Skip to main content
SpringerLink
Log in

Verifying the Safety of a Flight-Critical System

  • Conference paper
Book cover FM 2015: Formal Methods (FM 2015)

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 9109))

Included in the following conference series:

Abstract

This paper describes our work on demonstrating verification technologies on a flight-critical system of realistic functionality, size, and complexity. Our work targeted a commercial aircraft control system named Transport Class Model (TCM), and involved several stages: formalizing and disambiguating requirements in collaboration with domain experts; processing models for their use by formal verification tools; applying compositional techniques at the architectural and component level to scale verification. Performed in the context of a major NASA milestone, this study of formal verification in practice is one of the most challenging that our group has performed.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bouissou, O., Conquet, E., Cousot, P., Cousot, R., Feret, J., Ghorbal, K., Goubault, E., Lesens, D., Mauborgne, L., Miné, A., Putot, S., Rival, X., Turin, M.: Space software validation using abstract interpretation. In: Proc. of the Int. Space System Engineering Conf., Data Systems in Aerospace, vol. SP-669, pp. 1–7. ESA (2009)

    Google Scholar 

  2. Bradley, A.R.: SAT-based model checking without unrolling. In: Jhala, R., Schmidt, D. (eds.) VMCAI 2011. LNCS, vol. 6538, pp. 70–87. Springer, Heidelberg (2011)

    Chapter  Google Scholar 

  3. Brat, G.P., Drusinsky, D., Giannakopoulou, D., Goldberg, A., Havelund, K., Lowry, M.R., Pasareanu, C.S., Venet, A., Visser, W., Washington, R.: Experimental evaluation of verification and validation tools on Martian rover software. Formal Methods in System Design 25(2-3), 167–198 (2004)

    Article  MATH  Google Scholar 

  4. Caspi, P., Pilaud, D., Halbwachs, N., Plaice, J.A.: Lustre: a declarative language for real-time programming. In: Proceedings of the 14th ACM SIGACT-SIGPLAN Symposium on Principles of Programming Languages, POPL 1987, pp. 178–188. ACM (1987)

    Google Scholar 

  5. Cofer, D., Gacek, A., Miller, S., Whalen, M., LaValley, B., Sha, L.: Compositional verification of architectural models. In: Goodloe, A., Person, S. (eds.) NFM 2012. LNCS, vol. 7226, pp. 126–140. Springer, Heidelberg (2012)

    Chapter  Google Scholar 

  6. Denney, E., Pai, G., Pohl, J.: AdvoCATE: An assurance case automation toolset. In: SAFECOMP Workshops, pp. 8–21 (2012)

    Google Scholar 

  7. Dieumegard, A., Garoche, P.-L., Kahsai, T., Taillar, A., Thirioux, X.: Compilation of synchronous observers as code contracts. In: The 30th ACM/SIGAPP Symposium on Applied Computing (2015)

    Google Scholar 

  8. Esteve, M., Katoen, J., Nguyen, V.Y., Postma, B., Yushtein, Y.: Formal correctness, safety, dependability, and performance analysis of a satellite. In: 34th International Conference on Software Engineering, ICSE 2012, pp. 1022–1031 (2012)

    Google Scholar 

  9. Federal Aviation Administration. Electronic code of federal regulations

    Google Scholar 

  10. Galdino, A.L., Muñoz, C., Ayala-Rincón, M.: Formal verification of an optimal air traffic conflict resolution and recovery algorithm. In: Leivant, D., de Queiroz, R. (eds.) WoLLIC 2007. LNCS, vol. 4576, pp. 177–188. Springer, Heidelberg (2007)

    Chapter  Google Scholar 

  11. Garavel, H., Graf, S.: Formal methods for safe and secure computer systems. Technical Report BSI-Study 875, Bundesamt fuer Sicherheit in Informationstechnik (December 2013)

    Google Scholar 

  12. Garoche, P.-L., Kahsai, T., Tinelli, C.: Incremental invariant generation using logic-based automatic abstract transformers. In: Brat, G., Rungta, N., Venet, A. (eds.) NFM 2013. LNCS, vol. 7871, pp. 139–154. Springer, Heidelberg (2013)

    Chapter  Google Scholar 

  13. Giannakopoulou, D., Bushnell, D.H., Schumann, J., Erzberger, H., Heere, K.: Formal testing for separation assurance. Ann. Math. Artif. Intell. 63(1), 5–30 (2011)

    Article  MATH  Google Scholar 

  14. Giannakopoulou, D., Howar, F., Isberner, M., Lauderdale, T., Rakamaric, Z., Raman, V.: Taming test inputs for separation assurance. In: 19th IEEE/ACM International Conference on Automated Software Engineering (ASE 2014) (2014)

    Google Scholar 

  15. Halbwachs, N., Caspi, P., Raymond, P., Pilaud, D.: The synchronous dataflow programming language Lustre. In: Proceedings of the IEEE, pp. 1305–1320 (1991)

