The more information systems become complex , the more difficult it is to operate dependably , In... more The more information systems become complex , the more difficult it is to operate dependably , In thispapor , we propose amethod for reviewing operation manuals ofinformatlon systems based on assurance case to verify the dcpendability of information systems . We also show an early resuit on applying the method to the operation manual for the supercomputer GfNagoya
2014 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, 2014
Assurance cases are documented bodies of evidence that provide valid and convincing arguments tha... more Assurance cases are documented bodies of evidence that provide valid and convincing arguments that a system is adequately dependable in a given application and environment. Assurance cases are widely required by regulation for safety-critical systems in the EU. There have been several graphical notation systems proposed for assurance cases. GSN (Goal Structuring Notation) and CAE (Claim, Argument, Evidence) are such two notation systems, and a standardization effort for these notation systems have been attempted in OMG (Object Management Group). However, these notation systems have not been defined in a formal way. This paper presents a formal definition of an assurance case language based on GSN and its pattern and module extensions. We take the framework of functional programming language as the basis of our study. The implementation has been done on an Eclipse based GSN editor. We report case studies on previous work done with GSN and show the applicability of the assurance case language.
This poster will discuss how to make consensus building on disaster management including citizens... more This poster will discuss how to make consensus building on disaster management including citizens and professionals. For ordinary citizens, it is difficult to understand scientific information such as about radiation disaster. This poster reports our progress of developing a prototype SNS tool for facilitating citizens to understand such scientific information. The prototype system is based on the notion of assurance cases, which have been recently widely used for system assurance in safety and security critical systems. Now we are developing real-time visualization system for radiation health discussion on social media using natural language processing (LDA: Latent Dirichlet Allocation) and k-means clustering as shown in Figure 1. Figure 1 Prototype of Community Visualizer The system visualizes major topics of the discussion and suggests related assurance case(s) studied by past hazards so that both users and facilitators
We developed a series of inexpensive but accurate mobile radiation detectors, which we named Pock... more We developed a series of inexpensive but accurate mobile radiation detectors, which we named Pocket Geiger (POKEGA), to address the urgent desire of ordinary people to measure and share radiation levels in their milieus and to discuss the results of the Nuclear Disaster in Fukushima, Japan. This action research reports on a new style of pragmatic model of radiation monitoring, which employs the features of Participatory Design and Participatory Sensing and adopts modern communication platforms such as crowd-funding, open source development, and Facebook. This paper proposes an interaction model between the project management body, and other inclusive corroborators, e.g., ordinary users and experts, and focuses on three development phases of the project: start-up phase, evaluation phase, and operation phase. This paper also considers a reliability assurance model on disaster information sharing between the citizen layer and the official layer by data sharing and discussion activities...
This paper presents a preliminary study on a method to evaluate the confidence of assurance cases... more This paper presents a preliminary study on a method to evaluate the confidence of assurance cases using an abstract algebra mapped to a partial order. Unlike conventional quantitative methods for confidence evaluation, our approach is purely qualitative and employs a small number of axioms. It does not rely on numerical parameters that are difficult to determine in practice. Furthermore, our method can be regarded as an abstraction over numerical methods that use probability. To illustrate that our method provides a rigorous foundation for the qualitative evaluation of assurance cases, we give a sufficient condition for a multi-legged argument to improve confidence. Finally, we use our method to evaluate a concrete goal structuring notation (GSN) diagram that argues that a computer simulation of a biological system is reliable. These findings suggest that methods based on abstract axioms are viable approaches for confidence evaluation of assurance cases.
Proceedings of the 50th Hawaii International Conference on System Sciences (2017), 2017
This action research adopts a case study approach of reliability assurance and need finding for r... more This action research adopts a case study approach of reliability assurance and need finding for radiation monitoring on social media communication through the development and use of Pocket Geiger (POKEGA), a smartphone-connected radiation detector developed after the Fukushima Nuclear Disaster in Japan. We also facilitated the use of an inclusive Facebook community for radiation monitoring established by volunteer experts and normal users. Interaction through this social media led to credible discussions and enabled dose verification among users. It is important to grasp, at least roughly, the potential needs of and/or information required by users, especially those living in and around affected areas, from among the numerous topics posted by regular citizens and radiation experts on social media. Therefore, we developed a Web service called Crowd Talks to summarize and visualize discussions within the POKEGA community. This tool provides quick analysis and visualization of discussion topics from POKEGA Facebook posts based on natural language processing algorithms such as MeCab, latent Dirichlet allocation, and principal component analysis. Our results suggested that Crowd Talks was able to identify major topic clusters from the Facebook community.
