topics covered
play

Topics covered Formal specif ication in the sof tware process I - PDF document

Sep 12, 2023 •658 likes •793 views

Formal Specif ication Techniques f or the unambiguous specif ication of sof tware Objectives To explain why f ormal specif ication techniques help discover problems in system requirements To describe the use of algebraic

  1. Formal Specif ication • Techniques f or the unambiguous specif ication of sof tware Objectives • To explain why f ormal specif ication techniques help discover problems in system requirements • To describe the use of algebraic techniques f or interf ace specif ication • To describe the use of model- based techniques f or behavioural specif ication 1

  2. Topics covered • Formal specif ication in the sof tware process • I nterf ace specif ication • Behavioural specif ication Formal methods • Formal specif ication is part of a more general collection of techniques that are known as ‘f ormal methods’ • These are all based on mathematical representation and analysis of sof tware • Formal methods include – Formal specif ication – Specif ication analysis and proof – Transf ormational development – Program verif ication 2

  3. Acceptance of f ormal methods • Formal methods have not become mainstream sof tware development techniques as was once predicted – Other sof tware engineering techniques have been successf ul at increasing system quality. – Market changes have made time- to- market rather than sof tware with a low error count the key f actor. Formal methods do not reduce time to market – Formal methods are hard to scale up to large systems Use of f ormal methods • Their principal benef its are in reducing the number of errors in systems so their main area of applicability is critical systems • I n this area, the use of f ormal methods is most likely to be cost- ef f ective 3

  4. Specif ication in the sof tware process • Specif ication and design are intermingled. • Architectural design is essential to structure a specif ication. • Formal specif ications are expressed in a mathematical notation with precisely def ined vocabulary, syntax and semantics. Specif ication and design Requirements Requirements Def inition Def inition Requirements Requirements Specif ication Specif ication I n creasin Architectural Decreasin Architectural g C Design o n Design tracto g C lien r I n t I n vo Sof tware lvem vo Sof tware lvem en Specif ication t Specif ication en Specif ication t High- level High- level Design Design Design 4

  5. Specif ication in the sof tware process Requirements Formal Requirements Formal Specif ication Specif ication Specif ication Specif ication Requirements Requirements High- level High- level Def inition Def inition Design Design System Architectural System Architectural Modeling Design Modeling Design Specif ication techniques • Algebraic approach – The system is specif ied in terms of its operations and their relationships • Model- based approach – The system is specif ied in terms of a state model that is constructed using mathematical constructs such as sets and sequences. Operations are def ined by modif ications to the system’s state 5

  6. Formal specif ication languages Sequential Concurrent Algebraic Larch Lotos Model- based 1. Z 1. CSP 2. VDM 2. Petri Nets 3. B Use of f ormal specif ication • Formal specif ication involves investing more ef f ort in the early phases of sof tware development • This reduces requirements errors as it f orces a detailed analysis of the requirements • I ncompleteness and inconsistencies can be discovered and resolved • Hence, savings as made as the amount of rework due to requirements problems is reduced 6

  7. Development costs with f ormal specif ication Validation Validation Design & I mplementation Design & I mplementation Cost Specif ication Specif ication Without f ormal specif ication With f ormal specif ication I nterf ace specif ication • Large systems are decomposed into subsystems with well- def ined interf aces between these subsystems • Specif ication of subsystem interf aces allows independent development of the dif f erent subsystems • I nterf aces may be def ined as abstract data types or object classes • The algebraic approach to f ormal specif ication is particularly well- suited to interf ace specif ication 7

  8. Sub- system interf aces I nterf ace objects Sub- system Sub- system Sub- system Sub- system A B A B The structure of an algebraic specif ication <Specif ication Name> (Generic Parameter) Sort <name> Sort <name> I mports <list of specif ication names> I mports <list of specif ication names> I nf ormal description of the sort and its operations I nf ormal description of the sort and its operations Operation signatures setting out the names and the Operation signatures setting out the names and the types of the parameters to the operations def ined types of the parameters to the operations def ined over the sort over the sort Axioms def ining the operations over the sort Axioms def ining the operations over the sort 8

  9. Specif ication components • I ntroduction – Def ines the sort (the type name) and declares other specif ications that are used • Description – I nf ormally describes the operations on the type • Signature – Def ines the syntax of the operations in the interf ace and their parameters • Axioms – Def ines the operation semantics by def ining axioms which characterise behaviour Systematic algebraic specif ication • Algebraic specif ications of a system may be developed in a systematic way – Specif ication structuring. – Specif ication naming. – Operation selection. – I nf ormal operation specif ication – Syntax def inition – Axiom def inition 9

  10. Specif ication operations • Constructor operations. Operations which create entities of the type being specif ied • I nspection operations. Operations which evaluate entities of the type being specif ied • To specif y behaviour, def ine the inspector operations f or each constructor operation I nterf ace specif ication in critical systems • Consider an air traf f ic control system where aircraf t f ly through managed sectors of airspace • Each sector may include a number of aircraf t but, f or saf ety reasons, these must be separated • I n this example, a simple vertical separation of 300m is proposed • The system should warn the controller if aircraf t are instructed to move so that the separation rule is breached 10

  11. A sector object • Critical operations on an object representing a controlled sector are – Enter. Add an aircraf t to the controlled airspace – Leave. Remove an aircraf t f rom the controlled airspace – Move. Move an aircraf t f rom one height to another – Lookup. Given an aircraf t identif ier, return its current height Primitive operations • I t is sometimes necessary to introduce additional operations to simplif y the specif ication • The other operations can then be def ined using these more primitive operations • Primitive operations – Create. Bring an instance of a sector into existence – Put. Add an aircraf t without saf ety checks – I n- space. Determine if a given aircraf t is in the sector – Occupied. Given a height, determine if there is an aircraf t within 300m of that height 11

  12. SECT OR Sector sort Se ctor imports INTEGER , BOOLE AN specif ication Enter - a dds a n airc raft to the se ctor if s afety conditions a re s atis f e d Leave - re move s an aircraft from the se ctor Move - moves a n a ircraft from one he ight to another if safe to do so Lookup - Finds the height of an aircra ft in the s ector Cre a te - creates an e mpty sec tor Put - a dds a n airc ra f t to a se ctor with no constraint c hecks In-space - che cks if a n aircra ft is already in a sector Occupied - checks if a spe cifie d height is available Enter (Se ctor, Call-sign, He ight) ? Se ctor Le ave (Sec tor, Call-sign) ? Sector Move (Se ctor, Call-s ign, He ight) ? Se ctor Lookup (Se ctor, Call-sign) ? Height Cre ate ? Sector Put (S ector, Call-sign, Height) ? Se ctor In-spa ce (Sector, Ca ll-sign) ? Boolea n Occupied (Sector, Height) ? Boolea n E nte r (S, CS, H) = if In-space (S, CS ) the n S exc eption (Aircra ft alre ady in se ctor) elsif Occupie d (S , H) the n S exc eption (Height conflict) else Put (S , CS, H) Leave (Create, CS) = Create exception ( Aircraft not in sector) Leave (Put (S, CS1, H1), CS) = if CS = CS1 the n S else Put (Leave (S, CS), CS1, H1) Mo ve (S , CS, H) = if S = Create the n Create e xce ption (No aircra ft in s ector) elsif not In-spa ce (S , CS) the n S exception ( Aircraft not in sector) elsif Occupie d (S , H) the n S exception ( He ight c onflict) else P ut (Lea ve (S, CS), CS, H) -- NO-HEIGHT is a consta nt indicating that a valid height cannot be re turne d Lookup (C rea te , CS) = NO-HEIGHT e xce ption (Air c raft not in se ctor) Lookup (P ut (S, CS 1, H1), C S) = if CS = CS 1 the n H1 else Lookup (S, CS) Oc cupie d (Crea te, H) = false Oc cupie d (Put (S, CS1, H1), H) = if (H1 > H and H1 - H Š 300) or ( H > H1 and H - H1 Š 300) the n true els e Oc cupie d (S, H) In-space (Cre ate, CS ) = f a ls e In-space (Put (S, CS1, H1), CS ) = if CS = CS 1 the n true else In-spa ce (S, CS) Specif ication commentary • Use the basic constructors Create and Put to specif y other operations • Def ine Occupied and I n- space using Create and Put and use them to make checks in other operation def initions • All operations that result in changes to the sector must check that the saf ety criterion holds 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Topics not Covered 1 What We Covered Storage (HDFS) Query processing (MapReduce, RDD, Hyracks)

Topics not Covered 1 What We Covered Storage (HDFS) Query processing (MapReduce, RDD, Hyracks)

Big-data Management Topics not Covered 1 What We Covered Storage (HDFS) Query processing (MapReduce, RDD, Hyracks) Higher-level data flow engines (Pig, SparkSQL, Spark Streaming) Storage formats (row, column, hybrid) Indexing (Global/local and

427 views • 11 slides
Topics covered Review of complexity CS848: Topics in Databases: Foundations of Query

Topics covered Review of complexity CS848: Topics in Databases: Foundations of Query

Topics covered Review of complexity CS848: Topics in Databases: Foundations of Query Optimization Turing machines (TMs) Formally define our notion computability. They consist of: an arbitrarily large tape, a finite tape alphabet, and

675 views • 9 slides
Topics Covered 2 Background on employment prospects for disadvantaged youth The general

Topics Covered 2 Background on employment prospects for disadvantaged youth The general

1 IMPROVING THE ODDS OF SUCCESS: WHAT RESEARCH SAYS ABOUT YOUTH WORKFORCE TRAINING BURT S. BARNOW GEORGE WASHINGTON UNIVERSITY PREPARED FOR THE 34 TH WISCONSIN FAMILY IMPACT SEMINAR MADISON, WISCONSIN NOVEMBER 4, 2015 Topics Covered 2

376 views • 20 slides
Topics to be covered O Evaluation and management of hepatic decompensation O Hepatic

Topics to be covered O Evaluation and management of hepatic decompensation O Hepatic

10/15/2018 Caring for the patient with cirrhosis Role of the hospitalist Danielle Brandman, MD, MAS Associate Professor of Clinical Medicine Associate Program Director, Transplant Hepatology Fellowship October 18, 2018 Topics to be covered O

616 views • 46 slides
Fit for the Future Referendum ahschools.us/FitForTheFuture Overview Topics covered in this

Fit for the Future Referendum ahschools.us/FitForTheFuture Overview Topics covered in this

Fit for the Future Referendum ahschools.us/FitForTheFuture Overview Topics covered in this presentation A little bit about Anoka-Hennepin Facility planning process Focus areas, including concept plans Financial information

536 views • 38 slides
The Millennial Kingdom Topics to be covered: 1. Connection between eschatology &amp; real

The Millennial Kingdom Topics to be covered: 1. Connection between eschatology &amp; real

Hoffmantown Chur c h E sc hatology Seminar Charles Clough The Millennial Kingdom Topics to be covered: 1. Connection between eschatology &amp; real history (Biblical &amp; Secular) 2. Prophets descriptions of the millennium &amp;

293 views • 18 slides
Topics Covered Topics Covered Interpretation of Laboratory Tests Interpretation of Laboratory

Topics Covered Topics Covered Interpretation of Laboratory Tests Interpretation of Laboratory

7/24/2010 Topics Covered Topics Covered Interpretation of Laboratory Tests Interpretation of Laboratory Tests BMP/CMP BMP/CMP CBC CBC HIHIM 409 HIHIM 409 Coagulation Studies Coagulation Studies Urinalysis Urinalysis

183 views • 4 slides
How to get value out of HART Ensure HART is always connected Topics Covered Background

How to get value out of HART Ensure HART is always connected Topics Covered Background

How to get value out of HART Ensure HART is always connected Topics Covered Background Training Design Procurement Integration Configuration Factory Acceptance Test (FAT) Installation Commissioning Change

1.02k views • 82 slides
INFO 1301 Wednesday, September 14, 2016 Topics to be covered Last

INFO 1301 Wednesday, September 14, 2016 Topics to be covered Last

INFO 1301 Wednesday, September 14, 2016 Topics to be covered Last class we spoke about the middle (central tendency) of a data set. Today we talk

111 views • 9 slides
Module 5 Understanding DIC and How to Apply Topics Covered in This Module Entitlement to

Module 5 Understanding DIC and How to Apply Topics Covered in This Module Entitlement to

Module 5 Understanding DIC and How to Apply Topics Covered in This Module Entitlement to Dependency and Indemnity Compensation (DIC) DIC Rate Table DIC Granted Automatically When DIC Is Not Automatic Aid and Attendance

221 views • 7 slides
Topics to be covered Motivation: match application domains Generic match operator

Topics to be covered Motivation: match application domains Generic match operator

A survey of approaches to automatic schema matching E. Rahm, and P. A. Bernstein. The VLDB Journal , 10(3): 334-350, 2001. Presented by Joel So (j2so@cs.uwaterloo.ca) Topics to be covered Motivation: match application domains Generic

397 views • 8 slides
Topics To Be Covered HealthInfoNet Overview and Exchange Updates HealthInfoNet

Topics To Be Covered HealthInfoNet Overview and Exchange Updates HealthInfoNet

HealthInfoNet: A Data Platform for Health Reform in a Changing Medical Landscape Maine Medical Association 22nd Annual Practice Education Seminar July 24, 2013 1 Topics To Be Covered HealthInfoNet Overview and Exchange Updates

515 views • 14 slides
Topics to be covered during seminar by instructor: Introduction Pre and Post Event Routine

Topics to be covered during seminar by instructor: Introduction Pre and Post Event Routine

Topics to be covered during seminar by instructor: Introduction Pre and Post Event Routine Injury Assessment and Evaluation Specific lengthening techniques Address any problems regarding clients pertaining to sports massage not

915 views • 56 slides
Statistical Natural Language Processing An overview of NLP applications: some topics not covered

Statistical Natural Language Processing An overview of NLP applications: some topics not covered

