Formal Methods Industrial Use from Model to the Code
, by Boulanger, Jean-louis
- ISBN: 9781848213623 | 184821362X
- Cover: Hardcover
- Copyright: 6/18/2012
At present the literature gives students and researchers of the very general books on the formal technics. The purpose of this book is to present in a single book, a return of experience on the used of the "formal technics" (such proof and model-checking) on industrial examples for the transportation domain. This book is based on the experience of people which are completely involved in the realization and the evaluation of safety critical system software based. The implication of the industrialists allows to raise the problems of confidentiality which could appear and so allow to supply new useful information (photos, plan of architecture, real example).
Jean-Louis Boulanger is currently an Independent Safety Assessor (ISA) in the railway domain focusing on software elements. He is a specialist in the software engineering domain (requirement engineering, semi-formal and formal method, proof and model-checking). He also works as an expert for the French notified body Certifier in the field of certification of safety critical railway applications based on software (ERTMS, SCADA, automatic subway, etc.). His research interests include requirements, software verification and validation, traceability and RAMS with a special focus on SAFETY.
| Introduction | p. xi |
| From Classic Languages to Formal Methods | p. 1 |
| Introduction | p. 1 |
| Classic development | p. 2 |
| Development process | p. 2 |
| Coding | p. 6 |
| Specification and architecture | p. 18 |
| Verification and validation (V&V) | p. 27 |
| Summary | p. 33 |
| Structured, semi-formal and/or formal methods | p. 33 |
| E/E/PE system | p. 33 |
| Rail sector | p. 35 |
| Taking into account techniques and formal methods | p. 36 |
| Formal methods | p. 39 |
| Principles | p. 39 |
| Examples of formal methods | p. 39 |
| Conclusion | p. 45 |
| Bibliography | p. 49 |
| Formal Method in the Railway Sector the First Complex Application: Salet-Meteor | p. 55 |
| Introduction | p. 55 |
| About Saet-Meteor | p. 56 |
| Decomposition of the Saet-Meteor | p. 57 |
| Anticollision functions | p. 61 |
| Restrictions | p. 62 |
| The supplier realization process | p. 62 |
| Historical context | p. 62 |
| The hardware aspect | p. 64 |
| The software aspect | p. 67 |
| Assessment of the processes | p. 78 |
| Process of verification and validation set up by RATP | p. 78 |
| Context | p. 78 |
| RATP methodology | p. 79 |
| Verification carried out by RATP | p. 79 |
| Validation | p. 103 |
| Assessment of RATP activity | p. 112 |
| Assessment of the global approach | p. 114 |
| Conclusion | p. 115 |
| Appendix | p. 116 |
| Object of the track | p. 116 |
| Block logic | p. 120 |
| Bibliography | p. 122 |
| The B Method and B Tools | p. 127 |
| Introduction | p. 127 |
| The B method | p. 128 |
| The concept of abstract machines | p. 128 |
| Machines with implementations | p. 133 |
| Verification and validation (V&V) | p. 137 |
| Internal verification | p. 137 |
| B tools | p. 141 |
| General principles | p. 141 |
| Code generation | p. 142 |
| Prover | p. 142 |
| Atelier B | p. 144 |
| Methodology | p. 146 |
| Layered development | p. 146 |
| Link between the project structure and the POs | p. 148 |
| Cycle of development of a B project | p. 148 |
| Feedback | p. 150 |
| Some figures | p. 150 |
| Some users | p. 151 |
| Conclusion | p. 155 |
| Bibliography | p. 155 |
| Model-Based Design Using Simulink - Modeling, Code Generation, Verification, and Validation | p. 159 |
| Introduction | p. 159 |
| Embedded software development using Model-Based Design | p. 162 |
| Case study - an electronic throttle control system | p. 164 |
| System overview | p. 164 |
| Simulink® model | p. 164 |
| Automatic code generation | p. 169 |
| Code optimization | p. 170 |
| Fixed-point code | p. 170 |
| Including legacy code | p. 172 |
| Importing interface definitions | p. 172 |
| Importing algorithms | p. 173 |
| Verification and validation of models and generated code | p. 173 |
| Integrating verification and validation with Model-Based Design | p. 173 |
| Design verification | p. 175 |
| Reviews and static analyses at the model level | p. 175 |
| Module and integration testing at the model level | p. 175 |
| Code verification | p. 176 |
| Back-to-back comparison testing between model and code | p. 176 |
| Measures to prevent unintended functionality | p. 176 |
| Compliance with safety standards | p. 177 |
| Conclusion | p. 178 |
| Bibliography | p. 178 |
| Proving Global Properties with the Aid of the Simulink Design Verifier Proof Tool | p. 183 |
| Introduction | p. 183 |
| Formal proof or verification method | p. 184 |
| Model verification | p. 186 |
| Formal methods and proof of correction | p. 189 |
| Combining models and proof tools | p. 192 |
| Implementation of the Simulink Design Verifier tool | p. 193 |
| Reminders of the Matlab modeling and verification environment | p. 194 |
| Case study | p. 201 |
| Modeling | p. 204 |
| Modeling | p. 211 |
