This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
References
[ABR095) Army Base Repair Organisation: Annual Report and Accounts 1994/95. ABRO, July 1995
[AMI) The AMI User's Handbook. Application of Metrics in Industry. Available from eSSE, South Bank University, (undated)
[Ayres 87] Ayres R U & Rohargi P K: Lessons for Technological Computer-Aided Industrial Machine Accidents, Proceedings of COMPASS '87, Washington D.C., U.s.A., published in 1989
[Basili 88) Basili V and Rombach D: The TAME Project, Towards Improvement Orientated Software Environments. IEEE ToSE, Vol. 14, No.6, pp 758-773, 1988
[Bennett 96) Bennett W: 'Pescado' Agent Jailed for Manslaughter. The Independent, London, 15 March 1996, p. 4
[Benyon-Davis 95] Benyon-Davis, P: Information Systems 'Faillire' and Risk Assessment: The Case of the London Ambulance Service Computer Aided Dispatch System In Doukidis
G, Galliers R, Jelasi T, Kremar H, and Land F (eds): Proceedings of the Third European Conference on Information Systems ECIS '95, Athens, Greece, June 1-3, 1995
[BQF 94] The British Quality Foundation: The 1995 UK Quality Award - Guide to Self Assessment. The British Quality Foundation, 1994
[Brooks 75] Brooks F P: The Mythical Man-month. Addison Wesley, 1975
[BSI93] British Standards Institution: British Stand.ard 5750, Part 14 - Quality Systems, Guide to Dependability Programme Management. BSI, 1993 (also numbered EN 60300-1:1993, ISO 9000-4:1993 and lEe 300-1:1993)
[BSI94] BSI Standards: ISO 9001: Quality Systems - Model for Quality Assurance in Design, Development, Production, Installation and Servicing. BSI Standards, UK, 1994
[Bucher 85] Bucher W & Fretz R: Safety Aspects of Compllter Controlled Chemical Plants, Proceedings of Fifth International Symposium of Loss Prevention and Safety Promotion in the Process Industries (Societe de Chimic IndustrieIle), Paris, France, 1985
[Burton 95] Burton T B and Moran J W: The Futllre Focllsed Organization: Complete Organizational Alignment for Breakthrough Res~dts. Prentice Hall, 1995
[Business Week 84] How Xerox Speeds Up the Birth of New Products. Business Week, March 19, 1984
[Butler 91] Bu tier R Wand Finelli G B: The Infeasibility of Experimental Quantification of Life-Critical Software Reliability. In Proceedings of ACM Symposium on Software for Critical Systems, New Orleans, ACM Press, 1991
[Carroll 93] Carroll P: Big Blues: The Unmaking of IBM. Orion, 1993
[CEC 91] Commission of the European Communities: Information Technology Security Evaluation Criteria (ITSEC), Provisional Harmonisation Criteria of France, Germany, Netherlands, United Kingdom, Version 1.2, 1991
[CENELEC 94] European Committee for Electrotechnical Standardisation: Railway Applications: Software for Railway Control and Protection Systems. Intended to be issued as pr EN 50128, 1994
[Charette 89] Charette R N: Software Engineering Risk Analysis and Management. McGraw Hill, 1989
[Chillarege 92] Chillarege R, Bhandari I, Chaar J, Halliday M, Moebus 0, Ray B and Wong MY: Orthogonal Defect Classification - A Concept for In-Process Measurements. IEEE Transactions on Software Engineering, Vol. 18, No. 11, 1992
[CITI95] CITI: Profiling Project Managers - Issues and Findings. Working papers: (available from CITI Limited, Challenge House, Sherwood Drive, Bletchley, Milton Keynes MK3 6DP), 1995
[CSC 94] CSC PEP Paper 26: Project Management in the 1990s. February 1994 (Available to sponsors of CSC Research and Ad visory Services PEP)
[Daskalantonakis 92] Daskalantonakis M K: A Practical View of Software Measurement and Implementation Experimces within Motorola. IEEE Transactions on Software Engineering, Vol. 18, No. 11, 1992
[DOD 87] United States of America, Department of Defense: Military Standard 882B -System Safety Program Requirements Incorporation Notice 1. DOD 1984 and 1987
[DOD 89] United States of America, Department of Defence: Defense System Software Development. DoD-Std.-2167, 1989
222 Life Cycle Management for Dependability
[DOD 93] United States of America, Department of Defence: System Safety Program Requirements. DoD-MIL-Std. 882C, January 1993
[DOD 95] United States of America, Department of Defense: Non-electronic Parts Reliability Data. 000, 1995
[DOE 75] Department of Employment: The Flixborough Disaster: Report of the Court of Enquinj- HMSO, London, 1975
[Doujak 89] Doujak A, Haslauer H, Madl M and Rattay G: The Role of the Top Management in Project Orientated Companies. In Gareis R (ed): Proceedings of the 13th INTERNET International Expert Seminar, INTERNET 1989
