Re: [SystemSafety] Separating critical software modules from non-critical software modules

From: Peter Bernard Ladkin < >
Date: Tue, 23 Jul 2013 10:50:49 +0200

On 7/23/13 10:43 AM, Gerry R Creech wrote:
> The analysis of independence would also need to prove that any failure of the SIL 0 software could
> not affect the operation of the safety software.

Yes. IEC 61508 also has a "non-interference" requirement concerning pre-existing SW used in the same system, and an "impact analysis" requirement to establish the non-interference.

Same caveat, though, as Myriam enunciates: the analysis shall be done, but how is it established that it is done well?

PBL Prof. Peter Bernard Ladkin, Faculty of Technology, University of Bielefeld, 33594 Bielefeld, Germany Tel+msg +49 (0)521 880 7319

The System Safety Mailing List
systemsafety_at_xxxxxx Received on Tue Jul 23 2013 - 10:50:58 CEST

This archive was generated by hypermail 2.3.0 : Tue Jun 04 2019 - 21:17:05 CEST