Formal Methods for Industrial Critical Systems

Volume 4916 of the series Lecture Notes in Computer Science pp 38-55

Checking the TWIN Elevator System by Translating Object-Z to SMV

  • Sören PreibuschAffiliated withGerman Institute for Economic Research
  • , Florian KammüllerAffiliated withFakultät IV: Elektrotechnik und Informatik, Technische Universität Berlin

* Final gross prices may vary according to local VAT.

Get Access


In the context of large scale industrial installations, model checking often fails to tap its full potential because of a missing link between a system’s specification and its functional and non-functional requirements, like safety. Our work bridges this gap by providing a translation from the formal specification language Object-Z to the SMV model checker input language to combine their advantages.

This paper focuses on the translation of the object-oriented features of Object-Z: operation promotion and communication between objects. We demonstrate the feasibility of our approach using the example of the TWIN Elevator system and embed the translation process in the industrial software production workflow.