Patterns for generating a layered architecture
Pattern languages of program design
Completeness and Consistency in Hierarchical State-Based Requirements
IEEE Transactions on Software Engineering - Special issue: best papers of the 17th International Conference on Software Engineering (ICSE-17)
An Introduction to Requirements Capture Using PVS: Specification of a Simple Autopilot
An Introduction to Requirements Capture Using PVS: Specification of a Simple Autopilot
Fault Tolerance in a Layered Architecture: A General Specification Pattern in B
SEFM '04 Proceedings of the Software Engineering and Formal Methods, Second International Conference
Modal Systems: Specification, Refinement and Realisation
ICFEM '09 Proceedings of the 11th International Conference on Formal Engineering Methods: Formal Methods and Software Engineering
Supporting reuse in event b development: modularisation approach
ABZ'10 Proceedings of the Second international conference on Abstract State Machines, Alloy, B and Z
On fault tolerance reuse during refinement
Proceedings of the 2nd International Workshop on Software Engineering for Resilient Systems
Developing mode-rich satellite software by refinement in event B
FMICS'10 Proceedings of the 15th international conference on Formal methods for industrial critical systems
A symbolic model checking approach to verifying satellite onboard software
Science of Computer Programming
Hi-index | 0.00 |
Space satellites are examples of complex embedded systems. Dynamic behaviour of such systems is typically described in terms of operational modes that correspond to the different stages of a mission and states of the components. Components are susceptible to various faults that complicate the mode transition scheme. Yet the success of a mission depends on the correct implementation of mode changes. In this paper we propose a formal approach that ensures consistency of mode changes while developing a system architecture by refinement. The approach relies on recursive application of modelling and refinement patterns that enforce correctness while implementing the mode transition scheme. The proposed approach is exemplified by the development of an Attitude and Orbit Control System undertaken within the ICT DEPLOY project.