Design of Safe PLC Programs by Using Petri Nets and Formal Methods
|
|
- Magnus Wells
- 6 years ago
- Views:
Transcription
1 Design of Safe PLC Programs by Using Petri Nets and Formal Methods EUGEN IOAN GERGELY 1, LAURA COROIU 1, ALEXANDRU GACSADI 2 1 Department of Electrical Drives and Automation 2 Department of Electronics University of Oradea 1 Universitatii Str., Oradea ROMANIA egergely@uoradea.ro, lcoroiu@uoradea.ro, agacsadi@uoradea.ro Abstract: - The paper presents an approach which combines the formalism of Petri Nets and of model checking in order to deliver correct and dependable PLC programs. Based on SIPNs, a variant of PNs, the complete controller development process from an informal specification to the final implementation on a PLC is discussed. The SIPN formalized according to corresponding plant model enables the derivation of standard functional properties and the specific functional properties of the PLC control algorithm. These properties are verified and validated with the model checker tool Cadence SMV. In order to do this, the SIPN is translated into SMV input code, in which there are inserted the functional properties to be verified and validated, expressed by using Temporal Logic formulae. This correct SIPN is used as a basis for implementation. For the realization there are used standard PLC programming languages according to IEC It resulted that the approach provides correctness of the resulting PLC programs, which makes them much more dependable than direct implemented PLC code. In order to illustrate the approach steps a working example was used. Key-Words: - programmable logic controllers, signal interpreted Petri Networks, model checking 1 Introduction Today programmable logic controllers (PLCs) are the main equipment of automation in all areas from single machines to manufacturing plants and continuous processes. The increasing complexity of the control software and the rising of user-defined safety and functionality requirements necessitates new methods to provide proper control software in view of given requirements [1, 2]. Because of this growing complexity classical methods of designing PLC programs, like direct implementation, are no longer feasible. A method to handle these requirements lies in the application of formal methods in the PLC program design. It allows the application of formal verification and validation methods, which can assure that a program fulfills certain specified properties [3, 4, 5, 6]. The main purpose of using formal methods to design PLC programs is to derive a correct control algorithm prior to implementation and realization. In model-based approaches a model of the process under control is included in the analysis. Petri Networks (PNs) have shown good properties in modeling control algorithms [7, 8]. They proved to be able to express the causality and the concurrency of control algorithms in a transparent way. Signal Interpreted Petri Networks (SIPNs) are an extension of the basic PN framework. In addition to the potential of graphical representation and mathematical treatment of PNs, SIPNs allow explicit treatment of input/output facilities [9, 10]. The approach presented in the paper combines SIPNs and model checking in a framework which provides correct, thus dependable, PLC programs. The paper is structured as follows. In the next section are presented the basic concepts of SIPNs. Section 3 describes how to use formal methods in the control design process. In order to illustrate the approach steps, a complete controller development process, which includes the steps of design, verification, validation, implementation and realization on a PLC is presented in Section 4 through a working example. 2 The Formalism of SIPNs SIPNs are an extension of ordinary PNs [11] with input and outputs elements. A SIPN is a 10-tuple SIPN=(P, T, F, m 0, I, O, φ, ω, Ω, ν) with [9]: (P, T, F, m 0 ) - an ordinary PN with places P, transitions T, arcs F and binary initial marking m 0 I - a set of input signals O - a set of output signals φ - a mapping associating every transition with a firing condition ω - a mapping associating every place with an output ISSN: ISBN:
2 Ω - the output function which combines the output ω of all marked places ν - the variable definition which assigns a numeric data type according to [12] to every signal. Graphically there are two basic types of nodes, i.e. places and transitions, connected through directed arcs. Places are used to describe the controller state. These places can be marked (indicated by a token in the place) or non-marked. While a place is marked, it can influence its environment by setting one or more output functions. The state of the controller is given at any time by the set of marked places. The dynamic of the model is described by the flow of tokens through the net. To describe this flow, transitions that are connected to places via directed arcs are used. The firing of a transition removes the tokens from its input places and puts tokens in its output places. The firing of the transitions depends on its input signals. For the firing process there are five rules: 1. A transition is enabled if all its pre-places are marked and all its post-places are unmarked. 2. A transition fires immediately if it is enabled and its firing condition is fulfilled. 3. All transitions that can fire and are not in conflict with other transitions fire simultaneously. 4. The firing process is iterated until a stable marking is reached. 5. After a new stable marking is reached, the output signals are computed by evaluating the output functions of the marked places. Based on these rules the transitions that can fire in a given situation are detected and the next marking is calculated. 3 Formal Methods in the Control Design Process The process of control design is illustrated in Fig. 1. In most cases the designer of a control system starts with a given informal specification of the control system. The informal specification consists in a description of the uncontrolled process and requirements for the controlled systems, by using verbal descriptions, timing diagrams, equations, sketches, piping and instrumentation diagrams, etc. Direct requirements for the control algorithm are also possible. Fig. 1. Design process of control systems. The formalization represents the conversion of an informal specification into a formal specification (e.g., a SIPN). This conversion can be done by using computers, but it is not fully automatic and requires human expertise. The formalization of the informal specification consists in the following tasks: 1. Formalization of specific properties, which produces o set of properties to be fulfilled by the PLC or the controlled process. 