The following is a list of papers I have written or contributed to (in reverse chronological order):

Please mail tim.kelly(at)cs.york.ac.uk if you have difficulty in obtaining any of these papers and would like a copy.

2013

• Elaborating the Concept of Evidence in Safety Cases
  Sun, L., Kelly, T.
  to appear in Proceedings of 21st Safety Critical Systems Symposium (SSS'11), February 2013 (Proceedings published by Springer)

2012

• Arguing Conformance
  Graydon, P., Habli, I., Hawkins, R., Kelly, T., Knight, J.
  IEEE Software May/June 2012 (vol 29 no.3)
• Argument-based Approach to Computer System Safety Engineering
  Yuan, T. and Kelly, T.
  in Press for International Journal of Critical Computer-based Systems, 2012
• Introducing Safety Cases for Health IT
  Despotou, G., White, S.,Kelly, T., Ryan, M.
  in Proceedings of the 4th International Workshop on Software Engineering in Health Care, International Conference on Software Engineering, ACM, June 2012
• Assessing Software Interference Management When Modifying Safety-Related Software
  Graydon, P., Kelly, T.
  to appear in Proceedings of the Next Generation of System Assurance Approaches for Safety-Critical Systems (SASSUR) Workshop, SAFECOMP 2012, Springer, September 2012
• Evolving Robust Networks for Systems-of-Systems
  Aitken, J. M., Alexander, R., Kelly, T.
  In Proceedings of the 4th International Symposium on Search-Based Software Engineering, SSBSE 2012, LNCS, Springer, September 2012
• Large-scale complex IT systems
  Sommerville, I., Cliff, D., Calinescu, R., Keen, J., Kelly, T., Kwiatkowska, M., McDermid, J, Paige, R.
  Communications of the ACM (vol 55 Issue 7), July 2012, ACM

2011

• Argument Schemes in Computer System Safety Engineering
  Yuan, T. and Kelly, T.
  Informal Logic, 31 (2): 89-109.
• Distinguishing Fact from Fiction in a System of Systems Safety Cases
  Zoë Stephenson, Christian Fairburn, George Despotou, Tim Kelly, Nicola Herbert and Bruce Daughtrey
  in Proceedings of 19th Safety Critical Systems Symposium (SSS'11), February 2011 (Proceedings published by Springer)
• A New Approach to creating Clear Safety Arguments
  Richard Hawkins, Tim Kelly, John Knight and Patrick Graydon
  in Proceedings of 19th Safety Critical Systems Symposium (SSS'11), February 2011 (Proceedings published by Springer)
• Using a Software Safety Argument Pattern Catalogue – Two Case Studies
  Hawkins, R., Clegg, K., Alexander, R., Kelly, T.
  in Proceedings of the 30th International Conference on Computer Safety, Reliability and Security SAFECOMP2011, Published as LNCS volume by Springer, September 2011
• Justifying the Validity of Safety Assessment Models with Safety Case Patterns
  Sun, L., O. Lisagor, T. Kelly
  in Proceedings of the 6th IET System Safety Conference. Birmingham, UK, September 2011, the Institute of Engineering and Technology
• On Validation of the Safety Analysis of Modern Railway Systems
  Lisagor, O., L.Sun, T. Kelly, C. Liu and R. Niu
  in Proceedings of the 2011 IEEE International Conference on Intelligent Rail Transportation. Beijing, China, July 2011. IEEE.
• Model-Based Safety Assessment: Review of the Discipline and its Challenges
  Lisagor, O., T. Kelly and R. Niu
  in Proceedings of the 9th International Conference on Reliability, Maintainability and Safety (ICRMS). Guiyang, China, June 2011. IEEE.
• On the Synthesis and Validation of Safety Assessment Models
  Sun, L., Papadopoulos, C., Mehta, K., Kelly, T., Heckmann, J., Mulloy, D., Larkham, A.
  in the Proceedings of the SAE 2011 Aerotech Congress, October, 2011, Toulouse, France, Society of Automotive Engineers
• Evaluating Safety Analysis – a Meta-Model Perspective
  Sun, L., Kelly, T.
  in Proceedings of the 29th International System Safety Conference (ISSC) USA, August 2011
• Managing inconsistency in safety analysis: an initial exploration
  Sun, L., Kelly, T.
  in Proceedings of the European Safety and Reliability Conference, Sept 2011 Troyes, France.
• Do Safety Cases Have a Role in Aerospace Certification?
  Sun, L., Zhang, W., Kelly, T.
  in Proceedings of the 2nd International Symposium on Aircraft Airworthiness ( ISAA 2011), October, 2011, Beijing, China.
• A Risk Modelling Approach for a Communicating System of Systems
  Aitken, J. M., Alexander, R., Kelly, T.
  in Proceedings of the 2011 IEEE Systems Conference (SysCon), April 2011, IEEE

