Proving system properties by means of trigger-graph and Petri nets
The formal description of hardware protocols allows system engineers to check these protocols for some important properties, such as completeness and consistency. In this paper, a methodology called trigger graph is introduced. It uses a notation that is similar to timing diagrams, but it strictly avoids their disadvantage of being ambiguous. In addition, the exact mathematical notation of the trigger graph gives the possibility to transform it into Petri nets. This gives the benefit to use methods developed for Petri nets also for the check of hardware protocols, for example to check them for security conditions. The trigger graph methodology is illustrated with three realistic examples: the control of traffic lights, the control of a railway-barrier, and the read-protocol for a DRAM.
Key WordsFormal description verification hardware protocol bus protocol timing diagram trigger graph Petri nets
Unable to display preview. Download preview PDF.
- André, C.: Delays in Synchronized Elementary Net Systems. In: Rozenberg, G.; Goos, G.; Hartmanis, J. (Eds.): Advance in Petri Nets, 1991, LNCS, Vol. 524. Springer-Verlag: Berlin 1991, pp. 1–28Google Scholar
- Thurner, E.M.; Wincheringer, C.: TOMSPIN — A Tool for Modelling With Stochastic Petri Nets. Proceedings EUROCAST '95Google Scholar
- Leveson, N. G.; Stolzy, J. L.: Safety Analysis Using Petri Nets. IEEE Trans. Software Engineering, Vol. SE-13, No. 3, March 1987, pp. 386–397Google Scholar
- Reisig, W.: Petrinetze. Eine Einführung. Springer-Verlag: Berlin 21986Google Scholar
- Toshiba: Databook MOS Memory (DRAM). Tokyo, Jan. 1993Google Scholar