Enviar pesquisa
Carregar
The Application of Formal Methods to Railway Signalling Software
•
0 gostou
•
1,568 visualizações
AdaCore
Seguir
Laurent Voisin
Leia menos
Leia mais
Tecnologia
Denunciar
Compartilhar
Denunciar
Compartilhar
1 de 11
Baixar agora
Baixar para ler offline
Recomendados
AMM.813-814.1170
AMM.813-814.1170
Mohammad Ashif
On site field inspections - property tax management
On site field inspections - property tax management
Steven Eady
Vestige: A Visualization Framework for Engineering Geometry-Related Software
Vestige: A Visualization Framework for Engineering Geometry-Related Software
Teseo Schneider
Techniques in black box testing
Techniques in black box testing
Duy Tan Geek
Australian Airline Industry Analysis
Australian Airline Industry Analysis
Thushara Amaranayaka
The Tracktor Project
The Tracktor Project
Ilya Salamatov
Why work in Railway Signalling
Why work in Railway Signalling
Sofia - Maria Angelara
Rlsにおけるプロダクト プロジェクトマネジメント
Rlsにおけるプロダクト プロジェクトマネジメント
Recruit Lifestyle Co., Ltd.
Recomendados
AMM.813-814.1170
AMM.813-814.1170
Mohammad Ashif
On site field inspections - property tax management
On site field inspections - property tax management
Steven Eady
Vestige: A Visualization Framework for Engineering Geometry-Related Software
Vestige: A Visualization Framework for Engineering Geometry-Related Software
Teseo Schneider
Techniques in black box testing
Techniques in black box testing
Duy Tan Geek
Australian Airline Industry Analysis
Australian Airline Industry Analysis
Thushara Amaranayaka
The Tracktor Project
The Tracktor Project
Ilya Salamatov
Why work in Railway Signalling
Why work in Railway Signalling
Sofia - Maria Angelara
Rlsにおけるプロダクト プロジェクトマネジメント
Rlsにおけるプロダクト プロジェクトマネジメント
Recruit Lifestyle Co., Ltd.
Bounded Model Checking for C Programs in an Enterprise Environment
Bounded Model Checking for C Programs in an Enterprise Environment
AdaCore
Ada 202x A broad overview of relevant news
Ada 202x A broad overview of relevant news
AdaCore
Multi-Core (MC) Processor Qualification for Safety Critical Systems
Multi-Core (MC) Processor Qualification for Safety Critical Systems
AdaCore
Verification and Validation of Robotic Assistants
Verification and Validation of Robotic Assistants
AdaCore
MISRA C – Recent developments and a road map to the future
MISRA C – Recent developments and a road map to the future
AdaCore
HIS 2015: Tom Chothia - Formal Security of Critical Infrastructure
HIS 2015: Tom Chothia - Formal Security of Critical Infrastructure
AdaCore
A Computer Vision Application for In Vitro Diagnostics Devices
A Computer Vision Application for In Vitro Diagnostics Devices
AdaCore
Mind your language(s), A Discussion about Languages and Security
Mind your language(s), A Discussion about Languages and Security
AdaCore
HIS 2015: Ivan Ellis - VISIUMCORE A High Integrity Processor for Safety Criti...
HIS 2015: Ivan Ellis - VISIUMCORE A High Integrity Processor for Safety Criti...
AdaCore
HIS 2015: Roderick Chapman - Murphy Vs Satan Why programming secure systems i...
HIS 2015: Roderick Chapman - Murphy Vs Satan Why programming secure systems i...
AdaCore
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
AdaCore
Practical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related Systems
AdaCore
How should we build that? Evolving a development environment that's suitable ...
How should we build that? Evolving a development environment that's suitable ...
AdaCore
Mixed Criticality Systems and Many-Core Platforms
Mixed Criticality Systems and Many-Core Platforms
AdaCore
HIS 2015: Alastair F. Donaldson - Fighting for Software Correctness in a Mass...
HIS 2015: Alastair F. Donaldson - Fighting for Software Correctness in a Mass...