2010

• Developing an Argument for Def Stan 00-56 from Existing Qualification Evidence
  Zoë Stephenson, Tim Kelly, Jean-Louis Camus
  Proceedings of Embedded Real-Time Software and Systems 2010, Toulouse, France, May 2010
• Application of the 'Lightweight Refinement' Relation to Establishing Confidence in Safety Assessment Models
  Oleg Lisagor and Tim Kelly
  in Proceedings of 5th IET International System Safety Conference Manchester, UK, October 2010. The Institution of Engineering and Technology
  
• The Illusion of Method: Challenges of Model-Based Safety Assessment
  Oleg Lisagor, Linling Sun, Tim Kelly
  in Proceedings of 28th International System Safety Conference (ISSC), Minneapolis, MN USA, August/September 2010. System Safety Society.
• Incremental Safety Assessment: Enabling the Comparison of Safety Analysis Results,
  Oleg Lisagor, Marco Bozzano, Matthias Bretschneider and Tim Kelly
  in Proceedings of 28th International System Safety Conference (ISSC). Minneapolis, MN USA, August/September 2010. System Safety Society
• Software Safety: Relating Assurance and Integrity
  Ibrahim Habli, Richard Hawkins, Tim Kelly
  International Journal of Critical Computer-Based Systems (IJCCBS), Vol. 1, No. 4, 2010
• A Structured Approach to Selecting and Justifying Software Safety Evidence
  Richard Hawkins and Tim Kelly
  in Proceedings of 5th IET International System Safety Conference. Manchester, UK, October 2010. The Institution of Engineering and Technology
• Understanding the Safety Lifecycle of Systems of systems
  G. Despotou, T. Kelly
  In proceedings of the forum papers track, 28th International System Safety Conference (ISSC), 30 August - 3 September 2010, Minneapolis, MN, USA.
• Evaluation and Integration of COTS in Evidence based Assurance Frameworks
  G. Despotou, M. Bennett, T. Kelly
  in Proceedings of 18th Safety Critical Systems Symposium (SSS'10), February 2010 (Proceedings published by Springer)
• Managing safety requirements across supply chains
  Catherine Menon and Tim Kelly
  in Proceedings of 5th IET International System Safety Conference. Manchester, UK, October 2010. The Institution of Engineering and Technology
• An Overview of the SoBP for Software in the Context of DS 00-56 Issue 4
  Catherine Menon, Richard Hawkins, John McDermid and Tim Kelly
  in Proceedings of 18th Safety Critical Systems Symposium (SSS'10), February 2010 (Proceedings published by Springer)
• A Safety Case Approach to Assuring Configurable Architectures of Safety-Critical Product Lines
  I. Habli, T. Kelly
  in Proceedings of the International Symposium on Architecting Critical Systems (ISARCS), Prague, Czech Republic, June 2010
• Model-Based Assurance for Justifying Automotive Functional Safety
  Ibrahim Habli, Ireri Ibarra, Roger Rivett, Tim Kelly
  in the proceedings of the 2010 SAE World Congress, Detroit, Michigan, USA, April 2010
• Safety Lifecycle Activities for Autonomous Systems Development
  R Alexander, B Gorry, T Kelly
  in Proceedings of the 5th SEAS DTC Technical Conference, July 2010

• A Case for Dynamic Risk Assessment in NEC Systems of Systems
  J M Aitken, R Alexander, T Kelly
  in Proceedings of the 5th IEEE Conference on Systems of Systems Engineering, June 2010
• Eliciting Software Safety Requirements in Complex Systems
  C. Menon, T. Kelly
  in Proceedings of the 2010 IEEE International Systems Conference, 2010

