Using SPIN to check Simulink Stateflow models

Verification is critical to the design of large and complex systems. SPIN is a well-known and extensively used verification tool. In this paper, we consider two tool chains, one existing, WSAT, and one introduced here, that support using SPIN to model check systems specified as Simulink Stateflow models. We present algorithms for doing the necessary translations and present empirical results that show the chain using tools introduced in this paper performs better than the one using the existing WSAT tool. We also show that these tools allow SPIN to be used for model checking nondeterministic Stateflow models in addition to deterministic ones.

[1]  Stephan Merz,et al.  Model Checking , 2000 .

[2]  Bengt Jonsson,et al.  Using SPIN to model check concurrent algorithms, using a translation from C to Promela , 2009 .

[3]  Pedro de la Cámara,et al.  Model checking software with well-defined APIs: the socket case , 2005, FMICS '05.

[4]  Diego Latella,et al.  Automatic Verification of a Behavioural Subset of UML Statechart Diagrams Using the SPIN Model-checker , 1999, Formal Aspects of Computing.

[5]  Philip Wadler,et al.  MSL — a model for W3C XML schema , 2001, WWW '01.

[6]  Xiang Fu,et al.  WSAT: A Tool for Formal Analysis of Web Services , 2004, CAV.

[7]  María-del-Mar Gallardo,et al.  Abstract Matching for Software Model Checking , 2006, SPIN.

[8]  Florian Leitner-Fischer,et al.  Evaluation of the Matlab Simulink Design Verifier versus the model checker SPIN , 2008 .

[9]  Tao Wen,et al.  Query integrity verification based-on MAC chain in cloud storage , 2014, 2014 IEEE/ACIS 13th International Conference on Computer and Information Science (ICIS).

[10]  Xiang Fu,et al.  Model checking XML manipulating software , 2004, ISSTA '04.

[11]  C. M. Sperberg-McQueen,et al.  Extensible Markup Language (XML) , 1997, World Wide Web J..

[12]  Florian Leitner Evaluation of the Matlab Simulink Design Verier versus the model checker SPIN , 2008 .

[13]  Gabor Karsai,et al.  Semantic Translation of Simulink/Stateflow Models to Hybrid Automata Using Graph Transformations , 2004, GT-VMT@ETAPS.

[14]  Christopher Preschern,et al.  On Design-time Modelling and Verification of Safety-critical Component-based Systems , 2014, Int. J. Networked Distributed Comput..

[15]  Xiang Fu,et al.  Analysis of interacting BPEL web services , 2004, WWW '04.

[16]  Mats Per Erik Heimdahl,et al.  Model-Based Safety Analysis of Simulink Models Using SCADE Design Verifier , 2005, SAFECOMP.

[17]  N. Rouquette,et al.  A Flexible Statechart-to-Model-Checker Translator , 2000 .

[18]  Gerard J. Holzmann,et al.  The SPIN Model Checker - primer and reference manual , 2003 .

[19]  Stavros Tripakis,et al.  Defining and translating a "safe" subset of simulink/stateflow into lustre , 2004, EMSOFT '04.