Marco Bozzano Yiannis Papadopoulos (Eds.) 7 3 Model-Based Safety 4 0 1 S and Assessment C N L 5th International Symposium, IMBSA 2017 Trento, Italy, September 11–13, 2017 Proceedings 123 Lecture Notes in Computer Science 10437 Commenced Publication in 1973 Founding and Former Series Editors: Gerhard Goos, Juris Hartmanis, and Jan van Leeuwen Editorial Board David Hutchison Lancaster University, Lancaster, UK Takeo Kanade Carnegie Mellon University, Pittsburgh, PA, USA Josef Kittler University of Surrey, Guildford, UK Jon M. Kleinberg Cornell University, Ithaca, NY, USA Friedemann Mattern ETH Zurich, Zurich, Switzerland John C. Mitchell Stanford University, Stanford, CA, USA Moni Naor Weizmann Institute of Science, Rehovot, Israel C. Pandu Rangan Indian Institute of Technology, Madras, India Bernhard Steffen TU Dortmund University, Dortmund, Germany Demetri Terzopoulos University of California, Los Angeles, CA, USA Doug Tygar University of California, Berkeley, CA, USA Gerhard Weikum Max Planck Institute for Informatics, Saarbrücken, Germany More information about this series at http://www.springer.com/series/7408 Marco Bozzano Yiannis Papadopoulos (Eds.) (cid:129) Model-Based Safety and Assessment 5th International Symposium, IMBSA 2017 – Trento, Italy, September 11 13, 2017 Proceedings 123 Editors MarcoBozzano YiannisPapadopoulos Fondazione BrunoKessler University of Hull Trento Hull Italy UK ISSN 0302-9743 ISSN 1611-3349 (electronic) Lecture Notesin Computer Science ISBN 978-3-319-64118-8 ISBN978-3-319-64119-5 (eBook) DOI 10.1007/978-3-319-64119-5 LibraryofCongressControlNumber:2017946700 LNCSSublibrary:SL2–ProgrammingandSoftwareEngineering ©SpringerInternationalPublishingAG2017 Thisworkissubjecttocopyright.AllrightsarereservedbythePublisher,whetherthewholeorpartofthe material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storageandretrieval,electronicadaptation,computersoftware,orbysimilarordissimilarmethodologynow knownorhereafterdeveloped. Theuseofgeneraldescriptivenames,registerednames,trademarks,servicemarks,etc.inthispublication doesnotimply,evenintheabsenceofaspecificstatement,thatsuchnamesareexemptfromtherelevant protectivelawsandregulationsandthereforefreeforgeneraluse. Thepublisher,theauthorsandtheeditorsaresafetoassumethattheadviceandinformationinthisbookare believedtobetrueandaccurateatthedateofpublication.Neitherthepublishernortheauthorsortheeditors give a warranty, express or implied, with respect to the material contained herein or for any errors or omissionsthatmayhavebeenmade.Thepublisherremainsneutralwithregardtojurisdictionalclaimsin publishedmapsandinstitutionalaffiliations. Printedonacid-freepaper ThisSpringerimprintispublishedbySpringerNature TheregisteredcompanyisSpringerInternationalPublishingAG Theregisteredcompanyaddressis:Gewerbestrasse11,6330Cham,Switzerland Preface This volume contains the papers presented at IMBSA 2017: the International Sym- posium on Model-Based Safety and Assessment, held during September 11–13 in Trento. The International Symposium on Model-Based Safety and Assessment (IMBSA) washeldforthefifthtime.SincethefirsteditioninToulouse(2011),theworkshophas evolved to a forum where brand new ideas from academia, leading-edge technology, and industrial experiences are brought together. The objectives are to present experi- encesandtools,toshareideas,andtofederatethecommunity.Tofosteracademicand industrial collaboration, in addition to more traditional talks reporting on novel advances on hot research topis, the program featured two poster and demo sessions, where speakers had the opportunity to present ongoing research and industrial expe- riences, and demonstrate their tool interactively. Webelievethatamixtureofconventionaltalksaboutthenewestachievements,the presentation of practical experiences, and interactive learning facilitates fruitful dis- cussions,exchange ofinformation,aswellasfuturecooperation.Therefore,following the previous edition of IMBSA in Munich (2014), an important focus of this year's edition in Trento was placed on tool demonstrations. Nevertheless, the main scientific andindustrialcontributionswerepresentedintraditional talksandarecollectedinthis volume of LNCS. ForIMBSA2017,wereceived29regularsubmissionsfromauthorsof12countries. The best 17 of these papers where selected by an international Program Committee to be published in this volume. In addition to this LNCS volume, IMBSA 2017 also published separate online proceedings for poster and demo contributions. As program chairs, we want to extend a very warm thank you to all 32 members of the international Program Committee. Each submission was reviewed by at least three Program Committee members. The comprehensive review guaranteed the high quality of the accepted papers. We also want to thank the local organization team at FondazioneBrunoKessler(Italy),andourfellowmembersoftheSteeringCommittee: Leila Kloul, Frank Ortmeier, Antoine Rauzy, and Christel Seguin. Finally,we wishyouapleasantreadingofthearticlesinthisvolume.On behalfof everyone involved inthisyear'sInternational Symposium