2009

• The Role of the Human in an Autonomous System
  R Alexander, N Herbert, T Kelly
  Proceedings of the 4th IET System Safety Conference, October 2009
• Escaping the Non-Quantitative Trap
  R Alexander, T Kelly
  Proceedings of the 27th International System Safety Conference (ISSC '09), August 2009
• A Critique of the “Unmanned Systems Safety Guide for DoD Acquisition”
  R Alexander, N Herbert, T Kelly
  Proceedings of the 27th International System Safety Conference (ISSC '09), August 2009
• Deriving Safety Requirements for Autonomous Systems
  R Alexander, N Herbert, T Kelly
  4th SEAS DTC Technical Conference, July 2009
• Addressing Challenges of Hazard Analysis in Systems of Systems
  G Despotou, R Alexander, T Kelly
  Proceedings of the 3rd IEEE Systems Conference, March 2009
• A Deviation Based SoS Safety View for Modelling Architectural Frameworks.
  G. Despotou, T. Kelly.
  In proceedings of the 4th IET International Conference of System Safety, London, 26-28 October 2009.
• Software Safety Assurance - What Is Sufficient?"
  R. Hawkins, T. Kelly.
  In proceedings of the 4th IET International Conference of System Safety, London, 26-28 October 2009.
• Towards establishing a self-management architecture for dynamic risk management in ‘intelligent’ Aero-Engine control
  Z. Kurd, T. Kelly, J. McDermid, R. Calinescu, M. Kwiatkowska
  In proceedings of the 4th IET International Conference of System Safety, London, 26-28 October 2009.
• Supporting Through Life Safety Assurance of COTS Based Upgrades.
  G. Despotou, M. Bennett, T. Kelly.
  In proceedings of the peer reviewed track of the 27th System Safety Society (SSS) International System Safety Conference (ISSC), 3-7 August 2009, Huntsville AL, USA.
• Addressing Challenges of Hazard Analysis in Systems of Systems.
  G. Despotou, R. Alexander, T. Kelly.
  In proceedings of the 3rd Annual IEEE International Systems Conference (SysConf '09), Vancouver Canada, 23-26 March 2009. Proceedings by IEEE.
• Software Assurance Arguments vs. Formal Mathematical Arguments:A Complementary Role
  Ibrahim Habli, Zoe Stephenson, Tim Kelly, John McDermid
  in the proceedings of the 20^th IEEE International Symposium on Software Reliability Engineering (ISSRE), Mysuru, India, November 2009.
• Functional Hazard Assessment in Product-Lines – A Model-Based Approach
  Ibrahim Habli, Tim Kelly, Richard Paige
  1^stInternational Workshop on Model-Driven Product Line Engineering, in conjunction with European Conference on Model-Driven Architecture (ECMDA),Twente, The Netherlands, June 24^th, 2009
• A Systematic Approach for Developing Software Safety Arguments
  Richard Hawkins and Tim Kelly,
  In proceedings of the 27th System Safety Society (SSS) International System Safety Conference (ISSC), 3-7 August 2009, Huntsville AL, USA
• Establishing a Framework for Dynamic Risk Management in 'Intelligent' Aero-Engine Control
  Z. Kurd, T. Kelly, J. McDermid, R. Calinescu and M. Kwiatkowska
  in Proceedings of the 28th International Conference on Computer Safety, Reliability and Security SAFECOMP2009, Published as LNCS volume by Springer, September 2009
• An Argument-Based Approach to the Integration of Safety and Design
  Katrina Attwood, Phil Wilkinson, Tim Kelly
  In Proceedings of the 18th Advances in Risk and Reliability Technology Symposium, Loughborough, April 2009
• Safety arguments in aircraft certification
  Sun, L., Kelly, T.
  in Proceedings of 4^th IET International System Safety Conference, published by the IET, 2009, Manchester, UK
• Software Assurance Arguments vs. Formal Mathematical Arguments – A Complementary Role
  I. Habli, Z. Stephenson, J McDermid, T Kelly
  in Proceedings of the 20^th International Symposium on Software Reliability Engineering, IEEE Computer Society, November 2009

2008

• Can Process and Product-based Approaches to Software Safety be Reconciled?
  T P Kelly
  in Proceedings of 16^th Safety Critical Systems Symposium (SSS'08), February 2008 (Proceedings published by Springer)
• A Generic Goal-Based Certification Argument for the Justification of Formal Analysis
  I Habli, T Kelly
  in Proceedings of SafeCert 2008, Certification of Safety-Critical Software Controlled Systems, March 2008 (Proceedings published in Electronic Notes in Theoretical Computer Science (ENTCS))
• Defining a Framework for the Development and Management of Dependability Cases
  G Despotou, T Kelly, D Kolovos, R Paige
  in Proceedings of 26^th International System Safety Conference, published by the System Safety Society, August 2008, Vancouver, Canada
• Incremental Safety Assessment: Theory and Practice
  O Lisagor, T Kelly
  in Proceedings of 26^th International System Safety Conference, published by the System Safety Society, August 2008, Vancouver, Canada
• Simulation and Prediction in Safety Case Evidence
  R Alexander, T Kelly
  in Proceedings of 26^th International System Safety Conference, published by the System Safety Society, August 2008, Vancouver, Canada
• Towards Constructing a Modular Dependability Case: Understanding Survivability in Relation to Safety
  M. Hall-May, T. Kelly, G. Despotou
  In proceedings of the forum track of the 26th International System Safety Conference (ISSC), 25-29 August 2008, Vancouver, Canada. Proceedings by the System Safety Society, August 2008.
• Defining a Framework for the Development and Management of Dependability Cases.

