Peter H. Feiler
Software Engineering Institute
For the last 32 years, Peter Feiler has been a member of the SEI, where his duties included five years of management. His interests include safety-critical embedded software systems, architecture languages, and software system assurance.
Feiler is the technical lead and author of the SAE AS-2C Architecture Analysis & Design Language (AADL) standard. This standard was originally published in November 2004 as SAE document AS5506. Version 2.2 of the standard was published in January 2017. Feiler also was the author of the Error Model Annex V2 Annex standard for AADL, published in 2015.
Before joining the SEI, Feiler conducted research and led a group in software technology at the Siemens Corporate Research and Technology Lab in Princeton, NJ. During that period, he was the system architect for the software development environment in large-scale product development.
Feiler received the Carnegie Science Award for Information Technology in 2009 for his work with AADL.
Feiler earned a PhD in computer science from Carnegie Mellon University and was appointed SEI fellow in August 2016.
Publications by Peter H. Feiler
-
AADL Overview and Perspectives
November 06, 2019 • Presentation
Peter H. Feiler
Talk given by Peter Feiler at AADL User Day 2019
read -
Architecture Centric Virtual Integration Process (ACVIP): A Key Component of the DoD Digital Engineering Strategy
September 27, 2019 • Conference Paper
Alex Boydston (U.S. Army ADD/JMR)Peter H. FeilerSteve Vestal (Adventium Labs, Inc.)
ACVIP is a compositional, architecture-centric, model-based approach enabling virtual integration analysis in the early phases and throughout the lifecycle to detect and remove defects that currently are not found until integration and test.
read -
The AADL Error Library
August 29, 2019 • Podcast
Sam ProcterPeter H. Feiler
Peter Feiler and Sam Procter present the Architecture Analysis and Design Language (AADL) EMV2 Error Library, which is an established taxonomy that draws on a broad range of previous work in classifying system errors.
learn more -
System Architecture Virtual Integration: ROI on Early Discovery of Defects
November 15, 2018 • Podcast
Peter H. Feiler
Peter Feiler discusses the cost savings (26.1 percent) realized when using the System Architecture Virtual Integration approach on the development of software-reliant systems for aircraft.
learn more -
Integrated Safety and Security Engineering for Mission Critical Systems (2018)
October 23, 2018 • Poster
Peter H. FeilerSam Procter
This poster describes progress in the first year of a three-year project aimed at understanding interactions between safety and security.
read -
ROI Analysis of the System Architecture Virtual Integration Initiative
April 12, 2018 • Technical Report
Jörgen Hansson (University of Skovde)Steve Helton (The Boeing Company)Peter H. Feiler
This report presents an analysis of the economic effects of the System Architecture Virtual Integration approach on the development of software-reliant systems for aircraft compared to existing development paradigms.
read -
Automated Assurance of Security Policy Enforcement (2017)
October 30, 2017 • Presentation
Peter H. FeilerSam Procter
Presentation on research to detect vulnerabilities early in the lifecycle in architecture models
read -
Automated Assurance of Security Policy Enforcement (2017)
October 27, 2017 • Poster
Peter H. FeilerSam Procter
Poster for a research project on saftey-critical system security policy enforcement
read -
SEI Fellows Series: Peter Feiler
June 15, 2017 • Podcast
Peter H. Feiler
Peter Feiler was named an SEI Fellow in August 2016. This podcast is the second in a series highlighting interviews with SEI Fellows.
learn more -
Improvements in Safety Analysis for Safety Critical Software Systems
March 23, 2017 • Presentation
Peter H. Feiler
Recent advances in virtual system integration through architecture modeling and analysis have led to improvements in safety analysis in several ways, which will be described in this presentation.
read -
Architecture-Led Safety Process
December 21, 2016 • Technical Report
Peter H. FeilerJulien DelangeDavid P. Gluch
Architecture-Led Safety Analysis (ALSA) is a safety analysis method that uses early architecture knowledge to supplement traditional safety analysis techniques to identify faults as early as possible.