[Duncan 87] Duncan K 0: Fault Diagnosis Training for Advanced Continuous Process Installations, In: Rasmussen J, Duncan K 0 & Leplat J (EDS): New Technology and Human Error, John Wiley & Sons, New York, U.S.A., 1987
[Dutton 95] Dutton W H, MacKenzie 0, Shapiro Sand Peltu M: Computer Power and Human Limits: Learning from IT and Telecommunications Disasters. Policy Research Paper No. 33, Programme on Information and Communication Technologies, Economic and Social Research Council, Uxbridge, March 1995
[EEMUA89] United Kingdom Electronic Equipment Manufacturers & Users Association: Safety Related Instrument Systems for the Process Industries (Including Programmable Electronic Systems). Publication 160, 1989
[ESA 91] European Space Agency: ESA Software Engineering Standards. ESA PSS-05-0, Issue 2, February 1991
[Fagan 76] Fagan M E: Design and Code Inspections to Reduce Errors in Program Development. IBM Systems Journal, Vol. IS, pp 182-211, 1976
[Feynman 88] Feynman R P: What Do You Care What Other People Think? W W Norton & Company Inc., USA, 1988
[FDA 83] United States Food & Drugs Administration: Guide to Inspection of Computerised Systems in Drug Processing, FDA Center for Drug Evaluation
References
and Research, Rockville, Maryland, U.S.A., 1983
[Forester 94]
223
Forester T and Morrison P: Computer Ethics (2nd edition) MIT Press, 1994
[Gandy 96] Gandy S N: Managing 'Riskt/ Projects. In Redmill F and Anderson T (eds): Safety-critical Systems: The Convergence of High Tech and Human Factors, Springer-Verlag, 1996
[Ha1189] Hall S: Danger on the Line. Ian Allan Ltd, London, 1989, pp. 112-117
[Hawkesley 89] Hawkesley J L: A View from ICI. Part of Chapter 7 of Lees F P and Ang M L (eds): Safety Cases within the Control of Industrial Major Accident Hazards (CIMAH) Regulations 1984, Butterworth, 1989
[Hazards 95] Hazards Forum: Safety-Related Systems: Guidance for Engineers, Issue No.1, Institution of Electrical Engineers, UK, 1995
[Henkoff 93] Henkoff R: The Hot New Seal of Quality. Fortune International, June 28th, 1993, pp 62-65
[Hidden 89] Hidden A: Investigation into the Clapham Junction Railway Accident. HMSO, London, 1989
[HMS094] Her Majesty's Stationary Office: The Construction (Design and Management) Regulations. Statutory Instrument (SI) 1994:3140. 1994
[Howard 83] Howard W B: Efficient Time Use to Achieve Safety of Processes or How Many Angels Can Stand on the Head of a Pin? Proceeding of Loss Prevention and Safety Promotion in The Process Industries,' Institute of Chemical Engineers, United Kingdom, 1983
[HSE 87] United Kingdom Health and Safety Executive: Programmable Electronic Systems in Safety Related Applications, Parts 1 & 2, Her Majesty's Stationary Office (HMSO), London, 1987
[HSE 88] United Kingdom Health and Safety Executive: Tolerability of Risk in Nuclear Power Stations. HMSO, London, 1988
224 Life Cycle Management for Dependability
[Hubbard 94) Hubbard W K: United States Food & Drugs Administration Responses to Comments on Proposed Code of Federal Regulation No. 11 - Electronic Signatures and Electronic Records. United States Food and Drug Administration, Washington, 1994
[Hunt et al 95) Hunt J R, Lucas P R and Wingate GAS: FRESCO - An Investigation into a Framework for the Assessment of Safety-critical Systems. In: Redmill F and Anderson T (Eds): Achievement and Assurance of Safety, Springer-Verlag, London, 1995
[IEC 706) International Electrotechnical Commission: IEC 706 - Guide on Maintainability of Equipment Parts 1 - 6. IEC, Geneva, dates as given for individual parts: Part 1: Introduction, Requirements and Maintainability Programme (1982); Part 2: Maintainability Studies During the Design Stage (1990); Part 3: Verification and Collection, Analysis and Presentation (1987); Part 4: Maintenance and Maintenance Support Planning (1992); Part 5: Diagnostic Testing (1994); Part 6: Statistical Methods in Maintainability Evaluation (1994)
[IEC 93) International Electrotechnical Commission: Dependability Management, Part 2: Dependability Programme Elements and Tasks. IEC 300-2, Geneva, 1993
[lEe 95) International Electrotechnical Commission: Functional Safety: Safety Related Systems, Parts 1 to 7, Draft IEC 1508, Technical Committee No. 65: Industrial Process Management and Control, Sub-committee 65A: System Aspects, 1995 Part 1: General Requirements; Part 2: Requirements for Electrical/Electronic/Programmable Electronic Systems; Part 3: Software Requirements; Part 4: Definitions and Abbreviations of Terms; Part 5: Guidelines to the Application of Part 1; Part 6: Guidelines to the Application of Parts 2, 3 and 4; Part 7: Bibliography of Techniques.
