Dynamic analysis of SA/RT models using Spin and modular verification

This paper presents the integrated use of the Spin Model Checker in conjunction with Structured Methods (SA/RT). The graphical model is translated into a Promela program in which we prove assertions about the desired behaviour of the system. We also provide support for modular verification, by separately verifying different components of the model and deducing the desired global properties from the previous verifications. The above approach is then illustrated using a steam boiler system as a case study .

[1]  Martín Abadi,et al.  Conjoining specifications , 1995, TOPL.

[2]  Nancy A. Day,et al.  A model checker for statecharts (linking case tools with formal methods) , 1993 .

[3]  Nancy G. Leveson,et al.  Requirements Specification for Process-Control Systems , 1994, IEEE Trans. Software Eng..

[4]  Paul Ward,et al.  Structured Development for Real-Time Systems , 1986 .

[5]  Martin Peschke,et al.  Design and Validation of Computer Protocols , 2003 .

[6]  Cornelis Huizing,et al.  Semantics of reactive systems : comparison and full abstraction , 1991 .

[7]  Derek J. Hatley,et al.  Strategies for Real-Time System Specification , 1987 .

[8]  David Harel,et al.  Statecharts: A Visual Formalism for Complex Systems , 1987, Sci. Comput. Program..

[9]  Amir Pnueli,et al.  On the Formal Semantics of Statecharts (Extended Abstract) , 1987, LICS.

[10]  Javier Tuya,et al.  Using a Symbolic Model Checker for Verify Safety Properties in SA/RT Models , 1995, ESEC.

[11]  Thierry Cattel,et al.  Specifying and Verifying the Steam-Boiler Problem with SPIN , 1995, Formal Methods for Industrial Applications.

[12]  Hardi Hungar,et al.  Statecharts: Using graphical specification languages and symbolic model checking in the verification of a production cell , 1995 .

[13]  David L. Dill,et al.  Acceptance of Formal Methods : Lessons from Hardware Design , 1996 .

[14]  Robert de Simone,et al.  Compositional Semantics of ESTEREL and Verification by Compositional Reductions , 1994, CAV.

[15]  Luciano Baresi,et al.  IDERS: an integrated environment for the development of hard real-time systems , 1995, Proceedings Seventh Euromicro Workshop on Real-Time Systems.

[16]  Paul T. Ward,et al.  The transformation schema: An extension of the data flow diagram to represent control and timing , 1986, IEEE Transactions on Software Engineering.

[17]  Dino Mandrioli,et al.  Proving Properties of Real-Time Systems Through Logical Specifications and Petri Net Models , 1994, IEEE Trans. Software Eng..

[18]  Amnon Naamad,et al.  Statemate: a working environment for the development of complex reactive systems , 1988, ICSE '88.

[19]  Dan Craigen,et al.  An International Survey of Industrial Applications of Formal Methods , 1992, Z User Workshop.

[20]  Peter B. Ladkin,et al.  Implementing Message Sequence Charts in Promela , 1995 .

[21]  James C. Corbett,et al.  Evaluating Deadlock Detection Methods for Concurrent Software , 1996, IEEE Trans. Software Eng..