• 중소기업융합학회논문지
• /
• 제2권1호
• /
• pp.11-18
• /
• 2012

소프트웨어의 규모가 커지고 복잡해지면서 소프트웨어의 기능적 실패(Functional Failure)를 만들어 내는 위험(Hazard) 요소들을 분석하기가 어려워지고 있다. 안전 필수 시스템(원자력 발전소, 항공관제 시스템, 철도 운영 시스템)에서 이런 기능적 실패는 곧 큰 사고 (인명피해, 환경오염) 로 이어지게 된다. 따라서 이러한 기능적 실패를 방지하고 소프트웨어의 안전성을 높이기 위해서는 소프트웨어 안전성 분석이 필요하다. 하지만 몇 가지 이유 (시간과 노력, 안전성 분석 기법의 다양한 지식 부족, 기관이나 회사의 관습적인 방법 사용) 로 적절하지 못한 안전성 분석 기법을 선택하게 되는 경우가 있다. 따라서 본 논문에서는 기존 안전성 분석 기법과 최신 안전성 분석 기법, 통합 모델 몇 가지를 소개 하겠다. 이것을 통해 전문가는 여러 종류의 안전성 기법을 간략하게 확인 할 수 있을 것이고, 시스템에 맞는 안전성 분석 기법을 선택하는데 도움을 받을 수 있을 것이다.

• 시스템엔지니어링학술지
• /
• 제3권1호
• /
• pp.27-31
• /
• 2007

A complex system like ATM(Air Traffic Management) has safety problem emerging from complex interactions between systems. In complex systems, malfunctions of components are not the only causes of critical accidents. To resolve this problem many researchers have proposed new safety analysis models for complex systems. This research is a way of improving safety analysis model focusing on systems engineering design model for ATM.

• 제어로봇시스템학회논문지
• /
• 제15권3호
• /
• pp.337-345
• /
• 2009

The dependence of numerous systems on electronic devices is causing rapidly increasing concern over fault tolerance because of safety issues of safety critical system. As an example, a vehicle with electronics-controlled system such as x-by-wire systems, which are replacing rigid mechanical components with dynamically configurable electronic elements, should be fault￢tolerant because a devastating failure could arise without warning. Fault-tolerant systems have been studied in detail, mainly in the field of aeronautics. As an alternative to solve these problems, this paper presents the fuzzy hybrid redundancy system that can remove most erroneous faults with fuzzy fault detection algorithm. In addition, several numerical simulation results are given where the fuzzy hybrid redundancy outperforms with general voting method.

• 대한안전경영과학회지
• /
• 제16권4호
• /
• pp.11-19
• /
• 2014

Modern systems development becomes more and more complicated due to the need on the ever-increasing capability of the systems. In addition to the complexity issue, safety concern is also increasing since the malfunctions of the systems under development may result in the accidents in both the test and evaluation phase and the operation phase. Those accidents can cause disastrous damages if explosiveness gets involved therein such as in weapon systems development. The subject of this paper is on how to incorporate safety requirements in the design of safety-critical systems. As an approach, a useful system structure using the method of design structure matrix (DSM) is studied while reflecting the need on systems safety. Specifically, the effects of system components failure are analyzed and numerically modeled first. Also, the system components are identified and their interfaces are represented using a component DSM. Combining the results of the failure analysis and the component DSM leads to a modified DSM. By rearranging the resultant DSM, a modular structure is derived with safety requirements incorporated. As a case study, application of the approach is also discussed in the development of a military UAV plane.

• 한국원자력학회:학술대회논문집
• /
• 한국원자력학회 1997년도 춘계학술발표회논문집(1)
• /
• pp.233-238
• /
• 1997

본 논문에서는 Safety-critical 소프트웨어를 위한 V'||'&'||'V 지침서(guideline) 개발 방법론을 제시한다. 즉, 기존의 산업계 표준인 IEEE Std-1012, IEEE Std-1059에서 논의되고 있는 개념을 근간으로 "독립성(independence)", "소프트웨어 안전성 분석(software safety analysis)", "COTS 평가(evaluation) 기준", "다른 보증(assurance) 조직들간의 관련성(relationship)" 등의 필수 안전 항목들을 추가하여 원전 안전성 시스템(NPP safety system)을 위한 V'||'&'||'V 지침서 개발 방법론을 제시하였다 제시된 방법론에는 V'||'&'||'V 지침서의 범위(scope), 승인기준(acceptance criteria) 부분인 지침서 프레임(guideline framework), V'||'&'||'V activities 및 methods 부분인 타스크(task) entrance 및 exit 기준(criteria), 리뷰 및 감사(review and audit), 테스팅 그리고 V'||'&'||'V material의 QA 레코드(records) 및 형상관리, 소프트웨어 검증 및 확인 계획서(Software Verification and Validation Plan : SVVP) 생성 등의 내용을 기술하고, Safety-critical 소프트웨어 V'||'&'||'V 방법론도 함께 제시하였다.