2012 IEEE 23rd International Symposium on Software Reliability Engineering Workshops, 2012
The more information systems become complex , the more difficult it is to operate dependably , In... more The more information systems become complex , the more difficult it is to operate dependably , In thispapor , we propose amethod for reviewing operation manuals ofinformatlon systems based on assurance case to verify the dcpendability of information systems . We also show an early resuit on applying the method to the operation manual for the supercomputer GfNagoya
2013 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW), 2013
ABSTRACT Recently, serious failures of complex IT systems are becoming social problems. Assurance... more ABSTRACT Recently, serious failures of complex IT systems are becoming social problems. Assurance case has been attracted as the technique of assuring the dependability of critical systems in such a situation. We have proposed d*framework which is an extended assurance case notation based on the network of dependable actors. In this paper, we show the result of a case study to evaluate the effectiveness of d*framework as follows. First, an assurance case of GSN is translated equivalently into d*framework. Then, experiments are designed to compare effectiveness of GSN and d*framework. Finally, experimental hypotheses are evaluated by the results. An extended version of D-Case Editor is also used to describe GSN and d*framework assurance case in case study.
System assurance has become an important issue in many system domains, especially in safety-criti... more System assurance has become an important issue in many system domains, especially in safety-critical domain. Recently, assurance cases[3] have been getting much attentions for the purpose. We demonstrate D-Case Editor [10], which is an assurance cases editor being developed in DEOS (Dependable Embedded Operating System for Practical Uses) project funded by Japan Science and Technology Agency. D-Case Editor has been implemented as an Eclipse plug-in using Eclipse GMF framework. Its characteristics are (1) supporting GSN (Goal Structuring Notation) [8], (2) GSN pattern library function and prototype type checking function [9], and (3) consistency checking function by an advanced proof assistant tool [13]. To achieve these characteristics, we have exploited types in several ways. In this paper, we briefly introduce assurance cases, and demonstrate the functions of D-Case Editor. Because it has been implemented on Eclipse, it is interesting to make a tool chain with existing development...
Recent information systems have become large and complex by interacting with each other via netwo... more Recent information systems have become large and complex by interacting with each other via networks. This makes assuring dependability of systems much more difficult than ever before. For this problem, we observe that requirement elicitation and risk analysis methods should be tightly connected with assurance methods. Furthermore, requirements should be ensured also in operation in such open environment where several interdependency may exist. This paper describes our initial research result and preliminary implementation toward consensus building and in-operation assurance for service dependability. We propose a process cycle for consensus building among stakeholders with assurance cases. We extend conventional assurance cases for ensuring that stakeholders' requirements are satisfied during operation. The extended assurance case is called D-Case[16]. We also describe how D-Case is used for in-operation assurance.
Assurance cases are documents for arguing that systems satisfy required properties such as safety... more Assurance cases are documents for arguing that systems satisfy required properties such as safety and security in the given environment based on sufficient evidence. As systems become complex and networked, the importance of assurance cases has become significant. However, we observe that creating assurance cases has some essential difficulties, and unfortunately it seems that assurance cases have not been widely used in industries. For this problem, we have been developing assurance cases creation methods and opening workshops based on the creation methods. This paper presents an assurance cases creation method called "D-Case Steps" which is based on d * framework [1], an agent-based assurance case method, and reports the results of workshops. The results indicate that our workshops have been improved and our activities on assurance cases facilitates use of them in Japan. This paper is an extended version of [2]. We add detailed background and related works, workshops results and evaluation, and lessons learned from our a decade experiences.
ABSTRACT Consumer device is a newly coined term which refers to a new category of industrial prod... more ABSTRACT Consumer device is a newly coined term which refers to a new category of industrial products used by end users including automobiles, service robots, consumer electronics and smart houses. Unlike traditional industrial machineries, consumer devices are used in diverse, open, and dynamic environments. Furthermore, as accountability of manufacturing companies becomes crucial, they need to assure that their products are dependable whenever required during the development and operational phases. To satisfy these requirements, this paper proposes a process model of simultaneous development of embedded control software and dependability cases [6]. In the process, control software and the dependability case are simultaneously refined and updated. These perspectives are created according to the experiences that Japan has provided highly safe and reliable products with the reasonable prices in the world. These will become more important than before because the complexity will be rapidly progressing such that consumer devices are connecting with the social network including information and energy systems. This paper gives an overview of our effort to standardise the functional safety of consumer devices, their development methodologies and how their dependability is assured.
