From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=0.2 required=5.0 tests=BAYES_00,INVALID_MSGID, REPLYTO_WITHOUT_TO_CC autolearn=no autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,a3ca574fc2007430 X-Google-Attributes: gid103376,public X-Google-Thread: 115aec,f41f1f25333fa601 X-Google-Attributes: gid115aec,public From: peb@transcontech.co.uk ("Paul E. Bennett") Subject: Re: Ada and Automotive Industry Date: 1996/11/12 Message-ID: <847788099snz@transcontech.co.uk>#1/1 X-Deja-AN: 195948601 references: <55ea3g$m1j@newsbf02.news.aol.com> <3280DA96.15FB@hso.link.com> <847341612snz@transcontech.co.uk> x-mail2news-user: peb@transcontech.co.uk x-mail2news-path: tcontec.demon.co.uk organization: Transport Control Technology Ltd. reply-to: peb@transcontech.co.uk newsgroups: comp.lang.ada,comp.realtime Date: 1996-11-12T00:00:00+00:00 List-Id: In article dewar@merv.cs.nyu.edu "Robert Dewar" writes: > Paul says > > "is spent testing. When a Forth or Assembler application reaches the final > stage of being blown into production ROMS it has probably been tested more > times than most applications written in other languages. > " > > I trust that testing alone is not considered an acceptable basis for > verification in such applications! > > (though one of the troubles is that these so-called software engineers > working in Forth or assembler, are less likely to know, understand, or > use the kind of formal tools and methodologies that are an integral > part of writing high integrity software. No, testing alone is not the only basis of the proof. However, the testing regimes are quite often far more thorough than most other applications seem to get. We use a whole host of validation and verification methods on the design and the code before it even sees the test bench. In the Real time Forth and Assembler community you will probably find that the "software engineers" are not actually software engineers but are hardware engineers who have added software to their toolbox. Incidently, Formal Methods cannot cater for all situations of a Real Time System either. They may help but are not the whole answer. It's better to have a battery of techniques and methods up your sleeve than rely on one. Just in case you are wondering about my range of activities, I am essentially an electronics engineer with software capabilities in Forth, Assembler, S80, D3 and Fortran 4. Forth is most preferred these days. I can establish hazard analysis and risk assessment programmes, build safety cases and organise distributed embedded systems for large installations with very demanding requirements. Most of my systems look after people's safety. -- Paul E. Bennett Transport Control Technology Ltd. +44 (0)117-9499861 Going Forth Safely