  G. Despotou, D. Kolovos, R. Paige, T. Kelly.
  In proceedings of the forum track of the 26th International System Safety Conference (ISSC), 25-29 August 2008, Vancouver, Canada. Proceedings by the System Safety Society, August 2008.
• Engineering Safety-Critical Complex Systems
  R Alexander, R Alexander-Bown, T Kelly
  in Proceedings of the 1^st CoSMoS (Complex Systems Modelling and Simulation) Workshop, September 2008, York
• Structuring Safety Cases For Autonomous Systems
  R Alexander, N Herbert, T Kelly
  in Proceedings of 3^rd IET International System Safety Conference, published by the IET, October 2008, Birmingham, UK
• Defence Standard 00-56 Issue 4 and Civil Standards- Appropriateness and Sufficiency of Evidence
  J Evans, T Kelly
  in Proceedings of 3^rd IET International System Safety Conference, published by the IET, October 2008, Birmingham, UK
• Investigating the Use of Argument Modularity to Optimise Through-life System Safety Assurance.
  G. Despotou, T. Kelly.
  In proceedings of the 3rd IET International Conference on System Safety (ICSS) 2008, 20-22 October 2008, NEC, Birmingham, U.K. Proceedings by the IET
• A Model-Driven Approach to Assuring Process Reliability
  I Habli, T Kelly
  in Proceedings of 19^th International Symposium on Software Reliability Engineering, November 2008, Seattle, USA
• Are ‘Safety Cases’ Working?
  Tim Kelly
  Safety Critical Systems Club Newsletter, Vol. 17, No. 2, January 2008, pp 31-33, www.safety-club.org.uk

2007

• Achieving Integrated Process and Product Safety Arguments
  I Habli, T Kelly
  in Proceedings of 15^th Safety Critical Systems Symposium (SSS'07), February 2007 (Proceedings published by Springer)
• Safety Case Composition Using Contracts -Refinements based on Feedback from an Industrial Case Study
  J Fenn, R Hawkins, T Kelly, P Williams
  in Proceedings of 15^th Safety Critical Systems Symposium (SSS'07), February 2007 (Proceedings published by Springer)
• An Argument-Based Approach for Assessing Design Alternatives and Facilitating Trade-offs in Critical Systems
  Georgios Despotou and Tim Kelly
  Journal of System Safety, v 43 n 2, pp31-21, March-April 2007
• Capturing and Replaying Architectural Knowledge through Derivational Analogy
  I Habli, T Kelly
  in Proceedings of the 2nd International Workshop on SHAring and Reusing architectural Knowledge - Architecture, rationale, and Design Intent (SHARK/ADI 2007) at the 29th International Conference on Software Engineering, published by IEEE, Minneapolis, USA, 20 - 26 May 2007
• Reviewing Assurance Arguments - A Step-by-Step Approach
  T.P. Kelly
  in Proceedings of Workshop on Assurance Cases for Security - The Metrics Challenge, Dependable Systems and Networks (DSN), July 2007
• Certification of Autonomous Systems
  Robert Alexander, Martin Hall-May, Tim Kelly
  in Proceedings of the 2^nd Systems Engineering for Autonomous Systems (SEAS) Defence Technology Centre (DTC) Annual Technical Conference, July 2007
• Classifying and Understanding Safety Dependencies in Integrated Modular Avionics
  P Conmy, T Kelly
  in Proceedings of 25th International System Safety Conference, published by the System Safety Society, August 2007, Baltimore, USA
• Managing Agent Failures in the Derivation of Safety Policy
  M Hall-May, T Kelly
  in Proceedings of 25th International System Safety Conference, published by the System Safety Society, August 2007, Baltimore, USA
• Certification of Autonomous Systems under UK Military Safety Standards
  R Alexander, T Kelly
  in Proceedings of 25th International System Safety Conference, published by the System Safety Society, August 2007, Baltimore, USA
• Design and Development of Dependability Case Architecture during System Development
  G Despotou, T Kelly
  in Proceedings of 25th International System Safety Conference, published by the System Safety Society, August 2007, Baltimore, USA
• Challenges of Establishing a Software Product Line for an Aerospace Engine Monitoring System
  I Habli, I Hopkins, T Kelly
  to appear in the Proceedings of the 11^th International Software Product Line Conference, Sept 10-14 2007, Kyoto, Japan
• Combining Bayesian Belief Networks and the Goal Structuring Notation to Support Reasoning about Safety
  W Wu, T Kelly
  in Proceedings of the 26^th International Conference on Computer Safety, Reliability and Security SAFECOMP2007, Published as LNCS volume by Springer, September 2007
• Towards Evidence-Based Architectural Design for Safety-Critical Software Applications
  Weihang Wu and Tim Kelly
  in Architecting Dependable Systems IV, Lecture Notes in Computer Science , Vol. 4615, Lemos, Rogério de; Gacek, Cristina; Romanovsky, Alexander (Eds.), 2007
• Safety Case Depictions vs. Safety Cases - Would the Real Safety Case Please Stand Up?
  Ibrahim Habli, Tim Kelly
  in proceedings of the 2nd IET International Conference on System Safety, published by the IET, November 2007, London
• Extending argumentation to goal-oriented requirements engineering
  Ibrahim Habli, Weihang Wu, Katrina Attwood and Tim Kelly
  to appear in Proceedings of the First International Workshop on Requirements, Intentions and Goals in Conceptual Modelling (RIGiM), in conjunction with the Twenty-Sixth International Conference on Conceptual Modelling (ER 2007), Auckland, New Zealand, November 2007
• Using Fuzzy Self-Organising Maps for Safety Critical Systems
  Z Kurd, T Kelly
  Reliability Engineering & System Safety, Volume 92, Issue 11, November 2007, Pages 1563-1583
• Modeling and Learning Interaction-based Accidents for Safety-Critical Software Systems
  T. Mahmood, E. Kazmierczak, T. Kelly and D, Plunkett
  in proceedings of Asia Pacific Software Engineering Conference, APSEC'07. IEEE Computer Society, December 2007.
• The Who, Where, How, Why and When of Modular and Incremental Certification
  J. Fenn, R. Hawkins, P. Williams, T. Kelly, M. Banner and Y Oakshott
  in proceedings of the 2nd IET International Conference on System Safety, published by the IET, November 2007, London

