software risk assessment fuzzy logic approach to risk
play

Software Risk Assessment: Fuzzy Logic Approach to Risk Estimation - PowerPoint PPT Presentation

Apr 15, 2023 •702 likes •1.17k views

UNCLASSIFIED Presented to: International System Safety Society Software Risk Assessment: Fuzzy Logic Approach to Risk Estimation (FLARE) Presented by: DISTRIBUTION STATEMENT B: Distribution authorized to U.S. Government Agencies and their

  1. UNCLASSIFIED Presented to: International System Safety Society Software Risk Assessment: Fuzzy Logic Approach to Risk Estimation (FLARE) Presented by: DISTRIBUTION STATEMENT B: Distribution authorized to U.S. Government Agencies and their contractors (Premature Dissemination, Dr. Willie Fitzpatrick, Dr. David 11 April 2012). Other requests for this document shall be referred to US Army AMRDEC/SED-Aviation Division RDMR-BAV . Skipper, Josh McNeil, & J.P. Rogers Software Safety & Airworthiness Date: 09 August 2012 Software Engineering Directorate UNCLASSIFIED

  2. UNCLASSIFIED FLARE FLARE Outline Outline � Introduction � Problem Statement � Proposed Solution � Fuzzy Logic Approach to Risk Estimation (FLARE) � Using FLARE � Scoring Objectives � Processing Scores � Estimating Risk Possibility � Summary 2 UNCLASSIFIED FLARE.pptx

  3. UNCLASSIFIED FLARE FLARE Introduction Introduction � Standard hardware and operations risk assessments include both the hazard severity and the mishap event likelihood � However, a widely accepted process for estimating software “risk” is not a standard activity in system level risk assessments � Predicting system level risk in terms of the composite of hardware, operations, and software risks is a desirable, but difficult objective, given the vagaries of a software risk assessment � This presentation proposes a fuzzy logic based approach to address the software risk assessment deficiency in the system level risk assessment. 3 UNCLASSIFIED FLARE.pptx

  4. UNCLASSIFIED FLARE FLARE Problem Statement Problem Statement � Assessing hazard severity in linguistic terms ( e.g. catastrophic, critical, etc.) is a straightforward activity, however, estimating the likelihood of a software safety failure is not a trivial process � Therefore, the typical software safety assessment is evidence/artifact driven and it’s results reflect the analyst’s confidence or belief in the “goodness” of the software’s safety characteristics relating to software failures � In other words, most software safety assessments are based on individual decisions analysts make � The analyst’s confidence or “belief” is the basis for estimating software safety risk 4 UNCLASSIFIED FLARE.pptx

  5. UNCLASSIFIED FLARE FLARE Problem Statement Problem Statement � The Software System Safety discipline has adopted a safety assessment process for analysts that use both software hazard analysis objectives and software development objectives � These two sets of objectives are designed to reduce the likelihood of software safety failures � The objective produce the analyst’s primary evidence/artifacts and they are used to increase/decrease the analyst’s belief that the software has reduced/increased likelihood of failure � The problem with this process is the absence of an estimate for the likelihood of software safety failures and the difficulty of combining software “risk” with hardware/operations risk estimates 5 UNCLASSIFIED FLARE.pptx

  6. UNCLASSIFIED FLARE FLARE Problem Statement Problem Statement Functional System Risk Safety Not Risk Assessment Software control category Assessment Assessment Hazard Σ Risk Hardware failure Tracking likelihood Assessment System Hazard Hazard Severity Description Risk Operator error likelihood Assessment Hazard Probability Hazard Probability Category Frequent Probable Occasional Remote Improbable (A) (B) ( C ) (D) (E) Risk System HW Acceptance Hazard Severity & OPS Risk Catastrophic (1) 1A 1B 1C 1D 1E Authority Critical (2) 2A 2B 2C 2D 2E Marginal (3) 3A 3B 3C 3D 3E Negligible (4) 4A 4B 4C 4D 4E System Software Risk Not Assessed 6 UNCLASSIFIED FLARE.pptx

  7. UNCLASSIFIED FLARE FLARE Proposed Solution Proposed Solution � The software safety assessment process is best described as qualitative and the assessment results derive from the analyst’s cognition. � The challenge, therefore, was to formalize a generalized process which maps the analyst’s cognition, as it relates to “belief” in software safety assurance, to bounded likelihood categories (not discrete numeric estimates) � An advantage of the process would allow the likelihood of a software safety failure event to be described in familiar linguistic terms such as “frequent”, “occasional”, or “improbable”. 7 UNCLASSIFIED FLARE.pptx

  8. UNCLASSIFIED FLARE FLARE Proposed Solution Proposed Solution � The proposed process is a “next step” toward maturing the software safety assessment process that provides a best estimate of the qualified software contribution to the system level risk. � Since the current approach to software safety assessment includes the same severity component used in HW and Ops, our “goal” is to qualitatively represent the “likelihood” of a software safety failure in order to better estimate the software’s contribution to system level risk. � This presentation describes a qualitative fuzzy logic approach for estimating the likelihood of software safety failures. 8 UNCLASSIFIED FLARE.pptx

  9. UNCLASSIFIED FLARE FLARE Problem Statement Problem Statement System Risk Functional Qualitative Risk Assessment Safety Assessment Software control FLARE category Assessment Hazard Σ Risk Hardware failure Tracking likelihood Assessment System Hazard Hazard Severity Description Risk Operator error likelihood Assessment Hazard Probability Hazard Probability Category Frequent Probable Occasional Remote Improbable System Risk (A) (B) ( C ) (D) (E) (SW, HW, OPS) Risk Hazard Severity Acceptance Catastrophic (1) 1A 1B 1C 1D 1E Authority Critical (2) 2A 2B 2C 2D 2E Marginal (3) 3A 3B 3C 3D 3E Negligible (4) 4A 4B 4C 4D 4E 9 UNCLASSIFIED FLARE.pptx

  10. UNCLASSIFIED FLARE FLARE Outline Outline � Introduction � Problem Statement � Proposed Solution � Fuzzy Logic Approach to Risk Estimation (FLARE) � Using FLARE � Scoring Objectives � Processing Scores � Estimating Risk Possibility � Summary 10 UNCLASSIFIED FLARE.pptx

  11. UNCLASSIFIED Fuzzy Logic Approach to Risk Fuzzy Logic Approach to Risk Estimation (FLARE) Estimation (FLARE) � Fuzzy numbers represent a possibility distribution over a real number line. � Possibility distributions capture what is possible versus what is probable. � However, in cases where probability is not available, possibility theory offers a framework to model the data limitations and manipulate them to develop boundaries for decisions. � FLARE employs fuzzy numbers to model the analyst’s beliefs. � These fuzzy numbers are manipulated by fuzzy logic to arrive at bounded decisions. � The FLARE process does not “magically” provide “good” decisions from an imperfect data set, merely traceable possibility boundaries. 11 UNCLASSIFIED FLARE.pptx

  12. UNCLASSIFIED Fuzzy Logic Approach to Risk Fuzzy Logic Approach to Risk Estimation (FLARE) Estimation (FLARE) � Fuzzy logic concepts and operations employed in FLARE help to characterize and manage the qualitative characteristics found in software safety assessments. � The FLARE process associates qualitative belief in software safety assurance to a Software Risk Possibility (SRP) matrix. � � FLARE provides a method for “assessment of confidence” by the analyst for each safety-significant requirement and function as required by MIL-STD- 882E � Confidence in this context is not the same as mathematical confidence interval Here, it is a qualitative measure of analyst “belief” that satisfactory compliance with specific objectives will improve the “software safety goodness”, and thereby reduce the likelihood of software safety failures. For the remainder of this presentation, we will use “belief” in lieu of “confidence” to avoid confusion with probability terminology. 12 UNCLASSIFIED FLARE.pptx

