Integrating Model Checking in an Industrial Verification Process: a Structuring Approach

An obstacle to the adoption of model-checking in large projects is a lack of guidelines on how to integrate formal methods with existing system engineering practices. In this context, a methodology should give answers to several questions: How to manage the models and abstractions used to verify a claim? How do we gain confidence on the soundness of these models? How can we build a structured argument from the verification results? In this paper , we describe a structured approach for managing verification arguments an apply it to check a critical function of an autonomous rover.

[1]  Hoyt Lougee,et al.  SOFTWARE CONSIDERATIONS IN AIRBORNE SYSTEMS AND EQUIPMENT CERTIFICATION , 2001 .

[2]  Amir Pnueli,et al.  In Transition From Global to Modular Temporal Reasoning about Programs , 1989, Logics and Models of Concurrent Systems.

[3]  Natarajan Shankar,et al.  Tool Integration with the Evidential Tool Bus , 2013, VMCAI.

[4]  Ning Ge,et al.  Industrial grade model checking: use Cases, constraints, tools and applications , 2016 .

[5]  Ewen Denney,et al.  Heterogeneous Aviation Safety Cases: Integrating the Formal and the Non-formal , 2012, 2012 IEEE 17th International Conference on Engineering of Complex Computer Systems.

[6]  Elena Troubitsyna,et al.  Linking Modelling in Event-B with Safety Cases , 2012, SERENE.

[7]  John Rushby,et al.  On the Interpretation of Assurance Case Arguments , 2015, JSAI-isAI Workshops.

[8]  K. Mani Chandy,et al.  Proofs of Networks of Processes , 1981, IEEE Transactions on Software Engineering.

[9]  Harry Foster,et al.  Applied Assertion-Based Verification: An Industry Perspective , 2009, Found. Trends Electron. Des. Autom..

[10]  Isabelle Lacaze,et al.  Airbus fly-by-wire - A total approach to dependability , 2004, IFIP Congress Topical Sessions.

[11]  Eric Jenn,et al.  An Experiment on Exploiting Virtual Platforms for the Development of Embedded Equipments , 2016 .

[12]  José Rufino,et al.  Fault-tolerant clock synchronization in CAN , 1998, Proceedings 19th IEEE Real-Time Systems Symposium (Cat. No.98CB36279).

[13]  Abhishek Datta,et al.  Formal Verification of a Public-Domain DDR2 Controller Design , 2008, 21st International Conference on VLSI Design (VLSID 2008).

[14]  Pierre Wolper,et al.  Expressing interesting properties of programs in propositional temporal logic , 1986, POPL '86.

[15]  Insup Lee,et al.  Assurance Cases in Model-Driven Development of the Pacemaker Software , 2010, ISoLA.

[16]  John M. Rushby An Evidential Tool Bus , 2005, ICFEM.

[17]  Ewen Denney,et al.  Evidence arguments for using formal methods in software certification , 2013, 2013 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW).

[18]  José Rufino,et al.  Fault-tolerant broadcasts in CAN , 1998, Digest of Papers. Twenty-Eighth Annual International Symposium on Fault-Tolerant Computing (Cat. No.98CB36224).