Applying Architecture Modeling Methodology to the Naval Gunship Software Safety Domain

Abstract

This paper describes an architectural modeling tool (called “Eagle6”) that was developed to support the Navy’s Software System Safety Technical Review Panel (SSSTRP) evaluation process. The Eagle6 tool is based on the Monterey Phoenix (MP) modeling methodology and has the capability to create and verify system architecture models, check formal assertions via pre-defined macro commands, and has a visualization tool that generates graphical representations of model’s behavior (scenarios). The Eagle6 toolset has two scenario generation modes: exhaustive search for model verification within scope, and random trace generation for statistical estimates of non-functional properties, like performance. The paper demonstrates how the Eagle6 tool can improve the SSSTRP evaluation process by use of formal assertions to test for software states that are considered unsafe.