  13. UNCLASSIFIED Fuzzy Logic Approach to Risk Fuzzy Logic Approach to Risk Estimation (FLARE) Estimation (FLARE) � The set of hazard analysis and software development objectives prescribed by a given SwCI linguistic category ( e.g. A, B, C, or High, Medium, Low) presently produce necessary and sufficient evidence to prove to the safety personnel that the software safety assurance meets the SwCI safety goals for the category � The software safety analyst is responsible for assessing the veracity of the evidence submitted as proof � Uncertainties in the assessment process may be due to: (1) human factors, and (2) inadequate data � These sources of uncertainty are not addressed in the FLARE process � Instead, FLARE, focuses on standardizing the aggregation of the assessment results from individual evidence items and analyses 13 UNCLASSIFIED FLARE.pptx

  14. UNCLASSIFIED Fuzzy Logic Approach to Risk Fuzzy Logic Approach to Risk Estimation (FLARE) Estimation (FLARE) � The analyst’s “belief” in software safety assurance is assumed to be a qualitative estimate of the likelihood for a safe response to software errors. � FLARE does not specify how the safety analyst must reach their assessment only that they can and do make such an assessment. 14 UNCLASSIFIED FLARE.pptx

  15. UNCLASSIFIED FLARE FLARE Outline Outline � Introduction � Problem Statement � Proposed Solution � Fuzzy Logic Approach to Risk Estimation (FLARE) � Using FLARE � Scoring Objectives � Processing Scores � Estimating Risk Possibility � Summary 15 UNCLASSIFIED FLARE.pptx

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Risk Assessment Reduce the workers and Biosafety is an inexact science, and

Risk Assessment Reduce the workers and Biosafety is an inexact science, and

Risk Analysis Biosafety Risk assessment, Risk Risk analysis encom passes Management & risk risk assessm ent, risk communication m anagem ent, and risk com m unication. Ephy Khaemba International Livestock Research Institute

506 views • 11 slides
1 Sources of Risk I Sources of Risk II Development risks Integration risks Code

1 Sources of Risk I Sources of Risk II Development risks Integration risks Code

Is software different? CSE 403 Submit a one sentence answer. Lecture 9 Risk assessment Risk Abstract view of risk Exposure to the chance of injury or loss Random variable Outcomes with different probabilities For a software

318 views • 4 slides
The Risk Assessment/Risk Management Process What is risk assessment? The process of evaluating

The Risk Assessment/Risk Management Process What is risk assessment? The process of evaluating

Risk Assessment 101 Scott D. Dwyer, PhD, DABT Practice Leader Risk Analysis and Toxicology Kleinfelder 14710 NE 87 th Street, Suite 100 Redmond WA 98074 425-636-7910 sdwyer@kleinfelder.com The Risk Assessment/Risk Management Process What

378 views • 12 slides
Risk Management Workshop 1 Risk management workshop Why do we Risk Risk and need risk

Risk Management Workshop 1 Risk management workshop Why do we Risk Risk and need risk

FREE Lifelong Learning Event for Fasset Members Risk Management Workshop 1 Risk management workshop Why do we Risk Risk and need risk assessment control matrix management process Governance Risk appetite Agenda for and risk Risk

1.28k views • 105 slides
The application of risk assessment in food safety control in Risk Risk Assessment Management

The application of risk assessment in food safety control in Risk Risk Assessment Management

Risk Analysis Framework The application of risk assessment in food safety control in Risk Risk Assessment Management mainland China Science based Policy based Junshi Chen, M.D. Risk Communication I nstitute of Nutrition

442 views • 6 slides
Preparedness Preliminary risk management Risk assessment Risk management Risk

Preparedness Preliminary risk management Risk assessment Risk management Risk

FAO/WHO guide for application of risk analysis principles to food safety emergencies Food Recall and Traceability (February 2013, Thailand) Preparedness Preliminary risk management Risk assessment Risk management Risk

440 views • 39 slides
Risk Assessment and its risk-based approach Prof. Dr. Reiner Wittkowski Federal Institute for

Risk Assessment and its risk-based approach Prof. Dr. Reiner Wittkowski Federal Institute for

FOR RISK ASSESSMENT FEDERAL INSTITUTE The Federal Institute for Risk Assessment and its risk-based approach Prof. Dr. Reiner Wittkowski Federal Institute for Risk Assessment (BfR) founded in November 2002 within the portfolio of the

