CSP theorems for communicating B machines

Schneider, Steve; Treharne, Helen

doi:10.1007/s00165-005-0076-7

Cited by 69 publications

(89 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…An abstract B+CSP specification cannot currently be refined and decomposed into a distributed system. In [29], an approach for composing combined B and CSP specifications-CSP B-is presented. Work is in progress on practically applying a similar composition technique for B+CSP.…”

Section: Discussionmentioning

confidence: 99%

Java implementation platform for the integrated state‐ and event‐based specification in PROB

Yang

Poppleton

2010

Concurrency and Computation

View full text Add to dashboard Cite

SUMMARYPROB is an animation and model checking tool, which supports integrated event-and state-based specifications combining B and CSP. We present an initial strategy for implementing the combined specification model as a concurrent Java program. Our Java implementation for the combined B and CSP model uses a similar approach to that of JCSP. The restricted operational semantics for the integrated B and CSP model in PROB is defined. Then a new Java package, JCSProB, is developed for implementing the semantics. The new package supports external choice with multi-way synchronization, and introduces an improved multi-threading implementation from JCSP.

show abstract

Section: Discussionmentioning

confidence: 99%

Java implementation platform for the integrated state‐ and event‐based specification in PROB

Yang

Poppleton

2010

Concurrency and Computation

View full text Add to dashboard Cite

show abstract

“…The angelic has, however, been advocated in the context of integrating formal methods. For example, Treharne and Schneider argue in [41] that the angelic model is more natural when CSP controllers are combined with B components in integrations of CSP and B. In particular, the CSP acts as a non-discriminating controller which cannot block on the values that the B component provides.…”

Section: Discussionmentioning

confidence: 99%

Relational concurrent refinement part II: Internal operations and outputs

2009

View full text Add to dashboard Cite

Abstract. Two styles of description arise naturally in formal specification: state-based and behavioural. In state-based notations, a system is characterised by a collection of variables, and their values determine which actions may occur throughout a system history. Behavioural specifications describe the chronologies of actions -interactions between a system and its environment. The exact nature of such interactions is captured in a variety of semantic models with corresponding notions of refinement; refinement in state based systems is based on the semantics of sequential programs and is modelled relationally. Acknowledging that these viewpoints are complementary, substantial research has gone into combining the paradigms. The purpose of this paper is to do three things. First, we survey recent results linking the relational model of refinement to the process algebraic models. Specifically, we detail how variations in the relational framework lead to relational data refinement being in correspondence with traces-divergences, singleton failures and failures-divergences refinement in a process semantics. Second, we generalise these results by providing a general flexible scheme for incorporating the two main "erroneous" concurrent behaviours: deadlock and divergence, into relational refinement. This is shown to subsume previous characterisations. In doing this we derive relational refinement rules for specifications containing both internal operations and outputs that corresponds to failures-divergences refinement. Thirdly, the theory has been formally specified and verified using the interactive theorem prover KIV.

show abstract

“…These lead to two further safety properties, namely: -"no train on a route with a green signal" -this encodes the check that the route path of the clear table covers all detection sections between two marker boards; and -"no deviation from the designated route" -this encodes the check that all points on a route path are in the right position to guide the train from the start marker board to the end marker board of a route. Specification Language for the system model is CSP||B [22], a combination of the process algebra CSP and the B specification language that allows for a combination of event-based and state-based modelling. We use event-based modelling to capture state changes, e.g., a train moves from one track to the other is represented as move.A.B; we use state-based modelling to represent the rules that guide the behaviour of the interlocking, e.g., the conditions under which a route can be set or cancelled.…”

Section: Surrey/swansea Specialitiesmentioning

confidence: 99%

Comparing Formal Verification Approaches of Interlocking Systems

Haxthausen

Nguyen

Roggenbach

2016

Reliability, Safety, and Security of Railway Systems. Modelling, Analysis, Verification, and Certification

View full text Add to dashboard Cite

Abstract. The verification of railway interlocking systems is a challenging task, and therefore several research groups have suggested to improve this task by using formal methods, but they use different modelling and verification approaches. To advance this research, there is a need to compare these approaches. As a first step towards this, in this paper we suggest a way to compare different formal approaches for verifying designs of route-based interlocking systems and we demonstrate it on modelling and verification approaches developed within the research groups at DTU/Bremen and at Surrey/Swansea. The focus is on designs that are specified by so-called control tables. The paper can serve as a starting point for further comparative studies.

show abstract

CSP theorems for communicating B machines

Cited by 69 publications

References 3 publications

Java implementation platform for the integrated state‐ and event‐based specification in PROB

Java implementation platform for the integrated state‐ and event‐based specification in PROB

Relational concurrent refinement part II: Internal operations and outputs

Comparing Formal Verification Approaches of Interlocking Systems

Contact Info

Product

Resources

About