read -
Incremental Lifecycle Assurance of Critical Systems
November 01, 2016 • Presentation
Peter H. Feiler
Describes research that produced tools for demonstrating a measurable reduction in the cost of verifying system implmementations
read -
A Requirement Specification Language for AADL
October 27, 2016 • Podcast
Peter H. Feiler
In this podcast, Peter Feiler describes a textual requirement specification language for the Architecture Analysis & Design Language (AADL) called ReqSpec.
learn more -
-
Incremental Lifecycle Assurance of Critical Systems
October 18, 2016 • Poster
Peter H. Feiler
Critical System Assurance Challenge
read -
Automated Fault Tree Analysis from AADL Models
October 07, 2016 • Conference Paper
Peter H. FeilerJulien Delange
In this paper, the authors we discuss three elements that are key to safety analysis automation in the context of fault tree analysis (FTA).
read -
Analysis and Design of Safety-critical, Cyber-Physical Systems
October 07, 2016 • Conference Paper
John McGregorDavid P. GluchPeter H. Feiler
In this paper, the authors focus on the architecture-led development process and illustrate the support given by ALISA.
read -
Architecture Fault Modeling and Analysis with the Error Model Annex, Version 2
June 22, 2016 • Technical Report
Peter H. FeilerJohn J. HudakJulien Delange
This report describes the Error Model Annex, Version 2 (EMV2), notation for architecture fault modeling, which supports safety, reliability, and security analyses.
read -
A Requirement Specification Language for AADL
June 22, 2016 • Technical Report
Peter H. FeilerJulien DelangeLutz Wrage
This report describes a textual requirement specification language, called ReqSpec, for the Architecture Analysis & Design Language (AADL) and demonstrates its use.
read -
Missed Architectural Dependencies: The Elephant in the Room
April 05, 2016 • Conference Paper
Robert NordRaghvinder SangwanJulien Delange
This paper presents an in-depth study of a safety-critical system that underwent major changes as a result of missed architectural dependencies.
read -
Incremental Life Cycle Assurance of Safety-Critical Systems
March 16, 2016 • Conference Paper
Julien DelangePeter H. FeilerNeil Ernst
ALISA integrates requirements specification, architecture models, verification techniques, and assurance case traceability to incrementally build systems that satisfy requirements.
read -
Architecture-Led Safety Analysis of the Joint Multi-Role (JMR) Joint Common Architecture (JCA) Demonstration System
December 31, 2015 • Special Report
Peter H. Feiler
This report summarizes an architecture-led safety analysis of the aircraft-survivability situation-awareness system for the Joint Multi-Role vertical lift program.
read -
Requirements and Architecture Specification of the Joint Multi-Role (JMR) Joint Common Architecture (JCA) Demonstration System
December 31, 2015 • Special Report
Peter H. Feiler
This report describes a method for capturing information from requirements documents in AADL and the draft Requirement Definition & Analysis Language Annex.
read -
Potential System Integration Issues in the Joint Multi-Role (JMR) Joint Common Architecture (JCA) Demonstration System
December 31, 2015 • Special Report
Peter H. FeilerJohn J. Hudak
This report describes a method for capturing information from requirements documents in AADL to identify potential integration problems early in system development.
read -
From Virtual System Integration to Incremental Lifecycle Assurance
November 18, 2015 • Presentation
Peter H. Feiler
This presentation discusses problems associated with the increasing complexity of software systems that are threatening industry's ability to build the next generation of safety-critical embedded systems.
read -
Open Source AADL Workbench for Virtual System Integration Poster (SEI 2015 Research Review)
October 22, 2015 • Poster
Peter H. FeilerLutz Wrage
Explores a solution for the limitations of traditional system development development lifecycle methods
read -
Incremental Lifecycle Assurance of Critical Systems Poster (SEI 2015 Research Review)
October 22, 2015 • Poster
Peter H. Feiler
This poster explores ways to improve critical system assurance.
read -
Incremental Lifecycle Assurance of Critical Systems (2015)
October 16, 2015 • Presentation
Peter H. Feiler
This 2015 Research Review presentation explores the author's research into ways to improve critical system assurance.
read -
Open Source AADL Workbench for Virtual System Integration
October 16, 2015 • Presentation
Peter H. Feiler
The AADL Workbench includes tools for modeling, analysis, and usability capabilities. It also incorporates tools such as Resolute and Ocarina.
read -
Improving Quality Using Architecture Fault Analysis with Confidence Arguments
August 13, 2015 • Podcast
Peter H. Feiler
The case study shows that by combining an analytical approach with confidence maps, we can present a structured argument that system requirements have been met and problems in the design have been addressed adequately.
learn more -
Joint Common Architecture (JCA) Demonstration Architecture-Centric Virtual Integration Process (ACVIP) Shadow Effort
May 07, 2015 • Conference Paper
Alex Boydston (U.S. Army ADD/JMR)Peter H. FeilerSteve Vestal (Adventium Labs, Inc.)
