Systematic Analysis of Development Processes
Software quality is dynamic and the result of active control.
To systematically increase quality, stability, and performance, control instruments and methods
specifically for industrial systems are constantly being further developed,
as industrial information and control systems are increasingly exposed to disturbances and their effects pose a high risk.
A systematic analysis in accordance with the recommendations of NIST SP 800-160
focuses on (A) elementary properties and (B) functional mechanisms.
A: Prevention (evolutionary and systemic changes),
response (adaptation and maintenance and lessons learned), and
recovery (restoration and evolution).
B: Anticipation/Prevention,
Detection/Containment (response and maintenance of critical functions), and
Recovery and Adaptation.
This approach goes beyond simply improving reliability (ISO/IEC 25010) through failure prevention and
correction and incorporates organizational aspects
(see system resilience in software engineering).
The evaluation is an audit process for the development of software systems.
Its methodological core is an extended Unified Resilience Model (URM) for functional safety in industrial environments.
The URM is an integrated framework for assessing system resilience,
consisting of five dimensions: Architecture (A), Identity (I), Failover (F), Visibility (V), and Autonomy (U).
System malfunctions are represented by the Adversary (X) dimension.
This allows for the systematic analysis and evaluation of architectural, development, and operational practices;
problematic developments can be identified early on (risk mitigation).
The results provide an objective basis for investments. .