2. Formal modeling of the uncontrolled process, which results in a process model that is needed in model-based approaches. 3. Direct formal modeling of the control algorithm, which can be done if the control problem given by the informal specification is very clear. Depending on the formal methods used, not all of these tasks have to be done. This paper focuses on the formalization of specific properties using temporal logic and model checking [13]. The implementation is the process of deriving the target-system dependent realization from the formal specification. Using one of the standardized PLC languages, the formal description of the control algorithm is implemented in a direct manner (by using a compiler) or indirectly (by using an interpreter implemented in the PLC). Generally, the realization includes hardware and software. Assuming a standard hardware with a well-defined functionality, the realization is in fact the program of the control algorithm (i.e., the software).for this, PLC languages according to [12] are more and more accepted. The verification and validation (V & V) are the main areas for applying formal methods in PLC programming [14]. Verification means the application of formal methods in order to prove that the control algorithm fulfills a given specification (i.e., standard functional properties), which yields important information about the correctness of the control algorithm. The properties investigated by verification are standard and hence can be assumed as already formalized. Therefore, the verification can be fully automated. In validation application specific functional properties of the control algorithm have to be formalized. Validation shows if the controlled process behaves as it should. The validation process uses as inputs the information from the informal specification and from realization. Hence, validation cannot be fully formal and cannot be fully automated, requiring the designers expertise. In this paper, in order to perform V & V it is used the same method: symbolic model checking. This is ISSN: ISBN:
3 a technique in which finite model of the system is built and the expected properties of the system are checked on this model. The system is modeled as a finite state transition system and the properties are expressed in a Temporal Logic [15]. Then, a search procedure is used to check whether the expected properties hold on the finite state transition system or not. In symbolic model checking the state space of the finite state transition system is not explicitly built, so Binary Decision Diagrams (BDDs) are used to represent the system states. The tool we use is Cadence SMV ( x.aspx). It requires on the one hand side a description of the control algorithm given in a text file and on the other hand a set of properties written in Temporal Logic. As a result, the model checker gives us a verdict (True/False) and a diagnosis which is a counterexample given as a trace. So, in order to use SMV, we have to translate the SIPN describing the control algorithm into SMV input code. Table 1. The PLC I/O signals. Type Name Meaning Input Start_button Starts one mixing cycle Input Tank_empty The tank is empty Input Tank_half The tank is filled with the necessary quantity of liquid A Input Tank_full The tank is filled with the necessary quantity of liquid B Output Open_Valve_1 Liquid A is filled into the tank Output Open_Valve_2 Liquid B is filled into the tank Output Open_Valve_3 The A+B mix is emptied from the tank Output Motor_on The A+B mix is stirred The informal specification (i.e., the expected behaviour) given above is formalized by developing the SIPN of the PLC control algorithm (see Fig. 3). 4 The Design Method: A Case Study The presented development approach was used to develop the PLC program for controlling the mixer in Fig. 2. Fig. 2. The mixing tank. The informal specification to be fulfilled by the mixer is as follows: After pressing the Start_button the liquid A is filled into the tank via Valve 1 until the input signal Tank half is received. Then, the liquid B is filled into the tank via Valve 2 until the level given by the input signal Tank full is reached. After this, the stirring motor M homogenizes the A+B mix for 60 seconds. Finally, the tank is emptied via Valve 3. The PLC I/O signals are given in Table 1. Fig. 3. The SIPN of the PLC control algorithm. The algorithm in Fig. 3 works as follows: in the initial state only P1 is marked and hence the output of the net is (Open_Valve_1, Open_Valve_2, Open_Valve_3, Motor_on) = (0, 0, 0, 0). Transition t1 fires when the start button is pressed (Start_button=1) and the tank is empty (Tank_empty=1). The token from P1 is removed and is generated in P2. Valve 1 is open, so the new output of the net is (1, 0, 0, 0). If in P1 the tank is not empty (Tank_empty=0), then t6 fires, also removing the token from P1 but putting it in P5. ISSN: ISBN:
4 After the filling level for liquid A is reached (Tank_half=1) when in P2, t2 can fire, thus moving the token from P2 to P3, which closes Valve 1 and opens Valve 2. When the filling level for liquid B is reached (Tank_full=1), then t3 fires and the token is moved from P3 to P4, thus starting the stirring motor M (Motor_on=1) for 60 seconds. The expiration of this time will fire t4, which moves the token from P4 to P5. The A+B mix is evacuated from the tank (Open_Valve_3=1) till the tank is empty. This will fire t5 which removes the token from P5 and puts it in P1, thus resulting the initial state again. The SIPN in Fig. 3 is used to formalize the standard functional properties and the specific functional properties of the PLC control algorithm. As mentioned in Section 3, the standard functional properties will be verified and the specific functional properties will be validated by model checking. For both of these the same tool -Cadence SMV- will be used. Therefore, all functional properties will be expressed as Temporal Logic formulae. The standard functional properties that the SIPN in Fig. 3 should fulfill are given in Table 2. It can be easily seen that the SIPN is implicitly safe due to its nature, so this property does not need any verification. Other properties, such as input dependence, can be verified by the analysis of the SIPN using Table 1. In order to verify that the algorithm is deterministic we have to examine each potential conflicting transitions in the SIPN. Since that in the SIPN model of the working example there are two such situations (t1 & t6, t4 & t6), the following properties are written: P1a: SPEC AG ~ (t1 & t6) (1) P1b: SPEC AG ~ (t4 & t6) (2) which means that it is always true (AG) that in the future (EF) transitions t1 & t6 and respectively transitions t4 & t6 do NOT (~) fire simultaneously. For verifying that the algorithm always terminates and never run in an infinite loop we create the variable eoc (End of Cycle) and the statement for its verification. For the working example its definition is: eoc := ~(t1 t2 t3 t4 t5 t6) (3) and the property which eoc has to comply with is: P2: SPEC AG EF eoc (4) In order to verify the output correctness property, it should be checked if the output signals are defined in every stable marking reached. For example, for the Motor_on output this would be: P3: SPEC AG EF ((eoc & Motor_on=0) (eoc & Motor_on=1)) (5) The other standard functional properties are inferred in a similar manner. Table 2. Standard Functional Properties of the SIPN. Property Definition Safety A SIPN is safe if the post-places of a transition need not to be checked to determine if the transition fires. Liveness When a transition or a set of transitions is no longer fireable, then part of the control algorithm doesn't work anymore (i.e. dead code). Reversibility The initial marking can always be reached again. Reachability A marking m' is reachable from a state m if there exists a sequence of inputs combinations such that a firing sequence starting from m has m' as a stable final marking. No Dynamic Two transitions t 1 and t 2 form a Synchronization dynamic synchronization if the firing of t 1 implies the simultaneous firing of t 2. Determinism The algorithm is deterministic if the transitions firing conditions at every branching are disjoint. Termination In a cyclic control algorithm at least one marking must be stable. The algorithm terminates if there is no self-loop at any place (i.e. never run in an infinite loop). Output correctness The output signals have to be formally correct, i.e. 0 or 1 at every Input dependence stage of the algorithm. Every input signal should have an influence on the control algorithm. For verifying the standard functional properties we use the tool Cadence SMV. It requires a description of the control algorithm written in a text file (.smv), in which is inserted the set of properties P1a, P1b, P2 and P3 written in Temporal Logic. If a checked property is fulfilled, SMV returns a True result. If a property is not fulfilled, SMV gives a False response and a counter-example as a trace. The verification shows that all above specified properties are fulfilled. This enables the inference of application specific functional properties (e.g. safety interlocks, disjoint activation of two output signals, etc.). These are formalized from the SIPN by manual synthesis, thus requiring the designer expertise. Some of the application specific functional properties which we want to be fulfilled by the working example are the followings: P4. It is forbidden that all three valves are open at the same time. Written in Temporal Logic this property is as follows: ISSN: ISBN:
5 P4a: SPEC AG ~((Open_Valve_1=1) & (Open_Valve_2=1)) (6) P4b: SPEC AG ~((Open_Valve_1=1) & (Open_Valve_3=1)) (7) P4c: SPEC AG ~((Open_Valve_2=1) & (Open_Valve_3=1)) (8) P5. Stirring in an empty tank cannot occur. In Temporal Logic this is: P5: SPEC AG (~(Tank_empty) EF ~(Motor_on=1)) (9) P6. Stirring starts only in a fully filled in tank, which in Temporal Logic is written as: P6: SPEC AG (~(Tank_full) EF ~(Motor_on=1)) (10) P7. Stirring does not start while a valve is open. In Temporal Logic this is written as: P7a: SPEC AG ~((Open_Valve_1=1) & (Motor_on=1)) (11) P7b: SPEC AG ~((Open_Valve_2=1) & (Motor_on=1)) (12) P7c: SPEC AG ~((Open_Valve_3=1) & (Motor_on=1)) (13) The validation of the application specific functional properties will be done with symbolic model verifier Cadence SMV as well. In order to do this, the Temporal Logic formulae of the specific functional properties P4 - P7 are inserted in the same.smv file as the Temporal Logic formulae of the standard functional properties. Launching Cadence SMV again on the.smv file yields True results, which means that the model is correct according to both standard and application specific functional properties. Fig. 4 shows the results for both verification and validation in a compact manner. Fig. 4. The results of V & V of functional properties. The V & V demonstrates that the SIPN in Fig. 3 is correct. Due to the fact that it gives visual feedback of the control flow, it is easy to apply and to implement, this correct SIPN serves as a basis for implementation. For the realization there are used standard PLC programming languages according to IEC [12]. In order to guarantee a correct realization the generation of the PLC code has to preserve the dynamic behaviour of the SIPN. 5 Conclusion The paper presents an approach to deliver correct and dependable PLC programs. Based on SIPNs, a variant of PNs, the complete controller development process from an informal specification to the final implementation on a PLC is discussed. This process includes the steps of design, verification, validation, implementation and realization. In order to illustrate the approach steps we used a working example. In the PLC programming SIPNs represents a tool that is capable of graphically describing sequential and concurrent algorithms, gives visual feedback of the control flow, it is easy to apply and easy to implement, resulting in fast codes. The SIPN formalized for the working example enabled the derivation of standard functional properties and the specific functional properties of the PLC control algorithm. Standard functional properties were verified using the Cadence SMV tool. For this, the SIPN model has been translated into a SMV input file, in which were inserted the standard functional properties also expressed in Temporal Logic. Then SMV has been used again in order to validate the application specific functional properties. In both cases SMV gave a True response, which means that our control algorithm is correct. The verified and validated SIPN according to corresponding working example model has been implemented in an IEC programming language. For the industrial realization of a controller standard PLC programming languages according to [2] are used. The properties of the SIPN can only be guaranteed for the implemented controller if the generation of PLC code from the SIPN preserves the dynamic behaviour of the latter. The presented approach combines SIPNs and model checking and provides correct, thus dependable, PLC programs. The dependability growth (in terms of safety and reliability) is undeniable, especially when compared with direct implemented PLC programs, although there are no metrics to estimate the dependability gain. ISSN: ISBN:
6 ACKNOWLEDGMENT This work was partially supported by a grant from the Romanian National University Research Council, PNCDI Program, ID-668/2008. References: [1] M.N. Lakhoua, Application of Functional Analysis on a SCADA system of a Thermal Power Plant, Advances in Electrical and Computer Engineering journal, Faculty of Electrical Engineering and Computer Science - Suceava, Romania, Vol. 9, No. 2, 2009, pp [2] J. Yoo, E. Jee and S. Cha, Formal Modeling and Verification of Safety-Critical Software, IEEE Software, IEEE Computer Society, 2009, pp [3] J.H. Kim, S.Y. Lee, Y.A. Ahn, J.H. Sim, J.S. Yang, N.Y. Lee and J.Y. Choi, Development of RTOS for PLC using formal methods, Lecture Notes in Computer Science, Springer-Verlag Berlin, Vol. 3299, 2004, pp [4] M. Zhou, F. He, M. Gu and X.Y. Song, Translation-based model checking for PLC programs, Proceedings of the IEEE 33 rd International Computer Software and Applications Conference, Seattle, USA, 2009, pp [5] T.L. Johnson, Improving automation software dependability: A role for formal methods?, Control Engineering Practice, Vol. 15, Issue 11, 2007, pp [6] S.R. Koo and P.H. Seong, Software design specification and analysis technique (SDSAT) for the development of safety-critical systems based on a programmable logic controller (PLC), Reliability Engineering & System Safety, Vol. 91, Issue 6, 2006, pp [7] J. Li, X. Dai, Z. Meng, J. Dou and X. Guan, Rapid design and reconfiguration of Petri net models for reconfigurable manufacturing cells with improved net rewriting systems and activity diagrams, Computers & Industrial Engineering, Vol. 57, Issue 4, 2009, pp [8] G. Music and D. Matko, An admissiblebehaviour-based analysis of the deadlock in Petri-net controllers, Simulation Modelling Practice and Theory, Vol. 16, Issue 8, 2008, pp [9] G. Frey, Design and Formal Analysis of Petri Net based Logic Control Algorithms, Dissertation University of Kaiserslautern, Aachen: Shaker Verlag, [10] J. Greifeneder and G. Frey, Reactivity Analysis of different Networked Automation System Architectures, Proceedings of the 13 th IEEE International Conference on Emerging Technologies and Factory Automation (ETFA 2008), Hamburg, Germany, 2008, pp [11] A.A. Desrochers and R.Y. Al-Yaar, Applications of Petri Nets in Manufacturing Systems, IEEE Press, Piscataway, USA, [12] International Electrotechnical Commission, IEC Programmable Controllers, [13] E. I. Gergely, Automatic safety analysis of computer controlled plants using model checking, Analele Universităţii din Oradea, Fascicola Electrotehnică, Secţiunea Ştiinţa Calculatoarelor şi Sisteme de Control, Oradea, Romania, 2005, pp [14] Nina Amla, X. Du, A. Kuehlmann, R. P. Kurshan, K. L. McMillan, An Analysis of SAT- Based Model Checking Techniques in an th Industrial Environment, Proceedings of 13 Advanced Research Working Conference on Correct Hardware Design and Verification Methods CHARME'05, Saarbrucken, Germany, 2005, pp [15] Y. Hietter, J. M. Roussel, J. J. Lesage, Algebraic synthesis of dependable logic controllers, 17 th IFAC World Congress, Seoul, Korea, 2008, pp ISSN: ISBN:
TRANSPARENCY ANALYSIS OF PETRI NET BASED LOGIC CONTROLLERS A MEASURE FOR SOFTWARE QUALITY IN AUTOMATION
TANSPAENCY ANALYSIS OF PETI NET BASED LOGIC CONTOLLES A MEASUE FO SOFTWAE QUALITY IN AUTOMATION Georg Frey and Lothar Litz University of Kaiserslautern, Institute of Process Automation, PO Box 3049, D-67653
More informationPetri Nets ee249 Fall 2000
Petri Nets ee249 Fall 2000 Marco Sgroi Most slides borrowed from Luciano Lavagno s lecture ee249 (1998) 1 Models Of Computation for reactive systems Main MOCs: Communicating Finite State Machines Dataflow
More informationOutline. Petri nets. Introduction Examples Properties Analysis techniques. 1 EE249Fall04
Outline Petri nets Introduction Examples Properties Analysis techniques 1 Petri Nets (PNs) Model introduced by C.A. Petri in 1962 Ph.D. Thesis: Communication with Automata Applications: distributed computing,
More informationPETRI NET ANALYSIS OF BATCH RECIPES
Presented at FOCAPO 98, Snowbird, USA. PETRI NET ANALYSIS OF BATCH RECIPES STRUCTURED WITH GRAFCHART Charlotta Johnsson and Karl-Erik Årzén Department of Automatic Control, Lund Institute of Technology,
More informationEE249 Discussion Petri Nets: Properties, Analysis and Applications - T. Murata. Chang-Ching Wu 10/9/2007
EE249 Discussion Petri Nets: Properties, Analysis and Applications - T. Murata Chang-Ching Wu 10/9/2007 What are Petri Nets A graphical & modeling tool. Describe systems that are concurrent, asynchronous,
More informationBy: Chaitanya Settaluri Devendra Kalia
By: Chaitanya Settaluri Devendra Kalia What is an embedded system? An embedded system Uses a controller to perform some function Is not perceived as a computer Software is used for features and flexibility
More informationCombining IEC and ISA S88 for Batch Control
Preprints of the 13th IFAC Symposium on Information Control Problems in Manufacturing, Moscow, Russia, June 3-5, 2009 We-A7.1 Combining IEC 61499 and ISA S88 for Batch Control D. Ivanova*, I. Batchkova*,
More informationFormal Modeling of Testing Software for Cyber-Physical Automation Systems
Formal Modeling of Testing Software for Cyber-Physical Automation Systems Igor Buzhinsky, Cheng Pang, Valeriy Vyatkin Computer Technologies Laboratory, ITMO University, St. Petersburg, Russia Department
More informationA Measure for Transparency in Net Based Control Algorithms
A Measure for Transparency in Net Based Control Algorithms Georg Frey and Lothar Litz Institute of Process Automation Department of Electrical Engineering University of Kaiserslautern PO 3049, D-67653
More informationAutomation Systems Discrete Event Control Systems and Networked Automation Systems
Automation Systems Discrete Event Control Systems and Networked Automation Systems 2 nd Lecture Control Design Process System theory or Software-Engineering? System Theory Starting point: mathematical
More informationFrom Task Graphs to Petri Nets
From Task Graphs to Petri Nets Anthony Spiteri Staines Department of Computer Inf. Systems, Faculty of ICT, University of Malta Abstract This paper describes the similarities between task graphs and Petri
More informationA Technique for Demonstrating Safety and Correctness of Program Translators: Strategy and Case Study
2014 IEEE International Symposium on Software Reliability Engineering Workshops A Technique for Demonstrating Safety and Correctness of Program Translators: Strategy and Case Study Eui-Sub Kim, Junbeom
More informationLecture1: Symbolic Model Checking with BDDs. Edmund M. Clarke, Jr. Computer Science Department Carnegie Mellon University Pittsburgh, PA 15213
Lecture: Symbolic Model Checking with BDDs Edmund M Clarke, Jr Computer Science Department Carnegie Mellon University Pittsburgh, PA 523 Temporal Logic Model Checking Specification Language: A propositional
