Identifying contingency requirements using obstacle analysis

This paper describes the use of obstacle analysis to identify anomaly-handling requirements for a safety-critical, autonomous system. The software requirements for the system evolved during operations due to an on-going effort to increase the autonomous system´s robustness. The resulting increase in autonomy also increased system complexity. This investigation used obstacle analysis to identify and to reason incrementally about new requirements for handling failures and other anomalous events. Results reported in the paper show that obstacle analysis complemented standard safety-analysis techniques in identifying undesirable behaviors and ways to resolve them. The step-by-step use of obstacle analysis identified potential side effects and missing monitoring and control requirements. Adding an availability indicator and feature-interaction patterns proved useful for the analysis of obstacle resolutions. The paper discusses the consequences of these results in terms of the adoption of obstacle analysis to analyze anomaly-handling requirements in evolving systems.