Formal Analysis of the Operational Concept for the Small Aircraft Transportation System

The Small Aircraft Transportation System (SATS) is a NASA project aimed at increasing access to small non-towered non-radar airports in the US. SATS is a radical new approach to air traffic management where pilots flying instrument flight rules are responsible for separation without air traffic control services. In this paper, the SATS project serves as a case study of an operational air traffic concept that has been designed and analyzed primarily using formal techniques. The SATS concept of operations is modeled using non-deterministic, asynchronous transition systems, which are then formally analyzed using state exploration techniques. The objective of the analysis is to show, in a mathematical framework, that the concept of operation complies with a set of safety requirements such as absence of dead-locks, maintaining aircraft separation, and robustness with respect to the occurrence of off-nominal events. The models also serve as design tools. Indeed, they were used to configure the nominal flight procedures and the geometry of the SATS airspace.

[1]  Brian T. Baxley,et al.  The Small Aircraft Transportation System (SATS), Higher Volume Operations (HVO) Off-Nominal Operations , 2005 .

[2]  Gianfranco Ciardo,et al.  Formal Verification of the NASA Runway Safety Monitor , 2005, Electron. Notes Theor. Comput. Sci..

[3]  Gilles Dowek,et al.  Modeling and verification of an air traffic concept of operations , 2004, ISSTA '04.

[4]  Phil Gray,et al.  Practical Experience Applying Fo rmal Method s to Air Traff ic Management Software , 2007 .

[5]  Victor Carreño,et al.  Conflict Prevention and Separation Assurance Method in the Small Aircraft Transportation System , 2005 .

[6]  Toby Walsh,et al.  Automated Deduction—CADE-11 , 1992, Lecture Notes in Computer Science.

[7]  Brian T. Baxley,et al.  The Small Aircraft Transportation System, Higher Volume Operations Off -Nominal Operations , 2005 .

[8]  David Notkin,et al.  Model checking large software specifications , 1996, SIGSOFT '96.

[9]  Mieke Massink,et al.  Modelling free flight with collision avoidance , 2001, Proceedings Seventh IEEE International Conference on Engineering of Complex Computer Systems.

[10]  Victor Carreño,et al.  Formal Verification of Conflict Detection Algorithms , 2001, CHARME.

[11]  Phil Gray,et al.  3.3.4 Practical Experience Applying Formal Methods to Air Traffic Management Software , 1998 .

[12]  Thomas A. Henzinger,et al.  HYTECH: a model checker for hybrid systems , 1997, International Journal on Software Tools for Technology Transfer.

[13]  Natarajan Shankar,et al.  PVS: A Prototype Verification System , 1992, CADE.

[14]  Nancy G. Leveson,et al.  Requirements Specification for Process-Control Systems , 1994, IEEE Trans. Software Eng..