More informationInternet-based development of logic controllers using Signal Interpreted Petri Nets and IEC 61131
Internet-based development of logic controllers using Signal Interpreted Petri Nets and IEC 61131 Georg Frey Lehrstuhl für Automatisierungstechnik Universität Kaiserslautern Postfach 3049, 67653 Kaiserslautern,
More informationA Technique for Demonstrating Safety and Correctness of Program Translators : Strategy and Case Study
A Technique for Demonstrating Safety and Correctness of Program Translators : Strategy and Case Study Eui-Sub Kim, Junbeom Yoo Dependable Software Laboratory KONKUK University, Republic of Korea Jong-Gyun
More informationDISCRETE-event dynamic systems (DEDS) are dynamic
IEEE TRANSACTIONS ON CONTROL SYSTEMS TECHNOLOGY, VOL. 7, NO. 2, MARCH 1999 175 The Supervised Control of Discrete-Event Dynamic Systems François Charbonnier, Hassane Alla, and René David Abstract The supervisory
More informationA systematic approach for the sequence controller design in manufacturing systems
Int J Adv Manuf Technol (2005) 25: 754 760 DOI 10.1007/s00170-003-1902-9 ORIGINAL ARTICLE Jin-Shyan Lee Pau-Lo Hsu A systematic approach for the sequence controller design in manufacturing systems Received:
More informationFormalization of PLC Programs to Sustain Reliability
Formalization of PLC Programs to Sustain Reliability Mohammed Bani Younis Juniorprofessorship Agentbased Automation University of Kaiserslautern D-67653 Kaiserslautern, Germany baniy@eit.uni-kl.de Georg
More informationSystem Correctness. EEC 421/521: Software Engineering. System Correctness. The Problem at Hand. A system is correct when it meets its requirements
System Correctness EEC 421/521: Software Engineering A Whirlwind Intro to Software Model Checking A system is correct when it meets its requirements a design without requirements cannot be right or wrong,
More informationManaging test suites for services
Managing test suites for services Kathrin Kaschner Universität Rostock, Institut für Informatik, 18051 Rostock, Germany kathrin.kaschner@uni-rostock.de Abstract. When developing an existing service further,
More informationIntroduction to Formal Methods
2008 Spring Software Special Development 1 Introduction to Formal Methods Part I : Formal Specification i JUNBEOM YOO jbyoo@knokuk.ac.kr Reference AS Specifier s Introduction to Formal lmethods Jeannette
More informationProcess Model Consistency Measurement
IOSR Journal of Computer Engineering (IOSRJCE) ISSN: 2278-0661, ISBN: 2278-8727Volume 7, Issue 6 (Nov. - Dec. 2012), PP 40-44 Process Model Consistency Measurement Sukanth Sistla CSE Department, JNTUniversity,
More informationEfficient representation for formal verification of PLC programs *
Efficient representation for formal verification of PLC programs * Vincent Gourcuff, Olivier De Smet and Jean-Marc Faure LURPA ENS de Cachan, 61 avenue du Prés. Wilson, F-94235 Cachan Cedex, France Email:
More informationQualitative Analysis of WorkFlow nets using Linear Logic: Soundness Verification
Proceedings of the 2009 IEEE International Conference on Systems, Man, and Cybernetics San Antonio, TX, USA - October 2009 Qualitative Analysis of WorkFlow nets using Linear Logic: Soundness Verification
More informationBinary Decision Diagrams and Symbolic Model Checking
Binary Decision Diagrams and Symbolic Model Checking Randy Bryant Ed Clarke Ken McMillan Allen Emerson CMU CMU Cadence U Texas http://www.cs.cmu.edu/~bryant Binary Decision Diagrams Restricted Form of
More informationControl of an automatic parking gate
Control of an automatic parking gate Jean-Marc ROUSSEL jean-marc.roussel@lurpa.ens-cachan.fr LURPA,ENS Cachan 61, avenue du Prsident Wilson 94235 CACHAN Cedex April 2, 212 1 Introduction This document
More informationModule 3. Requirements Analysis and Specification. Version 2 CSE IIT, Kharagpur
Module 3 Requirements Analysis and Specification Lesson 6 Formal Requirements Specification Specific Instructional Objectives At the end of this lesson the student will be able to: Explain what a formal
More informationCOMP 763. Eugene Syriani. Ph.D. Student in the Modelling, Simulation and Design Lab School of Computer Science. McGill University
Eugene Syriani Ph.D. Student in the Modelling, Simulation and Design Lab School of Computer Science McGill University 1 OVERVIEW In the context In Theory: Timed Automata The language: Definitions and Semantics
More informationSynthesis of Systems Specified as Interacting VHDL Processes
- 1 - Synthesis of Systems Specified as Interacting VHDL Processes Petru Eles 1,2, Krzysztof Kuchcinski 1, Zebo Peng 1 1 Dept. of Computer and Information Science Linköping University Sweden 2 Computer
More informationProgramming PLCs using Sequential Function Chart
Programming PLCs using Sequential Function Chart Martin Bruggink Department of Computing Science, University of Nijmegen Toernooiveld 1, NL-6525 ED, Nijmegen, The Netherlands martinb@sci.kun.nl Nijmegen,
More informationHYBRID PETRI NET MODEL BASED DECISION SUPPORT SYSTEM. Janetta Culita, Simona Caramihai, Calin Munteanu
HYBRID PETRI NET MODEL BASED DECISION SUPPORT SYSTEM Janetta Culita, Simona Caramihai, Calin Munteanu Politehnica University of Bucharest Dept. of Automatic Control and Computer Science E-mail: jculita@yahoo.com,
More informationAn Algorithm to Compute a Basis of Petri Net Invariants
An Algorithm to Compute a Basis of Petri Net Invariants S. Cayir and M. Ucer Electronics and Communication Department, Istanbul Technical University, Istanbul, Turkey cayirs@itu.edu.tr and murvet@ehb.itu.edu.tr
More informationMANUFACTURING SYSTEM MODELING USING PETRI NETS
International Conference on Economic Engineering and Manufacturing Systems Braşov, 26 27 November 2009 MANUFACTURING SYSTEM MODELING USING PETRI NETS Daniela COMAN, Adela IONESCU, Mihaela FLORESCU University
More informationTimed Circuit Verification Using TEL Structures
IEEE TRANSACTIONS ON COMPUTER-AIDED DESIGN OF INTEGRATED CIRCUITS AND SYSTEMS, VOL. 20, NO. 1, JANUARY 2001 129 Timed Circuit Verification Using TEL Structures Wendy Belluomini, Member, IEEE, Chris J.
More informationSystemic Solutions to Deadlock in FMS
Systemic Solutions to Deadlock in FMS Xu gang, Wu zhi Ming Abstract In order to solve deadlock in FMS, an integrated design method for FMS is presented. This method is based on deadlock free scheduling,
More informationHierarchical FSMs with Multiple CMs
Hierarchical FSMs with Multiple CMs Manaloor Govindarajan Balasubramanian Manikantan Bharathwaj Muthuswamy (aka Bharath) Reference: Hierarchical FSMs with Multiple Concurrency Models. Alain Girault, Bilung
More informationPetri Nets ~------~ R-ES-O---N-A-N-C-E-I--se-p-te-m--be-r Applications.