AdaCore
An Alternative Approach to DO-178B
An Alternative Approach to DO-178B
AdaCore
HIS Conf 2014: An Insight into MISRA-C
HIS Conf 2014: An Insight into MISRA-C
AdaCore
HIS 2015: Prof. Phil Koopman - A Case Study of Toyota Unintended Acceleration...
HIS 2015: Prof. Phil Koopman - A Case Study of Toyota Unintended Acceleration...
AdaCore
The Muen Separation Kernel
The Muen Separation Kernel
AdaCore
HIS 2015: Prof. Ian Phillips - Stronger than its weakest link
HIS 2015: Prof. Ian Phillips - Stronger than its weakest link
AdaCore
SBST 2019 Keynote
SBST 2019 Keynote
Shiva Nejati
Accenture and Worksoft Explain Why Businesses Need a Digital Testing Strategy
Accenture and Worksoft Explain Why Businesses Need a Digital Testing Strategy
Worksoft
Mais conteúdo relacionado
Destaque
Bounded Model Checking for C Programs in an Enterprise Environment
Bounded Model Checking for C Programs in an Enterprise Environment
AdaCore
Ada 202x A broad overview of relevant news
Ada 202x A broad overview of relevant news
AdaCore
Multi-Core (MC) Processor Qualification for Safety Critical Systems
Multi-Core (MC) Processor Qualification for Safety Critical Systems
AdaCore
Verification and Validation of Robotic Assistants
Verification and Validation of Robotic Assistants
AdaCore
MISRA C – Recent developments and a road map to the future
MISRA C – Recent developments and a road map to the future
AdaCore
HIS 2015: Tom Chothia - Formal Security of Critical Infrastructure
HIS 2015: Tom Chothia - Formal Security of Critical Infrastructure
AdaCore
A Computer Vision Application for In Vitro Diagnostics Devices
A Computer Vision Application for In Vitro Diagnostics Devices
AdaCore
Mind your language(s), A Discussion about Languages and Security
Mind your language(s), A Discussion about Languages and Security
AdaCore
HIS 2015: Ivan Ellis - VISIUMCORE A High Integrity Processor for Safety Criti...
HIS 2015: Ivan Ellis - VISIUMCORE A High Integrity Processor for Safety Criti...
AdaCore
HIS 2015: Roderick Chapman - Murphy Vs Satan Why programming secure systems i...
HIS 2015: Roderick Chapman - Murphy Vs Satan Why programming secure systems i...
AdaCore
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
AdaCore
Practical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related Systems
AdaCore
How should we build that? Evolving a development environment that's suitable ...
How should we build that? Evolving a development environment that's suitable ...
AdaCore
Mixed Criticality Systems and Many-Core Platforms
Mixed Criticality Systems and Many-Core Platforms
AdaCore
HIS 2015: Alastair F. Donaldson - Fighting for Software Correctness in a Mass...
HIS 2015: Alastair F. Donaldson - Fighting for Software Correctness in a Mass...
AdaCore
An Alternative Approach to DO-178B
An Alternative Approach to DO-178B
AdaCore
HIS Conf 2014: An Insight into MISRA-C
HIS Conf 2014: An Insight into MISRA-C
AdaCore
HIS 2015: Prof. Phil Koopman - A Case Study of Toyota Unintended Acceleration...
HIS 2015: Prof. Phil Koopman - A Case Study of Toyota Unintended Acceleration...