The U.S. Army is investigating a new approach to model-based engineering called the Architecture-Centric Virtual Integration Process, based on the SAE Standard for AADL.
read -
Improving Quality Using Architecture Fault Analysis with Confidence Arguments
March 10, 2015 • Technical Report
Peter H. FeilerCharles B. WeinstockJohn B. Goodenough
The case study shows that by combining an analytical approach with confidence maps, we can present a structured argument that system requirements have been met and problems in the design have been addressed adequately.
read -
AADL and Dassault Aviation
December 18, 2014 • Podcast
Thierry Cornilleau (Dassault Aviation)Peter H. Feiler
In this podcast, Peter Feiler and Thierry Cornilleau discuss their experiences with the Architecture Analysis and Design Language.
learn more -
An Incremental Life-Cycle Assurance Strategy for Critical System Certification
November 04, 2014 • Presentation
Peter H. Feiler
This TSP Symposium 2014 presentation describes an architecture-led incremental assurance strategy that addresses mission- and safety-critical software-reliant systems.
read -
AADL Fault Modeling and Analysis Within an ARP4761 Safety Assessment
October 10, 2014 • Technical Report
Julien DelangePeter H. FeilerDavid P. Gluch
This report describes how the Architecture Analysis and Design Language (AADL) Error Model Annex supports the safety-assessment methods in SAE Standard ARP4761.
read -
AADL and Edgewater
July 10, 2014 • Podcast
Serban Gheorghe (Edgewater Computer Systems, Inc.)Peter H. FeilerSuzanne Miller
In this podcast, Peter Feiler and Serban Gheorghe of Edgewater discuss their work on the Architecture Analysis and Design Language.
learn more -
AADL and Aerospace
March 13, 2014 • Podcast
Myron Hecht (The Aerospace Corporation)Peter FeilerSuzanne Miller
In this podcast, Peter Feiler and Myron Hecht discuss the use of AADL by the Aerospace Corporation.
learn more -
AADL and Télécom Paris Tech
December 26, 2013 • Podcast
Etienne BordePeter Feiler
Real-World Applications of the Architecture Analysis and Design Language (AADL)
learn more -
Results of SEI Line-Funded Exploratory New Starts Projects: FY 2012
July 01, 2013 • Technical Report
Bjorn AnderssonLori FlynnDavid P. Gluch
This report describes line-funded exploratory new starts (LENS) projects that were conducted during fiscal year 2012 (October 2011 through September 2012).
read -
Reliability Validation and Improvement Framework
May 23, 2013 • Podcast
Peter Feiler
In this podcast, Peter Feiler discusses his recent work to improve the quality of software-reliant systems through an approach known as the Reliability Validation and Improvement Framework.
learn more -
Design and Analysis of Cyber-Physical Systems: AADL and Avionics Systems
May 01, 2013 • Presentation
Peter H. FeilerJulien Delange
A presentation from the ninth annual SATURN conference, held in Minneapolis, MN, April 29 - May 3, 2013.
read -
Four Pillars for Improving the Quality of Safety-Critical Software-Reliant Systems
April 29, 2013 • White Paper
Peter H. FeilerJohn B. GoodenoughArie Gurfinkel
This white paper presents an improvement strategy comprising four pillars of an integrate-then-build practice that lead to improved quality through early defect discovery and incremental end-to-end validation and verification.
read -
What's New With Version 2 of the AADL Standard?