| Experience feedback and methodological aspects | p. 211 |
| Modeling rules and convergence control | p. 211 |
| Modular proof phase | p. 213 |
| Proof of global properties | p. 214 |
| Detection of counterexamples | p. 217 |
| Study case feedback and conclusions | p. 218 |
| Simulink Model | p. 218 |
| Proofs achieved | p. 218 |
| Incremental verification approach | p. 220 |
| Contributions of the methodology compared with the EN50128 normative referential | p. 220 |
| Bibliography | p. 222 |
| SCADE: Implementation and Applications | p. 225 |
| Introduction | p. 225 |
| Issues of embedded safety-critical software | p. 225 |
| Characteristics of embedded safety-critical software | p. 225 |
| Architecture of an embedded safety-critical application | p. 226 |
| Critically and normative requirements for embedded safety-critical applications | p. 226 |
| Complexity, cost and delays | p. 227 |
| Origins of Scade | p. 228 |
| Introduction | p. 228 |
| Initial industrial approaches | p. 228 |
| "Real-time" extensions of current languages | p. 230 |
| Synchronous formal languages dedicated to "real-time" created in laboratories | p. 230 |
| Birth of SCADE | p. 231 |
| The SCADE data-flow language | p. 231 |
| Introduction | p. 231 |
| Synchronous language | p. 232 |
| "Data-flow" functional language | p. 233 |
| Scalar data types | p. 234 |
| Structured data types | p. 235 |
| Clocks, temporal operators, and causality | p. 235 |
| Selectors | p. 237 |
| Imperative structures | p. 238 |
| Rigor and functional safety | p. 239 |
| Conclusion: extensions of languages for controllers and iterative processing | p. 240 |
| Objectives | p. 240 |
| Control flow | p. 241 |
| Iterative processing | p. 243 |
| The SCADE system | p. 246 |
| Outline of the SCADE Workbench | p. 246 |
| Model verification | p. 247 |
| Performance prediction | p. 252 |
| The qualified code generator | p. 253 |
| Application of SCADE in the aeronautical industry | p. 256 |
| History: Aérospatiale and Thales Avionique | p. 256 |
| Control/command type applications | p. 257 |
| Monitoring/alarm type applications | p. 260 |
| Navigation systems | p. 261 |
| Application of SCADE in the rail industry | p. 261 |
| First applications | p. 262 |
| Applications developed for the RATP and other French metros | p. 262 |
| Generic PAI-NG applications | p. 263 |
| Example of automated door control | p. 264 |
| Application of SCADE in the nuclear and other industries | p. 265 |
| Applications in the nuclear industry | p. 265 |
| Deployment of SCADE in the civil nuclear industry | p. 268 |
| Conclusion | p. 269 |
| Bibliography | p. 270 |
| GATeL: A V&V Platform for SCADE Models | p. 273 |
| Introduction | p. 273 |
| SCADE language | p. 275 |
| GATeL prerequisites | p. 276 |
| GATeL kernel | p. 277 |
| Example | p. 278 |
| Assistance in the design of test selection strategies | p. 279 |
| Unfolding of SCADE operators | p. 279 |
| Functional scenarios | p. 281 |
| Performances | p. 283 |
| Conclusion | p. 284 |
| Bibliography | p. 285 |
| ControlBuild, a Development Framework for Control Engineering | p. 287 |
| Introduction | p. 287 |
| Development of the control system | p. 289 |
| ERTMS | p. 290 |
| Development process equipment | p. 291 |
| A component-based approach | p. 293 |
| Development methodology | p. 294 |
| Formalisms used | p. 300 |
| Assembly editor | p. 301 |
| IEC1 131-3 languages for embedded control | p. 302 |
| Electrical schematics for conventional control | p. 309 |
| Electromechanical and physical environment | p. 311 |
| Safety arrangements | p. 311 |
| Metrics | p. 313 |
| Assertions | p. 314 |
| Automatic test procedure execution | p. 314 |
| Functional tests | p. 315 |
| Code coverage | p. 315 |
| SSIL2 code generation | p. 315 |
| Management of the project documentation | p. 316 |
| Traceability of requirements | p. 317 |
| Examples of railway use cases | p. 318 |
| Specification validation | p. 318 |
| TCMS development | p. 319 |
| Progressive integration bench - HiL | p. 320 |
| Conclusion | p. 323 |
| Bibliography | p. 323 |
| Conclusion | p. 325 |
| Introduction | p. 325 |
| Problems | p. 326 |
| Summary | p. 327 |
| Model verification | p. 327 |
| Properties and requirements | p. 328 |
| Implementation of formal methods | p. 330 |
| Implementing formal methods | p. 332 |
| Conventional process | p. 332 |
| Process accounting for formal methods | p. 333 |
| Problems | p. 335 |
| Realization of a software application | p. 337 |
| Conclusion | p. 339 |
| Bibliography | p. 340 |
| Glossary | p. 345 |
| List of Authors | p. 351 |
| Index | p. 353 |
| Table of Contents provided by Ingram. All Rights Reserved. |
What is included with this book?
The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.
The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.
Please wait while the item is added to your bag...
×
Digital License
You are licensing a digital product for a set duration. Durations are set forth in the product description, with "Lifetime" typically meaning five (5) years of online access and permanent download to a supported device. All licenses are non-transferable.
More details can be found here.