AdaCore
The Muen Separation Kernel
The Muen Separation Kernel
AdaCore
HIS 2015: Prof. Ian Phillips - Stronger than its weakest link
HIS 2015: Prof. Ian Phillips - Stronger than its weakest link
AdaCore
Destaque
(20)
Bounded Model Checking for C Programs in an Enterprise Environment
Bounded Model Checking for C Programs in an Enterprise Environment
Ada 202x A broad overview of relevant news
Ada 202x A broad overview of relevant news
Multi-Core (MC) Processor Qualification for Safety Critical Systems
Multi-Core (MC) Processor Qualification for Safety Critical Systems
Verification and Validation of Robotic Assistants
Verification and Validation of Robotic Assistants
MISRA C – Recent developments and a road map to the future
MISRA C – Recent developments and a road map to the future
HIS 2015: Tom Chothia - Formal Security of Critical Infrastructure
HIS 2015: Tom Chothia - Formal Security of Critical Infrastructure
A Computer Vision Application for In Vitro Diagnostics Devices
A Computer Vision Application for In Vitro Diagnostics Devices
Mind your language(s), A Discussion about Languages and Security
Mind your language(s), A Discussion about Languages and Security
HIS 2015: Ivan Ellis - VISIUMCORE A High Integrity Processor for Safety Criti...
HIS 2015: Ivan Ellis - VISIUMCORE A High Integrity Processor for Safety Criti...
HIS 2015: Roderick Chapman - Murphy Vs Satan Why programming secure systems i...
HIS 2015: Roderick Chapman - Murphy Vs Satan Why programming secure systems i...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
HIS 2015: Neil White - Advances in Practical Techniques for Critical Developm...
Practical Application of Agile Techniques in Developing Safety Related Systems
Practical Application of Agile Techniques in Developing Safety Related Systems
How should we build that? Evolving a development environment that's suitable ...
How should we build that? Evolving a development environment that's suitable ...
Mixed Criticality Systems and Many-Core Platforms
Mixed Criticality Systems and Many-Core Platforms
HIS 2015: Alastair F. Donaldson - Fighting for Software Correctness in a Mass...
HIS 2015: Alastair F. Donaldson - Fighting for Software Correctness in a Mass...
An Alternative Approach to DO-178B
An Alternative Approach to DO-178B
HIS Conf 2014: An Insight into MISRA-C
HIS Conf 2014: An Insight into MISRA-C
HIS 2015: Prof. Phil Koopman - A Case Study of Toyota Unintended Acceleration...
HIS 2015: Prof. Phil Koopman - A Case Study of Toyota Unintended Acceleration...
The Muen Separation Kernel
The Muen Separation Kernel
HIS 2015: Prof. Ian Phillips - Stronger than its weakest link
HIS 2015: Prof. Ian Phillips - Stronger than its weakest link
Semelhante a The Application of Formal Methods to Railway Signalling Software
SBST 2019 Keynote
SBST 2019 Keynote
Shiva Nejati
Accenture and Worksoft Explain Why Businesses Need a Digital Testing Strategy
Accenture and Worksoft Explain Why Businesses Need a Digital Testing Strategy
Worksoft
GB-RESUME-2017 - SE
GB-RESUME-2017 - SE
Gilbert Brault
Esa Bic Portugal one year results
Esa Bic Portugal one year results
Carlos Cerqueira
Digital Transformation; Digital Twins for Delivering Business Value in IIoT
Digital Transformation; Digital Twins for Delivering Business Value in IIoT
The Hive
TRANING REPORT ON PLC SCADA and AUTOMATION
TRANING REPORT ON PLC SCADA and AUTOMATION
Vikash Ranjan
Training Report on PLC SCADA and AUTOMATION
Training Report on PLC SCADA and AUTOMATION
Vikash Ranjan
CNMES15 - Estimation con COSMIC - Alain Abran
CNMES15 - Estimation con COSMIC - Alain Abran
COSMIC - Common Software Measurement International Consortium
Mohamed Elwardany's resume
Mohamed Elwardany's resume
Mohamed Elwardany
Cevn Vibert Introduction Presentation
Cevn Vibert Introduction Presentation
Cevn Vibert
Jenoptik "Industrial Metrology"
Jenoptik "Industrial Metrology"
Hommel Etamic (Jenoptik)
MRC PTC: Creo Simulate Customers Testinmonials
