Research Article
Safety Assessment of the Reconfigurable Integrated Modular Avionics Based on STPA
Table 4
UCA validation statement.
| | Number | Property | BNF statement | Result |
| | UCA-01 | The IMA system was not reconfigured after CFM2 failed | E<> (CFM2.Fault) and (RC==0) | Satisfy | | UCA-02 | The IMA system was incorrectly reconfigured after CFM2 failed | E<> (CFM2.Fault) and (RC==1)and(o!=1) | Satisfy | | UCA-03 | The IMA system was not reconfigured in time after the failure of CFM2 | E<> (CFM2.Fault) and (RC==1) and (GSM.CM) imply x<=t&&x>t1 | Satisfy | | UCA-04 | The IMA system reconfiguration took too long after CFM2 failed | E<> (CFM2.Fault) and (MSL.AE)and (RC==1) and (OS_reAE_s==1) and (MSL_reAE_s==1) imply y<=T&&T>T1 | Satisfy |
|
|
