Software Engineering with Formal Methods: The Development of a Storm Surge Barrier Control System Revisiting Seven Myths of Formal Methods

Authors:
Jan Tretmans;Klaas Wijbrans;Michel Chaudron
Affiliations:
University of Twente, Department of Computer Science, Formal Methods and Tools Research Group, P.O. Box 217, 7500 AE Enschede, The Netherlands. tretmans@cs.utwente.nl;CMG Public Sector B.V., Division Advanced Technology, P.O. Box 187, 2501 CD The Hague, The Netherlands. klaas.wijbrans@cmg.nl;CMG Public Sector B.V., Division Advanced Technology, P.O. Box 187, 2501 CD The Hague, The Netherlands. m.r.v.chaudron@tue.nl
Venue:
Formal Methods in System Design
Year:
2001

Citing 10
Cited 6

Strategies for real-time system specification

Strategies for real-time system specification
Design and validation of computer protocols

Design and validation of computer protocols
The Z notation: a reference manual

The Z notation: a reference manual
The Model Checker SPIN

IEEE Transactions on Software Engineering - Special issue on formal methods in software practice
Software architecture in practice

Software architecture in practice
Structured Development for Real-Time Systems

Structured Development for Real-Time Systems
Seven Myths of Formal Methods

IEEE Software
Seven More Myths of Formal Methods

IEEE Software
Formal Methods in the Design of s Storm Surge Barrier Control System

Lectures on Embedded Systems, European Educational Forum, School on Embedded Systems
Formal Test Automation: A Simple Experiment

Proceedings of the IFIP TC6 12th International Workshop on Testing Communicating Systems: Method and Applications

Software Engineering with Formal Methods: Experiences with the Development of a Storm Surge Barrier Control System

FM '08 Proceedings of the 15th international symposium on Formal Methods
Formal methods: Practice and experience

ACM Computing Surveys (CSUR)
GAST: generic automated software testing

IFL'02 Proceedings of the 14th international conference on Implementation of functional languages
Balancing insight and effort: the industrial uptake of formal methods

Formal methods and hybrid real-time systems
A formal verification study on the Rotterdam storm surge barrier

ICFEM'10 Proceedings of the 12th international conference on Formal engineering methods and software engineering
Lessons learnt from the adoption of formal model-based development

NFM'12 Proceedings of the 4th international conference on NASA Formal Methods

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper discusses the use of formal methods in the development of the control system for the Maeslant Kering. The Maeslant Kering is the movable dam which has to protect Rotterdam from floodings while, at (almost) the same time, not restricting ship traffic to the port of Rotterdam. The control system, called BOS, completely autonomously decides about closing and opening of the barrier and, when necessary, also performs these tasks without human intervention. BOS is a safety-critical software system of the highest Safety Integrity Level according to IEC 61508. One of the reliability increasing techniques used during its development is formal methods. This paper reports experiences obtained from using formal methods in the development of BOS. These experiences are presented in the context of Hall's famous “Seven Myths of Formal Methods”.