Tool Qualification Considerations for Tools Supporting STPA
Krauss, Sven Stefan; Rejzek, Martin; Hilbes, Christian (2015). Tool Qualification Considerations for Tools Supporting STPA: Talk. In: 3rd European STAMP Workshop. (October 4-5). Amsterdam, Netherlands: The Aviation Academy of the Amsterdam University of Applied Sciences (AUAS).
We evaluated tool qualification requirements for hazard and risk analysis software tools, particularly for tools supporting System-Theoretic Process Analysis (STPA) and compared the tool qualification approaches of safety standards IEC 61508, EN 50128, DO-178C/DO-330 and ISO 26262. For our software tool SAHRA, which integrates STPA in an existing engineering toolchain by providing an extension for the UML/SysML modeling tool Sparx Systems Enterprise Architect, we found that tool qualification according to the mentioned safety standards was not straightforward and required further analysis. Therefore we analyzed tool risks and found that tool risks depend on many factors like process risks, risks from tool errors, tool integration risks and operational scenarios how the tool is used in the development lifecycle. We selected four operational scenarios for tools supporting STPA to evaluate tool qualification requirements. Concluding that tool qualification is required, we used a multi-domain tool qualification development lifecycle guided by DO-330 for SAHRA.