Maritime UK MASS CoP v2
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
5.10 Software Integrity<br />
5.10.1 Functional Objective. For any activity that relies on the integrated use of equipment or sub-systems that include<br />
software, the risks associated with software and its integration into the equipment or sub-system are properly<br />
managed and that the software is safe to use. A failure or unspecified behaviour of the software shall not result in:<br />
n An event that escalates to a hazard; or<br />
n Impairment of the mitigation of a hazard; and<br />
n Impairment of recovery from a hazard.<br />
5.10.2 Performance Requirements. The way software could be a stimulus event to a hazard, or impair the mitigation of<br />
a hazard, or impair recovery following such a hazardous event, shall be communicated to the appropriate<br />
parties.<br />
5.10.3 The production of software shall be managed so that the safety risks arising from the software production are<br />
reduced to an acceptable level.<br />
5.10.4 Provision shall be made to protect systems against:<br />
n Intentional or unintentional viruses or unauthorised code;<br />
n Unauthorised installation, change, or deletion of software or associated data;<br />
n The installation or use of unauthorised software, (e.g. running games or office applications);<br />
n Modification of the software function by additional or modified physical devices.<br />
5.10.5 The system safety justification shall be developed to include the risks posed by the use of software and how<br />
those risks are reduced to an acceptable level. Any function of a <strong>MASS</strong> should be adequately validated in<br />
accordance with its consequence to safety and performance of the <strong>MASS</strong>, and any software implementation of<br />
this function adequately verified.<br />
5.10.6 The configuration status of the software on each platform shall be captured and recorded, and the record<br />
maintained up-to-date for the life of the platform.<br />
5.10.7 The development and testing of changes to the software and data, including specific arrangements for on-board<br />
testing, shall be managed so that the safety of the system, sub-system or equipment is not compromised.<br />
5.10.8 The retention and release of earlier versions of software shall be managed to enable restoration of a previous<br />
known and trusted state when necessary.<br />
5.10.9 The release and installation of software to each platform shall be appropriately and actively managed so that<br />
changes to software are controlled. The installation process shall include a strategy for managing a failed<br />
installation.<br />
5.11 In-service Requirements<br />
5.11.1 Independent verification should be undertaken to provide assurance that the <strong>MASS</strong> complies in all respects with<br />
the provisions of this Code and remains compliant throughout its life.<br />
30<br />
<strong>MASS</strong> <strong>UK</strong> Code of Practice Version 2