The more information systems become complex , the more difficult it is to operate dependably , In... more The more information systems become complex , the more difficult it is to operate dependably , In thispapor , we propose amethod for reviewing operation manuals ofinformatlon systems based on assurance case to verify the dcpendability of information systems . We also show an early resuit on applying the method to the operation manual for the supercomputer GfNagoya
2014 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, 2014
Assurance cases are documented bodies of evidence that provide valid and convincing arguments tha... more Assurance cases are documented bodies of evidence that provide valid and convincing arguments that a system is adequately dependable in a given application and environment. Assurance cases are widely required by regulation for safety-critical systems in the EU. There have been several graphical notation systems proposed for assurance cases. GSN (Goal Structuring Notation) and CAE (Claim, Argument, Evidence) are such two notation systems, and a standardization effort for these notation systems have been attempted in OMG (Object Management Group). However, these notation systems have not been defined in a formal way. This paper presents a formal definition of an assurance case language based on GSN and its pattern and module extensions. We take the framework of functional programming language as the basis of our study. The implementation has been done on an Eclipse based GSN editor. We report case studies on previous work done with GSN and show the applicability of the assurance case language.
This poster will discuss how to make consensus building on disaster management including citizens... more This poster will discuss how to make consensus building on disaster management including citizens and professionals. For ordinary citizens, it is difficult to understand scientific information such as about radiation disaster. This poster reports our progress of developing a prototype SNS tool for facilitating citizens to understand such scientific information. The prototype system is based on the notion of assurance cases, which have been recently widely used for system assurance in safety and security critical systems. Now we are developing real-time visualization system for radiation health discussion on social media using natural language processing (LDA: Latent Dirichlet Allocation) and k-means clustering as shown in Figure 1. Figure 1 Prototype of Community Visualizer The system visualizes major topics of the discussion and suggests related assurance case(s) studied by past hazards so that both users and facilitators
We developed a series of inexpensive but accurate mobile radiation detectors, which we named Pock... more We developed a series of inexpensive but accurate mobile radiation detectors, which we named Pocket Geiger (POKEGA), to address the urgent desire of ordinary people to measure and share radiation levels in their milieus and to discuss the results of the Nuclear Disaster in Fukushima, Japan. This action research reports on a new style of pragmatic model of radiation monitoring, which employs the features of Participatory Design and Participatory Sensing and adopts modern communication platforms such as crowd-funding, open source development, and Facebook. This paper proposes an interaction model between the project management body, and other inclusive corroborators, e.g., ordinary users and experts, and focuses on three development phases of the project: start-up phase, evaluation phase, and operation phase. This paper also considers a reliability assurance model on disaster information sharing between the citizen layer and the official layer by data sharing and discussion activities...
This paper presents a preliminary study on a method to evaluate the confidence of assurance cases... more This paper presents a preliminary study on a method to evaluate the confidence of assurance cases using an abstract algebra mapped to a partial order. Unlike conventional quantitative methods for confidence evaluation, our approach is purely qualitative and employs a small number of axioms. It does not rely on numerical parameters that are difficult to determine in practice. Furthermore, our method can be regarded as an abstraction over numerical methods that use probability. To illustrate that our method provides a rigorous foundation for the qualitative evaluation of assurance cases, we give a sufficient condition for a multi-legged argument to improve confidence. Finally, we use our method to evaluate a concrete goal structuring notation (GSN) diagram that argues that a computer simulation of a biological system is reliable. These findings suggest that methods based on abstract axioms are viable approaches for confidence evaluation of assurance cases.
Proceedings of the 50th Hawaii International Conference on System Sciences (2017), 2017
This action research adopts a case study approach of reliability assurance and need finding for r... more This action research adopts a case study approach of reliability assurance and need finding for radiation monitoring on social media communication through the development and use of Pocket Geiger (POKEGA), a smartphone-connected radiation detector developed after the Fukushima Nuclear Disaster in Japan. We also facilitated the use of an inclusive Facebook community for radiation monitoring established by volunteer experts and normal users. Interaction through this social media led to credible discussions and enabled dose verification among users. It is important to grasp, at least roughly, the potential needs of and/or information required by users, especially those living in and around affected areas, from among the numerous topics posted by regular citizens and radiation experts on social media. Therefore, we developed a Web service called Crowd Talks to summarize and visualize discussions within the POKEGA community. This tool provides quick analysis and visualization of discussion topics from POKEGA Facebook posts based on natural language processing algorithms such as MeCab, latent Dirichlet allocation, and principal component analysis. Our results suggested that Crowd Talks was able to identify major topic clusters from the Facebook community.
