From: bobduff@world.std.com (Robert A Duff)
Subject: Re: Need help with PowerPC/Ada and realtime tasking
Date: 1996/05/29
Date: 1996-05-29T00:00:00+00:00 [thread overview]
Message-ID: <Ds6M4D.E09@world.std.com> (raw)
In-Reply-To: 31AC0712.29DF@lmtas.lmco.com
In article <31AC0712.29DF@lmtas.lmco.com>,
Ken Garlington <garlingtonke@lmtas.lmco.com> wrote:
>...At least
>in my environment, the software engineer provides feedback to the domain
>engineer, so I suppose it is a software engineering job to get requirements
>changed, suggest additional safety features, etc.
A very good point. If a brick-layer notices that laying bricks the way
the architect said is impossible or stupid or even just questionable,
then the brick-layer ought to notify the architect that something is,
perhaps, screwed up.
>It sounds like the point has already been made, but it is also good to
>remmeber that, technically, correctness and safety don't have to be related.
>You can have correct software that is unsafe, and incorrect software that
>is safe.
I suppose it depends on your definition of "correct". The
proof-of-correctness folks define "correct" to mean "correctly obeys the
formal specification". To me, that's a bogus definition. In plain
English, a "correct" program is one that does what it's supposed to do,
regardless of whether the specification is wrong. If you show me a word
processor that deletes my file when I told it to italicize a word, to
me, that's incorrect, even if you can show me a (bogus) formal spec that
says that the "italicize word" function should delete files. If you
show me a flight-control program that crashes airplanes, that's
incorrect IMHO, despite the fact that you might show me a formal spec
saying it did what the formal spec says.
- Bob
next prev parent reply other threads:[~1996-05-29 0:00 UTC|newest]
Thread overview: 39+ messages / expand[flat|nested] mbox.gz Atom feed top
1996-05-17 0:00 Need help with PowerPC/Ada and realtime tasking Dave Struble
1996-05-18 0:00 ` JP Thornley
1996-05-20 0:00 ` Robert I. Eachus
1996-05-21 0:00 ` Michael Levasseur
1996-05-21 0:00 ` Richard Riehle
1996-05-25 0:00 ` JP Thornley
1996-05-27 0:00 ` Robert Dewar
1996-05-28 0:00 ` JP Thornley
1996-05-29 0:00 ` Ken Garlington
1996-05-29 0:00 ` Robert A Duff [this message]
1996-05-30 0:00 ` Software Safety (was: Need help with PowerPC/Ada and realtime tasking) Ken Garlington
1996-05-30 0:00 ` Robert Dewar
1996-06-02 0:00 ` JP Thornley
1996-06-03 0:00 ` Robert A Duff
1996-06-05 0:00 ` Norman H. Cohen
1996-06-07 0:00 ` Ken Garlington
1996-06-12 0:00 ` Norman H. Cohen
1996-06-12 0:00 ` Ken Garlington
1996-06-08 0:00 ` Robert Dewar
1996-06-08 0:00 ` Robert A Duff
1996-05-31 0:00 ` Robert A Duff
1996-06-03 0:00 ` Ken Garlington
1996-05-30 0:00 ` Need help with PowerPC/Ada and realtime tasking JP Thornley
1996-05-31 0:00 ` Ken Garlington
1996-06-02 0:00 ` JP Thornley
1996-06-03 0:00 ` Ken Garlington
1996-05-25 0:00 ` JP Thornley
1996-05-27 0:00 ` Darren C Davenport
1996-05-30 0:00 ` Ralph E. Crafts
1996-05-31 0:00 ` JP Thornley
1996-06-03 0:00 ` Ken Garlington
1996-05-28 0:00 ` Tasking in safety-critical software (!) (was Re: Need help with PowerPC/Ada and realtime tasking) Kevin F. Quinn
1996-05-28 0:00 ` Need help with PowerPC/Ada and realtime tasking Robert I. Eachus
1996-05-30 0:00 ` JP Thornley
1996-06-03 0:00 ` Ken Garlington
1996-05-28 0:00 ` Robert I. Eachus
1996-05-30 0:00 ` JP Thornley
1996-05-31 0:00 ` Robert I. Eachus
1996-06-03 0:00 ` Ralph Paul
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox