Embedded systems have significantly increased in technical complexity towards open, interconnected systems. This has exacerbated the problem of ensuring dependability in the presence of human, environmental and technological risks. The rise of complex Cyber-Physical Systems (CPS) has led to many initiatives to promote reuse and automation of labor-intensive activities. Two large-scale projects are OPENCOSS and SafeCer, which dealt with assurance and certification of software-intensive critical systems using incremental and model-based approaches. OPENCOSS defined a Common Certification Language (CCL), unifying concepts from different industries to build a harmonized approach to reduce time and cost overheads, via facilitating the reuse of certification assets. SafeCer developed safety-oriented process lines, a component model, contract-based verification techniques, and process/product-based model-driven safety certification for compositional development and certification of CPSs.
AMASS (http://www.amass-ecsel.eu) will create and consolidate a de-facto European-wide assurance and certification open tool platform, ecosystem and self-sustainable community spanning the largest CPS vertical markets. We will start by combining and evolving the OPENCOSS and SafeCer technological solutions towards end-user validated tools, and will enhance and perform further research into new areas not covered by those projects. The ultimate aim is to lower certification costs in face of rapidly changing product features and market needs. This will be achieved by establishing a novel holistic and reuse-oriented approach for architecture-driven assurance (fully compatible with standards e.g. AUTOSAR and IMA), multi-concern assurance (compliance demonstration, impact analyses, and compositional assurance of security and safety aspects), and for seamless interoperability between assurance/certification and engineering activities along with third-party activities (external assessments, supplier assurance).
Compliance Checking of Software Processes: A Systematic Literature Review (Mar 2022) Julieth Patricia Castellanos Ardila, Barbara Gallina, Faiz Ul Muram Journal of Software: Evolution and Process (JSEP)
A Safety-centered Planning-time Framework for Automated Process Compliance Checking (Oct 2021) Julieth Patricia Castellanos Ardila
Multi-Concern Assurance: Current Practices, Challenges, and Ways Forward (Aug 2021) Barbara Gallina 1st International Workshop on Multi-concern Assurance Practices in Software Design (MAPSOD-2021)
Compliance-aware Engineering Process Plans: The case of Space Software Engineering Processes (Mar 2021) Julieth Patricia Castellanos Ardila, Barbara Gallina, Guido Governatori Artificial Intelligence and Law (AIL)
Product-Line Assurance Cases from Contract-Based Design (Feb 2021) Damir Nesic , Mattias Nyberg , Barbara Gallina Journal of Systems and Software-2021 (JSS-2021)
Making SafeConcert Security-informed to Enable Multi-concern Modelling (Nov 2020) Barbara Gallina, Zulqarnain Haider 30th European Safety and Reliability Conference (ESREL-2020)