Specification and Verification of the ATMR Protocol Using Unity. Part 1: Modeling and Specification of the Protocol

We propose a complete description and validation of the ATMR protocol within the UNITY formalism. An operational description using the UNITY programming notation is given as well as a specification of the main correctness properties in the UNITY temporal logic. This formal description helps to understand precisely the mechanisms this protocol involves. In particular, we have noted the use of a incorrect detection algorithm to generate reset slots. Nevertheless, a hand-made proof is given that shows the model satisfies the specification in spite of this spurious detection. Moreover, through this study, we apply a general development process based upon the UNITY formalism. During this process, a very important step consists in tuning a program in order to make easier the validation step, in the same way as the inclusion of traces, breakpoints, and so on prepares a program for its test.