From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,f039470e8f537101 X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2003-07-29 14:14:10 PST Path: archiver1.google.com!news1.google.com!newsfeed.stanford.edu!logbridge.uoregon.edu!arclight.uoregon.edu!wn13feed!wn12feed!worldnet.att.net!204.127.198.203!attbi_feed3!attbi.com!sccrnsc03.POSTED!not-for-mail Message-ID: <3F26E38B.7090604@attbi.com> From: "Robert I. Eachus" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01 X-Accept-Language: en-us, en MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: Ariane5 FAQ References: <3F200AD0.94F79098@adaworks.com> <7u9Ua.13412$634.10307@nwrdny03.gnilink.net> <3F215120.1040706@attbi.com> <1059151910.357790@master.nyc.kbcfp.com> <3F248CEE.5050709@attbi.com> <3F25FB81.A81694FA@adaworks.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit NNTP-Posting-Host: 66.31.71.243 X-Complaints-To: abuse@comcast.net X-Trace: sccrnsc03 1059513250 66.31.71.243 (Tue, 29 Jul 2003 21:14:10 GMT) NNTP-Posting-Date: Tue, 29 Jul 2003 21:14:10 GMT Organization: Comcast Online Date: Tue, 29 Jul 2003 21:14:10 GMT Xref: archiver1.google.com comp.lang.ada:40968 Date: 2003-07-29T21:14:10+00:00 List-Id: Berend de Boer wrote: > True. Didn't they have a system in place where people have to sign > certain things? I.e. a software engineer can sign that use of this > software is ok. > > Ultimately someone decided to include a piece of Ariadne 4 > software. And that someone didn't check the requirements. Either > because a software engineer recommended it (in which case he should > have checked it), or he was the software engineer. > > And if people didn't know about the importance of requirements, it's a > telling sign at what state software engineering in general really > is. It just reminds me at the education in software engineering I got. Sigh. There was initially a requirements allocation for the Ariane 5. That allocation assigned validation of the SRI under Ariane 5 conditions to a "full-up" flight systems test using a three-axis gimbelled table. But Arianespace did not have a process for managing and tracking requirements, this was assigned to the individual contractors. The result was that some requirements testing "fell through the cracks" due to design changes, or in the case of the BH bug, changes in the scope of a contract. In other words when the flight test simulation contract was changed, there was nothing in place to map the requirements tested by the new version of the contract back to the original system requirements. At MITRE we are very familiar with the issue, because it keeps coming up. You need to map the original system requirements into detailed requirements against lower level subsystems. That is part of the engineering process. But you must maintain the original system requirements, track changes to the SYSTEM reqirements whether caused by external events or by the process of developing the subsystems, and see to it that the final system "as delivered" meets the final version of the requirements document. That isn't quite the first rule of systems engineering but it is close. Hmmm. I guess the first rule is actually, "The requirements will change, plan for it." And the need for and ongoing requirements tracking process is one derived requirement. ;-) And all of the Ariane 5 failures so far have involved failures in this process. In the recent engine failure it was "only" a contributing factor, but in the other four it was the primary cause of failure. Is this an indication that reuse is difficult? Not really, but it does indicate something that the software engineering community has by now had beaten into them: Software and hardware may be reusable, documentation may be reusable, even unit testing data can be reused sometimes. But you CANNOT reuse system tests, and you CANNOT skimp on the requirements process. -- "As far as I'm concerned, war always means failure." -- Jacques Chirac, President of France "As far as France is concerned, you're right." -- Rush Limbaugh