Integrating model checking with HiP-HOPS in model-based safety analysis

• We propose technique to integrate HiP-HOPS and model checking.
• State machines can be systematically constructed from HiP-HOPS.
• The strengths of different MBSA techniques are combined.
• Demonstrated through modeling and analysis of brake-by-wire system.
• Root cause analysis is automated and system dynamic behaviors analyzed and verified.

The ability to perform an effective and robust safety analysis on the design of modern safety–critical systems is crucial. Model-based safety analysis (MBSA) has been introduced in recent years to support the assessment of complex system design by focusing on the system model as the central artefact, and by automating the synthesis and analysis of failure-extended models. Model checking and failure logic synthesis and analysis (FLSA) are two prominent MBSA paradigms. Extensive research has placed emphasis on the development of these techniques, but discussion on their integration remains limited. In this paper, we propose a technique in which model checking and Hierarchically Performed Hazard Origin and Propagation Studies (HiP-HOPS) – an advanced FLSA technique – can be applied synergistically with benefit for the MBSA process. The application of the technique is illustrated through an example of a brake-by-wire system.