March 21, 2013 • Podcast
Peter Feiler
In this podcast, Peter Feiler discusses the latest changes to the Architecture Analysis & Design Language (AADL) standard.
learn more -
The Latest Developments in AADL
January 17, 2013 • Podcast
Peter FeilerJulien Delange
Julien Delange and Peter Feiler discuss the latest developments with the Architecture Analysis and Design Language (AADL) standard.
learn more -
Reliability Improvement and Validation Framework
November 01, 2012 • Special Report
Peter H. FeilerJohn B. GoodenoughArie Gurfinkel
This report discusses the reliability validation and improvement framework developed by the SEI. The purpose of this framework is to provide a foundation for addressing the challenges of qualifying increasingly software-reliant, safety-critical systems.
read -
Model-Based Engineering with AADL: An Introduction to the SAE Architecture Analysis & Design Language
September 25, 2012 • Book
Peter H. FeilerDavid P. Gluch
Model-Based Engineering with AADL introduces an architecture-centric approach to discovering software systems problems earlier, when they cost less to solve.
read -
A Virtual Upgrade Validation Method for Software-Reliant Systems
June 01, 2012 • Technical Report
Dionisio de NizPeter H. FeilerDavid P. Gluch
This report presents the Virtual Upgrade Validation (VUV) method, an approach that uses architecture-centric, model-based analysis to identify system-level problems early in the upgrade process to complement established test qualification techniques.
read -
What’s New in V2 of the Architecture Analysis & Design Language Standard?
March 01, 2012 • Special Report
Peter H. FeilerJoe SeibelLutz Wrage
This report provides an overview of changes and improvements to the Architecture Analysis & Design Language (AADL) standard for describing both the software architecture and the execution platform architectures of performance-critical, embedded, real-time systems.
read -
Results of SEI Independent Research and Development Projects (FY 2010)
February 01, 2011 • Technical Report
William AndersonDavid FisherDavid P. Gluch
This report describes results of independent research and development (IRAD) projects undertaken in fiscal year 2010.
read -
Case Study: Model-Based Analysis of the Mission Data System Reference Architecture
May 01, 2010 • Technical Report
Peter H. FeilerDavid P. GluchKurt Woodham (L-3 Communications-Titan Group)
This report describes how AADL support an instantiation of a reference architecture, address architectural themes, and provide a foundation for the analysis of performance elements and system assurance concerns.
read -
Industry Standard Notation for Architecture-Centric Model-Based Engineering
January 20, 2010 • White Paper
Peter H. Feiler
In this paper, Peter Feiler describes the AADL, an industry standard for modeling and analyzing the architecture of software-reliant systems.
read -
Results of SEI Independent Research and Development Projects (FY 2009)
December 01, 2009 • Technical Report
Len BassLutz WragePaul C. Clements
In this report, the authors describe the SEI independent research and development (IRAD) projects conducted during fiscal year 2009.
read -
System Architecture Virtual Integration: An Industrial Case Study
November 01, 2009 • Technical Report
Peter H. FeilerJörgen Hansson (University of Skovde)Dionisio de Niz
This report introduces key concepts of the SAVI paradigm and discusses the series of development scenarios used in a POC demonstration to illustrate the feasibility of improving the quality of software-intensive aircraft systems.
read -
Results of SEI Independent Research and Development Projects (FY 2008)
December 01, 2008 • Technical Report
Dionisio de NizGabriel MorenoRobert Nord
This report describes the independent research and development (IRAD) projects that were conducted during fiscal year 2008 (October 2007 through September 2008).
read -
Results of SEI Independent Research and Development Projects (FY 2007)
July 01, 2008 • Technical Report
Len BassLui R. ShaDennis B. Smith
This report describes the independent research and development (IRAD) projects that were conducted during fiscal year 2007 (October 2006 through September 2007).
read -
Using Model-Based Engineering and Architectural Models to Build Secure Systems
May 01, 2008 • White Paper
Peter H. FeilerJörgen Hansson (University of Skovde)John Morley
In this paper, the authors present analytical techniques to model and validate security protocols for enforcing confidentiality and integrity.
read -
Building Secure Systems Using Model-Based Engineering and Architectural Models
May 01, 2008 • White Paper
Peter H. FeilerJörgen Hansson (University of Skovde)John Morley
A system designer faces several challenges when specifying security for distributed computing environments or migrating systems to a new execution platform.
