Validating Safety Models with Fault Trees

Glenn Bruns, Stuart Anderson

Research output: Chapter in Book/Report/Conference proceedingConference contribution


In verifying a safety-critical system, one usually begins by building a model of the basic system and of its safety mechanisms. If the basic system model does not reflect reality, the verification results are misleading. We show how a model of a system can be compared with the system’s fault trees to help validate the failure behaviour of the model. To do this, the meaning of fault trees are formalised in temporal logic and a consistency relation between models and fault trees is defined. An important practical feature of the technique is that it allows models and fault trees to be compared even if some events in the fault tree are not found in the system model.
Original languageEnglish
Title of host publicationSAFECOMP '93
Subtitle of host publicationThe 12th International Conference on Computer Safety, Reliability and Security
EditorsJanusz G?rski
PublisherSpringer London
Number of pages10
ISBN (Electronic)978-1-4471-2061-2
ISBN (Print)978-3-540-19838-3
Publication statusPublished - 1993


Dive into the research topics of 'Validating Safety Models with Fault Trees'. Together they form a unique fingerprint.

Cite this