Transformational approaches to the specification and verification of fault-tolerant systems: Formal background and classification

Journal of Universal Computer Science

Volumn 5, Issue 10, 1999, Pages 668-692

  Gärtner, Felix C ^a  

^a DARMSTADT UNIVERSITY OF TECHNOLOGY   (Germany)

Author keywords

Failure model; Fault model; Fault tolerance; Specification; Transformation; Verification

Indexed keywords

EID: 0013036571     PISSN: 0958695X     EISSN: None     Source Type: Journal    
DOI: None     Document Type: Article

References (65)

1. M. Abadi and L. Lamport. The existence of refinement mappings. Theoretical Computer Science, 82(2):253-284, May 1991.
2. M. Abadi and L. Lamport. Composing specifications. ACM Transactions on Programming Languages and Systems, 15(1):73-132, Jan. 1993.
3. M. K. Aguilera, W. Chen, and S. Toueg. Heartbeat: a timeout-free failure detector for quiescent reliable communication. In Proceedings of the 11th International Workshop on Distributed Algorithms (WDAG97), pages 126-140, Sept. 1997.
4. A. Arora, P. C. Attie, and E. A. Emerson. Synthesis of fault-tolerant concurrent programs. In Proceedings of the 17th Annual ACM Symposium on Principles of Distributed Computing (PODC'98), pages 173-182, 1998.
5. A. Arora and M. Gouda. Closure and convergence: A foundation of fault-tolerant computing. IEEE Transactions on Software Engineering, 19(11):1015-1027, 1993.
6. A. Arora and S. Kulkarni. Detectors and correctors: A theory of fault-tolerance components. In Proceedings of the 18th IEEE International Conference on Distributed Computing Systems (ICDCS98), May 1998.
7. A. Arora and S. S. Kulkarni. Component based design of multitolerant systems. IEEE Transactions on Software Engineering, 24(1):63-78, Jan. 1998.
8. A. Arora and S. S. Kulkarni. Designing masking fault tolerance via nonmasking fault tolerance. IEEE Transactions on Software Engineering, 24(6), June 1998.
9. Ö. Babaoǧlu and K. Marzullo. Consistent global states of distributed systems: Fundamental concepts and mechanisms. In S. Mullender, editor, Distributed Systems, chapter 4, pages 55-96. Addison-Wesley, second edition, 1993.
10. K. M. Chandy and J. Misra. Parallel Program Design: A Foundation. Addison-Wesley, Reading, Mass., 1988.
11. F. Cristian. A rigorous approach to fault-tolerant programming. IEEE Transactions on Software Engineering, 11(1):23-31, Jan. 1985.
12. F. Cristian. Understanding fault-tolerant distributed systems. Communications of the ACM, 34(2):56-78, Feb. 1991.
13. E. W. Dijkstra. Guarded commands, nondeterminacy, and formal derivation of programs. Communications of the ACM, 18(8):453-457, Aug. 1975.
14. K. Echtle. Fehlermodellierung bei Simulation und Verifikation von Fehlertoleranz-Algorithmen für Verteilte Systeme. In F. Belli, S. Pfleger, and M. Seifert, editors, Software-Fehlertoleranz und -Zuverlässigkeit, number 83 in Informatik-Fachberichte, pages 73-88. Springer-Verlag, 1984.
15. K. Echtle and M. Leu. Test of fault tolerant distributed systems by fault injection. In D. Pradhan and D. Avresky, editors, Fault-Tolerant Parallel and Distributed Systems, pages 244-251. IEEE Computer Society Press, 1995.
16. K. Echtle and J. G. Silva. Fehlerinjektion - ein Mittel zur Bewertung der Maßnahmen gegen Fehler in komplexen Rechnersystemen. Informatik Spektrum, 21(6):328-336, Dec. 1998.
17. F. C. Gärtner. Specifications for fault tolerance: A comedy of failures. Technical Report TUD-BS-1998-03, Darmstadt University of Technology, Darmstadt, Germany, Oct. 1998.
18. F. C. Gärtner. An exercise in systematically deriving fault-tolerance specifications. In Proceedings of the Third European Research Seminar on Advances in Distributed Systems (ERSADS), Madeira Island, Portugal, Apr. 1999.
19. F. C. Gärtner. Fundamentals of fault-tolerant distributed computing in asynchronous environments. ACM Computing Surveys, 31(1):1-26, Mar. 1999.
20. C. Girault. Proof of protocols in the case of failures. In J. Evans, editor, Parallel processing systems. An advanced course, pages 121-139. Cambridge University Press, 1982.
