Formal Methods in the Specification of Real-Time, Safety-Critical Control Systems
An assessment of the relative merits of two formal methods in the specification of real-time, safety-critical control systems is presented. This case study was based on a simplified pollution monitoring and control sub-system for road tunnels, and the requirements were specified using TEMPURA and Z. It is concluded that TEMPURA currently offers greater potential for use in real-time systems development since it provides a means of describing dynamic, parallel processes and utilises a notation which is more accessible to the non-specialist than Z. However, further developments of Z to meet these shortcomings, or requirements for greater formality in real-time systems development, could alter the balance if the existing weaknesses of TEMPURA in areas such as structuring, proof and refinement are not addressed.
KeywordsFormal Method Ventilation System Parallel Process Concurrent Process Road Tunnel
Unable to display preview. Download preview PDF.
- Lam K. The Specification of a Real-Time System in Z. REDO Report 2487TN-PRG-1015, Oxford University Computing Laboratory, Programming Research Group, 11 Keble Road, Oxford, OX1 3QD, UK, 1989Google Scholar
- Spivey M. The Z Notation: A Reference Manual. Prentice-Hall International Series in Computer Science, 1989Google Scholar
- Pearson DW. An Investigation of Formal Methods Techniques Applied to Industrial Software Development. REDO Report 2487-TN-MA-1037, Marconi Radar & Control Systems Ltd, Scudamore Road, New Parks, Leicester, LE3 1UF, UK, 1991Google Scholar
- Conte SD, de Beer C. Elementary Numerical Analysis. McGraw-Hill, 1980Google Scholar
- Woodcock J, Loomes M. Software Engineering Mathematics. Pitman, 1988Google Scholar
- Moszkowski B. Executing Temporal Logic Programs. Cambridge University Press, 1986Google Scholar
- Valentine S. Z-, an Executable Subset of Z. Z User Workshop, York, UK, 1991Google Scholar
- Goguen JA, Winkler T. Introducing OBJ3. Technical Report SRI-CSL-88–9, Computer Science Laboratory, SRI International, 333 Ravenswood Ave, Menlow Park, CA 94025, USA, August 1988Google Scholar
- Ruddle AR. An Assessment of Two Formal Methods in the Specification of a Real-Time, Safety-Critical Control System. REDO Report 2487-TN-MA1038, Marconi Radar & Control Systems Ltd, Scudamore Road, New Parks, Leicester, LE3 1 UF, UK, 1991Google Scholar
- Manna Z, Pneuli A. How to Cook a Temporal Proof System for Your Pet Language. Proc. Symp. Principles of Programming Languages, Austin, Texas, January 1983, pp. 141–154Google Scholar
- Hoare CAR. Communicating Sequential Processes. Prentice-Hall International Series in Computer Science, 1985Google Scholar