论文信息 - Model checking implicit-invocation systems

Model checking implicit-invocation systems

While implicit invocation (publish-subscribe) systems have good engineering properties, they are difficult to reason about and to test. Model checking such systems is an attractive alternative. However, it is not clear what kinds of state models are best suited for this. We propose a structural approach, which factors the model checking problem into two parts: behavior specific to a particular implicit invocation system, and reusable run-time infrastructure that handles event-based communication and delivery policies. The reusable portion is itself structured so that alternative run-time mechanisms may be experimented with.

David Garlan | Serge Khersonsky | D. Garlan | Serge Khersonsky

[1] William G. Griswold,et al. Adding Implicit Invocation to Languages: Three Approaches , 1993, ISOTAS.

[2] Edmund M. Clarke,et al. Formal Methods: State of the Art and Future Directions Working Group Members , 1996 .

[3] Lori A. Clarke,et al. A framework for event-based software integration , 1996, TSEM.

[4] David Garlan,et al. Reasoning about implicit invocation , 1998, SIGSOFT '98/FSE-6.

[5] Gregory D. Abowd,et al. Using style to understand descriptions of software architecture , 1993, SIGSOFT '93.

[6] David Garlan,et al. Towards a Formal Treatment of Implicit Invocation , 1997 .

[7] David Notkin,et al. Reconciling environment integration and software evolution , 1992, TSEM.

[8] Carlo Ghezzi,et al. Proceedings of the 6th international workshop on Software specification and design , 1991 .

[9] David Notkin,et al. Reconciling environment integration and component independence , 1990 .

[10] David Garlan,et al. Formalizing Design Spaces: Implicit Invocation Mechanisms , 1991, VDM Europe.