[IEEE 87) Institute of Electrical and Electronic Engineers: IEEE Standard for Software Project Management Plans. IEEE Std 1058.1-1987
[INP085) Institute of Nuclear Power Operations: A Maintenance Analysis of Safety
References 225
Significant Events, Nuclear Utility Management and Human Resources Committee, Maintenance Working Group, Atlanta, U.S.A., 1985
[Investors in People 95] The Benefits of Being and Investor in People. Investors in People, IIP37R, 1995
[ISA 94] Instrument Society of America: Application of Safety Instrumented Systems for the Process Industries. ISA-dSB4.01 (Draft 16-7E), 1994
[ISO 91] International Standards Organisation: ISO 9001-3: Quality Management and Quality Assurance Standards - Part 3: Guidelines for the Application of ISO 9001 to the Development, Supply and Maintenance of Software. ISO, Geneva, 1991
[ISO 93] International Standards Organisation: ISO 9000-4/IEC 300-1: Quality Management and Quality Assurance Standards - Part 4: Guide to Dependability Programme Management. ISO, 1993
[ISO 94a] International Standards Organisation: ISO 9001: Quality Systems - Model for Quality Assurance in Design, Development, Production, Installation and Servicing. ISO, Geneva, 1994
[ISO 94b] Interna tional Standards Organisation: ISO 9000-1: Quality Management and Quality Assurance Standards - Part 1: Guidelines for Selection and Use. ISO, Geneva, 1994
[ISPE 94] International Society for Pharmaceutical Engineers: An Interview with Richard Klug, Pharmaceutical Engineering, Vol 14, No.3, pp 26-31, 1994
[Jackson 94] Jackson T 0, McDermid J A, Wand I C and Wilikens M A: Dependability Measurement of Safety-Critical Computer Systems. Tech. Note No.1.94.116 ISEI/IE/276/94, JRC Ispra, 1994
[Jackson 95] Jackson T 0, McDermid J A and Wand I C: Dependability Measurement of Safety-Critical Computer Systems: Models and Data Refinement. Final Report of Contract No. 10424-94-08 FlED ISP GB, 1995
[Kearns 92] Kearns D: Prophets in the Dark: How Xerox Reinvented Itself and Beat Back the Japanese. Harper Business Publishers, USA 1992
226 Life Cycle Management for Dependability
[King 83] King D W: Discussion Article, Plant/Operations Progress, Vol. 2, No. I, p73,1983
[Kletz 88] Kletz T: Wise After the Event, Control and Instrumentation, Vol. 20, No. 10, pp 57-59,1988
[Kletz 94] Kletz T: What Went Wrong?: Case Histories from Process Plant Disasters. Gulf Publishing Company, Houston, U.S.A., 1994
[Kletz 95] Kletz T, Chung P, Broomfield E & Sen-Orr C: Computer Control and Human Error, Institution of Chemical Engineers, United Kingdom, 1995
[Knight 86] Knight J C and Leveson N G: An Experimental Evaluation of the Assumption of Independence in Multiversion Programming. IEEE Transactions on Software Engineering, SE-12 (1), pp 96-109, January 1986
[Langley 96] Langley 5 and Jarratt P: Classiftjing & Managing Risk: The RATIFI Project. In Redmill F and Anderson T (eds): Safety-critical Systems: The Convergence of High Tech and Human Factors, Springer-Verlag, 1996
[Laprie 92] Laprie J C (ed): Dependability: Basic Concepts and Terminology. SpringerVerlag, Vienna, 1992
[Laprie 93J Laprie J C: Dependabilin;: from Concepts to Limits. In Gorski (ed): Proceedings of the 12th International Conference on Computer Safety, Reliability and Security. Poznan-Kiekrz, Poland, October 1993
[Lee 90] Lee P A and Anderson T: Fault Tolerance: Principles and Practice. SpringerVerlag, 1990
[Leveson 90] Leveson N G: The Challenge of Building Process-control Software. IEEE Software, Vol. 7, No.6, pp 55-62,1990
