[SystemSafety] "Security Risk" and Probability
Palin, Stuart (UK)
stuart.palin at baesystems.com
Fri Nov 3 13:28:48 CET 2017
From: Peter Bernard Ladkin <ladkin at causalis.com>
To: systemsafety at lists.techfak.uni-bielefeld.de
...
> What seems a little harder to construct is an example of software which is safe
> (that is, implements a safety function per requirement) but may be made to
> violate availability. Anyone?
This seems to be taking a very narrow view of what constitutes "safe software".
Consider an advisory system - its safety requirement might be that it does not provide misleading advice. If it does not provide advice that is OK as it is not misleading.
This is often a feature of display systems - displaying wrong information is a safety concern, occluding the display because the information is known to be suspect, or the display simply going off, is not a safety concern; thus availability is not necessarily a safety concern.
[I thought that in years past you had addressed this in establishing a distinction between reliability and safety!!]
Stuart
--
BAE Systems (Operations) Limited
Registered Office: Warwick House, PO Box 87, Farnborough Aerospace Centre, Farnborough, Hants, GU14 6YU, UK
Registered in England & Wales No: 1996687
********************************************************************
This email and any attachments are confidential to the intended
recipient and may also be privileged. If you are not the intended
recipient please delete it from your system and notify the sender.
You should not copy it or use it for any purpose nor disclose or
distribute its contents to any other person.
********************************************************************
More information about the systemsafety
mailing list