    Google Scholar 

  16. Halbwachs, N., Lagnier, F., Raymond, P.: Synchronous observers and the verification of reactive systems. In: AMAST, pp. 83–96 (1993)

    Google Scholar 

  17. Hoder, K., Bjørner, N.: Generalized property directed reachability. In: Cimatti, A., Sebastiani, R. (eds.) SAT 2012. LNCS, vol. 7317, pp. 157–171. Springer, Heidelberg (2012)

    Chapter  Google Scholar 

  18. Howar, F., Giannakopoulou, D., Rakamaric, Z.: Hybrid learning: interface generation through static, dynamic, and symbolic analysis. In: International Symposium on Software Testing and Analysis, ISSTA, pp. 268–279 (2013)

    Google Scholar 

  19. Hueschen, R.M.: Development of the Transport Class Model (TCM) aircraft simulation from a sub-scale Generic Transport Model (GTM) simulation. Technical report, NASA, Langley Research Center, Hampton, VA (August 2011)

    Google Scholar 

  20. Kahsai, T., Ge, Y., Tinelli, C.: Instantiation-based invariant discovery. In: Bobaru, M., Havelund, K., Holzmann, G.J., Joshi, R. (eds.) NFM 2011. LNCS, vol. 6617, pp. 192–206. Springer, Heidelberg (2011)

    Chapter  Google Scholar 

  21. Kahsai, T., Tinelli, C.: PKIND: a parallel k-induction based model checker. In: PDMC. EPTCS. EPTCS, vol. 72, pp. 55–62 (2011)

    Google Scholar 

  22. Lyapunov, A.: General problem of the stability of motion. PhD thesis, Univ. Kharkov (1892)

    Google Scholar 

  23. Miller, S.P., Whalen, M.W., Cofer, D.D.: Software model checking takes off. Commun. ACM 53(2), 58–64 (2010)

    Article  Google Scholar 

  24. Platzer, A., Clarke, E.M.: Formal verification of curved flight collision avoidance maneuvers: A case study. In: Cavalcanti, A., Dams, D. (eds.) FM 2009. LNCS, vol. 5850, pp. 547–562. Springer, Heidelberg (2009)

    Chapter  Google Scholar 

  25. Rushby, J.: The versatile synchronous observer. In: Gheyi, R., Naumann, D. (eds.) SBMF 2012. LNCS, vol. 7498, pp. 1–1. Springer, Heidelberg (2012)

    Chapter  Google Scholar 

  26. SmartCockpit. B737 automatic flight systems summary

    Google Scholar 

  27. Souyris, J., Delmas, D.: Experimental assessment of Astrée on safety-critical avionics software. In: Saglietti, F., Oster, N. (eds.) SAFECOMP 2007. LNCS, vol. 4680, pp. 479–490. Springer, Heidelberg (2007)

    Chapter  Google Scholar 

  28. Toom, A., Izerrouken, N., Naks, T., Pantel, M., Ssi-Yan-Kai, O.: Towards reliable code generation with an open tool: Evolutions of the Gene-Auto toolset. In: ERTS. Société des Ingénieurs de l’Automobile (2010), http://www.sia.fr

  29. von Essen, C., Giannakopoulou, D.: Analyzing the next generation airborne collision avoidance system. In: Ábrahám, E., Havelund, K. (eds.) TACAS 2014. LNCS, vol. 8413, pp. 620–635. Springer, Heidelberg (2014)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Carnegie Mellon University, Pittsburgh, USA

    Guillaume Brat & Temesghen Kahsai

  2. AerospaceComputing, Mountain View, USA

    David Bushnell

  3. NASA Ames, Mountain View, USA

    Misty Davies & Dimitra Giannakopoulou

  4. IPSSE, TU Clausthal, Clausthal-Zellerfeld, Germany

    Falk Howar

Authors
  1. Guillaume Brat
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. David Bushnell
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Misty Davies
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Dimitra Giannakopoulou
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Falk Howar
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Temesghen Kahsai
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Microsoft Research, Redmond, Washington, USA

    Nikolaj Bjørner

  2. Centrum voor Wiskunde en Informatica, Amsterdam, The Netherlands

    Frank de Boer

Rights and permissions

Reprints and permissions

Copyright information

© 2015 Springer International Publishing Switzerland

About this paper

Cite this paper

Brat, G., Bushnell, D., Davies, M., Giannakopoulou, D., Howar, F., Kahsai, T. (2015). Verifying the Safety of a Flight-Critical System. In: Bjørner, N., de Boer, F. (eds) FM 2015: Formal Methods. FM 2015. Lecture Notes in Computer Science(), vol 9109. Springer, Cham. https://doi.org/10.1007/978-3-319-19249-9_20

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-19249-9_20

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-19248-2

  • Online ISBN: 978-3-319-19249-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation