Behaviour-Driven Formal Model Development of the ETCS Hybrid Level 3

Michael Butler, Dana Dghaym, Thai Son Hoang, Tope Omitola, Colin Snook, Andreas Fellner, Rupert Schlick, Thorsten Tarrach, Tomas Fischer, Peter Tummeltshammer
2019 2019 24th International Conference on Engineering of Complex Computer Systems (ICECCS)  
Behaviour driven formal model development (BDFMD) enables domain engineers to influence and validate mathematically precise and verified specifications. In previous work we proposed a process where manually authored scenarios are used initially to support the requirements and help the modeller. The same scenarios are used to verify behavioural properties of the model. The model is then mutated to automatically generate scenarios that have a more complete coverage than the manual ones. These
more » ... matically generated scenarios are used to animate the model in a final acceptance stage. In this paper, we discuss lessons learned from applying this BDFMD process to a real-life specification: The European Train Control Systems (ETCS) Hybrid Level 3. During the case study, we have developed our understanding of the process, modifying the way we do some stages and developing improved tool support to make the process more efficient. We discuss (1) the need for abstract scenarios during incremental model development and verification, (2) tools and techniques developed to make the running of scenarios more efficient, and (3) improvements to tools that generate new test cases to improve coverage.
doi:10.1109/iceccs.2019.00018 dblp:conf/iceccs/ButlerDHOSFSTFT19 fatcat:nsml6asc4rgu7as2syv6rfabzm