/10.11896/j.issn.1002-137X.2014.09.014 |
|