MRC PTC: Creo Simulate Customers Testinmonials
MattSHoyt
Scott Hibbard MIT STEX Factory Automation Challenges - an industry perspective
Scott Hibbard MIT STEX Factory Automation Challenges - an industry perspective
MIT Startup Exchange
Realizing Traceability for Safety and Certainty
Realizing Traceability for Safety and Certainty
Steven Vettermann
Process Mining: BPM on Steroids (CPOs@BPM&O 2019 Keynote)
Process Mining: BPM on Steroids (CPOs@BPM&O 2019 Keynote)
Wil van der Aalst
CES SOQ
CES SOQ
Jamie Schmidt
Evio profile
Evio profile
EVIO Private Limited EVIO
Ndt fabrication inspection_tuv_rheinland
Ndt fabrication inspection_tuv_rheinland
Rodolfo Barbosa Young
Corporate-Profile
Corporate-Profile
Qusay Nader
Industry 4.0 & the next generation: Towards a smart factory
Industry 4.0 & the next generation: Towards a smart factory
Bluecrux
Semelhante a The Application of Formal Methods to Railway Signalling Software
(20)
SBST 2019 Keynote
SBST 2019 Keynote
Accenture and Worksoft Explain Why Businesses Need a Digital Testing Strategy
Accenture and Worksoft Explain Why Businesses Need a Digital Testing Strategy
GB-RESUME-2017 - SE
GB-RESUME-2017 - SE
Esa Bic Portugal one year results
Esa Bic Portugal one year results
Digital Transformation; Digital Twins for Delivering Business Value in IIoT
Digital Transformation; Digital Twins for Delivering Business Value in IIoT
TRANING REPORT ON PLC SCADA and AUTOMATION
TRANING REPORT ON PLC SCADA and AUTOMATION
Training Report on PLC SCADA and AUTOMATION
Training Report on PLC SCADA and AUTOMATION
CNMES15 - Estimation con COSMIC - Alain Abran
CNMES15 - Estimation con COSMIC - Alain Abran
Mohamed Elwardany's resume
Mohamed Elwardany's resume
Cevn Vibert Introduction Presentation
Cevn Vibert Introduction Presentation
Jenoptik "Industrial Metrology"
Jenoptik "Industrial Metrology"
MRC PTC: Creo Simulate Customers Testinmonials
MRC PTC: Creo Simulate Customers Testinmonials
Scott Hibbard MIT STEX Factory Automation Challenges - an industry perspective
Scott Hibbard MIT STEX Factory Automation Challenges - an industry perspective
Realizing Traceability for Safety and Certainty
Realizing Traceability for Safety and Certainty
Process Mining: BPM on Steroids (CPOs@BPM&O 2019 Keynote)
Process Mining: BPM on Steroids (CPOs@BPM&O 2019 Keynote)
CES SOQ
CES SOQ
Evio profile
Evio profile
Ndt fabrication inspection_tuv_rheinland
Ndt fabrication inspection_tuv_rheinland
Corporate-Profile
Corporate-Profile
Industry 4.0 & the next generation: Towards a smart factory
Industry 4.0 & the next generation: Towards a smart factory
Mais de AdaCore
RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
AdaCore
Have we a Human Ecosystem?
Have we a Human Ecosystem?
AdaCore
Rust and the coming age of high integrity languages
Rust and the coming age of high integrity languages
AdaCore
SPARKNaCl: A verified, fast cryptographic library
SPARKNaCl: A verified, fast cryptographic library
AdaCore
Developing Future High Integrity Processing Solutions
Developing Future High Integrity Processing Solutions
AdaCore
Taming event-driven software via formal verification
Taming event-driven software via formal verification
AdaCore
Pushing the Boundary of Mostly Automatic Program Proof
Pushing the Boundary of Mostly Automatic Program Proof
AdaCore
RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
AdaCore
Product Lines and Ecosystems: from customization to configuration
Product Lines and Ecosystems: from customization to configuration
AdaCore
Securing the Future of Safety and Security of Embedded Software
Securing the Future of Safety and Security of Embedded Software
AdaCore
Spark / Ada for Safe and Secure Firmware Development
Spark / Ada for Safe and Secure Firmware Development
AdaCore
Introducing the HICLASS Research Programme - Enabling Development of Complex ...
Introducing the HICLASS Research Programme - Enabling Development of Complex ...
