-
Notifications
You must be signed in to change notification settings - Fork 8
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Signed-off-by: Paul Albertella <[email protected]>
- Loading branch information
1 parent
de2b8bd
commit 1f04926
Showing
1 changed file
with
25 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
# OSEP proposed approach | ||
|
||
a) Identify and document system scope, losses and hazards | ||
|
||
* *Assumed* system context, boundaries of analysis, role of OS, etc | ||
* OS-level losses/hazards that *may* violate a system's safety goals | ||
* Specific to the topic: start simple and elaborate later! | ||
|
||
b) Identify and document constraints and mitigations | ||
* Constraints: Criteria that must be satisfied to *prevent* hazard | ||
* Mitigations: To reduce *impact* of hazards that are not prevented | ||
|
||
c) Identify and document kernel features or external mechanisms | ||
* To implement OS- or system-level constraints and mitigations | ||
* To be identified and/or investigated by other WGs? | ||
|
||
d) Investigate and document processes and tools to: | ||
* Implement constraints or mitigations via engineering processes | ||
* Verify constraints and mitigations (at all levels) | ||
* Validate constraints, mitigations & verification measures in-context | ||
* Identify or provide other evidence to support claims | ||
|
||
e) Identify and document claims and use cases | ||
* To illustrate how a+b+c+d might support an in-context safety argument | ||
* Use cases with kernel config(s) and hardware / system dependencies? |