read -
ASSIP Study of Real-Time Safety-Critical Embedded Software-Intensive System Engineering Practices
February 01, 2008 • Special Report
Peter H. FeilerDionisio de Niz
This report presents findings of a study of RTSCE software-intensive systems issues and develop recommendations for effectively dealing with those issues.
read -
Flow Latency Analysis with the Architecture Analysis and Design Language (AADL)
December 01, 2007 • Technical Note
Peter H. FeilerJörgen Hansson (University of Skovde)
This 2007 report describes the ability of AADL to determine a lower bound for the worst-case end-to-end latency in a system.
read -
Dependability Modeling with the Architecture Analysis & Design Language (AADL)
July 01, 2007 • Technical Note
Peter H. FeilerAna Rugina
This 2007 report explains the capabilities of the Error Model Annex and provides guidance on the use of the AADL and the error model in modeling dependability aspects of embedded system architectures.
read -
Modeling of System Families
July 01, 2007 • Technical Note
Peter H. Feiler
This report discusses how AADL can be used to model system families and configurations of system and component variants.
read -
Developing AADL Models for Control Systems: A Practitioner's Guide
July 01, 2007 • Technical Report
John J. HudakPeter H. Feiler
This 2007 document helps practitioners use AADL and describes an approach for and the mechanics of constructing an architectural model that can be analyzed based on the AADL.
read -
Results of SEI Independent Research and Development Projects (FY 2006)
July 01, 2007 • Technical Report
Christopher J. AlbertsEileen C. ForresterSuzanne Garcia-Miller
This report describes the IRAD projects that were conducted during fiscal year 2006 (October 2005 through September 2006).
read -
Ultra-Large-Scale Systems: The Software Challenge of the Future
June 01, 2006 • Book
Peter H. FeilerKevin Sullivan (University of Virginia)Kurt C. Wallnau
Ultra-Large-Scale Systems: The Software Challenge of the Future is the product of a 12-month study of ultra-large-scale (ULS) systems software.
read -
The Architecture Analysis & Design Language (AADL): An Introduction
February 01, 2006 • Technical Note
Peter H. FeilerDavid P. GluchJohn J. Hudak
This 2006 report provides an introduction to the AADL, a modeling language that supports early and repeated analyses of a system's architecture with respect to performance-critical properties.
read -
Results of SEI Independent Research and Development Projects and Report on Emerging Technologies and Technology Trends (FY2005)
December 01, 2005 • Technical Report
Rosann W. CollinsRick KazmanRichard C. Linger (Oak Ridge National Laboratory)
This report describes the IR&D projects that were conducted during fiscal year 2005 (October 2004 through September 2005). In addition, this report provides information on what the SEI has learned in its role as a technology scout for developments over the past year in the field of software engineering.
read -
Embedded Systems Architecture Analysis Using SAE AADL
June 01, 2004 • Technical Note
Peter H. FeilerDavid P. GluchJohn J. Hudak
This 2004 report discusses the role and benefits of using the AADL in the process of analyzing an existing avionics system.
read -
Real-Time Application Development with OSEK: A Review of the OSEK Standards
November 01, 2003 • Technical Note
Peter H. Feiler
This 2003 report examines the OSEK OS, OSEK COM, and OSEK OIL specifications from the perspective of a real-time application developer.
read -
SEI Independent Research and Development Projects (FY 2003)
September 01, 2003 • Technical Report
Felix BachmannSven DietrichPeter H. Feiler
This report describes the IR&D projects that were conducted during fiscal year 2003 (October 2002 through September 2003).
read -
The SAE Avionics Architecture Description Language (AADL) Standard: A Basis for Model-Based Architecture-Driven Embedded Systems Engineering
May 01, 2003 • White Paper
Peter H. FeilerSteve Vestal (Honeywell Technology Center)
The AADL standard will include a UML profile useful for avionics, space, automotive, robotics and other real-time concurrent processing domains including safety critical applications.
read -
Proceedings of the Real-Time Systems Engineering Workshop
August 01, 2001 • Special Report
B. Craig MeyersPeter H. FeilerTheodore F. Marz
This report presents the results of a workshop on real-time systems engineering. The workshop was held as part of the SEI Symposium in Washington, DC, during September 2000.
