基于模型的故障树自动生成方法  被引量：6

作　　者：展万里 胡军[1,2] 谷青范 荣灏[3] 祁健 董彦宏 ZHAN Wan-li;HU Jun;GU Qing-fan;RONG Hao;QI Jian;DONG Yan-hong(College of Computer Science and Technology,Nanjing University of Aeronautics and Astronautics,Nanjing 211106,China;Collaborative Innovation Center of Novel Software Technology and Industrialization,Nanjing 210007,China;China National Aeronautic Radio Elctronics Research Institute,Shanghai 200233,China)

机构地区：[1]南京航空航天大学计算机科学与技术学院,南京211106 [2]软件新技术与产业化协同创新中心,南京210007 [3]中国航空无线电电子研究所,上海200233

出　　处：《计算机科学》2021年第12期159-169,共11页Computer Science

基　　金：国家重点基础研究发展计划(973计划)(2014CB744900)。

摘　　要：基于模型的安全性分析方法能够提高复杂安全关键系统的建模与分析能力。目前故障树被广泛应用于系统安全及可靠性分析中。故障树分析(Fault Tree Analysis,FTA)是一种自上而下的演绎式失效方法,根据故障树分析系统中不希望出现的状态,系统工程中可以尽早确定当前系统模型可能出现的问题并及时避免。面向一类安全关键性系统领域中的系统安全性建模语言AltaRica,基于其语义模型卫士转换系统(Guarded Transition Systems,GTS),设计了从平展化的GTS模型自动构造系统故障树的方法,节省了人工构造故障树的时间,从而加快了系统分析的进度。根据AltaRica3.0语言的语义规则,提取平展化GTS模型的数据构建实例对象;设计了GTS模型划分算法,得到一组独立GTS模型与一个独立断言,通过邻接矩阵构建独立GTS的可达图并获取关键事件序列。最后将处理结束的独立GTS与独立断言相结合,通过断言传播算法得到整个系统的状态及关键事件序列,生成系统故障树。最后通过实例来检验算法的有效性,结果表明,该算法能有效完成从平展化GTS模型自动生成故障树。Model-based safety analysis methods can improve the modeling and analysis capabilities of current complex safety-critical systems.At present,fault tree is widely used in system safety analysis and reliability analysis.Fault tree analysis(FTA)is a top-down deductive failure method,which analyzes undesired states in the system according to the fault tree.In the system engineering,the possible problems of the current system model can be determined as early as possible and avoided in time.The work of this paper is oriented to a type of system safety modeling language AltaRica in the aerospace field.Based on its semantic model GTS(guarded transition systems),a method for automatically constructing a system fault tree from the flattened GTS model is designed,which saves the time of artificial fault tree construction,and speeds up the progress of system analysis.According to the semantic rules of the AltaRica3.0 language,extracting the data of the flattened GTS model to construct instance objects,designing the GTS model division algorithm to obtain a set of independent GTS models and an independent assertion,constructing the reachability graph of the independent GTS through the adjacency matrix and obtaining the key event sequence,then,the indepen-dent GTS that has been processed is combined with the independent assertion,the state of the entire system and the sequence of key events are obtained through the assertion propagation algorithm,and the system fault tree is generated.Finally,an example system shows that the algorithm can effectively complete the automatic generation of fault trees from the flattened GTS model.

关 键 词：故障树分析 AltaRica 平展化GTS 划分算法 可达图 断言传播算法 

分 类 号：TP311[自动化与计算机技术—计算机软件与理论]