• No results found

Change Impact analysis

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Change Impact analysis"

Copied!
17
0
0

Loading.... (view fulltext now)

Download now ( 17 Page )

Full text

(1)

Change Impact analysis

and the safety standard IEC 61508:2010 series

Author and presenter: Thor Myklebust

SINTEF ICT

Authors: Tor Stålhane, IDI NTNU Geir Hanssen, SINTEF ICT Børge Haugset, SINTEF ICT

(2)

IKT

2

Topics

Introduction and relevant definitions

Scrum and CIA

Requirements related to Modification and Impact analysis

Related standards

CIA Report/information

(or e.g. a tool or database)

(3)

Scrum

(4)

IKT

The SafeScrum and CIA

model for IEC 61508

Environment description RAMS validation  

Scrum

Backlog SSRS Phases 1 -4 Operation Phase 14 Modifications Phase 15   Parts of Annex A.1  – A.7 B.1  – B.3 B.7  – B.9 High level plans  Change Impact Analysis Change not implemented Change implemented in SSRS

New safety requirements from the customer

Requirement changes R e s u l T s Update of the User Manual?

(5)

ISO, IEEE and CENELEC have already issued standards presenting

requirements for

Related standards

safety, quality and project plans analysis and review techniques Safety plan EN 50126-1:1999

ch.6.2.3.4

Software safety plan IEEE 1228:1994 Project plan ISO 10006:2003

Quality plan ISO 10005:2005

FMECA IEC 60812:2006

FTA IEC 61025:2006

Design review IEC 61160:2006

HAZOP IEC 61882:2001

Markov IEC 61165:2006

(6)

IKT

6

Part 1:

7.16 Overall modification and retrofit

7.16.2.3 An impact analysis shall be carried out that shall include an assessment of the impact of the

proposed

7.16.2.6 All modifications that have an impact on the functional safety of any E/E/PE safety related system shall initiate a

return to an appropriate phase

of the overall, E/E/PE system or software safety

lifecycles.

IEC 61508:2010 Requirements

Overall safety requirements 4 Overall safety Requirements allocation 5

E/E/PE system safety Requirements specification 9 Overall safety requirements 10 Realisation

(7)

Sources:

IEC 61508:2010 series

EN 5012X series (Railway)

ISO 26262:2011 series (Road vehicles)

EU Directives

Standards for FMEA (IEC 60812), FTA (IEC 61025) etc

EXIDA book: Functional Safety – An IEC 61508 SIL3

Compliant Development Process. 2011

Several CIARs (Change Impact Analysis Reports)

www.sintef.no/SafeScrum

(8)

IKT

8

Motivation for a CIAR

Agile: frequent changes to existing Code

and Requirements

Satisfy IEC 61508 requirements

Overview (for all involved parties)

Less faults and errors

Improved planning

Improved information to the validator and to the assessor

Improved process towards the assessor

Improved process for the design team and scrum team

Change Impact Analysis Report

(9)

Content of an CIAR:

1. Title page

2. Distribution

3. Names of authors and signatories

4. Revision history

 Summarize the changes in 1 -3sentences

 Version number

 Date

Change Impact Analysis Report

5.

Table of content

6.

Introduction

 Definitions

7.

Modification/change request

 Reference to database or

 relevant "change request form"  "No change"

(10)

IKT

10

Content of an IAR continued:

8.

Description of existing problem or reason for change

 Reference to database or

 relevant "change request form"

9.

Description of suggested change

 Summarice the change (or each change) being considered in one or two sentences

10. Description of proposed change(s)

 Details of proposed changes are described or  Reference to relevant document(s)

(11)

Content of an IAR continued:

11.

Potential safety impact without change

 Impact of existing behaviour  Root cause of problem

 SRAC (safety related application condition) necessary?  EN 50129:2003

 Impact on existing systems

(12)

IKT

12

Content of an IAR continued:

12.

Potential safety impact of change

 Functional Safety impact

 Hazards affected and new hazards

 EMC, ATEX, LVD, RTTE, Railway interoperability etc  Technical file, Technical documentation

 Areas that are not being directly changed  Interfaces

 Execution order  Timing

(13)

Content of an IAR continued:

13.

Names of participants including information related to

competence (experience)

 Selection of relevant and sufficient number of experts is important part of an Impact analysis

 EMC experts, SW experts, HW experts etc

14.

Relevant dates

 Analysis dates  Meeting days  etc

(14)

IKT

14

Content of an IAR continued:

15. Any deviations from normal operations and conditions that occur as a result of this change

 Failure behavior related to the change  Hazop necessary?

 The condition list or e.g. SRAC (safety related application condition) list should be checked.

16. Re-entry point into life cycle

 Required in Part 1: 7.16.2.6 and Part 3: 7.1.2.9

17. Required verification

18. Required validation

(15)

Content of an IAR continued:

19.

Assessor aspects

 New assessor?

 Special interpretations of the standards in the new design that should be discussed with the assessor in the beginning of the project?

20.

Certification and authorisation aspects

 New certification body

 More countries?

21.

Required document changes

 Several reasons to include a list of all the documents affected

(16)

IKT

16

Content of an IAR continued:

22.

Conclusion/summary

23.

Document references

(17)

Questions?

[email protected]

www.sintef.no/sjs (Railway)

www.sintef.no/IEC61508 (Certification and Consultancy)

www.sintef.no/SafeScrum (Software development)

References

Download now ( PDF - 17 Page - 867.00 KB )

Related documents

Design and MATLAB Simulation of Pitch Motion System Controller for Underwater Vehicle

By substituting equation (8), (16) and (20) into equation (22), the expanded form of the matrix equation describe the kinematic relationship between the rate of change of position

ENVILINE Reliable and efficient solutions for DC rail transportation

TRACTION RECTIFIERS ENERGY STORAGE SYSTEM ENERGY RECUPERATION SYSTEM AUTOMATIC RECEPTIVITY UNIT VOLTAGE LIMITING DEVICE EXTERNAL RESSISTOR BANK TRANSFORMERS AC SWITCHGEAR

A Complexity-based Approach to Melody Track Identification in MIDI Files

We test the different complexity measures and different prediction strategies, and evaluate them on the task of predict- ing which track of a MIDI file contains the main

Silva Centering Exercise

(pause) Now release and completely relax all tensions and ligament pressures from this part of your body and place it in a deep state of relaxation that will grow deeper as

Canadian Railways to the Rockies VIA Rail The Continental

Banff | Freedom of Choice - Choose 1 of 3 Excursions Discover Banff & Its Wildlife Tour + Banff Gondola Discover Grizzly Bears, Lakes & Waterfalls Cowboy Horseback Cookout

Ready. A Summary of Beazley s US Insurance Products

• Commercial general liability coverage on either a claims made or occurrence coverage trigger subject to underwriting eligibility • Professional liability arising out of any

SERVICE RESCUE! An Implementation and Improvement Guide for Incident Management. Nicole Conboy Jan van Bon

The content describes a solid service management architecture, which has been tested extensively in practice as an efficient and effective approach for service organizations in

Female waist-to-hip ratio, body mass index and sexual attractiveness

The current study tested the role of waist-to-hip ratio (WHR) and body mass index (BMI) as possible deter- minants of female attractiveness, as judged by a sample of young Chinese