A Formal Verification Study on the Rotterdam Storm Surge Barrier
نویسندگان
چکیده
This paper presents the results of the validation and verification of a crucial component of BOS, a large safety-critical system that decides when to close and open the Maeslantkering, a storm surge barrier near the city of Rotterdam in the Netherlands. BOS was specified in the formal language Z and model checking has been applied to some of its subsystems during its development. A lightweight model of the C++ code and the Z specification of the component was manually developed in the theorem prover PVS. As a result, some essential mismatches between specification and code were identified. We have also validated the Z specification itself by the use of challenge theorems, to assess particular design choices. Tools have been used to exhaustively search for inconsistencies between the original specification and the challenge theorems, which led to deeper issues with the specification itself.
منابع مشابه
Influence of a Storm Surge Barrier’s Operation on the Flood Frequency in the Rhine Delta Area
The Rhine River Delta is crucial to the Dutch economy. The Maeslant barrier was built in 1997 to protect the Rhine estuary, with the city and port of Rotterdam, from storm surges. This research takes a simple approach to quantify the influence of the Maeslant storm surge barrier on design water levels behind the barrier. The dikes in the area are supposed to be able to withstand these levels. E...
متن کاملFormally Verified Modular Semantics
This chapter presents the results of the validation and verification of a crucial component of BOS, a large safety-critical system that decides when to close and open the Maeslantkering, a storm surge barrier near the city of Rotterdam in the Netherlands. BOS was specified in the formal language Z and model checking has been applied to some of its subsystems during its development. A lightweigh...
متن کاملSoftware Engineering with Formal Methods: The Development of a Storm Surge Barrier Control System Revisiting Seven Myths of Formal Methods
This paper discusses the use of formal methods in the development of the control system for the Maeslant Kering. The Maeslant Kering is the movable dam which has to protect Rotterdam from floodings while, at (almost) the same time, not restricting ship traffic to the port of Rotterdam. The control system, called Bos, completely autonomously decides about closing and opening of the barrier and, ...
متن کاملTimed Testing with TorX: the Oosterschelde Storm Surge Barrier
We report on the automatic testing of the control software of the Oosterschelde kering, a storm surge barrier. The automatic testing includes automatic test case derivation and automatic test execution. This project is a joint effort of CMG and the computer science group “Formal Methods and Tools” at the university of Twente. We introduce the way we currently test at the Formal Methods and Tool...
متن کاملA CYCLONE INDUCED STORM SURGE FORECASTING MODEL FOR THE COAST OF BANGLADESH WITH APPLICATION TO THE CYCLONE `SIDR'
The coast of Bangladesh has a specialty in terms of high bending and many off- shore islands. Incorporation of the coastline and island boundaries properly in the numerical scheme is essential for accurate estimation of water levels due to surge. For that purpose a numerical scheme consisting of very fine mesh is required along the coastal belt, whereas this is unnecessary away from the coast. In...
متن کامل