International Journal of Aerospace Engineering

Research Article

Safety Assessment of the Reconfigurable Integrated Modular Avionics Based on STPA

Table 5

SCENARIO verification statement.
PropertyBNF statementResult
SCENARIO-01E<>(CFM2.Fault)and(CFM3.Work)and(GSM.FM)and(GSM_HM_o[3]!=1)Satisfy
SCENARIO-02E<>(CFM2.Fault)and(GSM.HM)and (OS_HM_o [1]==1 && OS_HM_o[3]==-1)Satisfy
SCENARIO-03E<>(GSM.FM)and(GSM_HM_o[0]==1&&GSM_HM_o[1]==1&&GSM_HM_o[2]==1&&GSM_HM_o[3]==1)Dissatisfy
SCENARIO-04E<>(CFM2.Fault)and(GSM.FM)and(GSM_HM_o[1]==1&&GSM_HM_o[3]==-1)Satisfy
SCENARIO-05E<> (OS.AE) and (A!=1)Dissatisfy
SCENARIO-06E<>(CFM2.Fault)and(RC==1)and(OS.AE)and(output==1) and(MSLd[0]!=OSd[0]&&MSLc[2] !=OSc[2])Satisfy
SCENARIO-07E<>(CFM2.Fault)and(RC==1)and(OS_reAE_s==-1)and (output==1)and(MSLd[0]!=0&&MSLc[2]!=0)Dissatisfy
SCENARIO-08E<>(CFM2.Fault)and(OS.HM)and(s[1]==0)and(MSL_HM_o[1]!=0)Dissatisfy
SCENARIO-09E<>(CFM2.Fault)and(OS.HM)and(MSL_HM_o[1]==s[1]||MSL_HM_o[3]==s[3])Satisfy
SCENARIO-10E<>(CFM2.Fault)and(MSL.HM)and(s[1]==r[1]||s[3]==r[3])Satisfy
SCENARIO-11E<>(RC==1&&output==1)and(AL.Off)and(MSL.Idle)and (Hd[0]!=MSLd[0]||Hc[2]!=MSLc[2])Satisfy