Sixth International Conference on Application of Concurrency to System Design (ACSD'06), 2006
Due to the state-space size explosion problem, behavioral analysis techniques are difficult to sc... more Due to the state-space size explosion problem, behavioral analysis techniques are difficult to scale up to industrial size problems. Our group couples research on analysis tools with an introspection on modeling and software engineering techniques.
2009 IEEE/IFIP International Symposium on Rapid System Prototyping, 2009
The verification of High-Integrity Real-Time systems combines heterogeneous concerns: preserving ... more The verification of High-Integrity Real-Time systems combines heterogeneous concerns: preserving timing constraints, ensuring behavioral invariants, or specific execution patterns. Furthermore, each concern requires specific verification techniques; and combining all these techniques require automation to preserve semantics and consistency.
The complexity of middleware leads to complex Application Programming Interfaces (APIs) and seman... more The complexity of middleware leads to complex Application Programming Interfaces (APIs) and semantics, supported by configurable components in the middleware. Those components are selected to provide the desired semantics. Yet, incorrect configuration can lead to faulty middleware executions, detected late in the development cycle. We use formals methods to tackle this problem. They allow us to find appropriate composition of middleware components and the use of their APIs, and to detect valid or faulty sequences. To provide reusable results, we modeled a canonical middleware architecture using Z. We propose a validation scenario to verify middleware's invariants. We define invariants to exhibit inconsistent usage of these APIs. The specification has been checked with the Z/EVES [13] theorem prover. * This work is funded in part by the ANR/RNTL Flex-eWare project.
The definition and construction of complex computer-based systems require not just software engin... more The definition and construction of complex computer-based systems require not just software engineering knowledge, but also many other domainspecific techniques to ensure many system's functional and non-functional properties. Hence, there is a trend to move away from programming languages to models on which one can reason: model-driven engineering. Yet, this remains a complex task: one need to master many techniques. In this paper, we claim that MDE is incomplete: it is "just" an implementation framework to support advanced model-based techniques, verification of systems non-functional properties, code generation, etc. There is a conceptual gap to fill to know "what" to do with models. We propose to switch from MDE to VDE: Verification-Driven Engineering, so that the user knows how to model a system to analyze it. We sum up existing techniques and their relevant application domains.
2009 IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing, 2009
Modeling of Distributed Real-Time Embedded (DRE) systems allows one to evaluate models behavior o... more Modeling of Distributed Real-Time Embedded (DRE) systems allows one to evaluate models behavior or schedulability. However, assessing that a DRE system's behavior is correct in the causal domain is a challenge: one need to elaborate a mathematical abstraction suitable for checking properties like absence of deadlock or safety conditions (i.e. an invariant remains all over the execution).
Sixth International Conference on Application of Concurrency to System Design (ACSD'06), 2006
Due to the state-space size explosion problem, behavioral analysis techniques are difficult to sc... more Due to the state-space size explosion problem, behavioral analysis techniques are difficult to scale up to industrial size problems. Our group couples research on analysis tools with an introspection on modeling and software engineering techniques.
2007 IEEE Intelligent Transportation Systems Conference, 2007
This paper is about the application of formal methods to model and analyze complex systems in the... more This paper is about the application of formal methods to model and analyze complex systems in the context of Intelligent Transport Systems (ITS). It suggests a specification methodology based on a set of UML diagrams to generate a complete analyzable formal model. The methodology integrates the requirements of incremental and modular development for complex systems. The analysis made on the formal model is carried out through qualitative criteria, verified by model checking tools. The proposed guidelines are illustrated by a case study which considers cars in traffic situations, exchanging information about their states to reach consistency among their driving decisions.
Sixth International Conference on Application of Concurrency to System Design (ACSD'06), 2006
Due to the state-space size explosion problem, behavioral analysis techniques are difficult to sc... more Due to the state-space size explosion problem, behavioral analysis techniques are difficult to scale up to industrial size problems. Our group couples research on analysis tools with an introspection on modeling and software engineering techniques.
2009 IEEE/IFIP International Symposium on Rapid System Prototyping, 2009
The verification of High-Integrity Real-Time systems combines heterogeneous concerns: preserving ... more The verification of High-Integrity Real-Time systems combines heterogeneous concerns: preserving timing constraints, ensuring behavioral invariants, or specific execution patterns. Furthermore, each concern requires specific verification techniques; and combining all these techniques require automation to preserve semantics and consistency.
The complexity of middleware leads to complex Application Programming Interfaces (APIs) and seman... more The complexity of middleware leads to complex Application Programming Interfaces (APIs) and semantics, supported by configurable components in the middleware. Those components are selected to provide the desired semantics. Yet, incorrect configuration can lead to faulty middleware executions, detected late in the development cycle. We use formals methods to tackle this problem. They allow us to find appropriate composition of middleware components and the use of their APIs, and to detect valid or faulty sequences. To provide reusable results, we modeled a canonical middleware architecture using Z. We propose a validation scenario to verify middleware's invariants. We define invariants to exhibit inconsistent usage of these APIs. The specification has been checked with the Z/EVES [13] theorem prover. * This work is funded in part by the ANR/RNTL Flex-eWare project.
The definition and construction of complex computer-based systems require not just software engin... more The definition and construction of complex computer-based systems require not just software engineering knowledge, but also many other domainspecific techniques to ensure many system's functional and non-functional properties. Hence, there is a trend to move away from programming languages to models on which one can reason: model-driven engineering. Yet, this remains a complex task: one need to master many techniques. In this paper, we claim that MDE is incomplete: it is "just" an implementation framework to support advanced model-based techniques, verification of systems non-functional properties, code generation, etc. There is a conceptual gap to fill to know "what" to do with models. We propose to switch from MDE to VDE: Verification-Driven Engineering, so that the user knows how to model a system to analyze it. We sum up existing techniques and their relevant application domains.
2009 IEEE International Symposium on Object/Component/Service-Oriented Real-Time Distributed Computing, 2009
Modeling of Distributed Real-Time Embedded (DRE) systems allows one to evaluate models behavior o... more Modeling of Distributed Real-Time Embedded (DRE) systems allows one to evaluate models behavior or schedulability. However, assessing that a DRE system's behavior is correct in the causal domain is a challenge: one need to elaborate a mathematical abstraction suitable for checking properties like absence of deadlock or safety conditions (i.e. an invariant remains all over the execution).
Sixth International Conference on Application of Concurrency to System Design (ACSD'06), 2006
Due to the state-space size explosion problem, behavioral analysis techniques are difficult to sc... more Due to the state-space size explosion problem, behavioral analysis techniques are difficult to scale up to industrial size problems. Our group couples research on analysis tools with an introspection on modeling and software engineering techniques.
2007 IEEE Intelligent Transportation Systems Conference, 2007
This paper is about the application of formal methods to model and analyze complex systems in the... more This paper is about the application of formal methods to model and analyze complex systems in the context of Intelligent Transport Systems (ITS). It suggests a specification methodology based on a set of UML diagrams to generate a complete analyzable formal model. The methodology integrates the requirements of incremental and modular development for complex systems. The analysis made on the formal model is carried out through qualitative criteria, verified by model checking tools. The proposed guidelines are illustrated by a case study which considers cars in traffic situations, exchanging information about their states to reach consistency among their driving decisions.
Uploads
Papers by Xavier Renault