STAMP-based Hazard Analysis for Computer-Controlled Systems using Petri Nets.

Systems-Theoretic Accident Modeling and Process (STAMP) is a novel accident causality model and has been used in various areas. Most of the STAMP based hazard analysis methods are ad-hoc without rigorous procedures, and the process model used in STAMP is too simple to identify the hazardous control actions as the causes. Petri nets, which have been used to graphically model computer-controlled systems and resolve system safety issues, can make the hazard analysis with STAMP more effective. To identify the hazardous control actions in the STAMP-based hazard analysis, extended Petri nets are proposed in this paper to model the control processes in the system control structure. The runtime control action failures are considered in the reachability graph for the hazard analysis. Furthermore, the types of hazardous control actions are studied and analyzed in the extended reachability graph. [ABSTRACT FROM AUTHOR]