IIST and UNU - UNU-IIST - United Nations University

More documents

Recommendations

Info

Conclusions 18 There are many possible solutions to the restrictions. We take the following combination: a = b = 30, B 1 = B 2 = 2, c = 2, d = 30, e = 0, f = 2 . Note that we could let d be 28 and then e = f = 2 , but that means the control of the ignition must be exactly in 2 seconds — a requirement difficult to meet in practice. By extending the purging phase, we allow more flexibility for the ignition. Once an automaton is obtained, the transition restrictions can be strengthened to reduce nondeterminism. For example, the restriction [d, ∞] can be replaced with [30, 30 + ε] where ε indicates a tolerantable timing inaccuracy. In the final step, we split the state of non-leaking into idling and purging and the state of leaking into two states of ignition, and restrict the timing nondeterminism to obtain a reasonable design. Again the verification of this step can be conducted in TLA. Figure 6: Combined design In the above design, the state of burning must be no less than 30 seconds. This additional requirement is introduced by Law 11 and can be avoided if we decided to use Law 10 instead, although this alternative design would generate more complicated restrictions for the parameters. 6 Conclusions This paper studies a formal framework in which our knowledge about the relationships between different temporal logics can be formalised in the form of algebraic or refinement laws. In the case study on DC and TLA, we have identified refinement laws for several design patterns. Some of the laws are general and cover most types of refinement with a particular target implementation. More specific laws are introduced for the most common patterns, and their parameters can be more readily determined. The technique is applied to the design of gas burner problem. It is not a trivial task to identify general but at the same time practically useful laws. However once such laws are identified, they genuinely make the design process more systematic, especially on the determination of parameters. The formalism of the framework was first presented at IFM’04. The main focus of this paper is, however, on the relationship between DC and TLA. In particular, the decomposition of durational specifications (into automata) is the main new contribution. Report No. 301, UNU-IIST, P.O. Box 3058, Macau
References 19 References [1] P. Blackburn, M. de Rijke, and Y. Venema. Modal Logic. Cambridge University Press, 2001. [2] Y. Chen. Generic composition. Formal Aspects of Computing, 14(2):108–122, 2002. [3] Y. Chen. Cumulative computing. In 19th Conference on the Mathematical Foundations of Programming Semantics, volume 38 of Electronic Notes in Theoretical Computer Science. Elsevier, 2004. [4] Y. Chen and Z. Liu. Integrating temporal logics. In 4nd International Conference on Integrated Formal Methods, volume 2999 of LNCS, pages 402–420. Springer-Verlag, 2004. [5] E.C.R. Hehner. Predicative programming I, II. Communications of ACM, 27(2):134–151, 1984. [6] C. A. R. Hoare. Communicating Sequential Processes. Prentice Hall, 1985. [7] C. A. R. Hoare and J. He. Unifying Theories of Programming. Prentice Hall, 1998. [8] L. Lamport. Hybrid systems in TLA+. In Hybrid Systems, volume 736 of LNCS, pages 77–102. Springer-Verlag, 1993. [9] L. Lamport. A temporal logic of actions. ACM Transctions on Programming Languages and Systems, 16(3):872–923, 1994. [10] Z. Liu, A. P. Ravn, and X. Li. Unifying proof methodologies of duration calculus and linear temporal logic. Technical Report 1999/14, Department of Maths and Computer Science, University of Leicester, July 1999. To appear in Formal Aspects of Computing (19 pages). [11] A. Pnueli. The temporal semantics of concurrent programs. Theoretical Computer Science, 13:45–60, 1981. [12] A. Pnueli and E. Harel. Applications of temporal logic to the specification of real-time systems. In M. Joseph, editor, Formal Techniques in Real-Time and Fault-Tolerant Systems, Lecture Notes in Computer Science 331, pages 84–98. Springer-Verlag, 1988. [13] A.P. Ravn, H. Rischel, and K.M. Hansen. Specifying and verifying requirements of real-time systems. IEEE Transactions on Software Engineering, 19(1):41–55, 1993. [14] M. Schenke and E. Olderog. Transformational design of real-time systems part i: From requirements to program specifications. Acta Informatica, 36(1):1–65, 1999. [15] H. Shalqvist. Completeness and correspondence in the first and second order semantics for modal logic. In Proceedings of the third Scandinavian logic symposium, pages 110–143. North Holland, 1975. [16] B. von Karger. A calculational approach to reactive systems. Science of Computer Programming, 37:139–161, 2000. Report No. 301, UNU-IIST, P.O. Box 3058, Macau
Page 1 and 2: UNU/IIST International Institute fo
Page 3 and 4: UNU/IIST International Institute fo
Page 5: Contents i Contents 1 Introduction
Page 8 and 9: Predicative semantics of modal logi
Page 10 and 11: Predicative semantics of modal logi
Page 12 and 13: Temporal logic of resource cumulati
Page 14 and 15: Temporal logic of resource cumulati
Page 16 and 17: Linking Duration Calculus and TLA 1
Page 22 and 23: Case study: the Gas Burner 16 Figur
Page 26: References 20 [17] C. Zhou, C. A. R

IIST and UNU - UNU-IIST - United Nations University

Create successful ePaper yourself

Delete template?

Save as template?