Managing LTL Properties in Event-B Refinement
Refinement in Event-B supports the development of systems via proof based step-wise refinement of events. This refinement approach ensures safety properties are preserved, but additional reasoning is required in order to establish liveness and fairness properties.In this paper we present results which allow a closer integration of two formal methods, Event-B and linear temporal logic. In particular we show how a class of temporal logic properties can carry through a refinement chain of machines. Refinement steps can include introduction of new events, event renaming and event splitting. We also identify a general liveness property that holds for the events of the initial system of a refinement chain. The approach will aid developers in enabling them to verify linear temporal logic properties at early stages of a development, knowing they will be preserved at later stages. We illustrate the results via a simple case study.
KeywordsModel Check Linear Temporal Logic Proof Obligation Anticipate Event Liveness Property
Unable to display preview. Download preview PDF.
- 1.Abrial, J.-R.: Modeling in Event-B: System and Software Engineering. Cambridge University Press (2010)Google Scholar
- 3.Abrial, J.-R., Mussat, L.: Introducing dynamic constraints in B. In: Bert, D. (ed.) B 1998. LNCS, vol. 1393, pp. 83–128. Springer, Heidelberg (1998)Google Scholar
- 6.Butler, M.J.: A CSP approach to Action Systems. DPhil thesis, Oxford U. (1992)Google Scholar
- 8.Groslambert, J.: Verification of LTL on B Event Systems. In: Julliand, J., Kouchnarenko, O. (eds.) B 2007. LNCS, vol. 4355, pp. 109–124. Springer, Heidelberg (2006)Google Scholar
- 13.Morgan, C.: Of wp and CSP. Beauty is our business: a birthday salute to E. W. Dijkstra, pp. 319–326 (1990)Google Scholar
- 16.Schneider, S., Treharne, H., Wehrheim, H., Williams, D.: Managing LTL properties in Event-B refinement. arXiv:1406:6622 (June 2014)Google Scholar