Statistical Natural Language Processing An overview of NLP applications: some topics not covered during the course ar ltekin University of Tbingen Seminar fr Sprachwissenschaft Summer Semester 2019 Some remarks on the exam

1.04k views • 24 slides
Variational Autoencoders Presented by: Jason Yu and Rajshree Daulatabad Topics Covered

Variational Autoencoders Presented by: Jason Yu and Rajshree Daulatabad Topics Covered

Variational Autoencoders Presented by: Jason Yu and Rajshree Daulatabad Topics Covered Before we dive into VAEs - Some General Concepts VAE Implementation details and the Math Intuitively Understanding VAE VAE Applications &amp;

1.04k views • 90 slides
Module 2 Understanding the Authority for Representation before VA Topics Covered in This

Module 2 Understanding the Authority for Representation before VA Topics Covered in This

Module 2 Understanding the Authority for Representation before VA Topics Covered in This Module Your Obligations As an Accredited Representative Fees for Assistance after a Notice of Decision Fees for Prefiling Consultations

170 views • 4 slides
Crafting Low-Cost Ordinances to Promote Solar Energy Growth T R O Y A . R U L E , A S S O C I

Crafting Low-Cost Ordinances to Promote Solar Energy Growth T R O Y A . R U L E , A S S O C I

Crafting Low-Cost Ordinances to Promote Solar Energy Growth T R O Y A . R U L E , A S S O C I A T E P R O F E S S O R S A N D R A D A Y O C O N N O R C O L L E G E O F L A W SCN SOLAR &amp; EFFICIENCY WORKSHOP Arizonas Existing

452 views • 21 slides
Management During Planned and Uncontrolled Reentries IAASS Conference Daniel Murray Ed Gannon

Management During Planned and Uncontrolled Reentries IAASS Conference Daniel Murray Ed Gannon

Federal Aviation Overview of FAA Administration Process for Airspace Management During Planned and Uncontrolled Reentries IAASS Conference Daniel Murray Ed Gannon 22 May 2013 Federal Aviation 0 IAASS Session 21 Panel: Space Debris Risk

466 views • 12 slides
Commissions proposal to restrict EU ETS to European regional airspace Status update of the

Commissions proposal to restrict EU ETS to European regional airspace Status update of the

Commissions proposal to restrict EU ETS to European regional airspace Status update of the legislative process &amp; Consequences for the carbon markets Julien Dufour CEO, Verifavia, www.verifavia.com Director, Aviation Carbon Events,

367 views • 14 slides
Welcome to the future of Global Communications Delivering a transformational next generation 5G

Welcome to the future of Global Communications Delivering a transformational next generation 5G

Welcome to the future of Global Communications Delivering a transformational next generation 5G www.stratosphericplatforms.com network capability Richard Deakin, CEO media@stratosphericplatforms.com 1 SPL platform combines best-in-class

431 views • 7 slides
Redistribution of Air Traffic (PPR) Developing a CAA approval process Civil Aviation Authority

Redistribution of Air Traffic (PPR) Developing a CAA approval process Civil Aviation Authority

Planned and Permanent Redistribution of Air Traffic (PPR) Developing a CAA approval process Civil Aviation Authority Stakeholder engagement sessions January 2019 airspace.policy@caa.co.uk 1 1 AGENDA Introduction / purpose of this

561 views • 34 slides
Fiji Priority Rollback Protocol Lukasz Ziarek Fiji Systems Inc. Filip Pizlo, Ethan Blanton, and

Fiji Priority Rollback Protocol Lukasz Ziarek Fiji Systems Inc. Filip Pizlo, Ethan Blanton, and

Fiji Priority Rollback Protocol Lukasz Ziarek Fiji Systems Inc. Filip Pizlo, Ethan Blanton, and Jan Vitek Fiji Systems LLC Wednesday, August 18, 2010 Communication between mixed-criticality partitions Situational Awareness Flight System

1.79k views • 80 slides
Formal verification of small and micro UAS Prof Sandor M Veres University of Sheffield December

Formal verification of small and micro UAS Prof Sandor M Veres University of Sheffield December

Formal verification of small and micro UAS Prof Sandor M Veres University of Sheffield December 2, 2015 Introduction The purpose of my talk What to Verify? What are the models and requirements? Verification of autopilots - APD How to

695 views • 54 slides
Trajectory Option Set Planning Optimization in CTOP Leonardo Cruciol TransLab, UnB Outline

Trajectory Option Set Planning Optimization in CTOP Leonardo Cruciol TransLab, UnB Outline

Universidade de Braslia Trajectory Option Set Planning Optimization in CTOP Leonardo Cruciol TransLab, UnB Outline Collaborative Trajectory Options Programs Delay Reduction in CTOP by TOS Single Game for CTOP (SG-CTOP)

307 views • 18 slides

More recommend