Reliability engineers often assume that reliability and safety are synonymous, but this assumption is true only in special cases.
What [software] must not do is not the inverse of what it must do. . - Nancy Leveson
What [software] must not do is not the inverse of what it must do. .
- Nancy Leveson
Safety is an emergent property of systems, not a component property. - Nancy Leveson
Safety is an emergent property of systems, not a component property.
Software−related accidents are usually caused by flawed requirements. - Nancy Leveson
Software−related accidents are usually caused by flawed requirements.
Requirement completeness: Requirements are sufficient to distinguish the desired behavior of the software from that of any other undesired program th… - Nancy Leveson
Requirement completeness: Requirements are sufficient to distinguish the desired behavior of the software from that of any other undesired program th…
Highly reliable components are not necessarily safe. . - Nancy Leveson
Highly reliable components are not necessarily safe. .
Reliability engineers often assume that reliability and safety are synonymous, but this assumption is true only in special cases. - Nancy Leveson
Login to join the discussion
Login to join the discussion