1. 15

Book is in “Open Access”; you can download it for free under “Open Access Title” in the left column.

  1.  

  2. 5

    Hi both, first time posting, long-time lurker, should thank both Hillel and Nick for all the great content over the last couple of years. :)

    I think the main contribution to the area of safety engineering described in the book is the STAMP accident model and the derived analysis methods, STPA and CAST, from which STPA is the interesting one for doing risk analyses/hazard identification for new and existing systems. This book is a bit of a long-winded, a more condensed description of STPA can be found in the STPA Handbook, which they published just this year.

    A short lecture by Leveson from last years STAMP-EU Workshop can be found here, where she introduces the contents of this book in one short lecture.

    STPA was originally developed for safety analysis, but there’s been some interesting work in the last years to extend it for other aspects: Security analysis: STPA-Sec.

    STPA for Privacy

    It has been a focus of the safety community during the last years to include security-aspects in risk analyses, this was done also for STPA: STPA-SafeSec

    Other interesting stuff lately has been combining STPA with formal methods, which might be interesting for you guys:

    Asim Abdulkhaleq combined STPA with SPIN+NuSMV in his PhD thesis for autonomous driving, the tool they developed is available on Github: XSTAMPP.

    Sam Procter created his own approach based on STPA called SAFE for medical applications, combined with modeling in the AADL language in his PhD Thesis.

    Edit: Added one more link

    1. 1

      For anyone unfamiliar, Nancy Leveson did a lot of pioneering work in bringing the kind of thinking in fields like aerospace to software safety. She pushes analyzing requirements and proposed solutions along human, technical, and environmental lines. She and her collaborators also did safety analysis on major projects like an air traffic control system.

      Prior book was Safeware. Sample chapters from it here. Glad this one is open access. :)