2.2.3 Controlling interactions between components

Contextual description: Multiple components will often be required in order to implement the safety requirements. Although individual components may meet their requirements, it may still be possible for unsafe behaviour to emerge due to the interactions between those components. It is therefore required to provide sufficient confidence that potentially unsafe interactions between components have been identified and mitigated. Mitigation may require additional safety requirements to be derived and implemented.

Approaches for demonstration:  To be determined.