AdaCore
The Future of Aerospace – More Software Please!
The Future of Aerospace – More Software Please!
AdaCore
Adaptive AUTOSAR - The New AUTOSAR Architecture
Adaptive AUTOSAR - The New AUTOSAR Architecture
AdaCore
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
AdaCore
Software Engineering for Robotics - The RoboStar Technology
Software Engineering for Robotics - The RoboStar Technology
AdaCore
MISRA C in an ISO 26262 context
MISRA C in an ISO 26262 context
AdaCore
Application of theorem proving for safety-critical vehicle software
Application of theorem proving for safety-critical vehicle software
AdaCore
HIS 2015: Prof. Mark Little - Open Source Challenges in the Enterprise
HIS 2015: Prof. Mark Little - Open Source Challenges in the Enterprise
AdaCore
Mais de AdaCore
(19)
RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
Have we a Human Ecosystem?
Have we a Human Ecosystem?
Rust and the coming age of high integrity languages
Rust and the coming age of high integrity languages
SPARKNaCl: A verified, fast cryptographic library
SPARKNaCl: A verified, fast cryptographic library
Developing Future High Integrity Processing Solutions
Developing Future High Integrity Processing Solutions
Taming event-driven software via formal verification
Taming event-driven software via formal verification
Pushing the Boundary of Mostly Automatic Program Proof
Pushing the Boundary of Mostly Automatic Program Proof
RCA OCORA: Safe Computing Platform using open standards
RCA OCORA: Safe Computing Platform using open standards
Product Lines and Ecosystems: from customization to configuration
Product Lines and Ecosystems: from customization to configuration
Securing the Future of Safety and Security of Embedded Software
Securing the Future of Safety and Security of Embedded Software
Spark / Ada for Safe and Secure Firmware Development
Spark / Ada for Safe and Secure Firmware Development
Introducing the HICLASS Research Programme - Enabling Development of Complex ...
Introducing the HICLASS Research Programme - Enabling Development of Complex ...
The Future of Aerospace – More Software Please!
The Future of Aerospace – More Software Please!
Adaptive AUTOSAR - The New AUTOSAR Architecture
Adaptive AUTOSAR - The New AUTOSAR Architecture
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Using Tiers of Assurance Evidence to Reduce the Tears! Adopting the “Wheel of...
Software Engineering for Robotics - The RoboStar Technology
Software Engineering for Robotics - The RoboStar Technology
MISRA C in an ISO 26262 context
MISRA C in an ISO 26262 context
Application of theorem proving for safety-critical vehicle software
Application of theorem proving for safety-critical vehicle software
HIS 2015: Prof. Mark Little - Open Source Challenges in the Enterprise
HIS 2015: Prof. Mark Little - Open Source Challenges in the Enterprise
Último
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
Michael W. Hawkins
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
The Digital Insurer
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
Pooja Nehwal
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Neo4j
Slack Application Development 101 Slides
Slack Application Development 101 Slides
praypatel2
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
naman860154
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
Radu Cotescu
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
ThousandEyes
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Maria Levchenko
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
Sinan KOZAK
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Anna Loughnan Colquhoun
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
Paola De la Torre
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
gurkirankumar98700
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
debabhi2
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
Martijn de Jong
Último
(20)
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Slack Application Development 101 Slides
Slack Application Development 101 Slides
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
How to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
The Application of Formal Methods to Railway Signalling Software
1.
