Model Checking Complete Requirements Specifications Using Abstraction

Automated Software Engineering

Volumn 6, Issue 1, 1999, Pages 37-68

  Bharadwaj, Ramesh ^a   Heitmeyer, Constance L ^a  

^a NAVAL RESEARCH LABORATORY   (United States)

Author keywords

Abstraction; Model checking; Requirements specification; SCR; Verification

Indexed keywords

COMPUTER PROGRAMMING LANGUAGES; COMPUTER SOFTWARE SELECTION AND EVALUATION; SPECIFICATIONS;

MODEL CHECKING; REQUIREMENTS SPECIFICATION; SOFTWARE COST REDUCTION (SCR);

COMPUTER AIDED SOFTWARE ENGINEERING;

EID: 0032674648     PISSN: 09288910     EISSN: None     Source Type: Journal    
DOI: 10.1023/A:1008697817793     Document Type: Article

References (57)

1. Alspaugh, T. A., Faulk, S. R., Britton, K. H., Parker, R. A., Parnas, D. L. and Shore, J. E. 1992. Software requirements for the A-7E aircraft. Technical Report NRL-9194, Naval Research Lab., Wash., DC.
2. Atlee, J. M. and Buckley, M. A. 1996. A logic-model semantics for SCR specifications. In Proc. Int'l Symposium on Software Testing and Analysis.
3. Atlee, J. M. and Gannon, J. 1993. State-based model checking of event-driven system requirements. IEEE Trans. Softw. Eng., 19(1):24-40.
4. Berry, G. and Gonthier, G. 1992. The Esterel synchronous programming language: design, semantics, implementation. Science of Computer Programming, 19.
5. Bharadwaj, R. and Heitmeyer, C. 1997. Verifying SCR requirements specifications using state exploration. In Rance Cleaveland and Daniel Jackson, editors, Proc. First ACM SIGPLAN Workshop on the Automated Analysis of Software, ACM, Paris, France, pages 9-23.
6. Bryant, R. E. 1986. Graph-based algorithms for Boolean function manipulation. IEEE Trans. on Computers, 8(C-35):677-691.
7. Bryant, R. E. 1992. Symbolic Boolean manipulation with ordered binary-decision diagrams. ACM Computing Surveys, 24(3):293-318.
8. Chan, W., Anderson, R. J., Beame, P., Burns, S., Modugno, F., Notkin, D. and Reese, J. D. 1998. Model checking large software specifications. IEEE Trans. on Softw. Eng., 24(7).
9. Chandy, K. M. and Misra, J. 1988. Parallel Program Design - A Foundation. Reading, MA: Addison-Wesley.
10. Clarke, E., Grumberg, O., and Long, D. 1994. Model checking and abstraction. In Proc., Principles of Programming Languages (POPL), 1994.
11. Clarke, E.M., Emerson, E. and Sistla, A. 1986. Automatic verification of finite state concurrent systems using temporal logic specifications. ACM Trans. on Prog. Lang. and Systems, 8(2):244-263.
12. Clarke, E.M. and Kurshan, R.P. 1996. Computer-aided verification. IEEE Spectrum, pages 61-67.
13. Courtois, P.-J. and Parnas, D.L. 1993. Documentation for safety critical software. In Proc. 15th Int'l Conf. on Softw. Eng. (ICSE '93), pages 315-323, Baltimore, MD.
14. Dams, D. and Gerth, R. 1997. Abstract interpretation of reactive systems. ACM Trans. on Prog. Lang. and Systems, pages 111-149.
15. Dijkstra, E.W. 1976. A Discipline of Programming. Prentice-Hall.
16. Dill, D.L. Drexler, A.J., Hu, A.J. and Yang, C.H. 1992. Protocol verification as a hardware design aid. In Proc. IEEE Int'l Conference on Computer Design: VLSI in Computers and Processors, pages 522-525.
17. Easterbrook, S. and Callahan, J. 1997. Formal methods for verification and validation of partial specifications: A case study. Journal of Systems and Software.
18. Faulk, S.R., Brackett, J., Ward, P. and Kirby, Jr., J. 1992. The CoRE method for real-time requirements. IEEE Software, 9(5):22-33.
19. Faulk, S.R., Finneran, L., Kirby, Jr., J., Shah, S. and Sutton, J. 1994. Experience applying the CoRE method to the Lockheed C-130J. In Proc. 9th Annual Conf. on Computer Assurance (COMPASS '94), Gaithersburg, MD, pages 3-8.
20. Godefroid, P. 1990. Using partial orders to improve automatic verification methods. In Proceedings of the 2nd International Workshop on Computer-Aided Verification, pages 176-185.
21. Graf, S. 1994. Characterization of a sequentially consistent memory and verification of a cache memory by abstraction. In Proc. Computer Aided Verification.
22. Graf, S. and Loiseaux, C. 1993. A tool for symbolic program verification and abstraction. In Proc. Computer Aided Verification, pages 71-84.
23. Heimdahl, M.P.E. and Leveson, N. 1996. Completeness and consistency in hierarchical state-based requirements. IEEE Transactions on Software Engineering, 22(6):363-377.
24. Heitmeyer, C., Kirby, J., Labaw, B., Archer, M. and Bharadwaj, R. 1998. Using abstraction and model checking to detect safety violations in requirements specifications. IEEE Trans. on Softw. Eng., 24(11).
25. Heitmeyer, C.L., Jeffords, R.D. and Labaw, B.G. 1996. Automated consistency checking of requirements specifications. ACM Transactions on Software Engineering and Methodology, 5(3):231-261.
