{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T21:55:06Z","timestamp":1777499706746,"version":"3.51.4"},"reference-count":12,"publisher":"MDPI AG","issue":"1","license":[{"start":{"date-parts":[[2019,1,10]],"date-time":"2019-01-10T00:00:00Z","timestamp":1547078400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Systems"],"abstract":"<jats:p>Advanced driver assistance and automated driving systems must operate in complex environments and make safety-critical decisions. Resilient behavior of these systems in their targeted operation design domain is essential. In this paper, we describe developments in our Model-Based Systems Engineering (MBSE) approach to develop resilient safety-critical automated systems. An MBSE approach provides the ability to provide guarantees about system behavior and potentially reduces dependence on in-vehicle testing through the use of rigorous models and extensive simulation. We are applying MBSE methods to two key aspects of developing resilient systems: (1) ensuring resilient behavior through the use of Resilience Contracts for system decision making; and (2) applying simulation-based testing methods to verify the system handles all known scenarios and to validate the system against potential unknown scenarios. Resilience Contracts make use of contract-based design methods and Partially Observable Markov Decision Processes (POMDP), which allow the system to model potential uncertainty in the sensed environment and thus make more resilient decisions. The simulation-based testing methodology provides a structured approach to evaluate the operation of the target system in a wide variety of operating conditions and thus confirm that the expected resilient behavior has indeed been achieved. This paper provides details on the development of a utility function to support Resilience Contracts and outlines the specific test methods used to evaluate known and unknown operating scenarios.<\/jats:p>","DOI":"10.3390\/systems7010001","type":"journal-article","created":{"date-parts":[[2019,1,11]],"date-time":"2019-01-11T04:10:16Z","timestamp":1547179816000},"page":"1","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":26,"title":["An MBSE Approach for Development of Resilient Automated Automotive Systems"],"prefix":"10.3390","volume":"7","author":[{"given":"Joseph","family":"D\u2019Ambrosio","sequence":"first","affiliation":[{"name":"Electrical &amp; Controls Systems Research Lab, General Motors, Warren, MI 48092, USA"}]},{"given":"Arun","family":"Adiththan","sequence":"additional","affiliation":[{"name":"Electrical &amp; Controls Systems Research Lab, General Motors, Warren, MI 48092, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4342-1388","authenticated-orcid":false,"given":"Edwin","family":"Ordoukhanian","sequence":"additional","affiliation":[{"name":"Systems Architecting and Engineering, Viterbi School of Engineering, University of Southern California, Los Angeles, CA 90089, USA"}]},{"given":"Prakash","family":"Peranandam","sequence":"additional","affiliation":[{"name":"Electrical &amp; Controls Systems Research Lab, General Motors, Warren, MI 48092, USA"}]},{"given":"S.","family":"Ramesh","sequence":"additional","affiliation":[{"name":"Electrical &amp; Controls Systems Research Lab, General Motors, Warren, MI 48092, USA"}]},{"given":"Azad M.","family":"Madni","sequence":"additional","affiliation":[{"name":"Systems Architecting and Engineering, Viterbi School of Engineering, University of Southern California, Los Angeles, CA 90089, USA"}]},{"given":"Padma","family":"Sundaram","sequence":"additional","affiliation":[{"name":"Electrical &amp; Controls Systems Research Lab, General Motors, Warren, MI 48092, USA"}]}],"member":"1968","published-online":{"date-parts":[[2019,1,10]]},"reference":[{"key":"ref_1","unstructured":"(2011). ISO 26262 Road Vehicles\u2014Functional Safety, International Organization for Standardization."},{"key":"ref_2","unstructured":"(2018). ISO PAS 21448 Safety of the Intended Functionality, International Organization for Standardization."},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Madni, A., Boehm, B., Ghanem, R., Erwin, D., and Wheaton, M. (2018). Model-Based Approach for Engineering Resilient System-of-Systems: Application to Autonomous Vehicle Networks. Disciplinary Convergence in Systems Engineering Research, Springer.","DOI":"10.1007\/978-3-319-62217-0"},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Madni, A., Boehm, B., Ghanem, R., Erwin, D., and Wheaton, M. (2018). Formal Methods in Resilient Systems Design: Application to Multi-UAV System-of-Systems Control. Disciplinary Convergence in Systems Engineering Research, Springer.","DOI":"10.1007\/978-3-319-62217-0"},{"key":"ref_5","unstructured":"Wymore, A.W. (1993). Model-Based Systems Engineering, CRC Press."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"190","DOI":"10.1002\/sys.1016","article-title":"Quantitative methods for tradeoff analyses","volume":"4","author":"Daniels","year":"2001","journal-title":"Syst. Eng."},{"key":"ref_7","unstructured":"Dosovitskiy, A., Ros, G., Codevilla, F., Lopez, A., and Koltun, V. (2017, January 13\u201315). CARLA: An Open Urban Driving Simulator. Proceedings of the 1st Annual Conference on Robot Learning, Mountain View, CA, USA."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"438","DOI":"10.1109\/TSE.1984.5010257","article-title":"An evaluation of random testing","volume":"4","author":"Duran","year":"1984","journal-title":"IEEE Trans. Softw. Eng."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"366","DOI":"10.1145\/267580.267590","article-title":"Software unit test coverage and adequacy","volume":"29","author":"Zhu","year":"1997","journal-title":"ACM Comput. Surv."},{"key":"ref_10","unstructured":"Denise, A., Gaudel, M.C., and Gouraud, S.D. (2004, January 2\u20135). A generic method for statistical testing. Proceedings of the IEEE International Symposium on Software Reliability Engineering, Bretagne, France."},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Cohen, M.B., Gibbons, P.B., Mugridge, W.B., and Colbourn, C.J. (2003, January 3\u201310). Constructing test suites for interaction testing. Proceedings of the International Conference on Software Engineering, Portland, OR, USA.","DOI":"10.1109\/ICSE.2003.1201186"},{"key":"ref_12","doi-asserted-by":"crossref","first-page":"418","DOI":"10.1109\/TSE.2004.24","article-title":"Software fault interactions and implications for software testing","volume":"30","author":"Kuhn","year":"2004","journal-title":"IEEE Trans. Softw. Eng."}],"container-title":["Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2079-8954\/7\/1\/1\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T12:24:52Z","timestamp":1760185492000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2079-8954\/7\/1\/1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,1,10]]},"references-count":12,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2019,3]]}},"alternative-id":["systems7010001"],"URL":"https:\/\/doi.org\/10.3390\/systems7010001","relation":{},"ISSN":["2079-8954"],"issn-type":[{"value":"2079-8954","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,1,10]]}}}