Petri Nets 2. Applications Y Narahari Y Narahari is currently an Associate Professor of Computer Science and Automation at the Indian Institute of Science, Bangalore. His research interests are broadly
More informationFormal Verification: Practical Exercise Model Checking with NuSMV
Formal Verification: Practical Exercise Model Checking with NuSMV Jacques Fleuriot Daniel Raggi Semester 2, 2017 This is the first non-assessed practical exercise for the Formal Verification course. You
More informationIMPERATIVE PROGRAMS BEHAVIOR SIMULATION IN TERMS OF COMPOSITIONAL PETRI NETS
IMPERATIVE PROGRAMS BEHAVIOR SIMULATION IN TERMS OF COMPOSITIONAL PETRI NETS Leontyev Denis Vasilevich, Kharitonov Dmitry Ivanovich and Tarasov Georgiy Vitalievich ABSTRACT Institute of Automation and
More information8 th International Conference on DEVELOPMENT AND APPLICATION SYSTEMS S u c e a v a, R o m a n i a, M a y 25 27,
8 th International Conference on DEVELOPMENT AND APPLICATION SYSTEMS S u c e a v a, R o m a n i a, M a y 25 27, 2 0 0 6 A HARDWARE IMPLEMENTATION OF SAFE PETRI NET MODELS Viorica SUDACEVSCHI 1, Victor
More informationEECS 144/244: Fundamental Algorithms for System Modeling, Analysis, and Optimization
EECS 144/244: Fundamental Algorithms for System Modeling, Analysis, and Optimization Dataflow Lecture: SDF, Kahn Process Networks Stavros Tripakis University of California, Berkeley Stavros Tripakis: EECS
More informationA Schedulability-Preserving Transformation Scheme from Boolean- Controlled Dataflow Networks to Petri Nets
Schedulability-Preserving ransformation Scheme from oolean- ontrolled Dataflow Networks to Petri Nets ong Liu Edward. Lee University of alifornia at erkeley erkeley,, 94720, US {congliu,eal}@eecs. berkeley.edu
More informationAn Integrated Software Development Framework for PLC & FPGA based Digital I&Cs
An Integrated Software Development Framework for PLC & FPGA based Digital I&Cs Junbeom Yoo 1, Eui-Sub Kim 2, Dong Ah Lee 3, and Jong-Gyun Choi 4 1. Computer Science and Enginering Konkuk Univeristy Republic
More informationModeling Routing Constructs to Represent Distributed Workflow Processes Using Extended Petri Nets
Modeling Routing Constructs to Represent Distributed Workflow Processes Using Extended Petri Nets Mehmet Karay * Final International University, Business Administrative, Toroslar Avenue, No:6, 99370, Catalkoy,
More informationTIMED PETRI NETS FOR SOFTWARE APPLICATIONS
The International Workshop on Discrete-Event System Design, DESDes 01, June 27 29, 2001; Przytok near Zielona Gora, Poland TIMED PETRI NETS FOR SOFTWARE APPLICATIONS Grzegorz ANDRZEJEWSKI Computer Engineering
More informationModel Checking Revision: Model Checking for Infinite Systems Revision: Traffic Light Controller (TLC) Revision: 1.12
Model Checking mc Revision:.2 Model Checking for Infinite Systems mc 2 Revision:.2 check algorithmically temporal / sequential properties fixpoint algorithms with symbolic representations: systems are
More informationA New Model Checking Tool
A New Model Checking Tool LAURA F. CACOVEAN, FLORIN STOICA, DANA SIMIAN Department of Computer Science Lucian Blaga University of Sibiu, Faculty of Sciences Str. Dr. Ion Ratiu 5-7, 550012, Sibiu ROMANIA
More informationFinite State Verification. CSCE Lecture 14-02/25/2016
Finite State Verification CSCE 747 - Lecture 14-02/25/2016 So, You Want to Perform Verification... You have a property that you want your program to obey. Great! Let s write some tests! Does testing guarantee
More informationParallel Model Checking of ω-automata
Parallel Model Checking of ω-automata Vincent Bloemen Formal Methods and Tools, University of Twente v.bloemen@utwente.nl Abstract. Specifications for non-terminating reactive systems are described by
More informationIEC Compliant Control Code Generation from Discrete Event Models
Proceedings of the 13th Mediterranean Conference on Control and Automation Limassol, Cyprus, June 27-29, 2005 MoM04-3 IEC 61131-3 Compliant Control Code Generation from Discrete Event Models Gašper Mušič,
More informationDistributed Systems Programming (F21DS1) Formal Verification
Distributed Systems Programming (F21DS1) Formal Verification Andrew Ireland Department of Computer Science School of Mathematical and Computer Sciences Heriot-Watt University Edinburgh Overview Focus on
More informationWEEK 5 - APPLICATION OF PETRI NETS. 4.4 Producers-consumers problem with priority
4.4 Producers-consumers problem with priority The net shown in Fig. 27 represents a producers-consumers system with priority, i.e., consumer A has priority over consumer B in the sense that A can consume
More informationCoverability Graph and Fairness
Coverability Graph and Fairness prof.dr.ir. Wil van der Aalst www.vdaalst.com Recall reachability analysis or1 x r1 rg1 g1 go1 o1 r2 rg2 g2 go2 o2 or2 Petri net standard properties Boundedness Terminating
More informationPetri-net-based Workflow Management Software
Petri-net-based Workflow Management Software W.M.P. van der Aalst Department of Mathematics and Computing Science, Eindhoven University of Technology, P.O. Box 513, NL-5600 MB, Eindhoven, The Netherlands,
More informationStatic Safety Analysis of UML Action Semantics for Critical Systems Development
Static Safety Analysis of UML Action Semantics for Critical Systems Development Zsigmond Pap, Dániel Varró Dept. of Measurement and Information Systems Budapest University of Technology and Economics H-1521
More informationPetri Nets: Properties, Applications, and Variations. Matthew O'Brien University of Pittsburgh
Petri Nets: Properties, Applications, and Variations Matthew O'Brien University of Pittsburgh Introduction A Petri Net is a graphical and mathematical modeling tool used to describe and study information
More informationModel Checkers for Test Case Generation: An Experimental Study
Model Checkers for Test Case Generation: An Experimental Study Muralidhar Talupur Carnegie Mellon University Abstract. In this paper we study the performance of various model checkers in test case generation
More informationSeamless design methodology of manufacturing cell-control software based on activity-control-condition and object diagram
Seamless design methodology of manufacturing cell-control software based on activity-control-condition and object diagram TOYOAKI TOMURA, SATOSHI KANAI and TAKESHI KISHINAMI Abstract. A manufacturing cell