21. V. Hadzilacos and S. Toueg. A modular approach to fault-tolerant broadcasts and related problems. Technical Report TR94-1425, Cornell University, Computer Science Department, May 1994.
22. W. L. Heimerdinger and C. B. Weinstock. A conceptual framework for system fault tolerance. Technical Report CMU/SEI-92-TR-33, Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, Oct. 1992.
23. M. P. Herlihy and J. M. Wing. Reasoning about atomic objects. In M. Joseph, editor, Proceedings of the Symposium on Formal Techniques in Real-Time and Fault-Tolerant Systems, volume 331 of Lecture Notes in Computer Science, pages 193-208. Springer-Verlag, Sept. 1988.
24. M. P. Herlihy and J. M. Wing. Specifying graceful degradation. IEEE Transactions on Parallel and Distributed Systems, 2(1):93-104, Jan. 1991.
25. C. A. R. Hoare. Communicating Sequential Processes. Prentice-Hall, 1985.
26. M.-C. Hsueh, T. K. Tsai, and R. K. Iyer. Fault injection techniques and tools. IEEE Computer, 30(4):75-82, Apr. 1997.
27. D. Hutter, H. Mantel, G. Rock, W. Stephan, A. Wolpers, M. Balser, W. Reif, G. Schellhorn, and K. Stenzel. VSE: Controlling the complexity in formal software developments. In Proceedings of the International Workshop on Applied Formal Methods, Boppard, Germany, 1998.
28. P. Jalote. Fault tolerance in distributed systems. Prentice-Hall, Englewood Cliffs, NJ, USA, 1994.
29. T. Janowski. Bisimulation and Fault-Tolerance. Thesis, Department of Computer Science, University of Warwick, Coventry, UK, February 1996. Also University of Warwick Department of Computer Science Research Report CS-RR-300.
30. M. Joseph, A. Moitra, and N. Soundararajan. Proof rules for fault tolerant distributed programs. Science of Computer Programming, 8(1):43-67, Feb. 1987.
31. S. Katz and K. J. Perry. Self-stabilizing extensions for message-passing systems. Distributed Computing, 7:17-26, 1993.
32. S. S. Kulkarni and A. Arora. Compositional design of multitolerant repetitive Byzantine agreement. In Proceedings of the 18th International Conference on the Foundations of Software Technology and Theoretical Computer Science, Kharagpur, India, 1997.
33. L. Lamport. A simple approach to specifying concurrent systems. Communications of the ACM, 32(1):32-45, Jan. 1989.
34. L. Lamport. The Temporal Logic of Actions. ACM Transactions on Programming Languages and Systems, 16(3):872-923, May 1994.
35. L. Lamport. How to write a proof. American Mathematical Monthly, 102(7):600-608, Aug./Sept. 1995.
36. L. Lamport and S. Merz. Specifying and verifying fault-tolerant systems. In H. Langmaack, W.-P. de Roever, and J. Vytopil, editors, Formal Techniques in Real-Time and Fault-Tolerant Systems, volume 863 of Lecture Notes in Computer Science, pages 41-76, Lübeck, Germany, Sept. 1994. Springer-Verlag.
37. L. Lamport, R. Shostak, and M. Pease. The Byzantine generals problem. ACM Transactions on Programming Languages and Systems, 4(3):382-401, July 1982.
38. J.-C. Laprie, editor. Dependability: Basic concepts and Terminology, volume 5 of Dependable Computing and Fault-Tolerant Systems. Springer-Verlag, 1992.
39. B. Liskovand W. Weihl. Specifications of distributed programs. Distributed Computing, 1:102-118, 1986.
40. Z. Liu. Fault-tolerant programming by transformations. PhD thesis, University of Warwick, Department of Computer Science, 1991.
41. Z. Liu and M. Joseph. Transformation of programs for fault-tolerance. Formal Aspects of Computing, 4(5):442-469, 1992.
42. Z. Liu and M. Joseph. Specification and verification of recovery in asynchronous communicating systems. In J. Vytopil, editor, Formal Techniques in Real-time and Fault-tolerant Systems, chapter 6, pages 137-165. Kluwer, 1993.
43. Z. Liu and M. Joseph. A formal framework for fault-tolerant programs. In C. M. Mitchell and V. Stavridou, editors, Mathematics of Dependable Computing, pages 131-148. Oxford University Press, 1995.
44. Z. Liu and M. Joseph. Verification of fault tolerance and real time. In Proceedings of the 26th IEEE Symposium on Fault Tolerant Computing Systems (FTCS-26), pages 220-229, Sendai, Japan, June 1996. IEEE.