644 views • 16 slides
Business Strategy Risk Assessment Risk Assessment Nikolaos Karanasios Assistant Professor CEO

Business Strategy Risk Assessment Risk Assessment Nikolaos Karanasios Assistant Professor CEO

Business Strategy Risk Assessment Risk Assessment Nikolaos Karanasios Assistant Professor CEO of the Serres Business & Innovation Centre 05 Risk concept Risk concept Definitions Risk types Risk origin Risk calculation

282 views • 12 slides
DEVELOPING A SYSTEMS APPROACH TO RISK ASSESSMENT IN THE LED OUTDOOR ACTIVITY CONTEXT Clare

DEVELOPING A SYSTEMS APPROACH TO RISK ASSESSMENT IN THE LED OUTDOOR ACTIVITY CONTEXT Clare

BEYOND LIKELIHOOD AND CONSEQUENCE: DEVELOPING A SYSTEMS APPROACH TO RISK ASSESSMENT IN THE LED OUTDOOR ACTIVITY CONTEXT Clare Dallat THE CORONERS VERDICT It was clear upon the evidence that the risk assessment process applied

593 views • 41 slides
1 Risk assessment Risk assessment Lack of assessment of semi-automatic methods has

1 Risk assessment Risk assessment Lack of assessment of semi-automatic methods has

Outline of presentation Dichlorvos Reassessment Background Presentation from the Horticulture Risk assessment Industries Benefits assessment Controls Consistency 6 May 2015 Future strategy for agchems Summary Nikki

242 views • 9 slides
REPPIR Approach to Consequence Assessment and Associated Risk Framework Authors: C Boyd

REPPIR Approach to Consequence Assessment and Associated Risk Framework Authors: C Boyd

REPPIR Approach to Consequence Assessment and Associated Risk Framework Authors: C Boyd Version 1. 15.2.2020 Contents Summary of Previous REPPIR Approach IAEA Approach REPPIR ACOP and the Risk Framework Uncertainties in

245 views • 22 slides
Toward a Classification of Ready-to- eat Foods According to Risk or Other Uses of Risk Assessment

Toward a Classification of Ready-to- eat Foods According to Risk or Other Uses of Risk Assessment

Toward a Classification of Ready-to- eat Foods According to Risk or Other Uses of Risk Assessment in Managing risk Richard C. Whiting Center for Food Safety and Applied Nutrition Food and Drug Administration Cluster Analysis Risk per

114 views • 10 slides
ESTABLISHMENT Unit 6 Risk Assessment And Risk Response Lecture Objectives Todays objectives

ESTABLISHMENT Unit 6 Risk Assessment And Risk Response Lecture Objectives Todays objectives

SAFETY MANAGEMENT & SITE ESTABLISHMENT Unit 6 Risk Assessment And Risk Response Lecture Objectives Todays objectives are: A justification for risk assessment 5 steps to risk assessment Risk Assessment methods Compare and

764 views • 38 slides
Guideline on the assessment of the risk to public health from AMR due to use of an antimicrobial

Guideline on the assessment of the risk to public health from AMR due to use of an antimicrobial

Guideline on the assessment of the risk to public health from AMR due to use of an antimicrobial VMP in food-producing animals Categorisation of risk factors, risk assessment steps and overall risk estimation Focus group meeting, 19 Sep

176 views • 13 slides
Risk How to assess risk? Javier Estrada No universal agreement about it IESE Business

Risk How to assess risk? Javier Estrada No universal agreement about it IESE Business

Emerging Markets (II): Risk Javier Estrada ADFIN Winter/2014 1. Risk in EMs Introductory issues Wrong focus and implications Political risk: Assessment and incorporation 2. Where to Account for Risk? Possibilities

637 views • 10 slides
Cost & Risk Via Fuzzy Logic Pump Centre Conference 2018 By Robert Hale, Senior Consultant +

Cost & Risk Via Fuzzy Logic Pump Centre Conference 2018 By Robert Hale, Senior Consultant +

Management of Network Cost & Risk Via Fuzzy Logic Pump Centre Conference 2018 By Robert Hale, Senior Consultant + 44 (0)1872 260005 www.riventa.com Riventa Ltd. are Riventa (UK) Ltd. Background Head Quarters an OEM of precision

