International Data SIM / International Data Plan – Keepgo Review

I frequently travel internationally either as part of my job or for personal reasons. While I’m on the road, especially when traveling job related, it is very important for me to stay connected. A while ago I came across the Keepgo lifetime data SIM card.


What distinguishes Keepgo from other travel SIM cards is that it works in a lot of countries around the globe and that the data plan is valid a whole year. This means, for example, that I can use the international data plan while I’m in the taxi in Switzerland, when waiting for a connection flight in London and at my final destination in Shanghai.

There are two options to choice from to get started a 1 GB international data SIM only offer for $59 and a GB international data SIM + mobile WIFI hotspot offer for $119.

I tested the service in China, Switzerland, United Kingdom, Germany and in Spain and it worked very well.

If you use this link you get 15% off on your Keepgo lifetime data SIM card.

Automotive System Safety Europe

bildschirmfoto-2016-11-19-um-13-50-13 I will be speaking at the Automotive System Safety Europe conference in Berlin at November 29th, 2016. In my talk I will give some insides about how freedom from interference can be achieved in automotive systems. I will also discuss best practices on how to deal with mixed ASIL architectures and how freedom from interference can be achieved in legacy systems.

Personal Update

It has been a while since the last time I posted a blog post here. The reasons have been manyfold and include becoming a father for the first time, starting a job in industry while finishing up my PhD thesis and moving to a new house and all that at almost the exact same time 😉

All these milestones in my life obviously  shifted some the priorities in my life. This does not mean that the blog is no longer important for me, but I needed some time to decide in which direction I would like to go with this blog. After some time I know decided what I want this blog to be. I want it to be a reflection of my thoughts and ideas both professional and personal. This means that in the future I will write about

  • topics evolving around (automotive) software engineering, project management as well as functional safety
  • but also web development and technology in general and hobby-projects (e.g. home automation)
  • and I will write about my life as a dad

In terms of language I have not entirely decided whether all my blog posts will be in English or whether maybe the more personal ones will be in German.

I’m also not yet sure in which frequency I will be able to write blog posts but initially I will aim at one post per month … so keep tuned 😉

SPIN 2014 Talk: SpinCause: A Tool for Causality Checking

Today I talked at the SPIN 2014 symposium in San Jose, CA about the SpinCause tool. The slides for my talk are available here.

In this paper we present the SpinCause tool for causality checking of Promela and PRISM models. We give an overview of the capabilities of SpinCause and briefly sketch how the causality checking algorithms are integrated into the state-space exploration algorithms used for model checking. In addition we compare the runtime and memory needed for causality checking with the different state-space exploration algorithms and two newly proposed iterative causality checking approaches.

1st International Conference Automotive Embedded Systems


I’m happy to announce that I will chair the 1st International Conference Automotive Embedded Systems. The Automotive Embedded Systems conference focuses on the challenges of nowadays automotive software and systems development.

The conference will be held from 25 – 27 February 2014 at the Lindner Hotel Airport, Düsseldorf, Germany.

We will discuss emerging trends in automotive software and systems engineering such as:

  • model-based engineering,
  • agile development,
  • autonomous driving,
  • safety and security,
  • and many more

I’m looking forward to meet you at the conference!


Neues Buch: Funktionale Sicherheit nach ISO 26262


Ursprünglich hätte das Buch “Funktionale Sicherheit nach ISO 26262: Ein Praxisleitfaden zur Umsetzung” schon in 2012 erscheinen sollen. Mit einiger Verzögerung ist es nun am 31. Juli 2013 erschienen und ist damit aktuell eines der sehr wenigen verfügbaren deutschsprachigen Büchern das sich dem Thema funktionaler Sicherheit nach ISO 26262 widmet.

