Professional Documents
Culture Documents
Critical Systems 1: ©ian Sommerville 2004
Critical Systems 1: ©ian Sommerville 2004
Critical Systems 1: ©ian Sommerville 2004
Senso
Con
Al
Disp
Dis
Pow
©Ian Sommerville 2004 Software Engineering, 7th edition. Chapter 3 Slide 9
Bloo
par
amet
Blood
Blood
Bloo
Bl
sensor
anal
ysis
le
v
eInl
Insulin pump data-flow
Pump
ol
comm
Insulinr
e
em
co
Ins
Insu
Insulin
v
e
pumpre
em
deli
ry
cont
olleqq
ti
©Ian Sommerville 2004 Software Engineering, 7th edition. Chapter 3 Slide 10
Dependability requirements
The system shall be available to deliver
insulin when required to do so.
The system shall perform reliability and
deliver the correct amount of insulin to
counteract the current level of blood sugar.
The essential safety requirement is that
excessive doses of insulin should never be
delivered as this is potentially life
threatening.
A
v
The
to ailabil
Reliab
to Safe
The
The Se
Th
ab
abil
totoop
deli
delive
cata
ac
specif
requeste
in
©Ian Sommerville 2004 Software Engineering, 7th edition. Chapter 3 Slide 13
Attribute dependencies
These attributes are not independent - that’s why it
makes sense to talk about ‘dependability’ as
covering all of them.
A security failure may affect the safety of a system
as safety-critical components may be damaged
If a component fails (reliability) then the system may
have to be taken down for repair, this affecting its
reliability
An unavailable system may not be able to protect
against a critical external event (safety)