The High Road to Formal Validation: Model Checking High-Level versus Low-Level Specifications
نویسنده
چکیده
In this paper we examine the difference between model checking high-level and low-level models. In particular, we compare the ProB model checker for the B-method and the SPIN model checker for Promela. While SPIN has a dramatically more efficient model checking engine, we show that in practice the performance can be disappointing compared to model checking high-level specifications with ProB. We investigate the reasons for this behaviour, examining expressivity, granularity and SPIN’s search algorithms. We also show that certain types of information (such as symmetry) can be more easily inferred and exploited in highlevel models, leading to a considerable reduction in model checking time.
منابع مشابه
Formal Equivalence Checking of Software Specifications
Ever-growing complexity is forcing logic design to move above the register transfer level (RTL). For example, functional specifications are being written in software. These specifications are written for clarity, and are not optimized or intended for synthesis. Since the software is the target of functional validation, equivalence verification between the software specification and the RTL impl...
متن کاملFormal Specification and Verification of a Coordination Protocol for an Automated Air Traffic Control System
Safe separation between aircraft is the primary consideration in air traffic control. To achieve the required level of assurance for this safety-critical application, the Automated Airspace Concept (AAC) proposes three levels of conflict detection and resolution. Recently, a high-level operational concept was proposed to define the cooperation between components in the AAC. However, the propose...
متن کاملAlgorithms for Autonomous Urban Navigation with Formal Specifications
This thesis addresses problems in planning and control of autonomous agents. The central theme of this work is that integration of “low-level control synthesis” and “high-level decision making” is essential to devise robust algorithms with provable guarantees on performance. We pursue two main directions here. The first part considers planning and control algorithms that satisfy temporal specif...
متن کاملAdding Formal Specifications to Requirements Patterns∗
Embedded systems usually must achieve a higher level of robustness and reliability because they control real-world physical processes or devices upon which we depend, frequently, in a critical way. Consequently, methods for modeling and developing embedded systems and rigorously verifying behavior before committing to code are increasingly important. In order to use object-oriented development ...
متن کاملHigh-Level versus Low-Level Specifications: Comparing B with Promela and ProB with Spin
During previous teaching and research experience, we have accumulated anecdotal evidence that using a high-level formalism such as B can be much more productive than using a low-level formalism such as Promela. Furthermore, quite surprisingly, it turned out that the use of a high-level model checker such as ProB was much more effective in practice than using a very efficient model checker such ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2008