Formal Semantics and Analysis of Behavioral AADL Models in Real-Time Maude

Ölveczky, Peter Csaba; Boronat, Artur; Meseguer, José

doi:10.1007/978-3-642-13464-7_5

Cited by 62 publications

(72 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, Ocarina can be easily integrated as a backend for other AADL editors (already used through OSATE and AADL Inspector tools), which increases the visibility of our work. AADL Formal approaches are often based on model transformation into different languages such as Lustre [13], TLA+ [22], Signal [5], ACSR [24], TASM [25], Fiacre [4], Real-time Maude [20] and BIP [8]. As examples: many work [5,26] are around the Polychrony platform and Signal language for synchronous verification of AADL models where behavior is specified by BA or Simulink.…”

Section: Related Workmentioning

confidence: 99%

“…Many projects and tool-chains are dedicated to AADL processing, that often adopt model transformation techniques to allow formal analyses. Several AADL formal semantics are defined using different formalisms such as Petri nets [21,23], timed automata [12,14] and different process algebras [4,5,8,20,25]. These approaches are implemented within platforms such as OSATE and TOPCASED aiming the convenient reuse of existing tools like UPPAAL, Tina and Polychrony.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An ocarina extension for AADL formal semantics generation

Mkaouar

Zalila

Hugues

et al. 2018

Proceedings of the 33rd Annual ACM Symposium on Applied Computing

View full text Add to dashboard Cite

The formal verification has become a recommended practice in safety-critical software engineering. The hand-written of the formal specification requires a formal expertise and may become complex especially with large systems. In such context, the automatic generation of the formal specification seems helpful and rewarding, particularly for reused and generic mapping such as hardware representations and real-time features. In this paper, we aim to formally verify real-time systems designed by AADL language. We propose an extension AADL2LNT of the Ocarina tool suite allowing the automatic generation of an LNT specification to draw a gateway for the CADP formal analysis toolbox. This work is illustrated with the Pacemaker case study.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

An ocarina extension for AADL formal semantics generation

Mkaouar

Zalila

Hugues

et al. 2018

Proceedings of the 33rd Annual ACM Symposium on Applied Computing

View full text Add to dashboard Cite

show abstract

“…In order to perform formal validation and analysis on AADL models, formal models and frameworks are widely used in the process [25,10,26,27,7,8,11,28]. We follow the similar approach, but in comparison, we concentrate on the formal timing analysis of the system and co-modeling, which include clock calculus, affine clock relations, profiling, and architecture exploration.…”

Section: Related Workmentioning

confidence: 99%

“…It is also possible to perform symbolic model checking and formal timing analysis techniques on our polychronous model. The AADL2Maude tool [11] concentrates on the ambiguity of certain AADL semantics and thus intro-duces a real-time rewriting logic semantics, for a behavioral sub-set of AADL. Simulation and model checking based on LTL [32] are enabled in AADL2Maude.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Polychronous modeling, analysis, verification and simulation for timed software architectures

Yu¹,

Ma²,

Gautier³

et al. 2013

Journal of Systems Architecture

View full text Add to dashboard Cite

High-level modeling languages and standards, such as Simulink, SysML, MARTE and AADL (Architecture Analysis & Design Language), are increasingly adopted in the design of embedded systems so that system-level analysis, verification and validation (V&V) and architecture exploration are carried out as early as possible. This paper presents our main contribution in this aim by considering embedded systems architectural modeling in AADL and functional modeling in Simulink; an original clock-based timing analysis and validation of the overall system is achieved via a formal polychronous/multi-clock model of computation. In order to avoid semantics ambiguities of AADL and Simulink, their features related to real-time and logical time properties are first studied. We then endue them with a semantics in the polychronous model of computation. We use this model of computation to jointly analyze the non-functional real-time and logical-time properties of the system (by means of logical and affine clock relations). Our approach demonstrates, through several case-studies conducted with Airbus and C-S Toulouse in the European projects CESAR and OPEES, how to cope with the system-level timing verification and validation of high-level AADL and Simulink components in the framework of Polychrony, a synchronous modeling framework dedicated to the design of safety-critical embedded systems.

show abstract

Unified Graphical Co-modelling of Cyber-Physical Systems Using AADL and Simulink/Stateflow

Zhan

Lin

Wang

et al. 2019

Unifying Theories of Programming

View full text Add to dashboard Cite

The efficient design of safety-critical embedded systems involves, at least, the three modelling aspects common to all cyber-physical systems (CPSs): functionalities, physics and architectures. Existing modelling formalisms cannot provide strong support to take all of these three dimensions into account uniformly, e.g., AADL is a precise formalism for modelling architecture and prototyping hardware platforms, but it is weak for modelling physical and software behaviours and their interaction. By contrast, Simulink/Stateflow is strong for modelling physical and software behaviour and their interaction, but weak for modelling architecture and hardware platforms. To address this issue, we consider the combination of AADL and Simulink/Stateflow, two widely used graphical modelling formalisms for CPS design in industry. This combination provides a unified graphical co-modelling formalism supporting the design of CPSs from all three software, hardware and physics perspectives uniformly. This paper focuses on the required concepts to combine them together, and outlines how to verify and simulate a system model defined using the combined graphical views of its constituents, by considering the case study of an Isollete System.

show abstract

Formal Semantics and Analysis of Behavioral AADL Models in Real-Time Maude

Cited by 62 publications

References 14 publications

An ocarina extension for AADL formal semantics generation

An ocarina extension for AADL formal semantics generation

Polychronous modeling, analysis, verification and simulation for timed software architectures

Unified Graphical Co-modelling of Cyber-Physical Systems Using AADL and Simulink/Stateflow

Contact Info

Product

Resources

About