TY - JOUR
T1 - Oeritte
T2 - User-Friendly Counterexample Explanation for Model Checking
AU - Ovsiannikova, Polina
AU - Buzhinsky, Igor
AU - Pakonen, Antti
AU - Vyatkin, Valeriy
N1 - Publisher Copyright:
CCBY
Copyright:
Copyright 2021 Elsevier B.V., All rights reserved.
PY - 2021/4/15
Y1 - 2021/4/15
N2 - Thorough verification is a part of the design process of instrumentation and control systems if they must comply with crucial safety requirements. Model checking can be applied to the formal model of such a system to reason about its correctness based on the specification provided. When a violation occurs, the model checking tool outputs the proof of the violation in the form of a failure trace, which represents a state sequence of system model transitions where the requirement does not hold. This sequence, however, even for modular systems, is a mere table of values. Due to the lack of any insights into the inner model processes and structures that caused a problem, the debugging process of the formal model becomes time and effort consuming. The tool presented in this paper, Oeritte, is aimed at assisting the analyst in this challenge. It implements a method for automatic visual counterexample explanation which includes reasoning both over the falsified LTL formula and over the NuSMV function block diagram of the formal model of the system. The tool is applied to an industrial-sized safety control system of a nuclear power plant.
AB - Thorough verification is a part of the design process of instrumentation and control systems if they must comply with crucial safety requirements. Model checking can be applied to the formal model of such a system to reason about its correctness based on the specification provided. When a violation occurs, the model checking tool outputs the proof of the violation in the form of a failure trace, which represents a state sequence of system model transitions where the requirement does not hold. This sequence, however, even for modular systems, is a mere table of values. Due to the lack of any insights into the inner model processes and structures that caused a problem, the debugging process of the formal model becomes time and effort consuming. The tool presented in this paper, Oeritte, is aimed at assisting the analyst in this challenge. It implements a method for automatic visual counterexample explanation which includes reasoning both over the falsified LTL formula and over the NuSMV function block diagram of the formal model of the system. The tool is applied to an industrial-sized safety control system of a nuclear power plant.
KW - Counterexample explanation
KW - counterexample visualization
KW - Delays
KW - function block diagram
KW - Input variables
KW - Model checking
KW - NuSMV
KW - Power generation
KW - Safety
KW - Tools
KW - user-friendly model checking
KW - Visualization
UR - http://www.scopus.com/inward/record.url?scp=85104629291&partnerID=8YFLogxK
U2 - 10.1109/ACCESS.2021.3073459
DO - 10.1109/ACCESS.2021.3073459
M3 - Article
AN - SCOPUS:85104629291
SN - 2169-3536
VL - 9
SP - 61383
EP - 61397
JO - IEEE Access
JF - IEEE Access
M1 - 9405616
ER -