onModel-Based Safety and Assessment, we hope you will be joining us at the next edition of IMBSA. June 2017 Marco Bozzano Yiannis Papadopoulos Organization Program Committee Jean-Paul Blanquart Airbus Defence and Space, France Marc Bouissou EDF and Ecole Centrale Paris, France Marco Bozzano Fondazione Bruno Kessler, Italy Jean-CharlesChaudemar ISAE, France Regis de Ferluc Thales Alenia Space, France Jana Dittmann Otto von Guericke University Magdeburg, Germany Marielle Doche-Petit Systerel, France Peter Feiler Software Engineering Institute, CMU, USA Francesco Flammini Ansaldo STS, Italy Lars Fucke Boeing, Spain Lars Grunske Humboldt University Berlin, Germany Matthias Güdemann DiffBlue, UK Brendan Hall Honeywell, USA Michaela Huhn Ostfalia, Germany Kai Höfig Siemens, Germany Tim Kelly University of York, UK Leila Kloul Universite de Versailles, France Agnes Lanusse CEA LIST, France Timo Latvala Space Systems Finland, Finland Till Mossakowski Otto von Guericke University Magdeburg, Germany Juergen Mottok LaS, OTH Regensburg, Germany Thomas Noll RWTH Aachen University, Germany Frank Ortmeier Otto von Guericke University Magdeburg, Germany Yiannis Papadopoulos University of Hull, UK Antoine Rauzy Norwegian University of Science and Technology, Norway Wolfgang Reif University of Augsburg, Germany Jean-Marc Roussel LURPA, ENS Cachan, France Christel Seguin ONERA, France Pascal Traverse Airbus, France Elena Troubitsyna Åbo Akademi, Finland Marcel Verhoef European Space Agency, The Netherlands Marc Zeller Siemens, Germany VIII Organization Additional Reviewers Bandur, Victor Lisagor, Oleg Gonschorek, Tim Pereverzeva, Inna Knapp, Alexander Pfähler, Jörg Leong, Chris Prokhorova, Yuliya Leupolz, Johannes Rauf, Irum Contents Safety Process Building Models We Can Rely On: Requirements Traceability for Model-Based Verification Techniques. . . . . . . . . . . . . . . . . . . . . . . . . . 3 Marco Filax, Tim Gonschorek, and Frank Ortmeier Handling Consistency Between Safety and System Models. . . . . . . . . . . . . . 19 TatianaProsvirnova,EstelleSaez,ChristelSeguin,andPierreVirelizier Toward Model Synchronization Between Safety Analysis and System Architecture Design in Industrial Contexts . . . . . . . . . . . . . . . . . . . . . . . . . 35 Anthony Legendre, Agnes Lanusse, and Antoine Rauzy Model-Connected Safety Cases. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50 Athanasios Retouniotis, Yiannis Papadopoulos, Ioannis Sorokos, David Parker, Nicholas Matragkas, and Septavera Sharvia Safety Models and Languages Performing Safety Analyses with AADL and AltaRica. . . . . . . . . . . . . . . . . 67 Julien Brunel, Peter Feiler, Jérôme Hugues, Bruce Lewis, Tatiana Prosvirnova, Christel Seguin, and Lutz Wrage Safety Analysis of a Data Center’s Electrical System Using Production Trees . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82 Walid Mokhtar Bennaceur, Leïla Kloul, and Antoine Rauzy Architectural Modeling and Analysis for Safety Engineering . . . . . . . . . . . . 97 Danielle Stewart, Michael W. Whalen, Darren Cofer, and Mats P.E. Heimdahl Invariant Management in the Presence of Failures. . . . . . . . . . . . . . . . . . . . 112 Richard Banach SafeConcert: A Metamodel for a Concerted Safety Modeling of Socio-Technical Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129 Leonardo Montecchi and Barbara Gallina X Contents Fault Detection and Propagation A Model-Checking Approach to Analyse Temporal Failure Propagation with AltaRica . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147 Alexandre Albore, Silvano Dal Zilio, Guillaume Infantes, Christel Seguin, and Pierre Virelizier A Model-Based Extension to HiP-HOPS for Dynamic Fault Propagation Studies. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 163 Sohag Kabir, Yiannis Papadopoulos, Martin Walker, David Parker, Jose Ignacio Aizpurua, Jörg Lampe, and Erich Rüde A Fault Diagnostic Tool Based on a First Principle Model Simulator. . . . . . . 179 Francesco Cannarile, Michele Compare, and Enrico Zio Safety Assessment in the Automotive Domain Learning-Based Testing for Safety Critical Automotive Applications. . . . . . . 197 Hojat Khosrowjerdi, Karl Meinke, and Andreas Rasmusson Verification of Component Fault Trees Using Error Effect Simulations . . . . . 212 Sebastian Reiter, Marc Zeller, Kai Höfig, Alexander Viehl, Oliver Bringmann, and Wolfgang Rosenstiel A Model-Based Approach to Dynamic Self-assessment for Automated Performance and Safety Awareness of Cyber-Physical Systems. . . . . . . . . . . 227 DeJiu Chen and Zhonghai Lu Case Studies Application of Model-Based Safety Assessment to the Validation of Avionic Electrical Power Systems. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243 Orlando Ferrante, Luigi Di Guglielmo, Valerio Senni, and Alberto Ferrari Timed Failure Propagation Analysis for Spacecraft Engineering: The ESA Solar Orbiter Case Study . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 255 Benjamin Bittner, Marco Bozzano, and Alessandro Cimatti Author Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 273