Statecharts: A visual formalism for complex systems
Science of Computer Programming
Design and validation of computer protocols
Design and validation of computer protocols
Use of Common Time Base for Checkpointing and Rollback Recovery in a Distributed System
IEEE Transactions on Software Engineering
Requirements Specification for Process-Control Systems
IEEE Transactions on Software Engineering
An approach to verification and validation of a reliable multicasting protocol
ISSTA '96 Proceedings of the 1996 ACM SIGSOFT international symposium on Software testing and analysis
Elements of style: analyzing a software design feature with a counterexample detector
ISSTA '96 Proceedings of the 1996 ACM SIGSOFT international symposium on Software testing and analysis
IEEE Transactions on Software Engineering - Special issue on formal methods in software practice
Formal Methods for V&V of Partial Specifications: An Experience RSeport
RE '97 Proceedings of the 3rd IEEE International Symposium on Requirements Engineering
Tools and rules for the practicing verifier
Tools and rules for the practicing verifier
Specifying Software Requirements for Complex Systems: New Techniques and Their Application
IEEE Transactions on Software Engineering
Formalizing space shuttle software requirements: four case studies
ACM Transactions on Software Engineering and Methodology (TOSEM)
Fast formal analysis of requirements via “Topoi Diagrams”
ICSE '01 Proceedings of the 23rd International Conference on Software Engineering
"Pushbutton" Analysis Via Integration Of Industrial Tools With Formal Validation
WIFT '98 Proceedings of the Second IEEE Workshop on Industrial Strength Formal Specification Techniques
Testing Nondeterminate Systems
ISSRE '00 Proceedings of the 11th International Symposium on Software Reliability Engineering
Requirements interaction management
ACM Computing Surveys (CSUR)
V & V through Inconsistency Tracking and Analysis
IWSSD '98 Proceedings of the 9th international workshop on Software specification and design
Kalman filter recipes for real-time image processing
Real-Time Imaging - Special issue on software engineering
Verifying fault-tolerant Erlang programs
Proceedings of the 2005 ACM SIGPLAN workshop on Erlang
Parametric Analysis of an Improved Fault Tolerant System
Electronic Notes in Theoretical Computer Science (ENTCS)
Design and Verification of Fault-Tolerant Components
Methods, Models and Tools for Fault Tolerance
Model-checking for the functional safety of control component-based heterogeneous embedded systems
ETFA'09 Proceedings of the 14th IEEE international conference on Emerging technologies & factory automation
Type inference and strong static type checking for Promela
Science of Computer Programming
Bisimulation conversion and verification procedure for goal-based control systems
Formal Methods in System Design
Verification of language based fault-tolerance
EUROCAST'05 Proceedings of the 10th international conference on Computer Aided Systems Theory
On the integration of formal methods: events and Scenarios in PVS and VDM
IW-FM'99 Proceedings of the 3rd Irish conference on Formal Methods
Model checking propositional deontic temporal logic via a μ-calculus characterization
SBMF'12 Proceedings of the 15th Brazilian conference on Formal Methods: foundations and applications
Communications of the ACM
| Hi-index | 0.02 |
Model checking is shown to be an effective tool in validating the behavior of a fault tolerant embedded spacecraft controller. The case study presented here shows that by judiciously abstracting away extraneous complexity, the state space of the model could be exhaustively searched allowing critical functional requirements to be validated down to the design level. Abstracting away detail not germane to the problem of interest leaves by definition a partial specification behind. The success of this procedure shows that it is feasible to effectively validate a partial specification with this technique. Three anomalies were found in the system. One was an error in the detailed requirements, and the other two were missing/ ambiguous requirements. Because the method allows validation of partial specifications, it is also an effective approach for maintaining fidelity between a co-evolving specification and an implementation.