read -
Improving Predictability in Embedded Real-Time Systems
December 01, 2000 • Special Report
Peter H. FeilerBruce Lewis (U.S. Army AMCOM)Steve Vestal (Honeywell Technology Center)
This 2000 paper discusses a model-based architectural approach for improving predictability of performance in embedded real-time systems.
read -
Consistency in Dynamic Reconfiguration
October 01, 1998 • White Paper
Peter H. Feiler
This paper examines issues relating to the impact of change in real-time control applications.
read -
Steps in an Architecture Tradeoff Analysis Method: Quality Attribute Models and Analysis
May 01, 1998 • Technical Report
Mario R. BarbacciPeter H. FeilerMark H. Klein
This paper presents some of the steps in an emerging architecture tradeoff analysis method (ATAM).
read -
Reengineering: An Engineering Problem
July 01, 1993 • Special Report
Peter H. Feiler
This 1993 report discusses a plan that addresses how the Software Engineering Institute (SEI) may assist the Department of Defense (DoD) in reengineering its large software-intensive systems.
read -
Software Process Development and Enactment: Concepts and Definitions
September 01, 1992 • Technical Report
Peter H. FeilerWatts S. Humphrey
This 1992 report defines a core set of concepts about the software process. These concepts are intended to facilitate communications and to provide a framework for further definitions.
read -
Understanding Integration in a Software Development Environment
January 01, 1992 • Technical Report
Alan W. BrownPeter H. FeilerKurt C. Wallnau
This 1992 report examines Software Development Environments (SDEs) from an integration perspective, describing the previous work in this area and analyzing the integration issues that must be addressed in an SDE.
read -
An Analysis Technique for Examining Integration in a Project Support Environment
January 01, 1992 • Technical Report
Alan W. BrownPeter H. Feiler
This report describes the use of a Project Support Environment (PSE) services reference model as an analysis technique that helps in describing, understanding, and comparing aspects of integration in a PSE.
read -
CASE Studies in Environment Integration
December 01, 1991 • Technical Report
Edwin J. MorrisPeter H. FeilerDennis B. Smith
This report identifies areas where successful standardization would improve tool and environment integration, as well as to pinpoint areas where successful integration standards exist.
read -
Tool Integration and Environment Architectures
May 01, 1991 • Technical Report
Kurt C. WallnauPeter H. Feiler
This paper describes the evolution of environment architectures to support federated CASE integration and outlines the implications of this evolution on the technical issues of CASE tool integration.
read -
Configuration Management Models in Commercial Environment
March 01, 1991 • Technical Report
Peter H. Feiler
This 1991 report analyzes CM models with respect to their potential impact on the software development process, resulting in several observations.
read -
Transaction-Oriented Configuration Management: A Case Study
November 01, 1990 • Technical Report
Peter H. FeilerGrace Downey
This report illustrates some of the advances in software configuration management (SCM) concepts by example of a particular commercial system: the Sun Network Software Environment (NSE).
read -
Tool Version Management Technology: A Case Study
November 01, 1990 • Technical Report
Peter H. FeilerGrace Downey
This report describes a portion of the problem of maintaining tools for the purpose of software development.
read -
The Project Management Experiment
July 01, 1988 • Technical Report
Peter H. FeilerRoger Smeaton
This 1988 report covers a project management (PM) experiment, one of six experimentsthat examine different functional areas of Ada programming environments.
read -
Evaluation of the Rational Environment
July 01, 1988 • Technical Report
Peter H. FeilerSusan A. DartGrace Downey
This 1988 report presents an analysis of the Rational R1000 Development System for ADA, also called the Rational Environment.
read -
Managing Development of Very Large Systems: Implications for Integrated Environment Architectures
May 01, 1988 • Technical Report
Peter H. FeilerRoger Smeaton
This 1988 report examines management support for development through integrated environmentsand investigate the implications for environment architectures.
read -
User Interface Technology Survey
April 01, 1987 • Technical Report
Peter H. Feiler
This report attempts to do two things: specify an understanding of user interfaces by presenting a taxonomy that encompasses the various aspects of user interfaces, and indicate the state of the technology today by highlighting some of the major issues.
read