Agile development of safety critical systems

NOTES ON AGILE AND
SAFETY-CRITICAL
DEVELOPMENT
Jaana Nyfjord
jaananyfjord
[email protected]
In close collaboration with
Efi Papatheocharous (SICS)
Jakob Axelsson (SICS) & Martin Törngren (KTH)
Source: http://www.usaid.gov/ via Wikimedia Commons: http://commons.wikimedia.org/wiki/File:Coral_Reef_in_the_Red_Sea.JPG
Source: http://www.photolib.noaa.gov/ via Wikimedia Commons: http://upload.wikimedia.org/wikipedia/commons/8/83/Coral-reef-bioerosion.jpg
www.sics.se
AGILE BEYOND SOFTWARE
CHALLENGES
• Language
• Organisation & teams
• Process synchronisation
• Ownership, e.g testing
• Lifecycle & time-spans
• Scalability
www.sics.se
SOLUTIONS
• Integration points
• Product architecture views
• Kanban
• Demos
• Communication system
• Tools
• Cyclic hardware development
AGILE & SAFETY
CHALLENGES
• Quality not the same as safety
• Method applicability
• Contradictory principles SOLUTIONS
• Education
• Prescriptive standards
• Close cultural gap/mindset
• Architecture ”meet in the middle”
• Close collaboration w assessors
• Language
• Goal-oriented safety standards
www.sics.se
NOW, CONCLUDING REMARKS
• …
www.sics.se
Waterfall
Few risks, sequential,
late integration and testing
DO-178C
MIL-STD-1521
Low ceremony
High ceremony
Compliance, traceability
Value
SCRUM
XP
Iterative
Risk-driven,
continuous integration and testing
Nyfjord & Hedegård, 2005
www.sics.se
AGILE LEAN DEVELOPMENT OF
SAFETY-CRITICAL SYSTEMS ALDES
•
CHALLENGE ALDES faces the challenges on ever increasing complexity and diversity of safetycritical cyber-physical systems (CPS) and aims to develop a common methodology – a collection of
practices – to overcome them.
•
SOLUTION The theories behind Agile and Lean methods will be used to construct the ALDES
framework for efficient development of safety-critical CPSs.
•
OBJECTIVES/SCOPE ALDES considers the special attributes of safety-critical CPSs.
•
Compliance: The practices are developed to ensure the compliance of standards and
regulations when Agile and Lean methods are applied.
•
Speed: Practices for continuous verification, validation and certification are developed to
locate faults early, to eliminate the need for re-design and to minimize the burden caused by
these activities in the end of the product development
•
Collaboration: ALDES takes into account the different stakeholder interfaces present during
product development processes and takes customers and suppliers closely into the process.
•
MAIN DELIVERABLES
ALDES Methodology
ALDES Knowledge Repository
ALDES Tools
ALDES Measurement Methods
www.sics.se
ALDES – CONSORTIUM
Total : 45 partners
Finland: 12
Spain: 9
France: 4
Sweden: 4
www.sics.se
Italy: 4
Netherlands: 3
Portugal: 2
Serbia: 2
Denmark: 2
Belgium: 1
UK: 1
Greece: 1
COMPLEX ADAPTIVE SYSTEMS
(CAS)
 Complex adaptive systems is derived from the mathematical science of complexity.
 Complex adaptive systems are non-linear, open, dynamic.

In non-linear systems the value of the whole cannot be determined by the sum of the parts

Open systems interact with its environment, receiving inputs and providing outputs, but
doesn’t control it

A dynamic system changes and evolves its behavior in response to its inputs
 Order emerges through the interaction among the system’s parts as they evolve
(within the larger system) in response to the changing environment.
 Hence, CASs are composed of autonomous agents that seek to maximize some
measure of fitness by evolving or adapting to changes as they occur.
 Local, often simple, rules guide the interaction among the agents and result in the
system’s global behavior.
www.sics.se
www.sics.se
Q&A
• …
www.sics.se