Deriving verification objectives and scenarios for maritime systems using the systems-theoretic process analysis

- A method to improve the impact of verification activities for advanced maritime vessels.
- The method specifies verification scope, objectives and acceptance criteria.
- Captures scenarios with more complex causal relations than what is currently considered.

The process applied for verification of maritime systems lacks the ability to properly examine complex networks of interconnections. Verification is mainly focused on single failures of components, not properly accounting for the complexity emerging through interactions between human operators, computer systems and electro-mechanical components. The problem apparently resides in the supporting studies, or the lack thereof, for the development of test cases. A new methodology that can be introduced to the current verification process for these systems is proposed in this article. It employs Systems-theoretic process analysis (STPA) to generate verification objectives and related hazardous scenarios. These specify or extend the scope and provide acceptance criteria for verification activities, and may further serve as input to test case generation. The method is used in a case study to identify verification objectives for an automated module in the power management system of a maritime vessel. The results show that the method is able to reduce the number of context variables that verification results depend upon, and to highlight remaining context dependency, to allow for an integrated system view. It will help capture accidental scenarios with more complex causal relations than what is currently considered during verification of these systems.