Catalogo Articoli (Spogli Riviste)

OPAC HELP

Titolo:
SOME CONSERVATIVE STOPPING RULES FOR THE OPERATIONAL TESTING OF SAFETY-CRITICAL SOFTWARE
Autore:
LITTLEWOOD B; WRIGHT D;
Indirizzi:
CITY UNIV LONDON,CTR SOFTWARE RELIABIL,NORTHAMPTON SQ LONDON EC1V 0HBENGLAND
Titolo Testata:
IEEE transactions on software engineering
fascicolo: 11, volume: 23, anno: 1997,
pagine: 673 - 683
SICI:
0098-5589(1997)23:11<673:SCSRFT>2.0.ZU;2-G
Fonte:
ISI
Lingua:
ENG
Keywords:
SAFETY-CRITICAL SOFTWARE; SOFTWARE RELIABILITY; OPERATIONAL TESTING; STATISTICAL TESTING; TESTING STOPPING RULE;
Tipo documento:
Article
Natura:
Periodico
Settore Disciplinare:
CompuMath Citation Index
Science Citation Index Expanded
Science Citation Index Expanded
Citazioni:
6
Recensione:
Indirizzi per estratti:
Citazione:
B. Littlewood e D. Wright, "SOME CONSERVATIVE STOPPING RULES FOR THE OPERATIONAL TESTING OF SAFETY-CRITICAL SOFTWARE", IEEE transactions on software engineering, 23(11), 1997, pp. 673-683

Abstract

Operational testing, which aims to generate sequences of test cases with the same statistical properties as those that would be experiencedin real operational use, can be used to obtain quantitative measures of the reliability of software. In the case of safely critical software it is common to demand that all known faults are removed. This meansthat if there is a failure during the operational testing, the offending fault must be identified and removed. Thus an operational test forsafety critical software takes the form of a specified number of testcases (or a specified period of working) that must be executed failure-free. This paper addresses the problem of specifying the numbers of test cases (or time periods) required for a test, when the previous test has terminated as a result of a failure. It has been proposed that,after the obligatory fix of the offending fault, the software should be treated as if it were completely novel, and be required to pass exactly the same test as originally specified. The reasoning here claims to be conservative, inasmuch as no credit is given for any previous failure-free operation prior to the failure that terminated the test. Weshow that, in fact, this is not a conservative approach in all cases,and propose instead some new Bayesian stopping rules. We show that the degree of conservatism in stopping rules depends upon the precise way in which the reliability requirement is expressed. We define a particular form of conservatism that seems desirable on intuitive grounds, and show that the stopping rules that exhibit this conservatism are also precisely the ones that seem preferable on other grounds.

ASDD Area Sistemi Dipartimentali e Documentali, Università di Bologna, Catalogo delle riviste ed altri periodici
Documento generato il 18/09/20 alle ore 16:59:08