[SystemSafety] New paper on MISRA C
Paul Sherwood
paul.sherwood at codethink.co.uk
Wed Sep 12 15:49:55 CEST 2018
On 2018-09-12 13:59, Peter Bishop wrote:
> There can be safeguards in the system architecture that reduce the risk
> of failing components. Nevertheless unreliable components can affect
> system safety.
I believe that the broad principle of the MIT research and its offspring
is that the safety architecture should expressly deal with hazards
arising as a result of unreliable components. And so, if unreliable
components can still affect system safety (i.e. lead to hazards) it
seems to me that our architecture must be wrong...
More information about the systemsafety
mailing list