Towards Formal Certification of Software Components
نویسنده
چکیده
Software certification as it is practised today guarantees that certain standards are kept in the process of software development. However, this does not make any statements about the actual quality of implemented code. We propose an approach to certify the non-functional properties of componentbased software which is based on a formal refinement calculus, using the performance abstractions of the Palladio Component Model. The certification process guarantees the conformance of a component implementation to its specification regarding performance properties, without having to expose the source code of the product to a certification authority. Instead, the provable refinement of an abstract performance specification to the performance description of the implementation, together with evidence that the performance description reflects the properties of the component implementation, yields the certification seal. The refinement steps are described as Prolog rules so that the validity of refinement between two performance descriptions can be checked automatically.
منابع مشابه
Specifying and Verifying Collaborative Behavior in Component-Based Systems
...............................................................................................ii Research Grants ...................................................................................iii Acknowledgements..................................................................................v CHAPTER 1: INTRODUCTION 1.1 COMPONENT CERTIFICATION WITH REUSE.....................................
متن کاملCorrectness Proof of a Middleware GSI Certification-Based Replication Protocol
This paper provides a formal specification and proof of correctness of a basic Generalized SI certification-based data replication protocol for database middleware architectures. It has been modeled using a state transition system, as well as the main system components, allowing a perfect match with the usual deployment in a middleware system. The proof encompasses both safety and liveness prop...
متن کاملMind the Gap: Formal Verification and the Common Criteria (Discussion Paper)
It is a common belief that the rise of standardized software certification schemes like the Common Criteria (CC) would give a boost to formal verification, and that software certification may be a killer application for program verification. However, while formal models are indeed used throughout high-assurance certification, verification of the actual implementation is not required by the CC a...
متن کاملA Generic Software Safety Document Generator
Formal certification is based on the idea that a mathematical proof of some property of a piece of software can be regarded as a certificate of correctness which, in principle, can be subjected to external scrutiny. In practice, however, proofs themselves are unlikely to be of much interest to engineers. Nevertheless, it is possible to use the information obtained from a mathematical analysis o...
متن کاملOn the Role of Formal Methods in Software Certification: An Experience Report
This paper describes how formal methods were used to produce evidence in a certification, based on the Common Criteria, of a security-critical software system. The evidence included a top level specification (TLS) of the security-relevant software behavior, a formal statement of the required security properties, proofs that the specification satisfied the properties, and a demonstration that th...
متن کامل