2006

• Gaining Confidence in Goal-based Safety Cases
  R Weaver, P Mayor, T P Kelly
  in Proceedings of 14^th Safety Critical Systems Symposium (SSS'06), February 2006 (Proceedings published by Springer)
• Eliciting Safety Policy and Balancing with Operational Fitness in Systems of Systems
  G Despotou, M Hall-May, T P Kelly
  in Proceedings of IEEE International Conference on Systems of Systems Engineering, published by IEEE, Los Angeles, USA, April 2006
• Process and Product Certification Arguments - Getting the Balance Right Workshop on Innovative Techniques for Certification of Embedded Systems
  I Habli, T P Kelly
  in proceedings of 12th IEEE Real-Time and Embedded Technology and Applications Symposium, April 4 - April 7, 2006, San Jose, California , United States
• Developing Artificial Neural Networks for Safety Critical Applications
  Z Kurd, J Austin, T P Kelly
  Journal of Neural Computing and Applications, vol 16 n 1, pp11-19, Springer, October 2006
• Combining Simulation with Machine Learning to Build Accident Models
  R Alexander, T Kelly
  in Proceedings of the 3rd International Workshop on Safety and Security in Multiagent Systems, Hakodate, Japan, May 2006
• Software in Safety Critical Systems: Achievement and Prediction
  J A McDermid, T P Kelly
  Nuclear Future, published by Thomas Telford Journals, June 2006
• Structuring Safety Policy Decomposition
  M Hall-May, T P Kelly
  in Proceedings of REMO2V'2006 International Workshop on Regulations Modelling and their Validation & Verification, Published as LNCS volume by Springer, June 2006, Luxemborg
• Deviational analyses for validating regulations on real systems
  Fiona Polack, Thitima Srivatanakul, Tim Kelly and John Clark
  in Proceedings of REMO2V'2006 International Workshop on Regulations Modelling and their Validation & Verification, Published as LNCS volume by Springer, June 2006, Luxemborg
• Extending Safety Deviation Analysis Techniques to Elicit Flexible Dependability Requirements
  G Despotou, T P Kelly
  in Proceedings of 1st IEE International Conference on System Safety, published by the IEE, June 2006, London
• Managing Architectural Design Decisions for Safety-Critical Software Systems
  W Wu, T Kelly
  in Proceedings of the 2^nd International Conference on the Quality of Software Architectures QoSA 2006,Published as LNCS volume by Springer, June 2006
• Requirements for Domain-Specific Languages
  Dimitrios S. Kolovos, Richard F. Paige, Tim Kelly, and Fiona A.C. Polack
  1st ECOOP Workshop on Domain-Specific Program Development (DSPD) in conjunction with ECOOP 2006 July 3rd, Nantes, France
• Deriving Safety Requirements as Part of System Architecture Definition
  W Wu, T P Kelly
  in Proceedings of 24th International System Safety Conference, published by the System Safety Society, August 2006, Albuquerque, USA
• Towards Conflict Detection and Resolution of Safety Policies
  M Hall-May, T P Kelly
  in Proceedings of 24th International System Safety Conference, published by the System Safety Society, August 2006, Albuquerque, USA
• An Argument Based Approach for Assessing Design Alternatives and Facilitating Trade-offs in Critical Systems
  G Despotou, T P Kelly
  in Proceedings of 24th International System Safety Conference, published by the System Safety Society, August 2006, Albuquerque, USA
• Can We Remove the Human from Hazard Analysis?
  R Alexander, T P Kelly
  in Proceedings of 24th International System Safety Conference, published by the System Safety Society, August 2006, Albuquerque, USA
• Using Software Architecture Techniques to Support the Modular Certification of Safety-Critical Systems
  T P Kelly
  in Proceedings of Eleventh Australian Workshop on Safety-Related Programmable Systems, Melbourne, Australia. CRPIT, Cant, T., Ed. ACS., August 2005
• Using Agent-based Modelling Approaches to Support the Development of Safety Policy for Systems of Systems
  M Hall-May, T Kelly
  in Proceedings of the 25^th International Conference on Computer Safety, Reliability and Security SAFECOMP2006, Published as LNCS volume by Springer, September 2006
• System of Systems Hazard Analysis using Simulation and Machine Learning
  R Alexander, D Kazakov, T Kelly
  in Proceedings of the 25^th International Conference on Computer Safety, Reliability and Security SAFECOMP2006, Published as LNCS volume by Springer, September 2006

