Modeling a landing gear system in Event-B

This article describes the Event-B modeling of a landing gear system of an aircraft whose complete description can be found in Boniol and Wiels (The Landing Gear System Case Study, ABZ Case Study, Communications in Computer Information Science, vol 433, Springer, Berlin, 2014). This real-life case study has been proposed by the ABZ’2014 track that took place in Toulouse, the European capital of the aeronautic industry. Our modeling is based on the Parnas and Madey’s 4-Variable Model that permits to consider the different parts of a system. These parts are incrementally introduced using the Event-B refinement technique. The entire development has been carried out with the Rodin toolset. To ensure the correctness of the different components, we use several verification techniques (animation, model checking and proof) depending on the complexity and the kind of the properties to verify. Basically, prior to the proof phase that can be tedious and complex, we use the animator AnimB and the model checker ProB that permit to discover some trivial inconsistencies. Once no error is reported, we start the proof phase by using the Atelier B and SMT provers which we installed on Rodin. We conclude the article by drawing up some key findings of and lessons learned from this experience.

[1]  Rajeev Alur,et al.  A Theory of Timed Automata , 1994, Theor. Comput. Sci..

[2]  Marc Frappier,et al.  Refinement patterns for ASTDs , 2013, Formal Aspects of Computing.

[3]  Myla Archer,et al.  Model-based construction and verification of critical systems using composition and partial refinement , 2010, Formal Methods Syst. Des..

[4]  Elena Troubitsyna,et al.  Supporting Reuse in Event B Development: Modularisation Approach , 2010, ASM.

[5]  Frédéric Boniol,et al.  The Landing Gear System Case Study , 2014, ABZ.

[6]  Michael J. Butler,et al.  ProB: an automated analysis toolset for the B method , 2008, International Journal on Software Tools for Technology Transfer.

[7]  Michael Butler,et al.  Specification and refinement of discrete timing properties in Event-B , 2011 .

[8]  Dominique Cansell,et al.  Time Constraint Patterns for Event B Development , 2007, B.

[9]  Jean-Raymond Abrial,et al.  Modeling in event-b - system and software engineering by Jean-Raymond Abrial , 2010, SOEN.

[10]  Michael Butler Towards a Cookbook for Modelling and Refinement of Control Problems , 2009 .

[11]  David Lorge Parnas,et al.  Functional Documents for Computer Systems , 1995, Sci. Comput. Program..

[12]  Steven P. Miller,et al.  Extending the four-variable model to bridge the system-software gap , 2001, 20th DASC. 20th Digital Avionics Systems Conference (Cat. No.01CH37219).

[13]  Jean-Raymond Abrial,et al.  The B-book - assigning programs to meanings , 1996 .

[14]  Thai Son Hoang,et al.  Development of Control Systems Guided by Models of their Environment , 2011, Electron. Notes Theor. Comput. Sci..

[15]  Bruno Dutertre,et al.  Modeling and Verification of a Fault-Tolerant Real-Time Startup Protocol Using Calendar Automata , 2004, FORMATS/FTRTFT.

[16]  Fred Kröger,et al.  Temporal Logic of Programs , 1987, EATCS Monographs on Theoretical Computer Science.

[17]  Michael Butler Using Event-B Refinement to Verify a Control Strategy , 2009 .

[18]  Edmund M. Clarke,et al.  Design and Synthesis of Synchronization Skeletons Using Branching Time Temporal Logic , 2008, 25 Years of Model Checking.

[19]  Marc Frappier,et al.  Extending statecharts with process algebra operators , 2008, Innovations in Systems and Software Engineering.

[20]  Michael J. Butler,et al.  ProB: A Model Checker for B , 2003, FME.

[21]  Thai Son Hoang,et al.  Decomposition tool for event‐B , 2011, Softw. Pract. Exp..