45. Z. Liu and M. Joseph. Specification and verification of fault-tolerance, timing and scheduling. Technical Report 1998/5, Department of Mathematics and Computer Science, University of Leicester, U.K., 1998.
46. L. V. Mancini and G. Pappalardo. Towards a theory of replicated processing. In M. J. Warick, editor, Formal techniques in real-time and fault-tolerant systems, volume 331 of Lecture Notes in Computer Science. Springer-Verlag, 1988.
47. J. McLean. A general theory of composition for trace sets closed under selective interleaving functions. In Proceedings of the 1994 IEEE Symposium on Research in Security and Privacy, pages 79-93, Oakland, CA, 1994.
48. G. Neiger and S. Toueg. Automatically increasing the fault-tolerance of distributed algorithms. Journal of Algorithms, 11(3):374-419, 1990.
49. J. Nordahl. Specification and Design of Dependable Communicating Systems. PhD thesis, Department of Computer Science, Technical University of Denmark, 1992.
50. J. Nordahl. Design for dependability. In C. E. Landwehr, editor, Proceedings of the third IFIP International Working Conference on Dependable Computing for Critical Applications (DCCA-3), pages 29-38. Springer-Verlag, 1993.
51. J. S. Ostroff. Survey of Formal Methods for the Specification and Design of RealTime Systems. Journal of Systems and Software, 18(2):33-60, Apr. 1992.
52. S. Owre, S. Rajan, J. Rushby, N. Shankar, and M. Srivas. PVS: Combining specification, proof checking, and model checking. In R. Alur and T. A. Henzinger, editors, Computer-Aided Verification, CAV '96, number 1102 in Lecture Notes in Computer Science, pages 411-414, New Brunswick, NJ, July/August 1996. Springer-Verlag.
53. D. Peled and M. Joseph. A compositional framework for fault-tolerance by specification transformation. Theoretical Computer Science, 128:99-125, 1994.
54. J. Peleska. Design and verification of fault tolerant systems with CSP. Distributed Computing, 5(2):95-106, 1991.
55. K. J. Perry and S. Toueg. Distributed agreement in the presence of processor and communication faults. IEEE Transactions on Software Engineering, 12(3):477-482, Mar. 1986.
56. A. Pnueli. The temporal logic of programs. In Proceedings of the 18th IEEE Symposium on the Foundations of Computer Science (FOCS-77), pages 46-57, Providence, Rhode Island, Oct. 31-Nov. 2 1977. IEEE, IEEE Computer Society Press.
57. J. Rushby. Critical system properties: Survey and taxonomy. Reliability Engineering and System Safety, 43(2):189-219, 1994.
58. H. Schepers. Tracing fault tolerance. In C. E. Landwehr, editor, Proceedings of the third IFIP International Working Conference on Dependable Computing for Critical Applications (DCCA-3), pages 39-48. Springer-Verlag, 1993.
59. H. Schepers and J. Hooman. A trace-based compositional proof theory for fault tolerant distributed systems. Theoretical Computer Science, 128(1-2): 127-157, June 1994.
60. R. D. Schlichting and F. B. Schneider. Fail stop processors: An approach to designing fault-tolerant computing systems. ACM Transactions on Computer Systems, 1(3):222-238, Aug. 1983.
61. F. B. Schneider. Implementing fault-tolerant services using the state machine approach: A tutorial. ACM Computing Surveys, 22(4):299-319, Dec. 1990.
62. R. Schwarz and F. Mattern. Detecting causal relationships in distributed computations: in search of the holy grail. Distributed Computing, 7:149-174, 1994.
63. H. Völzer. Verifying fault tolerance of distributed algorithms formally: An example. In Proceedings of the International Conference on Application of Concurrency to System Design (CSD98), pages 187-197, Fukushima, Japan, Mar. 1998. IEEE Computer Society Press.
64. D. G. Weber. Formal specification of fault-tolerance ad its relation to computer security. In S. Greenspan, editor, Proceedings of the 5th International Workshop on Software Specification and Design, pages 273-277, Pittsburgh, PA, May 1989. IEEE Computer Society Press.
65. N. Wirth. Program development by stepwise refinement. Communications of the Association for Computing Machinery, 26(1):70-74, Jan. 1983.