2005

• Addressing Quality Requirements in GIS Architectures
  I Habli, T Kelly
  in Proceedings of the International Federation of Surveyors (FIG) Working Week and the 8th International Conference of Global Spatial Data Infrastructure (GSDI), April 2005, Cairo, Egypt
• Failure Modelling in Software Architecture Design for Safety
  W Wu, T Kelly
  in Proceedings of ICSE 2005 Workshop on Architecting Dependable Systems (WADS),May 2005, St Louis, USA
• Combining Software Evidence- Arguments and Assurance
  R Weaver, G Despotou, T Kelly, J McDermid
  in Proceedings of ICSE-2005: Workshop on Realising Evidence Based Software Engineering, May 2005, St Louis, USA
• Towards Using Simulation to Evaluate Safety Policy for Systems of Systems
  R Alexander, M Hall-May, G Despotou, T Kelly
  Proceedings of the 2nd International Workshop on Safety and Security in Multiagent Systems, July 2005, Utrecht, Netherlands
• Establishing a Standard Business Process Execution Architecture for Integrating Web Services
  T Gunasinghe, T Kelly
  in Proceedings of the IEEE International Conference on Web Services (ICWS 2005), IEEE Computer Society, July 2005
• Planes, Trains and Automobiles - An Investigation into Safety Policy for Systems of Systems
  M Hall-May, T Kelly
  in Proceedings of the 23rd International System Safety Conference, August 2005,proceedings published by the System Safety Society
• Goal-Based Safety Standards: Opportunities and Challenges
  T P Kelly, J A McDermid, R A Weaver
  in Proceedings of the 23rd International System Safety Conference, August 2005,proceedings published by the System Safety Society
• Using Scenarios to Identify and Trade-off Dependability Objectives in Design
  G Despotou, T Kelly
  in Proceedings of the 23rd International System Safety Conference, August 2005,proceedings published by the System Safety Society
• Flexible Requirements in Dependable Systems
  G Despotou, T Kelly
  in proceedings of the 4^th International Workshop on Requirements for High Assurance Systems, Published by the Software Engineering Institute, August 2005
• Using Safety Critical Artificial Neural Networks in Gas Turbine Aero-Engine Control
  Z Kurd, T Kelly
  in Proceedings of the 24^th International Conference on Computer Safety, Reliability and Security SAFECOMP2005, Published as LNCS volume by Springer, September 2005
• Defining and Decomposing Safety Policy for Systems of Systems
  M Hall-May, T Kelly
  in Proceedings of the 24^th International Conference on Computer Safety, Reliability and Security SAFECOMP2005, Published as LNCS volume by Springer, September 2005
• The Costs, Benefits, and Risks Associated With Pattern-Based and Modular Safety Case Development
  T Kelly, S Bates
  in Proceedings of the UK MoD Equipment Safety Assurance Symposium 2005, October 2005