2012 IEEE 23rd International Symposium on Software Reliability Engineering Workshops, 2012
The more information systems become complex , the more difficult it is to operate dependably , In... more The more information systems become complex , the more difficult it is to operate dependably , In thispapor , we propose amethod for reviewing operation manuals ofinformatlon systems based on assurance case to verify the dcpendability of information systems . We also show an early resuit on applying the method to the operation manual for the supercomputer GfNagoya
2013 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW), 2013
ABSTRACT Recently, serious failures of complex IT systems are becoming social problems. Assurance... more ABSTRACT Recently, serious failures of complex IT systems are becoming social problems. Assurance case has been attracted as the technique of assuring the dependability of critical systems in such a situation. We have proposed d*framework which is an extended assurance case notation based on the network of dependable actors. In this paper, we show the result of a case study to evaluate the effectiveness of d*framework as follows. First, an assurance case of GSN is translated equivalently into d*framework. Then, experiments are designed to compare effectiveness of GSN and d*framework. Finally, experimental hypotheses are evaluated by the results. An extended version of D-Case Editor is also used to describe GSN and d*framework assurance case in case study.
System assurance has become an important issue in many system domains, especially in safety-criti... more System assurance has become an important issue in many system domains, especially in safety-critical domain. Recently, assurance cases[3] have been getting much attentions for the purpose. We demonstrate D-Case Editor [10], which is an assurance cases editor being developed in DEOS (Dependable Embedded Operating System for Practical Uses) project funded by Japan Science and Technology Agency. D-Case Editor has been implemented as an Eclipse plug-in using Eclipse GMF framework. Its characteristics are (1) supporting GSN (Goal Structuring Notation) [8], (2) GSN pattern library function and prototype type checking function [9], and (3) consistency checking function by an advanced proof assistant tool [13]. To achieve these characteristics, we have exploited types in several ways. In this paper, we briefly introduce assurance cases, and demonstrate the functions of D-Case Editor. Because it has been implemented on Eclipse, it is interesting to make a tool chain with existing development...
Recent information systems have become large and complex by interacting with each other via netwo... more Recent information systems have become large and complex by interacting with each other via networks. This makes assuring dependability of systems much more difficult than ever before. For this problem, we observe that requirement elicitation and risk analysis methods should be tightly connected with assurance methods. Furthermore, requirements should be ensured also in operation in such open environment where several interdependency may exist. This paper describes our initial research result and preliminary implementation toward consensus building and in-operation assurance for service dependability. We propose a process cycle for consensus building among stakeholders with assurance cases. We extend conventional assurance cases for ensuring that stakeholders' requirements are satisfied during operation. The extended assurance case is called D-Case[16]. We also describe how D-Case is used for in-operation assurance.
Assurance cases are documents for arguing that systems satisfy required properties such as safety... more Assurance cases are documents for arguing that systems satisfy required properties such as safety and security in the given environment based on sufficient evidence. As systems become complex and networked, the importance of assurance cases has become significant. However, we observe that creating assurance cases has some essential difficulties, and unfortunately it seems that assurance cases have not been widely used in industries. For this problem, we have been developing assurance cases creation methods and opening workshops based on the creation methods. This paper presents an assurance cases creation method called "D-Case Steps" which is based on d * framework [1], an agent-based assurance case method, and reports the results of workshops. The results indicate that our workshops have been improved and our activities on assurance cases facilitates use of them in Japan. This paper is an extended version of [2]. We add detailed background and related works, workshops results and evaluation, and lessons learned from our a decade experiences.
ABSTRACT Consumer device is a newly coined term which refers to a new category of industrial prod... more ABSTRACT Consumer device is a newly coined term which refers to a new category of industrial products used by end users including automobiles, service robots, consumer electronics and smart houses. Unlike traditional industrial machineries, consumer devices are used in diverse, open, and dynamic environments. Furthermore, as accountability of manufacturing companies becomes crucial, they need to assure that their products are dependable whenever required during the development and operational phases. To satisfy these requirements, this paper proposes a process model of simultaneous development of embedded control software and dependability cases [6]. In the process, control software and the dependability case are simultaneously refined and updated. These perspectives are created according to the experiences that Japan has provided highly safe and reliable products with the reasonable prices in the world. These will become more important than before because the complexity will be rapidly progressing such that consumer devices are connecting with the social network including information and energy systems. This paper gives an overview of our effort to standardise the functional safety of consumer devices, their development methodologies and how their dependability is assured.
Uploads
Papers by Yutaka Matsuno