The Applica+on of Formal Methods to Railway Signalling So;ware 28/10/16 Laurent Voisin
2.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. A word about Systerel Systerel has been crea+ng, designing and implemen+ng innova+ve solu+ons for over 15 years in the area of real +me and safety cri+cal systems. • Formal methods • System design •
So;ware development • RAMS Crea+on: 2002 90 engineers Turnover of 6,8 M€ + 15 % R&D 70% of turnover for fixed price projects
3.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. Apply mathema+cally sound techniques To disambiguate requirements To make assump+ons explicit To prove that an artefact matches its specifica+on Similar to calculus for mechanical engineering But proofs must be machine-checked Objec+ve 3
4.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. Formal Techniques (a priori) Event-B Modeling some aspects of a system by refinement steps and proving the consistency of steps with the RODIN placorm So;ware-B Developing a piece of so;ware correct by construc+on Proof of specifica+on consistency and proof of implementa+on/specifica+on compliance with Atelier B Transla+on from B code into C code with Systerel B/C Translator Close to Ada SPARK 4
5.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. Formal Techniques (a posteriori) Formal Data Valida+on Modeling configura+on data and their proper+es in B Automa+c evalua+on of proper+es with OVADO² cer+fied double chain Systerel Smart Solver (S3) Modeling the specifica+on of a system and its implementa+on and proving by model checking that they are consistent using the S3 cer+fiable solver Proving that a system respects some proper+es with the S3 solver Finding solu+ons to a constrained system with the S3 solver (e.g., test case genera+on) 5
6.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. High-end Tools (1) Rodin Placorm Open Source Project (developed and maintained by Systerel) Event-B placorm and provers Development techniques: Java, Eclipse plugins, compiler techniques, advanced GUI, Maven, 300 K lines B to C Translator Systerel product Double transla+on chain from B code to C code T3 qualified EN50128 Development techniques: compiler techniques OVADO² RATP product developed and maintained by Systerel Double evalua+on of predicates T2 qualified EN50128 Development techniques: Chain 1: OVADO using AST Rodin plugin and predicate evalua+on engine Chain 2: ProB model checker 6
7.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. High-end Tools (2) Systerel Smart Solver Ada, C, SCADE Front-ends, Expansers, solver, equivalence builder, proof checker Techniques: C, Ocaml, SAT & compiler techniques Reusable Tools Automa+c documenta+on genera+on of a B-data model (in PDF, MS-Word, Latex) Techniques: XSLT, XSL-FO, scripts Simula+on kernel with friendly user interfaces Object-oriented modeling of the environment Can interface with exis+ng tools (e.g., ControlBuild) Support for fault injec+on Techniques: Python, HTML, SVG, JavaScript Tools dedicated to projects ZC CBTC Simulator (wayside of safe metro system) Techniques: Eclipse, Java, JNI 7
8.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. Example of a Large Project ZC CBTC Turnkey project for the development of the main so;ware of a Zone Controller subsystem of a CBTC metro System design Systerel required an Event-B study to prove that design choices respect some safety proper+es Development of a simulator and a simplified Java so;ware to verify availability The system design document has been cer+fied SIL4 EN50128 So;ware development B-So;ware development metrics: 200 modules, 70 K lines of B, 35 K lines of C, 21 K Proof Obliga+ons Development of a qualified double chain B to C translator B-Data valida+on of the whole CBTC system B-Data valida+on with OVADO Proper+es of the ZC B-model where exported as is in the OVADO model 8
9.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. Feedback: Formal Techniques Can Be a Success Successful Use of Formal Techniques Formal Techniques can be applied successfully and can be efficient Reaching a very high level of quality for safety cri+cal systems Proof completeness Abstract model with proven proper+es that make sense for the target system Overall higher quality (as good as it gets) Modifica+on/evolu+on perimeter completely mastered The global cost (for cri+cal systems) is not higher than with usual techniques 9
10.
Feedback Techniques Tools Applica+on The present document is the property of Systerel and cannot be reproduced or disclosed without Systerel prior wriHen consent. Feedback: But It May Be Difficult Difficulty of Construc+ng a Good Model Picking up the most suitable formal technique Defining a methodology to write the best model Achieving to model every proper+es that we would like to It requires training, experience and feedback Not as easy as high-end tool development techniques (Internet search, download, documenta+on, tutorial) Difficulty of Interac+ve Proof Interac+ve proof is difficult and costly (Event-B, so;ware-B) Engineers always find tools performance too limited Performance level may increase in the future Tools start integra+ng several external provers A part of the model should be constructed at the same +me proof is performed Techniques with full automated proof (S3, OVADO) are easier to use for engineers 10
11.
Thank you
Baixar agora