2004

• COTS Product Selection for Safety Critical Systems
  F Ye, T P Kelly
  in Proceedings of 3rd International Conference on COTS-Based Software Systems (ICCBSS) Redondo Beach, USA, 2004
• Turning up the HEAT on Safety Case Construction
  P Chinneck, D J Pumfrey, T P Kelly
  in Proceedings of 12^th Safety Critical Systems Symposium (SSS'04),February 2004 (Proceedings published by Springer)
• A Systematic Approach to Safety Case Management
  T P Kelly
  in Proceedings of SAE 2004 World Congress, Detroit, March 2004 (Proceedings published by the Society for Automotive Engineers)
• Use of COTS Software Components in Safety-Critical Applications - A Defensible Approach
  F Ye, T P Kelly
  in Proceedings of International Workshop on Models and Processes for the Evaluation of COTS Components (MPEC 2004), May 2004 (Proceedings published by IEE)
• The Goal Structuring Notation - A Safety Argument Notation
  T P Kelly, R A Weaver
  in Proceedings of the Dependable Systems and Networks 2004 Workshop on Assurance Cases, July 2004
• The Use of Satisfaction Arguments for Traceability in Requirements Reuse for System Families
  K Atwood, T Kelly, J McDermid
  in Juan C. Dueqas, Klaus Schmidt (eds), 'International Workshop on Requirements Reuse in System Family Engineering, July 2004, Madrid, Spain', Technical Report, Universidad Politicnica de Madrid, Spain, 2004, pp. 18-21, ISBN84-688-7314-4
• Characterisation of Systems of Systems Failures
  R Alexander, M Hall-May, T Kelly
  in Proceedings of the 22^nd International System Safety Conference, August 2004, proceedings published by the System Safety Society
• Extending the Safety Case Concept to Address Dependability
  G Despotou, T Kelly
  in Proceedings of the 22ndInternational System Safety Conference, August 2004, proceedings published by the System Safety Society
• Criticality Analysis for COTS Software Components
  F Ye, T Kelly
  in Proceedings of the 22nd International System Safety Conference, August 2004,proceedings published by the System Safety Society
• Contract-Based Justification for COTS Component within Safety Critical Applications
  F Ye, T Kelly
  In Proc. Ninth Australian Workshop on Safety-Related Programmable Systems, Brisbane, Australia. CRPIT, *47*. Cant, T., Ed. ACS. 13-22, 2004
• Using Fuzzy Self-Organising Maps for Safety Critical Systems
  Z Kurd, T Kelly
  in Proceedings of the 23^rdInternational Conference on Computer Safety, Reliability and Security SAFECOMP2004, LNCS 3219, pp. 17–30, September 2004
• Exploiting Safety Constraints in Fuzzy Self-Organising Maps for Safety Critical Applications
  Z Kurd, T Kelly, J Austin
  in Proceedings of the Fifth International Conference on Intelligent Data Engineering and Automated Learning IDEAL 2004, LNCS 3177, pp. 266–271, 2004
• Component Failure Mitigation According to Failure Type
  F Ye, T Kelly
  in Proceedings of the 28th Annual International Computer Software and Applications Conference (COMPSAC 2004), September 2004 (Proceedings published by the IEEE Computer Society)
• Safety Tactics for Software Architecture Design
  W Wu, T Kelly
  in Proceedings of the 28th Annual International Computer Software and Applications Conference (COMPSAC 2004),September 2004 (Proceedings published by the IEEE Computer Society)
• Software in Safety Critical Systems: Achievement and Prediction
  J McDermid, T Kelly
  in Proceedings of the 5th International Conference on Control and Instrumentation in Nuclear Installations, September 2004 (Proceedings published by the Institute of Nuclear Engineers)

2003

• Managing Complex Safety Cases
  T P Kelly
  Presented at the 11^th Safety Critical Systems Symposium (SSS'03),February 2003 (Proceedings published by Springer)
• Architectural Considerations in the Certification of Modular Systems
  I J Bate, T P Kelly
  Reliability Engineering and System Safety, vol. 81, Issue 3, September 2003, Pages 303-324, Elsevier
• Developing Artificial Neural Networks for Safety Critical Applications
  Z Kurd, J Austin, T P Kelly
  in the Proceedings of Eunite'2003 - European Symposium on Intelligent Technologies, Hybrid Systems and their implementation on Smart Adaptive Systems, Oulu - Finland, July 2003 Verlag-Mainz
• Safety Case Architectures to Complement a Contract-Based Approach to Designing Safe Systems
  S Bates, I J Bate, R D Hawkins, T P Kelly, J A McDermid
  in the Proceedings of 21st International System Safety Conference, August 2003,pp182-192, proceedings published by the System Safety Society, ISBN0-9721385-2-8
• Establishing Safety Criteria for Artificial Neural Networks
  Z Kurd, T P Kelly
  in Proceedings of KES'2003 - Seventh International Conference on Knowledge-Based Intelligent Information & Engineering Systems, September2003 (Lecture Notes in Artificial Intelligence 2773 and 2774)
• Safety Lifecycle for Developing Safety-critical Artificial Neural Networks
  Z Kurd, T P Kelly
  in Proceedings of the 22^nd International Conference on Computer Safety, Reliability and Security (SAFECOMP'03), September 2003 (Springer Lecture Notes in Computer Science LNCS 2788)
• A Pragmatic Approach to Reasoning about the Assurance of Safety Arguments
  R A Weaver, J Fenn, T P Kelly
  in Proceedings of 8th Australian Workshop on Safety Critical Systems and Software (SCS'03), Canberra, Australia 2003. Published in Conferences in Researchand Practice in Information Technology Series, P. Lindsay and T. Cant (Eds.),vol.33, Australian Computer Society, 2003.

