Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!eternal-september.org!.POSTED!not-for-mail From: john larkin Newsgroups: sci.electronics.design Subject: Re: "RESET" Date: Fri, 06 Jun 2025 06:40:44 -0700 Organization: A noiseless patient Spider Lines: 27 Message-ID: References: <100thgs$v8cm$1@dont-email.me> <101ckan$i2b3$3@dont-email.me> <101p8sd$phe5$1@dont-email.me> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Injection-Date: Fri, 06 Jun 2025 15:40:45 +0200 (CEST) Injection-Info: dont-email.me; posting-host="3097010cb9b892b04b36efdb7029822d"; logging-data="2420305"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19yYGwx/xwAUzQp6BFjMaFg" User-Agent: ForteAgent/8.00.32.1272 Cancel-Lock: sha1:rb+fxzKn2maLCKs0e0KvOFD9QXA= Bytes: 2264 On Fri, 06 Jun 2025 13:45:02 +0200, albert@spenarnc.xs4all.nl wrote: >In article <101p8sd$phe5$1@dont-email.me>, >David Brown wrote: > >>I recall something of the opposite - a long time ago, we had to add a >>variety of "safety" features to a product to fulfil a customer's safety >>/ reliability checklist, without regard to how realistic the failure >>scenarios were and without spending time and money on analysis. The >>result was, IMHO, lower reliability because it was more likely for the >>extra monitoring and checking hardware and software to fail than for the >>original functional stuff to fail. Many of these extra checks were in >>themselves impossible to test. > >I worked on the Dutch railway systems safety and control software. >Once they added external control checking. >I've seen the code. In places there was an 8 level indentation >caused by if's switches and loops. > >There was also a ban on automatic testing. I got on a row, because >I used a 3 line batch file (.BAT) to save on repetitive typing. > >Groetjes Albert The advantage of a state machine is that it forces people to know the state of the system.