604 views • 14 slides
Chino Basin Water Quality Colloquium May 2, 2019 U.S. EPA What is Superfund? Comprehensive

Chino Basin Water Quality Colloquium May 2, 2019 U.S. EPA What is Superfund? Comprehensive

Rockets, Fireworks, and Flares (RFF) Superfund Site Chino Basin Water Quality Colloquium May 2, 2019 U.S. EPA What is Superfund? Comprehensive Environmental Response, Compensation, and Liability Act (CERCLA) Gives EPA authority to clean up

244 views • 20 slides
Chemring Group PLC Results for the year ended 31 October 2018 Building a stronger business

Chemring Group PLC Results for the year ended 31 October 2018 Building a stronger business

Chemring Group PLC Results for the year ended 31 October 2018 Building a stronger business Carl-Peter Forster Chairman Safety On 10 August 2018 an incident occurred in a flare mixing building at UK Countermeasures site which resulted in

583 views • 26 slides
Williston Basin Breakthrough Technologies The Davis Refinery: Industry Proven Technology,

Williston Basin Breakthrough Technologies The Davis Refinery: Industry Proven Technology,

Williston Basin Breakthrough Technologies The Davis Refinery: Industry Proven Technology, Comprehensively Applied to Meet Lower Emissions with Lance Medlin, EVP Projects, Meridian Energy Group, Inc. Will llis iston B Basin in Petrole leum C

930 views • 13 slides
mark.davis@capterio.com +44 7552 050 089 Source: 0 CONFIDENTIAL AND DRAFT Capterio is a

mark.davis@capterio.com +44 7552 050 089 Source: 0 CONFIDENTIAL AND DRAFT Capterio is a

mark.davis@capterio.com +44 7552 050 089 Source: 0 CONFIDENTIAL AND DRAFT Capterio is a project developer focussing on monetising flared gas Monetising flared gas to create value, reduce pollution and improve reputations We bring together

958 views • 20 slides
Zoning Ordinance Structure Options and Trends May 2018 Todays discussion Weakness of

Zoning Ordinance Structure Options and Trends May 2018 Todays discussion Weakness of

Zoning Ordinance Structure Options and Trends May 2018 Todays discussion Weakness of current Zoning Ordinance structure Examples from other jurisdictions Recommended Zoning Ordinance structure Zoning Ordinance trends

1.88k views • 41 slides
CO 2 EOR Carbon Balance Charles E. Fox Kinder Morgan CO 2 Company, LP 1 Tip WSJ 11/25/2009 2

CO 2 EOR Carbon Balance Charles E. Fox Kinder Morgan CO 2 Company, LP 1 Tip WSJ 11/25/2009 2

CO 2 EOR Carbon Balance Charles E. Fox Kinder Morgan CO 2 Company, LP 1 Tip WSJ 11/25/2009 2 EOR Carbon Balance Calculate carbon emissions for SACROC in 2007 using CA Registry methods (mostly) Compare various emission sources

311 views • 27 slides
Product Presentation BANTAM Made for para-mountaineers. Small, compact, dynamic the

Product Presentation BANTAM Made for para-mountaineers. Small, compact, dynamic the

Product Presentation BANTAM Made for para-mountaineers. Small, compact, dynamic the BANTAM is the perfect miniwing for all mountaineers who prefer a flight with plenty of speed to a descent on foot. Its excellent glide was demonstrated at

339 views • 16 slides
FLARING AND VENTING PRESENTER: MD ANUARWAZDI MAT DON ENERGY AND INDUSTRY DEPARTMENT PRIME

FLARING AND VENTING PRESENTER: MD ANUARWAZDI MAT DON ENERGY AND INDUSTRY DEPARTMENT PRIME

FLARING AND VENTING PRESENTER: MD ANUARWAZDI MAT DON ENERGY AND INDUSTRY DEPARTMENT PRIME MINISTERS OFFICE BACKGROUND Current estimates 140 billion cubic meters of gas is flared annually around the world. Flaring gas wastes a valuable

517 views • 9 slides

More recommend