Ph.D. - geht es zur Homepage der Informatik des Fachbereiches 3 ...
Ph.D. - geht es zur Homepage der Informatik des Fachbereiches 3 ...
Ph.D. - geht es zur Homepage der Informatik des Fachbereiches 3 ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
1.3. Related Work<br />
addition to the V&V efforts required by the standards the broad peer-review enabled by publicly<br />
available software could really increase software dependability 2 .<br />
As of today, the openETCS approach has stirred consi<strong>der</strong>able inter<strong>es</strong>t, in particular among<br />
the r<strong>es</strong>earch communiti<strong>es</strong>, which are now invited to act – at least in the V&V branch of the<br />
system development proc<strong>es</strong>s – as equal partners to commercial railway manufacturers. This<br />
r<strong>es</strong>ulted in a European ITEA2 [43] project initiative, which is currently in progr<strong>es</strong>s, but, due<br />
to the short project life time, no remarkable r<strong>es</strong>ults are available.<br />
In contrast to this work, <strong>es</strong>pecially to the developed case study, the openETCS project<br />
heavily focuss<strong>es</strong> on the tool development to fully realise the Open Proofs concept. The case<br />
study was primarily developed to demonstrate that the main contributions of this dissertation<br />
can be seen as proof of concept for the applicability of open source software in safety-critical<br />
systems in the railway domain. A realisation of a tool chain that completely corr<strong>es</strong>ponds to<br />
the Open Proofs concept was not a main goal.<br />
AUTOSAR The idea of an open architecture is of course not limited to the railway domain.<br />
The Automotive Open System Architecture (AUTOSAR) [5] is an industrial approach that<br />
facilitat<strong>es</strong> the interchange of software for control modul<strong>es</strong> used in automotive systems. AUTO-<br />
SAR do<strong>es</strong> not only include a specification for the software architecture but also for the used<br />
development tools. It defin<strong>es</strong> the following goals [5]:<br />
• implementation and standardization of basic system functions as an OEM wide “Standard<br />
Core” solution<br />
• scalability to different vehicle and platform variants<br />
• transferability of functions throughout network<br />
• integration of functional modul<strong>es</strong> from multiple suppliers<br />
• consi<strong>der</strong>ation of availability and safety requirements<br />
• redundancy activation<br />
• maintainability throughout the whole “Product Life Cycle”<br />
• increase use of “Commercial off the shelf hardware”<br />
• software updat<strong>es</strong> and upgrad<strong>es</strong> over vehicle lifetime<br />
In contrast to the main goal of this dissertation project, AUTOSAR only defin<strong>es</strong> an open<br />
architecture, but do<strong>es</strong> not require the developed software or development tools to be open<br />
source or even to use a free/libre open source development strategy [95].<br />
TOPCASED The Toolkit in Open Source for Critical Applications & Systems Development<br />
(TOPCASED) [81] is a different approach for a standardised development. It is an extension<br />
of the Eclipse [20] Integrated Development Environment (IDE), which provid<strong>es</strong> methods and<br />
tools for the development of safety-critical software or rather systems for the avionics domain.<br />
In contrast to AUTOSAR, TOPCASED do<strong>es</strong> not define a certain system and/or software<br />
architecture but the development proc<strong>es</strong>s by formalisms and tools. Although TOPCASED<br />
is, like the Eclipse, IDE published un<strong>der</strong> a FLOSS software license, the developed software is<br />
typically not.<br />
2 Following [53], dependability, in particular, safety, and security are emergent properti<strong>es</strong> that can only be<br />
attributed to complete systems and not to software alone.<br />
5