Time Properties Verification Framework for UML-MARTE Safety Critical Real-Time Systems

Time properties are key requirements for the reliability of Safety Critical Real-Time Systems (RTS). UML and MARTE are standardized modelling languages widely accepted by industrial designers for the design of RTS using Model-Driven Engineering (MDE). However, formal verification at early phases of the system lifecycle for UML-MARTE models remains mainly an open issue. In this paper, we present a time properties verification framework for UML-MARTE safety critical RTS. This framework relies on a property-driven transformation from UML architecture and behaviour models to executable and verifiable models expressed with Time Petri Nets (TPN). Meanwhile, it translates the time properties into a set of property patterns, corresponding to TPN observers. The observer-based model checking approach is then performed on the produced TPN. This verification framework can assess time properties like upper bound for loops and buffers, Best/Worst-Case Response Time, Best/Worst-Case Execution Time, Best/Worst-Case Traversal Time, schedulability, and synchronization-related properties (synchronization, coincidence, exclusion, precedence, sub-occurrence, causality). In addition, it can verify some behavioural properties like absence of deadlock or dead branches. This framework is illustrated with a representative case study. This paper also provides experimental results and evaluates the method's performance.

[1]  Benoît Combemale,et al.  A Property-Driven Approach to Formal Verification of Process Models , 2007, ICEIS.

[2]  Alexander Knapp,et al.  Model checking of UML 2.0 interactions , 2006, MoDELS'06.

[3]  Marc Pantel,et al.  Verification of Synchronization-Related Properties for UML-MARTE RTES Models with a Set of Time Constraints Dedicated Formal Semantic , 2012 .

[4]  Frédéric Mallet,et al.  Specification and verification of time requirements with CCSL and Esterel , 2009, LCTES '09.

[5]  Xavier Crégut,et al.  Time properties dedicated transformation from UML-MARTE activity to time transition system , 2012, SOEN.

[6]  P. Merlin,et al.  Recoverability of Communication Protocols - Implications of a Theoretical Study , 1976, IEEE Transactions on Communications.

[7]  Julio L. Medina Pasaje,et al.  From composable design models to schedulability analysis with UML and the UML profile for MARTE , 2011, SIGBED.

[8]  Mourad Badri,et al.  Applying Model Checking to Concurrent UML Models , 2008, J. Object Technol..

[9]  J. Javier Gutiérrez,et al.  MAST: Modeling and Analysis Suite for Real Time Applications , 2001, ECRTS.

[10]  Jochen Ludewig,et al.  Models in software engineering – an introduction , 2003, Software and Systems Modeling.

[11]  Xavier Crégut,et al.  Time Properties Dedicated Transformation from UML-MARTE Activity to Time Petri Net , 2012 .

[12]  Lionel C. Briand,et al.  A UML/MARTE Model Analysis Method for Uncovering Scenarios Leading to Starvation and Deadlocks in Concurrent Systems , 2012, IEEE Transactions on Software Engineering.

[13]  F. Vernadat,et al.  The tool TINA – Construction of abstract state spaces for petri nets and time petri nets , 2004 .

[14]  Gustavo Rau de Almeida Callou,et al.  A Methodology for Mapping SysML Activity Diagram to Time Petri Net for Requirement Validation of Embedded Real-Time Systems with Energy Constraints , 2009, 2009 Third International Conference on Digital Society.

[15]  Didier Lime,et al.  Reachability Problems and Abstract State Spaces for Time Petri Nets with Stopwatches , 2007, Discret. Event Dyn. Syst..

[16]  Johan Lilius,et al.  vUML: a tool for verifying UML models , 1999, 14th IEEE International Conference on Automated Software Engineering.