Specifying the worst case: orthogonal modeling of hardware errors

During testing, the execution of valid cases is only one part of the task. Checking the behavior in boundary situations and in the presence of errors is an equally important subject. This is especially true in embedded systems where parts of a system's function are realized by sensors and actuators, which are subject to wear and defects. As testing with the real hardware is costly and hardware defects are hard to stimulate, such tests are often performed using behavior models of the system which allow to execute the controller software against simulated hardware and environment. However, these models seldom contain possible hardware errors, as this makes the models more complex and, thus, harder to create and maintain. This paper presents a modeling technique for the description of system errors without modifying the original model. Error specifications for individual system components are modeled separately and can be used to augment the system model.

[1]  Gerard J. Holzmann,et al.  The Model Checker SPIN , 1997, IEEE Trans. Software Eng..

[2]  Thomas A. Henzinger,et al.  The theory of hybrid automata , 1996, Proceedings 11th Annual IEEE Symposium on Logic in Computer Science.

[3]  Markus Pister Integration formaler Fehlereinflussanalyse in die Funktionsentwicklung bei der Automobilindustrie , 2009 .

[4]  Manfred Broy,et al.  Specification and Development of Interactive Systems , 2001, Monographs in Computer Science.

[5]  David Harel,et al.  Statecharts: A Visual Formalism for Complex Systems , 1987, Sci. Comput. Program..

[6]  Thomas Stauner,et al.  Properties of Hybrid Systems—A Computer Science Perspective , 2004, Formal Methods Syst. Des..

[7]  Frank Ortmeier,et al.  Formal Safety Analysis of a Radio-Based Railroad Crossing Using Deductive Cause-Consequence Analysis (DCCA) , 2005, EDCC.

[8]  Max Breitling,et al.  Modeling Faults of Distributed, Reactive Systems , 2000, FTRTFT.

[9]  Olaf Müller,et al.  Functional Specification of Real-Time and Hybrid Systems , 1997, HART.

[10]  K. Echtle,et al.  A fundamental failure model for fault-tolerant protocols , 2000, Proceedings IEEE International Computer Performance and Dependability Symposium. IPDS 2000.

[11]  Fulvio Corno,et al.  System-level analysis of fault effects in an automotive environment , 2003, Proceedings 18th IEEE Symposium on Defect and Fault Tolerance in VLSI Systems.

[12]  Manfred Broy,et al.  Specification and development of interactive systems: focus on streams, interfaces, and refinement , 2001 .

[13]  Stéphane Lafortune,et al.  Diagnosability of Discrete Event Systems with Modular Structure , 2006, Discret. Event Dyn. Syst..

[14]  Peter Struss,et al.  Fault-Model-Based Test Generation for Embedded Software , 2007, IJCAI.

[15]  Manfred Broy Refinement of time , 2001, Theor. Comput. Sci..

[16]  Stéphane Lafortune,et al.  Failure diagnosis using discrete event models , 1994, Proceedings of 1994 33rd IEEE Conference on Decision and Control.

[17]  Alexander Pretschner Zum modellbasierten funktionalen Test reaktiver Systeme , 2003 .

[18]  Michael von der Beeck,et al.  A Comparison of Statecharts Variants , 1994, FTRTFT.

[19]  Pascal Raymond,et al.  The synchronous data flow programming language LUSTRE , 1991, Proc. IEEE.

[20]  Nancy A. Lynch,et al.  Hybrid I/O automata , 1995, Inf. Comput..

[21]  Peter Braun,et al.  Towards an integrated system model for testing and verification of automation machines , 2008, MiSE '08.

[22]  Benjamin Hummel,et al.  A Semantic Model for Computer-Based Spatio-temporal Systems , 2009, 2009 16th Annual IEEE International Conference and Workshop on the Engineering of Computer Based Systems.

[23]  Kenneth L. McMillan,et al.  Symbolic model checking , 1992 .

[24]  Alfredo Benso,et al.  Fault Injection Techniques and Tools for Embedded Systems , 2003 .