[Leveson 93] Leveson N G and Turner C S: An Investigation vf the Therac-25 Accidents. Computer, July 1993
[Leveson 95] Leveson N G: Safeware: System Safety and Computers, Addison Wesley, 1995
References 227
[Levi 91] Levi M: Economics Deciphered. Pan Books, 1991
[Littlewood 93] Littlewood Band Strigini L: Validation of Ultra-High Dependability for Software-Based Systems. CACM, Vol. 36, No. 11, November 1993
[Lufkens 92] Lufkens M: Concern of Lithuanian N-Plant in Shut-down. The Daily Telegraph, 3rd February 1992
[MacKenzie 94] MacKenzie 0: Computer-related Accidental Deaths: An Empirical Exploration. Science and Public Policy, Vol. 21, No.4, P 233, 1994
[Martin 89] Martin M W & Schinizger R: Ethics in Engineering, McGraw-Hill, New York, U.S.A., 1989
[MCA 93] United Kingdom Medicines Control Agency: Annex 11 - Computerised Systems, in Guide to Good Manufacturing Practice for Medicinal Products, Rules and Guidance for Pharmaceutical Manufacturers [supporting EU Directive 75/319/EEC], 1993
[McDermid 87] McDermid J A: Assurance. In Anderson T (ed.): Safe and Secure Computing Systems, Blackwell Scientific, 1987
[MoD 94] Ministry of Defence: Defence Standard 00-40/Issue 3 - Reliability and Maintainability, Part 1: Management Responsibilities and Requirements for Programmes and Plans (ARMP-l), and Par~ 2: General Application Guidance on the Use of Part 1 (ARMP-2). MOD, 1994
[MoD 95a] Ministry of Defence: Defence Standard 00-55/Draft - The Procurement of Safety Critical Software in Defence equipment. MoD, August 1995
[MoD 95b] Ministry of Defence: Defence Standard 00-56/Draft - Safety Management Requirements for Defence Systems Containing Programmable Electronics. MoD, August 1995
[MoD 96] Ministry of Defence: A Guideline for HAZOP Studies on Systems which Include a Programmable Electronic System. Defence Standard 00-58, MOD, 1996
228 Life Cycle Management for Dependability
[Morris 87] Morris P W G and Hough G H: The Anatomy of Major Projects: A Study of the Reality of Project Management. John Wiley & Sons, 1987
[Nimmo 87] Nimmo I, Nunns S R & Eddershaw B W: Lessons Learned from the Failure of Computer System Controlling a Nylon Polymer Plant, Safety and Reliability Society Symposium, United Kingdom, 1987
[Nimmo 94] Nimmo I: Extend HAZOP to Computer Control Systems, Chemical Engineering Progress, Vol. 90, No. 10, P 32-44, 1994
[Paulk 91] Paulk M C, Curtis Band Chrissis M B: Capability Maturity Model for Software. Software Engineering Institute, Carnegie Mellon University, 1991
[PDA 95] Parenteral Drug Association: Validation of Computer-Related Systems, Technical Report 17, Vol. 49, No.1, January /February Supplement, 1995
[PICSYF95] United Kingdom Pharmaceutical Industry Computer System Validation Forum: Supplier Guide for Validation of Automation Systems in Pharmaceutical Manufacture, International Society for Pharmaceutical Engineers, (Second Draft),1995
[Pressman 95] Pressman R (and Ince D): Software Engineering: A Practitioner's Approach. Third Edition, McGraw Hill, 1995
lProject730 94] ISO/IEC/JTCl/TCS6/SC7/WG9: Information Technology - Classification and Assignment: Software Integrity Levels. Report on Project 730, Ottawa, Canada, 1994
[Reason 87] Reason J: The Chernobyl Errors. Bulletin of the British Psychological SOciety, Yol. 40, pp. 201-206
[Reason 90] Reason J: Human Error, Cambridge University Press, 1990
[Redmill 88a] Redmill F J (ed): Dependability of Critical Computer Systems - 1. Elsevier Science Publishers, 1988 (now available from Chapman and Hall)
[Redmill 88b] Redmill F J, Johnson E A and Runge B: Document Quality - Inspection.