• Journal of Multimedia Information System
• /
• 제2권2호
• /
• pp.241-248
• /
• 2015

The safety-critical software in healthcare systems needs more and more perceptive excess among human observation and computer support. It is a challenging conversion that we are fronting in confirming security in healthcare systems. Held in the center are the patients-the most important receivers of care. Patient injuries and fatalities connected to health information technologies commonly show up in the news, contrasted with tales of how health experts are being provided financial motivation to approve the products that may be generating damage. Those events are unbelievable and terrifying, however they emphasize on a crucial issue and understanding that we have to be more careful for the safety and protection of our patients.

• Nuclear Engineering and Technology
• /
• 제51권1호
• /
• pp.138-145
• /
• 2019

With the application of digital technology to safety-critical infrastructures, cyber-attacks have emerged as one of the new dangerous threats. In safety-critical infrastructures such as a nuclear power plant (NPP), a cyber-attack could have serious consequences by initiating dangerous events or rendering important safety systems unavailable. Since a cyber-attack is conducted intentionally, numerous possible cases should be considered for developing a cyber security system, such as the attack paths, methods, and potential target systems. Therefore, prior to developing a risk-informed cyber security strategy, the importance of cyber-attacks and significant critical digital assets (CDAs) should be analyzed. In this work, an importance analysis method for cyber-attacks on an NPP was proposed using the probabilistic safety assessment (PSA) method. To develop an importance analysis framework for cyber-attacks, possible cyber-attacks were identified with failure modes, and a PSA model for cyber-attacks was developed. For case studies, the quantitative evaluations of cyber-attack scenarios were performed using the proposed method. By using quantitative importance of cyber-attacks and identifying significant CDAs that must be defended against cyber-attacks, it is possible to develop an efficient and reliable defense strategy against cyber-attacks on NPPs.

• Nuclear Engineering and Technology
• /
• 제52권7호
• /
• pp.1462-1470
• /
• 2020

Reliability in safety-critical systems and equipment is of vital importance, so the probabilistic safety assessment (PSA) has been widely used for many years in the nuclear industry to address reliability in a quantitative manner. As many nuclear power plants (NPPs) become digitalized, evaluating the reliability of safety-critical software has become an emerging issue. Due to a lack of available methods, in many conventional PSA models only hardware reliability is addressed with the assumption that software reliability is perfect or very high compared to hardware reliability. This study focused on developing a new method of safety-critical software reliability quantification, derived from hardware-software integrated environment testing. Since the complexity of hardware and software interaction makes the possible number of test cases for exhaustive testing well beyond a practically achievable range, an importance-oriented testing method that assures the most efficient test coverage was developed. Application to the test of an actual NPP reactor protection system demonstrated the applicability of the developed method and provided insight into complex software-based system reliability.

• 대한안전경영과학회지
• /
• 제10권4호
• /
• pp.47-56
• /
• 2008

This study suggest a way to improve duty process of KTX(Korea Train Express) high-speed train driver. A new operating system which based on safety was introduced to operate high-speed train which travel above 300km/h on the high-speed railroad but below 200km/h on the general railroad. There were some studies on the operation of high-speed train which travel on the high-speed railroad and on the general railroad with safety. However they overlooked the elements of human errors. The duty-load of KTX train driver's 14 basic operation processes was measured using NASA-TLX and found four processes with high duty-load. In this paper, critical tasks of the high duty-load processes are determined using a questionnaire. Some suggestions which include the improvement of facilities, operating system and operating skill are proposed to lighten duty-load of the critical tasks. The validity of the proposed new task processes is demonstrated by making question to KTX train driver. To use this results cost-benefit analysis, hazards analysis etc. should be performed additionally.

• 한국철도학회:학술대회논문집
• /
• 한국철도학회 2008년도 춘계학술대회 논문집
• /
• pp.343-352
• /
• 2008

Safety-critical systems related to the railway communications are currently undergoing changes. Mechanical and electro-mechanical devices are being replaced by programmable electronics that are often controlled remotely via communication networks. Therefore designers and operators now not only have to contend with component failures and user errors, but also with the possibility that malicious entities are seeking to disrupt the services provided by theirs systems. Recognizing the safety-critical nature of the types of communications required in rail control operations, the communications infrastructure will be required to meet a number of safety requirements such as system faults, user errors and the robustness in the presence of malicious attackers who are willing to take determined action to interfere in the correct operation of a system. This paper discusses the safety strategies employed in the railway communications and proposes a security mechanism for Korean railway communication system. We present the developed communication safety evaluation tool based on the proposed security mechanism and also evaluate its protecting capability against the threats of masquerading, eavesdropping, and unauthorized message manipulation.