6th Scandinavian Conference on SYSTEM & SOFTWARE SAFETY

Dates: May 21-22, 2018
Place: Spårvagnshallarna, Stockholm, Sweden
Register deadline: May 15, 2018

The conference on system and software safety is a central meeting place for Scandinavian safety experts from different industries. It is an opportunity to share experiences and make new contacts. There will be an overview day followed by a day of parallel sessions with in depth presentations and discussions about different challenges, techniques, standards and methods.

Technical Program:


DAY 1 - Monday May 21, 2018

Time Plenary
0830-0900 Registration and coffee
0900-0910 Conference introduction, Nicolas Martin-Vivaldi, Addalot and Martin Törngren, KTH/ICES               
0910-1010 Keynote: Assurance points in software development, Prof. Peter Bernard Ladkin, Bielefelt University
1010-1030  Break
1030-1105 How does a safety standard change the safety work? Anna Beckman, Scania
1105-1140 Software defenses against hardware failure, Chris Hobbs, QNX software system
1140-1215 SMILE: Safety analysis and verification & validation of MachIne lEarning based systems, Christoffer Englund, RISE
1215-1310  Lunch
1310-1410 Keynote: Safety of intended functionality, Håkan Sivencrona, Zenuity
1410-1510 Keynote: Safety of autonomy challenges and strategies, Prof. John McDermid, York of University
1510-1530  Break
1530-1605 Machine learning in automotive software development - opportunities and challenges, Miroslaw Staron, Chalmers / University of Gothenburg
1605-1705 Keynote: Cyber-risk assessment framework encompassing safety and security, Jonathan Roberts, Rolls-Royce 



DAY 2 - Tuesday May 22, 2018

Time Workshops
0800-0830 Registration and Coffee
0830-1200 Morning Workshops

Workshop 1: 
Frontiers in Safety

Workshop 2: 
Security and Safety, 
John McDermid and Jonathan Roberts 

1. Motivation for having a link between safety and security during the design of cyber safety critical systems.

2. The Cyber-Risk Assessment Framework (CRAF) for designing for safety and security.

3. The details of the CRAF.

4. Practitioners’ perspectives of using and future work for the CRAF.

The workshop will be a mix of presentations and discussions.

Full day training: 
System Safety: Why-Because Analysis, Ontological Hazard Analysis, and Risk Analysis

Prof. Dr. Peter Bernard Ladkin

The course is divided into three modules: 

1. The Counterfactual Test (CT) and Why-Because Analysis (WBA). Introducing the CT and its use in causal analysis of incidents with WBA. An incident description will be provided, from which participants will construct a Why-Because Graph.


1200-1300 Lunch
1300-1700 Afternoon Workshops

Workshop 3: 
Users, HMI and Safety, 

Christin Lindholm, LTH Patrik Moberg, Siemens Digital Factory Division

  • Medical devices and other industrial system are becoming more sophisticated, contain more software and are used by new and different user groups –often with limited training or infrequent users.  A major challenge is to assure safety and prevent harm, and by involving users in the risk management process, we can lower the risk of errors. In this workshop we will discuss challenges and experiences from safety work in this kind of systems.

Workshop 4:
Safety assurance and managing risk in automated driving, 
Martin Törngren and Sofia Cassel, ARCHER FFI project,

  • Consider our system fails. How can we prove our case and show that we did what we could?  What evidence and artefacts do we present?  How do we evaluate them? 

  • In the workshop, perspectives to safety assurance will be provided and we will be organizing a world-café to discuss challenges and promising approaches to deal with them.

  • WORKSHOP Details

Full day training:
(Continued)  ​

2. Ontological Hazard Analysis (OHA). Applying OHA using OPRA, followed by a system description provided for participants to apply OHA.

3. Risk Analysis. Use of event trees to delineate possible outcomes of hazards; evaluate of likelihood and severity and their combination.

Written course materials will be provided. 

The training is based partly on examples in the draft book, Digital System Safety.

Causalis Ingenieurgesellschaft will issue a certificate of successful completion for participants