Skip to Main content Skip to Navigation
New interface

Méthode pour la spécification de responsabilité pour les logiciels : Modelisation, Tracabilité et Analyse de dysfonctionnements

Abstract : Despite the effort made to define methods for the design of high quality software, experience shows that failures of IT systems due to software errors remain very common and one must admit that even critical systems are not immune from that type of errors. One of the reasons for this situation is that software requirements are generally hard to elicit precisely and it is often impossible to predict all the contexts in which software products will actually be used. Considering the interests at stake, it is therefore of prime importance to be able to establish liabilities when damages are caused by software errors. Essential requirements to define these liabilities are (1) the availability of reliable evidence, (2) a clear definition of the expected behaviors of the components of the system and (3) the agreement between the parties with respect to liabilities. In this thesis, we address these problems and propose a formal framework to precisely specify and establish liabilities in a software contract. This framework can be used to assist the parties both in the drafting phase of the contract and in the definition of the architecture to collect evidence. Our first contribution is a method for the integration of a formal definition of digital evidence and liabilities in a legal contract. Digital evidence is based on distributed execution logs produced by "acceptable log architectures". The notion of acceptability relies on a formal threat model based on the set of potential claims. Another main contribution is the definition of an incremental procedure, which is implemented in the LAPRO tool, for the analysis of distributed logs.
Document type :
Complete list of metadata

Cited literature [11 references]  Display  Hide  Download
Contributor : ABES STAR :  Contact
Submitted on : Thursday, December 20, 2012 - 4:08:46 PM
Last modification on : Friday, March 25, 2022 - 9:43:52 AM
Long-term archiving on: : Thursday, March 21, 2013 - 3:53:20 AM


Version validated by the jury (STAR)


  • HAL Id : tel-00767942, version 1



Eduardo Sampaio Elesbao Mazza Sampaio Elesbao Mazza. Méthode pour la spécification de responsabilité pour les logiciels : Modelisation, Tracabilité et Analyse de dysfonctionnements. Autre [cs.OH]. Université de Grenoble, 2012. Français. ⟨NNT : 2012GRENM022⟩. ⟨tel-00767942⟩



Record views


Files downloads