More informationPetri Nets. Robert A. McGuigan, Department of Mathematics, Westfield State
24 Petri Nets Author: College. Robert A. McGuigan, Department of Mathematics, Westfield State Prerequisites: The prerequisites for this chapter are graphs and digraphs. See Sections 9.1, 9.2, and 10.1
More informationFBD based Software in
APSEC 08 A Verification Framework for FBD based Software in Nuclear Power Plants JUNBEOM YOO KONKUK University, Korea jbyoo@konkuk.ac.kr http://dslab.konkuk.ac.kr Other Authors Sungdeok Cha - Professor
More informationFinite State Verification. CSCE Lecture 21-03/28/2017
Finite State Verification CSCE 747 - Lecture 21-03/28/2017 So, You Want to Perform Verification... You have a property that you want your program to obey. Great! Let s write some tests! Does testing guarantee
More informationBuilding Synchronous DataFlow graphs with UML & MARTE/CCSL
Building Synchronous DataFlow graphs with UML & MARTE/CCSL F. Mallet, J. DeAntoni, C. André, R. de Simone Aoste - INRIA/I3S Université de Nice Sophia Antipolis UML & Formal methods Ambiguity and structural
More informationTowards Automatic Verification of Embedded Control Software
Towards Automatic Verification of Embedded Control Software Nanette Bauer University of Dortmund, Department of Chemical Engineering Emil-Figge-Str. 70, D-44221 Dortmund, Germany n.bauer@chemietechnik.uni-dortmund.de
More informationOn Petri Nets and Predicate-Transition Nets
On Petri Nets and Predicate-Transition Nets Andrea Röck INRIA - project CODES Roquencourt - BP 105 Le Chesnay Cedex 78153, FRANCE Ray Kresman Department of Computer Science Bowling Green State University
More informationAdvanced VLSI Design Prof. Virendra K. Singh Department of Electrical Engineering Indian Institute of Technology Bombay
Advanced VLSI Design Prof. Virendra K. Singh Department of Electrical Engineering Indian Institute of Technology Bombay Lecture 40 VLSI Design Verification: An Introduction Hello. Welcome to the advance
More informationVerification of Bakery algorithm variants for two processes
Verification of Bakery algorithm variants for two processes David Dedi 1, Robert Meolic 2 1 Nova Vizija d.o.o., Vreerjeva ulica 8, SI-3310 Žalec 2 Faculty of Electrical Engineering and Computer Science,
More informationMODERN automated manufacturing systems require. An Extended Event Graph With Negative Places and Tokens for Time Window Constraints
IEEE TRANSACTIONS ON AUTOMATION SCIENCE AND ENGINEERING, VOL. 2, NO. 4, OCTOBER 2005 319 An Extended Event Graph With Negative Places and Tokens for Time Window Constraints Tae-Eog Lee and Seong-Ho Park
More informationResearch Collection. Formal background and algorithms. Other Conference Item. ETH Library. Author(s): Biere, Armin. Publication Date: 2001
Research Collection Other Conference Item Formal background and algorithms Author(s): Biere, Armin Publication Date: 2001 Permanent Link: https://doi.org/10.3929/ethz-a-004239730 Rights / License: In Copyright
More informationSymbolic Synthesis of Observability Requirements for Diagnosability
Symbolic Synthesis of Observability Requirements for Diagnosability B. Bittner 1,2 M.Bozzano 2 A. Cimatti 2 X. Olive 3 1 University of Amsterdam, Science Park 904, 1098XH Amsterdam, The Netherlands bittner@science.uva.nl
More informationConcurrent Systems Modeling using Petri Nets Part II
Concurrent Systems Modeling using Petri Nets Part II Marlon Dumas (Based on lecture material by Wil van der Aalst Eindhoven University of Technology, The Netherlands http://www.workflowcourse.com) PN-1
More informationFormal Modeling for Persistence Checking of Signal Transition Graph Specification with Promela
, March 15-17, 2017, Hong Kong Formal Modeling for Persistence Checking of Signal Transition Graph Specification with Promela Kanut Boonroeangkaow, Arthit Thongtak and Wiwat Vatanawood Abstract Signal
More informationFormal Methods in Software Engineering. Lecture 07
Formal Methods in Software Engineering Lecture 07 What is Temporal Logic? Objective: We describe temporal aspects of formal methods to model and specify concurrent systems and verify their correctness
More informationSafety and Reliability of Embedded Systems. (Sicherheit und Zuverlässigkeit eingebetteter Systeme) Safety and Reliability Analysis Models: Overview
(Sicherheit und Zuverlässigkeit eingebetteter Systeme) Safety and Reliability Analysis Models: Overview Content Classification Hazard and Operability Study (HAZOP) Preliminary Hazard Analysis (PHA) Event
More informationPETRI NET BASED SCHEDULING APPROACH COMBINING DISPATCHING RULES AND LOCAL SEARCH
PETRI NET BASED SCHEDULING APPROACH COMBINING DISPATCHING RULES AND LOCAL SEARCH Gašper Mušič (a) (a) University of Ljubljana Faculty of Electrical Engineering Tržaška 25, Ljubljana, Slovenia (a) gasper.music@fe.uni-lj.si
More informationModular Petri Net Processor for Embedded Systems
Modular Petri Net Processor for Embedded Systems Orlando Micolini 1, Emiliano N. Daniele, Luis O. Ventre Laboratorio de Arquitectura de Computadoras (LAC) FCEFyN Universidad Nacional de Córdoba orlando.micolini@unc.edu.ar,
More informationTimo Latvala. January 28, 2004
Reactive Systems: Kripke Structures and Automata Timo Latvala January 28, 2004 Reactive Systems: Kripke Structures and Automata 3-1 Properties of systems invariants: the system never reaches a bad state
More informationON-LINE QUALITATIVE MODEL-BASED DIAGNOSIS OF TECHNOLOGICAL SYSTEMS USING COLORED PETRI NETS
ON-LINE QUALITATIVE MODEL-BASED DIAGNOSIS OF TECHNOLOGICAL SYSTEMS USING COLORED PETRI NETS Adrien Leitold 1 Miklós Gerzson 2 Anna I. Pózna 2 and Katalin M. Hangos 2,3 1 Department of Mathematics 3 Process
More informationIntegration of UML and Petri Net for the Process Modeling and Analysis in Workflow Applications
Integration of UML and Petri Net for the Process Modeling and Analysis in Workflow Applications KWAN-HEE HAN *, SEOCK-KYU YOO **, BOHYUN KIM *** Department of Industrial & Systems Engineering, Gyeongsang
More informationSOLVING DEADLOCK STATES IN MODEL OF RAILWAY STATION OPERATION USING COLOURED PETRI NETS
