Applying formal methods for human error tolerant design

  • Bob Fields
  • Peter Wright
  • Michael Harrison
Submitted Papers
Part of the Lecture Notes in Computer Science book series (LNCS, volume 896)


This paper describes recent work concerned with the specification of requirements on interactive systems and the definition of user-level properties of such systems. A formal notation for describing and reasoning about the behaviour of systems and emergent properties is discussed, along with a technique that uses the formalism to investigate the resilience of systems to operator errors. These techniques are being used in the context of a project with British Aerospace; the concepts are illustrated with a simple example from the area of aircraft warning systems.


User Error User Task Fuel Level Human Reliability Interval Logic 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. [Abo91]
    G. D. Abowd. Formal Aspects of Human-Computer Interaction. PhD thesis, University of Oxford Computing Laboratory: Programming Research Group, 1991. Available as Technical Monograph PRG-97.Google Scholar
  2. [CMM94]
    A. Coombes, J. McDermid, and P. Morris. Causality as a means for the expression of requirements for safety critical systems. In COMPASS'94, 1994.Google Scholar
  3. [DH93]
    David Duke and Michael Harrison. Abstract interaction objects. Computer Graphics Forum, 12(3):25–36, 1993.Google Scholar
  4. [DH94]
    D. Duke and M. Harrison. Folding human factors into rigorous development. In Paternó [Pat94].Google Scholar
  5. [FHW94]
    B. Fields, M. Harrison, and P. Wright. From informal requirements to agent-based specification: an aircraft warnings case study (extended abstract). ACM SIGCHI Bulletin, 26(2):65–68, 1994.Google Scholar
  6. [Hoa85]
    C. A. R. Hoare. Communicating Sequential Processes. International Series in Computer Science. Prentice-Hall International, 1985.Google Scholar
  7. [Hol93]
    E. Hollnagel. Human reliability analysis—Context and control. Academic Press, 1993.Google Scholar
  8. [Pat94]
    F. Paternò, editor. Proceedings, EUROGRAPHICS Workshop on the Design, Specification, Verification of Interactive Systems, Bocca di Magra, Italy, June 1994.Google Scholar
  9. [RH94]
    C.R. Roast and M.D. Harrison. User centred system modelling using the template model. In Paternò [Pat94].Google Scholar
  10. [SG83]
    A.D. Swain and H.E. Guttman. Handbook of human reliability analysis with emphasis on nuclear power plant applications. Technical Report NUREG/CR-1278, Sandia National Laboratory, N.M., 1983.Google Scholar
  11. [SMSV83]
    Richard L. Schwartz, P.M. Melliar-Smith, and Friedrich H. Vogt. An interval logic for higher-level temporal reasoning. In ACM Symposium on Principles of Distributed Computing, pages 173–186, August 1983.Google Scholar
  12. [WFH94]
    Peter Wright, Bob Fields, and Michael Harrison. Deriving human-error tolerance requirements from tasks. In First International Conference on Requirements Engineering. IEEE, 1994.Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 1995

Authors and Affiliations

  • Bob Fields
    • 1
  • Peter Wright
    • 1
  • Michael Harrison
    • 1
  1. 1.British Aerospace Dependable Computing Systems Centre and Human-Computer Interaction Group, Department of Computer ScienceUniversity of YorkYorkUK

Personalised recommendations