Formal Aspects of Computing

, Volume 14, Issue 3, pp 215–227 | Cite as

A Mechanically Proved and Incremental Development of IEEE 1394 Tree Identify Protocol

  • Jean-Raymond Abrial
  • Dominique Cansell
  • Dominique Méry
Original Paper


The IEEE 1394 tree identify protocol illustrates the adequacy of the event-driven approach used together with the B Method. This approach provides a complete framework for developing mathematical models of distributed algorithms. A specific development is made of a series of more and more refined models. Each model is made of a number of static properties (the invariant) and dynamic parts (the guarded events). The internal consistency of each model as well as its correctness with regard to its previous abstraction are proved with the proof engine of Atelier B, which is the tool associated with B. In the case of IEEE 1394 tree identify protocol, the initial model is very primitive: it provides the basic properties of the graph (symmetry, acyclicity, connectivity), and its dynamic parts essentially contain a single event which elects the leader in one shot. Further refinements introduce more events, showing how each node of the graph non-deterministically participates in the leader election. At some stage in the development, message passing is introduced. This raises a specific potential contention problem, whose solution is given. The last stage of the refinement completely localises the events by making them take decisions based on local data only.

Keywords: Abstract model; B method; Event-driven approach; Proof-based development; Proof engine; Refinement 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag London Limited 2003

Authors and Affiliations

  • Jean-Raymond Abrial
    • 1
  • Dominique Cansell
    • 2
  • Dominique Méry
    • 3
  1. 1.Marseille, FranceFR
  2. 2.Université de Metz, LORIA, Metz, FranceFR
  3. 3.Université Henri Poincaré Nancy 1, LORIA, Vandœuvre-lès-Nancy, FranceFR

Personalised recommendations