From: "Michael" <fvit@shaw.ca>
Subject: Ada UK conference: SPARK safety: is no delivery better than 1 defect?
Date: Mon, 9 Mar 2009 23:01:59 -0700
Date: 2009-03-09T23:01:59-07:00 [thread overview]
Message-ID: <lnntl.33033$l71.12997@newsfe23.iad> (raw)
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #1: Type: text/plain, Size: 1430 bytes --]
Hi all,
The next Ada Conference UK 2009 (March 24, in London), is to highlight the
increased relevance of Ada in safety-and security-critical programming.
Software reliability and conformance are the Ada's raison d'�tre and the
main objectives of software engineering. Base on that, safety engineering
is focusing on the global system vision (e.g.: unforeseen interactions of
reliable sub-systems, modifications to the system, changes to the
operational environment.)
About safety, does Ada need to still evolve, or engineers being more
responsible?
The SPARK Ada enhancement was recently brought to our attention, (from an
open-source mini demonstrating project named Tokeneer). Based on a subset
of Ada, SPARK code "should be correct by virtue of the techniques used in
its construction". Tookeneer might, but not iFACTS (a medium term flight
conflict detection system "scheduled for delivery by Dec-07, re-approved by
the NATS Board in January 2008, with a revised cost, delivery and benefits
profile". ("re-planned again for 2009, and now with an optimised schedule
of Winter 2010").
In regards to the Tokeneer mini-project findings, were the safety critical
iFACTS project's delays and deficiencies predictable?
That should be one of the main Ada Conference safety concerns. (Tookeneer
and SPARK are both in the Ada conference program, but not iFACTS yet!).
Cheers,
Michael
next reply other threads:[~2009-03-10 6:01 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-03-10 6:01 Michael [this message]
-- strict thread matches above, loose matches on Subject: below --
2009-03-10 5:47 Ada UK conference: SPARK safety: is no delivery better than 1 defect? Michael
2009-03-10 14:54 ` (see below)
2009-03-11 10:34 ` Michael
2009-03-11 14:46 ` (see below)
2009-03-12 10:36 ` Michael
2009-03-12 10:52 ` Ludovic Brenta
2009-03-16 9:18 ` Michael
2009-03-16 10:29 ` Tim Rowe
2009-03-18 0:54 ` Michael
2009-03-12 12:39 ` (see below)
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox