Using PVS to support the analysis of distributed cognition systems

The rigorous analysis of socio-technical systems is challenging, because people are inherent parts of the system, together with devices and artefacts. In this paper, we report on the use of PVS as a way of analysing such systems in terms of distributed cognition. Distributed cognition is a conceptual framework that allows us to derive insights about plausible user trajectories in socio-technical systems by exploring what information in the environment provides resources for user action, but its application has traditionally required substantial craft skill. DiCoT adds structure and method to the analysis of socio-technical systems from a distributed cognition perspective. In this work, we demonstrate how PVS can be used with DiCoT to conduct a systematic analysis. We illustrate how a relatively simple use of PVS can help a field researcher to (i) externalise assumptions and facts, (ii) verify the consistency of the logical argument framed in the descriptions, (iii) help uncover latent situations that may warrant further investigation, and (iv) verify conjectures about potential hazards linked to the observed use of information resources. Evidence is also provided that formal methods and empirical studies are not alternative approaches for studying a socio-technical system, but that they can complement and refine each other. The combined use of PVS and DiCoT is illustrated through a case study concerning a real-world emergency medical dispatch system.

[1]  Ellen J. Bass,et al.  A Systematic Approach to Model Checking Human–Automation Interaction Using Task Analytic Models , 2011, IEEE Transactions on Systems, Man, and Cybernetics - Part A: Systems and Humans.

[2]  Ann Blandford,et al.  Modelling Distributed Cognition Systems in PVS , 2011 .

[3]  Natarajan Shankar,et al.  Evaluating, Testing, and Animating PVS Specications , 2001 .

[4]  Cinzia Bernardeschi,et al.  Analysis of Wireless Sensor Network Protocols in Dynamic Scenarios , 2009, SSS.

[5]  Ellen J. Bass,et al.  Generating phenotypical erroneous human behavior to evaluate human-automation interaction using model checking , 2012, Int. J. Hum. Comput. Stud..

[6]  Paul Curzon,et al.  Checking User-Centred Design Principles in Distributed Cognition Models: A Case Study in the Healthcare Domain , 2011, USAB.

[7]  Johanna I. Westbrook,et al.  Design, application and testing of the Work Observation Method by Activity Timing (WOMBAT) to measure clinicians' patterns of work and communication , 2009, Int. J. Medical Informatics.

[8]  Cinzia Bernardeschi,et al.  Debugging PVS specifications of control logics via event-driven simulation , 2010 .

[9]  Haiying Xu,et al.  Transformation of BPEL Processes to Petri Nets , 2008, 2008 2nd IFIP/IEEE International Symposium on Theoretical Aspects of Software Engineering.

[10]  Michael D. Harrison,et al.  Formal methods in human-computer interaction , 1990 .

[11]  K. J. Vicente,et al.  Cognitive Work Analysis: Toward Safe, Productive, and Healthy Computer-Based Work , 1999 .

[12]  Ashish Tiwari,et al.  Sal 2 , 2004, CAV.

[13]  Bob Fields,et al.  ANALYSING HUMAN-COMPUTER INTERACTION AS DISTRIBUTED COGNITION: THE RESOURCES MODEL , 1999 .

[14]  Philippe Palanque,et al.  From Formal Models to Empirical Evaluation and Back Again , 1998 .

[15]  Paul P. Maglio,et al.  On Distinguishing Epistemic from Pragmatic Action , 1994, Cogn. Sci..

[16]  Jianmin Wang,et al.  Verifying workflow processes: a transformation-based approach , 2010, Software & Systems Modeling.

[17]  Helen Sharp,et al.  The role of story cards and the wall in XP teams: a distributed cognition perspective , 2006, AGILE 2006 (AGILE'06).

[18]  Sebastián Uchitel,et al.  An Integrated Workbench for Model-Based Engineering of Service Compositions , 2010, IEEE Transactions on Services Computing.

[19]  Ellen J. Bass,et al.  Using Formal Verification to Evaluate Human-Automation Interaction: A Review , 2013, IEEE Transactions on Systems, Man, and Cybernetics: Systems.

[20]  Natarajan Shankar,et al.  PVS: Combining Specification, Proof Checking, and Model Checking , 1996, FMCAD.

[21]  Dominic Furniss,et al.  Medical equipment library design: revealing issues and best practice using DiCoT , 2012, IHI '12.

[22]  Ann Blandford,et al.  Understanding infusion administration in the ICU through Distributed Cognition , 2012, J. Biomed. Informatics.

[23]  Ann Blandford,et al.  Modelling Distributed Cognition Systems in PVS , 2011, Electron. Commun. Eur. Assoc. Softw. Sci. Technol..

[24]  Ali Movaghar,et al.  Performability modeling with stochastic activity networks , 1985 .

[25]  Edwin Hutchins How a Cockpit Remembers Its Speeds , 1995 .

[26]  Bob Fields,et al.  Distributed information resources: a new approach to interaction modelling , 1996 .

[27]  Ellen J. Bass,et al.  Formally verifying human–automation interaction as part of a system model: limitations and tradeoffs , 2010, Innovations in Systems and Software Engineering.

[28]  Cinzia Bernardeschi,et al.  Early Prototyping of Wireless Sensor Network Algorithms in PVS , 2008, SAFECOMP.

[29]  Natarajan Shankar,et al.  Principles and Pragmatics of Subtyping in PVS , 1999, WADT.

[30]  Ann Blandford,et al.  Understanding emergency medical dispatch in terms of distributed cognition: a case study , 2006, Ergonomics.

[31]  John Rushby,et al.  Using model checking to help discover mode confusions and other automation surprises , 2002, Reliab. Eng. Syst. Saf..

[32]  Robert E. Fields,et al.  Analysis of erroneous actions in the design of critical systems , 2001 .

[33]  Gavin Doherty,et al.  Distributed cognition and mobile healthcare work , 2008 .

[34]  Wang Yi,et al.  Uppaal in a nutshell , 1997, International Journal on Software Tools for Technology Transfer.

[35]  Ann Blandford,et al.  DiCoT: A Methodology for Applying Distributed Cognition to the Design of Teamworking Systems , 2005, DSV-IS.

[36]  Edwin Hutchins,et al.  How a Cockpit Remembers Its Speeds , 1995, Cogn. Sci..

[37]  Ann Blandford,et al.  Supporting Field Investigators with PVS: A Case Study in the Healthcare Domain , 2012, SERENE.

[38]  J. A. Sjogren,et al.  A PVS Graph Theory Library , 1998 .

[39]  César A. Muñoz,et al.  Rapid Prototyping in PVS , 2013 .

[40]  John M. Rushby Modeling the Human in Human Factors , 2001, SAFECOMP.

[41]  Michael D. Harrison,et al.  Using PVS to Investigate Incidents through the Lens of Distributed Cognition , 2012, NASA Formal Methods.

[42]  Dominic Furniss,et al.  Codifying distributed cognition: a case study of emergency medical dispatch , 2004 .

[43]  Karen M. Feigh,et al.  Formal Modeling and Analysis for Interactive Hybrid Systems , 2011 .