SOLVING DEADLOCK STATES IN MODEL OF RAILWAY STATION OPERATION USING COLOURED PETRI NETS Michal Žarnay University of Žilina, Faculty of Management Science and Informatics, Address: Univerzitná 8215/1, Žilina,
More informationUtilizing Static Analysis for Programmable Logic Controllers
Sébastien Bornot Ralf Huuck Ben Lukoschus Lehrstuhl für Softwaretechnologie Universität Kiel Preußerstraße 1 9, D-24105 Kiel, Germany seb rhu bls @informatik.uni-kiel.de Yassine Lakhnech Verimag Centre
More informationIEEE TRANSACTIONS ON COMPUTER-AIDED DESIGN OF INTEGRATED CIRCUITS AND SYSTEMS, VOL. 16, NO. 8, AUGUST
IEEE TRANSACTIONS ON COMPUTER-AIDED DESIGN OF INTEGRATED CIRCUITS AND SYSTEMS, VOL. 16, NO. 8, AUGUST 1997 793 A Region-Based Theory for State Assignment in Speed-Independent Circuits Jordi Cortadella,
More informationCourse Modelling of Concurrent Systems Summer Semester 2016 University of Duisburg-Essen
Course Modelling of Concurrent Systems Summer Semester 2016 University of Duisburg-Essen Harsh Beohar LF 265, harsh.beohar@uni-due.de Harsh Beohar Course Modelling of Concurrent Systems 1 Course handler
More informationAcceleration of SAT-based Iterative Property Checking
Acceleration of SAT-based Iterative Property Checking Daniel Große Rolf Drechsler Institute of Computer Science University of Bremen 28359 Bremen, Germany {grosse, drechsle}@informatik.uni-bremen.de Abstract
More informationDiscrete Mathematics Lecture 4. Harper Langston New York University
Discrete Mathematics Lecture 4 Harper Langston New York University Sequences Sequence is a set of (usually infinite number of) ordered elements: a 1, a 2,, a n, Each individual element a k is called a
More informationThe Maude LTL Model Checker and Its Implementation
The Maude LTL Model Checker and Its Implementation Steven Eker 1,José Meseguer 2, and Ambarish Sridharanarayanan 2 1 Computer Science Laboratory, SRI International Menlo Park, CA 94025 eker@csl.sri.com
More informationExtended Coloured Petri Nets with Structured Tokens Formal Method for Distributed Systems
Extended Coloured Petri Nets with Structured Tokens Formal Method for Distributed Systems Khaoula Al Ali, Wolfgang Fengler, Bernd Däne, Alexander Pacholik Faculty of Computer Science and Automation, Computer
More informationAlgebraic Representation for Ordinary Place Transition Petri Nets
Algebraic Representation for Ordinary lace Transition etri Nets A. Spiteri Staines Abstract Ordinary place transition etri nets are useful for modeling discrete systems at a low level. It can be shown
More informationEE 249 Discussion: Synthesis of Embedded Software using Free- Choice Petri Nets
EE 249 Discussion: Synthesis of Embedded Software using Free- Choice Petri Nets By :Marco Sgroi, Luciano Lavagno, Alberto Sangiovanni-Vincentelli Shanna-Shaye Forbes Software synthesis from a concurrent
More informationColoured Petri Net Model f Two-Phase Commit Protocol With Multiple Participants
UDC 004.5:519.876.2 M. Iwaniak, W. Khadzhynov Technical University of Koszalin Department of Electronics & Informatics ul. niadeckich 2, 75-453 Koszalin, Polska hadginov@ie.tu.koszalin.pl Coloured Petri
More informationContents Introduction Petri Net Toolbox at a First Glance... 4
Learning about Petri Ne t Toolbox For Use with MATLAB Version 2.1 Mihaela-Hanako Matcovschi Cristian Mahulea Octavian Pastravanu 2005 Contents Contents... 2 Introduction Petri Net Toolbox at a First Glance...
More informationA Visual Editor for Reconfigurable Object Nets based on the ECLIPSE Graphical Editor Framework
A Visual Editor for Reconfigurable Object Nets based on the ECLIPSE Graphical Editor Framework Enrico Biermann, Claudia Ermel, Frank Hermann and Tony Modica Technische Universität Berlin, Germany {enrico,lieske,frank,modica}@cs.tu-berlin.de
More informationVirtual Plant for Control Program Verification
2011 International Conference on Circuits, System and Simulation IPCSIT vol.7 (2011) (2011) IACSIT Press, Singapore Virtual Plant for Control Program Verification Sangchul Park 1 + and June S. Jang 2 1
More informationConcurrent Systems Modeling using Petri Nets Part II
Concurrent Systems Modeling using Petri Nets Part II Marlon Dumas (Based on lecture material by Wil van der Aalst Eindhoven University of Technology, The Netherlands http://www.workflowcourse.com) PN-1
More informationIssues on Decentralized Consistency Checking of Multi-lateral Collaborations
Issues on Decentralized Consistency Checking of Multi-lateral Collaborations Andreas Wombacher University of Twente Enschede The Netherlands a.wombacher@utwente.nl Abstract Decentralized consistency checking
More informationCourse Modelling of Concurrent Systems Summer Semester 2016 University of Duisburg-Essen
Course Modelling of Concurrent Systems Summer Semester 2016 University of Duisburg-Essen Harsh Beohar LF 265, harsh.beohar@uni-due.de Harsh Beohar Course Modelling of Concurrent Systems 1 Course handler
More informationT Reactive Systems: Kripke Structures and Automata
Tik-79.186 Reactive Systems 1 T-79.186 Reactive Systems: Kripke Structures and Automata Spring 2005, Lecture 3 January 31, 2005 Tik-79.186 Reactive Systems 2 Properties of systems invariants: the system
More informationA counter-example to the minimal coverability tree algorithm
A counter-example to the minimal coverability tree algorithm A. Finkel, G. Geeraerts, J.-F. Raskin and L. Van Begin Abstract In [1], an algorithm to compute a minimal coverability tree for Petri nets has
More informationBehavioural Equivalences and Abstraction Techniques. Natalia Sidorova
Behavioural Equivalences and Abstraction Techniques Natalia Sidorova Part 1: Behavioural Equivalences p. p. The elevator example once more How to compare this elevator model with some other? The cabin
More informationFundamental Algorithms for System Modeling, Analysis, and Optimization
Fundamental Algorithms for System Modeling, Analysis, and Optimization Stavros Tripakis, Edward A. Lee UC Berkeley EECS 144/244 Fall 2014 Copyright 2014, E. A. Lee, J. Roydhowdhury, S. A. Seshia, S. Tripakis
More informationA Frame Study for Post-Processing Analysis on System Behavior: A Case Study of Deadline Miss Detection
Journal of Computer Science 6 (12): 1505-1510, 2010 ISSN 1549-3636 2010 Science Publications A Frame Study for Post-Processing Analysis on System Behavior: A Case Study of Deadline Miss Detection Junghee
More information