26. Heitmeyer, C., Bull, A., Gasarch, C. and Labaw, B. 1995. SCR*: A toolset for specifying and analyzing requirements. In Proc. 10th Annual Conf. on Computer Assurance (COMPASS '95), pages 109-122, Gaithersburg, MD.
27. Heitmeyer, C., Kirby, J. and Labaw, B. 1997. Tools for formal specification, verification, and validation of requirements. In Proc. 12th Annual Conf. on Computer Assurance (COMPASS '97), Gaithersburg, MD.
28. Heitmeyer, C., Kirby, J. and Labaw, B. 1998. Applying the SCR requirements method to a weapons control panel: An experience report. In Proc. 2nd Workshop on Formal Methods in Software Practice (FMSP'98).
29. Heitmeyer, C., Kirby, J., Labaw, B. and Bharadwaj, R. 1998. SCR*: A toolset for specifying and analyzing software requirements. In Proc. Computer-Aided Verification, 10th Annual Conf. (CAV'98), Vancouver, Canada.
30. Heitmeyer, C.L., Jeffords, R.D. and Labaw, B.G. 1999. Tools for analyzing SCR-style requirements specifications: A formal foundation. Technical report, Naval Research Lab., Wash., DC. In preparation.
31. Heninger, K., Parnas, D.L., Shore, J.E. and Kallander, J.W. 1978. Software requirements for the A-7E aircraft. Technical Report 3876, Naval Research Lab., Wash., DC.
32. Hester, S.D., Parnas, D.L. and Utter, D.F. 1981. Using documentation as a software design medium. Bell System Tech. J., 60(8):1941-1977.
33. Holzmann, G.J. 1991. Design and Validation of Computer Protocols. Prentice-Hall.
34. Holzmann, G.J. 1997. The model checker SPIN. IEEE Trans. on Softw. Eng., 23(5):279-295.
35. Holzmann, G.J. and Peled, D. 1994. An improvement in formal verification. In Proc. FORTE94.
36. Jackson, D. 1997. Model checking and requirements. Minitutorial, Third IEEE Intern. Symposium on Requirements Engineering (RE '97).
37. Jackson, D., Jha, S., and Damon, C.A. 1994. Faster checking of software specifications using isomorphs. In Proc., Principles of Programming Languages (POPL).
38. Jeffords, R. 1997. Translating SCR properties into LTL and CTL. Technical Memorandum 5540-293A:rdj.
39. Jeffords, R. and Heitmeyer, C. 1998. Automatic generation of state invariants from requirements specifications. In Proc. Sixth ACM SIGSOFT Symp. on Foundations of Software Engineering.
40. Kaufmann, M. and Moore, J.S. 1997. An industrial-strength theorem prover based on Common Lisp. IEEE Transactions on Software Engineering, 23(4):203-213.
41. Kirby, J. 1987. Example NRL/SCR software requirements for an automobile cruise control and monitoring system. Technical Report TR-87-07, Wang Institute of Graduate Studies.
42. Kurshan, R. 1997. Formal verification in a commercial setting. In Proc., Design Automation Conference.
43. Kurshan, R.P. 1994. Computer-Aided Verification of Coordinating Processes: The Automata-Theoretic Approach. Princeton University Press.
44. Loiseaux, C., Graf, S., Sifakis, J., Bouajjani, A. and Bensalem, S. 1995. Property preserving abstractions for the verification of concurrent systems. Formal Methods in System Design, 6:1-35.
45. Lutz, R.R. and Shaw, H.Y. 1997. Applying the SCR* requirements toolset to DS-1 fault protection. Technical Report JPL-D15198, Jet Propulsion Laboratory, Pasadena, CA.
46. Manna, Z. and Pnueli, A. 1991. The Temporal Logic of Reactive and Concurrent Systems. Springer-Verlag.
47. McMillan, K.L. 1993. Symbolic Model Checking. Kluwer Academic Publishers.
48. Meyers, S. and White, S. 1983. Software requirements methodology and tool study for A6-E technology transfer. Technical report, Grumman Aerospace Corp., Bethpage, NY.
49. Miller, S. 1998. Specifying the mode logic of a flight guidance system in CoRE and SCR. In Proc. 2nd Workshop on Formal Methods in Software Practice (FMSP'98).
50. Owre, S., Rushby, J., Shankar, N. and von Henke, F. 1995. Formal verification for fault-tolerant architectures: Prolegomena to the design of PVS. IEEE Transactions on Software Engineering, 21(2):107-125.
51. Parnas, D.L., Asmis, G.J.K. and Madey, J. 1991. Assessment of safety-critical software in nuclear power plants. Nuclear Safety, 32(2):189-198.
52. Parnas, D.L. and Madey, J. 1995. Functional documentation for computer systems. Science of Computer Programming, 25(1):41-61.
53. Probst, S.T. 1996. Chemical Process Safety and Operability Analysis using Symbolic Model Checking. PhD thesis, Carnegie-Mellon University, Department of Chemical Engineering, Pittsburgh, PA.
54. Sreemani, T. and Atlee, J.M. 1996. Feasibility of model checking software requirements. In Proc. 11th Annual Conference on Computer Assurance (COMPASS '96), Gaithersburg, MD.
55. Sutton, J. 1997. Personal communication.
56. Valmari, A. 1990. A stubborn attack on state explosion. In Proceedings of the 2nd International Workshop on Computer-Aided Verification, pages 156-165.
57. Weiser, M. 1984. Program slicing. IEEE Transactions on Software Engineering, SE-10(4):352-357.