Model Checking under Fairness in ProB and Its Application to Fair Exchange Protocols

Williams, David M.; Ruiter, Joeri de; Fokkink, Wan

doi:10.1007/978-3-642-32943-2_14

Cited by 7 publications

(6 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, the class of LTL operators that is supported by the theory also extends the LTL presented in [Gro06] and are those supported by ProB. Notably, our inclusion of the enabled operator, and its translation in Definition 7.1, (reflecting Lowe's available operator [Low08]) allows for the expression of temporal properties under various notions of fairness [Mur13,WdRF12]. The expression of fairness properties are typically required in proving pertinent liveness properties.…”

Section: Discussion and Future Workmentioning

confidence: 99%

“…Our ongoing work is combining these results with those in this paper in order to provide a cohesive process algebra underpinning for Event-B and the preservation of LTL properties. It should not be surprising that the underpinning will be in terms of the refusal traces semantic model of CSP; Definitions 6.2 and 7.1 were based on [WdRF12,Low08], which addressed the preservation of LTL properties through refusal traces refinement. (In [Low08] temporal operators were defined in terms of the set of finite and infinite refusal traces they allow.…”

Section: Discussion and Future Workmentioning

confidence: 99%

“…This definition allows us to take into account the new events that are introduced during refinement steps as required in clauses (6) and (14). It is inspired by [WdRF12] and we will reflect on this in Sect. 8.…”

Section: General Ltl Property Preservation (Excluding the Enabled Opementioning

confidence: 99%

“…This additional clause was inspired by the definition of availability in [WdRF12]. This translation clause means that the occurrence of one of the new events introduced during the refinement ( n∈N [n]) is permitted until either:…”

Section: Extending Ltl Properties To Include Enabled Eventsmentioning

confidence: 99%

See 3 more Smart Citations

Foundations for using linear temporal logic in Event-B refinement

et al. 2016

Self Cite

View full text Add to dashboard Cite

Abstract. In this paper we present a new way of reconciling Event-B refinement with linear temporal logic (LTL) properties. In particular, the results presented in this paper allow properties to be established for abstract system models, and identify conditions to ensure that the properties (suitably translated) continue to hold as those models are developed through refinement. There are several novel elements to this achievement: (1) we identify conditions that allow LTL properties to be mapped across refinement chains; (2) we provide translations of LTL predicates to reflect the introduction through refinement of new events and the renaming and splitting of existing events; (3) we do this for an extended version of LTL particularly suited to Event-B, including state predicates and enabledness of events, which can be model-checked at the abstract level. Our results are more general than any previous work in this area, covering liveness in the context of anticipated events, and relaxing constraints between adjacent refinement levels. The approach is illustrated with a case study. This enables designers to develop event based models and to consider their execution patterns so that liveness and fairness properties can be verified for Event-B systems.

show abstract

Section: Discussion and Future Workmentioning

confidence: 99%

Section: Discussion and Future Workmentioning

confidence: 99%

Section: General Ltl Property Preservation (Excluding the Enabled Opementioning

confidence: 99%

Section: Extending Ltl Properties To Include Enabled Eventsmentioning

confidence: 99%

See 2 more Smart Citations

Foundations for using linear temporal logic in Event-B refinement

et al. 2016

Self Cite

View full text Add to dashboard Cite

show abstract

“…Our notion of weak fairness will be akin to that described in Barradas and Bert in [4]. It will draw on work by Williams et al [16]. We could also consider the impact on temporal property preservation in refinement chains which do not achieve convergence of all its new events by the end.…”

Section: Discussionmentioning

confidence: 99%

Managing LTL Properties in Event-B Refinement

Schneider

Treharne

Wehrheim

et al. 2014

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Refinement in Event-B supports the development of systems via proof based step-wise refinement of events. This refinement approach ensures safety properties are preserved, but additional reasoning is required in order to establish liveness and fairness properties. In this paper we present results which allow a closer integration of two formal methods, Event-B and linear temporal logic. In particular we show how a class of temporal logic properties can carry through a refinement chain of machines. Refinement steps can include introduction of new events, event renaming and event splitting. We also identify a general liveness property that holds for the events of the initial system of a refinement chain. The approach will aid developers in enabling them to verify linear temporal logic properties at early stages of a development, knowing they will be preserved at later stages. We illustrate the results via a simple case study.

show abstract