References 229
British Telecommunications Engineering, Vol 6, pp250-256, January 1988
[Redmill89] Redmill F J (ed): Dependability of Critical Computer Systems - 2. Elsevier Science Publishers, 1989 (now available from Chapman and Hall)
[Rook 91] Rook P M: Project Planning and Control. In McDermid J A (ed.): Software Engineer's Reference Book, Butterworth Heinemann, 1991
[Royal Soc 92] Risk: Analysis, Perception and Management. Report of a Royal Society Study Group. The Royal Society, London, 1992
[RTCA 92] Software Considerations in Airborne Systems and Equipment Certification. RTCA Inc./EUROCAE,1992
[Russell 45] Russell B: The Directiveness of Organic Activities. Cambridge University Press, 1945
[Schoitsch 96] Schoitsch E and Redmill F (eds): EWICS TC7 Guidelines on Project Management of the Development of Critical Computer Systems. European Workshop on Industrial Computer Systems, 1996
[Schultz 87] Schultz R L, Slevin D P and Pinto J K: Strategy and Tactics in a Process Model of Project Implementation. Interfaces, May-June 1987
[Steel 87] Steel D: Formal Investigation into the MV Herald of Free Enterprise Ferry Disaster. HMSO, London, 1987
[Stuckenbruck 81] Stuckenbruck L C (Ed): The Implementation of Project Management: The Professional's Handbook. Project Management Institute, Addison-Wesley, 1981
[SW Thames 93] South West Thames Regional Health Authority: Report of the Inquiry into the London Ambulance Service. South West Thames Regional Health Authority, London, February 1993.
[Turner 93] Turner J R: The Handbook of Project-Based Management. McGraw Hill, 1993
[Thamhain 86] Thamhain H J and Wileman D L: Criteria for Controlling Projects According to Plan. Project Management Journal, June 1986
230 Life Cycle Management for Dependability
[Vesely 81] Vesely et al: Fault Tree Handbook. U.S. Nuclear Regulatory Commission, Washington D.C., USA, 1981
[Wahlstrom 91] Wahlstrom B & Swanton E: Influence of Organisation and Management on Industrial Safety, International Institute for Applied Systems Analysis, Technical Report, 1991
[Waters 93] Waters R and Cane A: Sudden Death of a Runaway Bull. Financial Times, London, 19 March 1993
[Weller 94] Weller E F: Using Metrics to Manage Software Projects. IEEE Computer, Vol. 27, No.9, pp 27-34 1994
[Wilhelrnij 96] Wilhelmij P, Holden T, Reynolds B & Horng Liew B: LIFETRACK -Enhancing Team Knowledge and Corporate Memory in Petrochemical Operations through Sharing Lessons Learnt. in Redmill F and Anderson T (Eds): Safetycritical Systems: The Convergence of High Tech and Human Factors, Springer-Verlag, UK, 1996
[Wingate 95] Wingate GAS, Smith M & Lucas P R: Assuring Confidence in Pharmaceutical Software, Safety and Reliability of Software Based Systems, 1st Annual ENCRESS Conference, Bruges, Belgium, 1995
[Wingate 97] Wingate GAS: Automated Manufacturing: Good Practice:s and Case Studies. Interpharm Press, U.S.A., 1997
[Wray 88] Wray A M: The Everyday Risks of Playing Safe. New Scientist, Vol. 119, No. 16, 1988
I These documents are available from the Civil Aviation Authority in the UK. They are periodically updated and amended, and the latest revision will be supplied on request.
Index
5-up charts 94
acceptance testing 182 access control 146-149 accident severity categories 25 administrative systems 7 Aegis system 105,106 age, chronological 92, 93 age, logical 92, 93 ALARP 67, 203-204 AMI (Applications of Metrics in Ind ustry)
140 integrity, professional 22 integrity, system 3,64,79 integrity levels, safety 167, 168, 176 180,
186 integrity levels, software 49 interdisciplinary project teams 109 interlocks 134,138 investors in People programme ISO Iran Air Flight 655 105 ISO 9000 23, 26,45, 141, 159 ISO 9000-3 141 ISO 9001 139, 141 ITSEC 147
Jubilee Line Extension Project 51,52 judgement 114,122,128
people management 28,43-44,167-168 performance monitoring 153-155 permit to work 145 permit to work procedure 176 Pescado 7 PICT (Programme on Information and
Communication Technology) 12 planning 47-76,115 plant shut-down 157 PLC 134,152 policy 24,28,43,47-76,141 process assurance 101 process control 78 process improvement 78,86,92,95,97,
99, 100, 103 process maturity 91 process measurement 78 process measures 83 project, cost-plus 128 project, critical 128 PI'Qject, resource-capped 128 project, time-boxed 128 project control 79 project goals 116, 118, 131 project management 77,79-82,105-131 project management, first generation 113 project management, judgemental 114,
115 project management, proceduralised 113 project management, second generation