2002

• Software Safety Arguments: Towards a Systematic Categorisation of Evidence
  R A Weaver, J McDermid, T P Kelly
  Presented at the 20^th International System Safety Conference (ISSC2002), Denver, Colorado, USA, 2002, System Safety Society
• Architectural Considerations in the Certification of Modular Systems
  I J Bate, T P Kelly
  Presented at the 21^st International Conference on Computer Safety, Reliability and Security (SAFECOMP'02), September 2002 (Proceedings published by Springer in Lecture Notes in Computer Science)
• Incremental Product-line Development
  K Clegg, T P Kelly and J A McDermid
  Presented at OOPLSA 2002 Workshop: PLEES'02 - Transitioning Product Line and Component-Based Approaches to Industrial Practice (Proceedings published as Technical Report at Fraunhofer Institut Experimentelles Software Engineering No. 056.02/E)

2001

• A Systematic Approach to Safety Case Maintenance
  T P Kelly, J A McDermid
  Reliability Engineering and System Safety vol. 71 (2001) 271-284, Elsevier
• Transferring Design Research into Rolls-Royce
  S S Wiseall, J C Kelly, T P Kelly
  Presented at ICED'01 International Conference on Engineering Design, August 2001
• Deriving Safety Requirements using Scenarios
  K Allenby, T P Kelly
  Presented at the 5th IEEE International Symposium on Requirements Engineering (RE'01), proceedings published by IEEE Computer Society Press
• Use of Modern Processors in Safety Critical Applications
  I Bate, P Conmy, T Kelly, J McDermid
  The Computer Journal Vol. 44, No. 6, 2001
• Concepts and Principles of Compositional Safety Cases
  T P Kelly
  COMSA/2001/1/1 - Research Report commissioned by QinetiQ

1999

• Arguing Safety – A Systematic Approach to Safety Case Management
  T P Kelly
  DPhil Thesis, Department of Computer Science Green Report YCST 99/05
• Issues in the Conduct of Preliminary System Safety Analysis (PSSA)
  D J Pumfrey, S K Dawkins, J A McDermid, J Murdoch, T P Kelly
  Presented at the 17th International System Safety Society Conference (ISSC'99), Orlando, Florida, August 1999 (Proceedings published by the System Safety Society)
• A Systematic Approach to Safety Case Maintenance
  T P Kelly, J A McDermid
  Presented at the 18th International Conference on Computer Safety, Reliability and Security (SAFECOMP'99), Toulouse, September 1999 (Proceedings published by Springer in Lecture Notes in Computer Science 1698)

1998

• Functional Hazard Analysis for Highly Integrated Aerospace Systems
  P J Wilkinson (Rolls-Royce plc), T P Kelly
  In Proceedings of IEE Seminar on Certification of Ground / Air Systems, London, U.K., February 1998
• Safety Case Patterns - Reusing Successful Arguments
  T P Kelly, J A McDermid
  In Proceedings of IEE Colloquium on Understanding Patterns and Their Application to System Engineering, London, U.K., April 1998

1997

• Supporting the use of COTS in Safety-Critical Applications
  T P Kelly, S K Dawkins
  In Proceedings of IEE Colloquium on COTS and Safety Critical Systems, London, U.K., January 1997
• Safety Case Construction and Reuse using Patterns
  T P Kelly, J A McDermid
  In Proceedings of 16th International Conference on Computer Safety, Reliability and Security (SAFECOMP'97), September 1997, Springer
• Building a Preliminary Safety Case: An Example from Aerospace
  T P Kelly, I J Bate, J A McDermid, A Burns
  In Proceedings of the 1997 Australian Workshop on Industrial Experience with Safety Critical Systems and Software, Australian Computer Society, Sydney, Australia, October 1997
• Software Safety: by Prescription or Argument?
  T P Kelly
  In the U.K. Safety-Critical Systems Club Newsletter, December 1997

1996

• Diary of a Domain Analyst: A Domain Analysis Case-study from Avionics
  T P Kelly, W Lam and B Whittle
  In Proceedings of the IFIP Working Conference: Domain Knowledge for Interactive Systems Design, Chapman and Hall
• Technology Transfer: An Integrated 'Culture-Friendly' Approach
  I J Bate, A Burns, T O Jackson, T P Kelly, W Lam, P Tongue, J A McDermid, A L Powell, J E Smith, A J Vickers, A J Wellings, B R Whittle
  In Proceeding of ISEW'96 Workshop on Technology Transfer, Berlin, March 1996

1995

• Safety Case Development: Current Practice, Future Prospects
  S P Wilson, T P Kelly, J A McDermid
  in Proceedings of 1st ENCRESS/12th CSR Workshop, September 1995,Springer
• A Flexible Approach to Constructing Virtual Reuse Libraries
  T P Kelly, W Lam, B R Whittle
  in Proceedings of Reuse'95: Making Reuse Happen - Factors for Success
• Applying Lessons Learnt from Software Reuse to other Domains
  T P Kelly, B R Whittle
  in Proceedings of International Workshop on Software Reuse 1995 (WISR'95)
• Safety Cases for Software Application Reuse
  P Fenelon, T P Kelly, J A McDermid
  in Proceedings of the 14th International Conference on Software Safety, Reliability and Security 1995 (SAFECOMP'95), Springer
• A Pragmatic Approach to Reuse Introduction in an Industrial Setting
  B Whittle, W Lam and T P Kelly
  In Proceedings of the International Workshop on Systematic Reuse 1995
  8-9 January 1996, Liverpool, U.K., Springer