Correct‐by‐construction specification to verified code

Ge, Ning; Dieumegard, Arnaud; Jenn, Éric; Voisin, Laurent

doi:10.1002/smr.1959

Cited by 6 publications

(6 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We mention some recent advancements on refinement/simulation. Ge, et al [22] point out that there are two challenges when developing software systems with Even-B: (1) generating/writing executable programs based on the final Even-B models obtained by a series of refinements and (2) the proof gaps in the Event-B method and the tools, such as Rodin. To address the two challenges, they have proposed an intermediate verification language called High-Level Language (HLL ) between Event-B model and C programming language.…”

Section: Related Workmentioning

confidence: 99%

Simulation-Based Invariant Verification Technique for the OTS/CafeOBJ Method

2021

View full text Add to dashboard Cite

We demonstrate the power of the simulation-based invariant verification technique through two case studies in which it is formally verified that two mutual exclusion protocols, MCS protocol and Anderson protocol, enjoy the mutual exclusion property by the simulation-based invariant verification technique. We initially attempted formally verifying that the two protocols enjoy the property by the induction-based invariant verification technique. We successfully completed the formal proof for MCS protocol by the simulation-based invariant verification technique earlier than the one by the inductionbased invariant verification technique even though we started the latter earlier than the former. We did not successfully complete the formal proof for Anderson protocol by the induction-based invariant verification technique as of the time of this paper submission. We define a variant of simulation, "observably equivalent simulations," and prove some theorems on them to conduct the MCS case study. Given a state machine M , another state machine M constructed by introducing auxiliary variables into M observably equivalently simulates M . In this sense, M can be regarded as an abstract version of M .

show abstract

Section: Related Workmentioning

confidence: 99%

Simulation-Based Invariant Verification Technique for the OTS/CafeOBJ Method

2021

View full text Add to dashboard Cite

show abstract

“…The design and verification approach presented in this paper has been applied on the Alert Management System (AMS) used by TwIRTee, a small three-wheeled robot studied in the INGEQUIP project to experiment and evaluate methods and tools in the domain of HW/SW co-design [18] and formal verification [16] [17] [19] [20].…”

Section: The Use Casementioning

confidence: 99%

“…Another direction is to use the Event-B [24] correct by construction method. Once the final refinement of design is obtained, the verification of generated code is handled by tools such as the ones advocated in [19].…”

Section: E Code Verification Using S3mentioning

confidence: 99%

Formal development process of safety-critical embedded human machine interface systems

Dieumegard

Jenn

et al. 2017

2017 International Symposium on Theoretical Aspects of Software Engineering (TASE)

Self Cite

View full text Add to dashboard Cite

show abstract

“…A predicate expression is evaluated to be true or false in B0 as branching conditions of if substitutions or in while loops. Except for division, the translation of B expressions and B predicates is straightforward because HLL provides the same quantifiers as B [15].…”

Section: Contextmentioning

confidence: 99%

“…In Singh et al [14], a tool supported code generator, namely EB2ALL, producing source code in many programming languages from verified Event-B specifications is described. Following similar principles, Ge et al [15] have proposed an approach for translating Event-B models into HLL models. In fact, the main objective of this work is to produce C code from Event-B specification using an intermediate HLL representation.…”

Section: State Of the Artmentioning

confidence: 99%

B-PERFect

Halchin¹,

Feliachi²,

Singh³

et al. 2017

Reliability, Safety, and Security of Railway Systems. Modelling, Analysis, Verification, and Certification

View full text Add to dashboard Cite

An independent safety assessment of railway software systems is performed by RATP (Régie Autonome des Transports Parisiens) for all safety-critical systems before their deployment in its network. Whenever possible, this activity is performed using the PERF approach (Proof Executed over a Retro-engineered Formal model). PERF is a methodology which handles formal verification of already developed software. This approach is applied to a variety of software systems, developed using languages such as SCADE, Ada or C. It provides an alternative verification that can be applied for the independent safety assessment of critical systems used by RATP. In this paper, we propose the B-PERFect method to generalize the application of the PERF approach for critical systems which are based on the B method. In particular, this paper focuses on transformation strategy from B language to the pivot language of PERF: HLL. HLL is a synchronous data-flow language equipped with formal verification techniques. The differences between B and HLL are pointed out and the translation process is presented in this regard.

show abstract

Correct‐by‐construction specification to verified code

Cited by 6 publications

References 24 publications

Simulation-Based Invariant Verification Technique for the OTS/CafeOBJ Method

Simulation-Based Invariant Verification Technique for the OTS/CafeOBJ Method

Formal development process of safety-critical embedded human machine interface systems

B-PERFect

Contact Info

Product

Resources

About