Kurzbeschreibung (Quelle Amazon):

Dieses Buch behandelt die prozessrelevanten Aspekte des funktionalen Sicherheitsmanagements und insbesondere die Umsetzung der Anforderungen aus der ISO 26262 hinsichtlich der Planungsaktivitäten. In aufeinander aufbauenden, strukturierten Schritten wird gezeigt, wie sicherheitsrelevante Komponenten geplant und welche Prozessanforderungen damit umgesetzt und verfolgt werden. Exemplarisch geschieht dies an einem durchgängigen Praxisbeispiel aus dem Automotive-Bereich, das den passenden Kontext liefert. Im Einzelnen werden erörtert:

– Rollen im Sicherheitslebenszyklus
– Konfigurations- und Änderungsmanagement
– ASIL (Automotive Safety Integrity Level)
– Gefährdungs- und Risikoanalyse
– Verifikations- und Validationsplanung
– Produktentwicklung auf Systemebene
– Dokumentation und Arbeitsprodukte
– Reviews
– Qualifizierung von Softwarewerkzeugen
– Retrospektive

Ergänzt werden die Ausführungen durch umfangreiche Umsetzungsbeispiele, hilfreiche Vorlagen und praktische Anwendungstipps. Der Leser wird auf diese Weise durch die notwendigen Prozessphasen des Sicherheitslebenszyklus begleitet und erwirbt ein tieferes Verständnis für den Aufbau des funktionalen Sicherheitsmanagements.

Ob das Buch hält was es verspricht in kürze hier.

Functional Safety Book recommendation: Design and Safety Assessment of Critical Systems

I have updated my list of literature on functional safety with the book of Marco Bozzano et al..
The book is a very well written introduction into the topic of safety assessment and functional safety and I can recommend it for readers on beginner levels as well as for functional safety experts that want learn more about formal methods and model checking in the context of safety assements.

Design and Safety Assessment of Critical Systems (recommended)

by Marco Bozzano and Adolfo Villafiorita

Short Description (source:
Safety-critical systems, by definition those systems whose failure can cause catastrophic results for people, the environment, and the economy, are becoming increasingly complex both in their functionality and their interactions with the environment. Unfortunately, safety assessments are still largely done manually, a time-consuming and error-prone process. The growing complexity of these systems requires an increase in the skill and efficacy of safety engineers and encourages the adoption of formal and standardized techniques. An introduction to the area of design and verification of safety-critical systems, Design and Safety Assessment of Critical Systems focuses on safety assessment using formal methods. Beginning with an introduction to the fundamental concepts of safety and reliability, it illustrates the pivotal issues of design, development, and safety assessment of critical systems. The core of the book covers traditional notations, techniques, and procedures, including Fault Tree Analysis, FMECA, HAZOP, and Event Tree Analysis, and explains in detail how formal methods can be used to realize such procedures. It looks at the development process of safety-critical systems, and highlights influential management and organizational aspects. Finally, it describes verification and validation techniques and new trends in formal methods for safety and concludes with some widely adopted standards for the certification of safety-critical systems. Providing an in-depth and hands-on view of the application of formal techniques to advanced and critical safety assessments in a variety of industrial sectors, such as transportation, avionics and aerospace, and nuclear power, Design and Safety Assessment of Critical Systems allows anyone with a basic background in mathematics or computer science to move confidently into this advanced arena of safety assessment.

AVM 2013 Talk: Recent Advances in Causality Checking

On Tuesday May 28th 2013 I gave a talk at the Alpine Verification Meeting in Trento Italy with the title “Recent Advances in Causality Checking”. 

Abstract: In recent work on the safety analysis of systems we have shown how causal relationships amongst events can be algorithmically inferred from probabilistic counterexamples and subsequently be mapped to fault trees. The resulting fault trees were significantly smaller and hence easier to understand than the corresponding probabilistic counterexample, but still contain all information needed to discern the causes for the occurrence of a hazard. More recently we have developed an approach called Causality Checking which is integrated into the state-space exploration algorithms used for qualitative model checking and which is capable of computing causality relationships on-the-fly. The causality checking approach outperforms the probabilistic causality computation in terms of run-time and memory consumption, but can not provide a probabilistic measure. In my talk I will give an introduction to causality checking and probabilistic causality computation. Furthermore I will discuss how the strengths of both approaches can be combined to an approach where the causal events are computed using causality checking and the probability computation can be limited to the causal events.

The slides of my talk can be downloaded here.

Speaking at 3rd International Conference Applying ISO 26262

I will be speaking at the 3rd International Conference Applying ISO 26262 on Thursday March, 21 2013. The title of my talk is  “Model-based Engineering and ISO26262” and I will talk about our experiences in using model-based engineering in an ISO 26262 context and lessons learned that we identified. If you are at the conference and are interested in model-based engineering we should talk!