• copacetic@discuss.tchncs.de
    link
    fedilink
    arrow-up
    5
    ·
    1 day ago

    In SIL world, the C++ issues would not be considered bugs but maybe change requests.

    The SIL philosophy (as far as I know it from ASIL) is “unsafe unless convinced otherwise”. That seems like a good idea when the lifes of humans are on the line. Without a spec how would you argue that a system/product is safe?

    (Aside: Software in itself cannot be safe or unsafe because without hardware it cannot do anything. Safety must be assessed holistically including hardware and humans.)