曝光台 注意防骗
网曝天猫店富美金盛家居专营店坑蒙拐骗欺诈消费者
simulations can be useful in planning "worst case" credible scenarios to be tested.
Test Results Analysis
Test results are analyzed to verify that all safety requirements have been satisfied. The analysis also verifies
that all identified risks have been either eliminated or controlled to an acceptable level of risk. The results of
the test safety analysis are provided to the ongoing system safety analysis activity.
All test discrepancies of safety critical software should be evaluated and corrected in an appropriate manner.
Independent Verification and Validation (IV&V)
For high value systems with high risk software, an IV&V organization is usually involved to oversee the
software development. The IV&V organization should fully participate as an independent group in the
validation of test analysis.
10.4 System Safety Assessment Report (SSAR)
The System Safety Assessment Report (SSAR) is generally a CDRL item for the safety analysis performed
on a given system. The purpose of the report is to provide management an overall assessment of the risk
associated with the system including the software executing within the system context of an operational
environment. This is accomplished by providing detailed analysis and testing evidence that the software
related hazards have been identified to the best of their ability and have been either eliminated or
mitigated/controlled to levels acceptable to the FAA. It is paramount that this assessment report be
developed as an encapsulation of all the analyses preformed. The SSAR shall contain a summary of the
analyses performed and their results, the tests conducted and their results, and the compliance assessment.
Paragraphs within the SAR need to encompass the following items:
· The safety criteria and methodology used to classify and rank software related hazards
(causal factors). This includes any assumptions made from which the criteria and
methodologies were derived,
· The results of the analyses and testing performed,
· The hazards that have an identified residual risk and the assessment of that risk,
· The list of significant hazards and the specific safety recommendations or precautions
required to reduce their safety risk; and
· A discussion of the engineering decisions made that affect the residual risk at a system
level.
FAA System Safety Handbook, Chapter 10: System Software Safety
December 30, 2000
10-15
The final section of the SSAR should be a statement by the program safety lead engineer describing the
overall risk associated with the software in the system context and their acceptance of that risk.
FAA System Safety Handbook, Chapter 11: T&E Safety
December 30, 2000
Chapter 11:
Test and Evaluation Safety
11.1 INTRODUCTION ............................................................................................................ 2
11.2 TESTS CONDUCTED SPECIFICALLY FOR SAFETY............................................... 2
11.3 TESTS CONDUCTED FOR PURPOSES OTHER THAN SAFETY............................. 2
11.4 TEST SAFETY ANALYSIS............................................................................................. 2
11.5 OTHER TEST AND EVALUATION SAFETY CONSIDERATIONS........................... 4
FAA System Safety Handbook, Chapter 11: T&E Safety
December 30, 2000
11 -2
11.0 TEST AND EVALUATION SAFETY
11.1 Introduction
Verification testing will be required at some point in the life cycle of a system and the
component(s) of a system. Tests may be conducted at many hierarchical levels and
involve materials, hardware, software, interfaces, processes, and procedures or
combinations of these. These tests determine whether requirements have been met by the
design, compatibility of personnel with equipment and operating conditions, and
adequacy of design and procedures. There are two broad types of testing which may be of
benefit to safety, which are discussed below.
11.2 Tests Conducted Specifically For Safety
Testing can be conducted to determine the existence of hazards, effectiveness of hazard
mitigation, or whether the hazard analysis is correct. This includes safe levels of stress in
mechanical systems or components, severity of damage resulting from an uncontrolled
hazard, or suitability and/or effectiveness of safety equipment. Examples include testing
such materials as plastics, lubricants, or solvents for flammability; testing of fire
extinguisher materials for effectiveness; testing the effectiveness of personnel protective
equipment; testing the radiation characteristics of RF emitters.
11.3 Tests Conducted For Purposes Other Than Safety
中国航空网 www.aero.cn
航空翻译 www.aviation.cn
本文链接地址:
System Safety Handbook系统安全手册上(12)
