Specifying and proving properties of timed I/O automata using Tempo

Timed I/O automata (TIOA) is a mathematical framework for modeling and verification of distributed systems that involve discrete and continuous dynamics. TIOA can be used for example, to model a real-time software component controlling a physical process. The TIOA model is sufficiently general to subsume other models in use for timed systems. The Tempo Toolset, currently under development, is aimed at supporting system development based on TIOA specifications. The Tempo Toolset is an extension of the IOA toolkit, which provides a specification simulator, a code generator, and both model checking and theorem proving support for analyzing specifications. This paper focuses on the modeling of timed systems and their properties with TIOA and on the use of TAME4TIOA, the TAME1 (Timed Automata Modeling Environment) based theorem proving support provided in Tempo, for proving system properties, including timing properties. Several examples are provided by way of illustration. 1TAME is a trademark of the U.S. Naval Research Laboratory. This research is funded by the Air Force Office of Scientific Research and the Office of Naval Research. M. Archer ( ) Naval Research Laboratory, Code 5546, Washington, DC 20375, USA e-mail: [email protected] H. Lim · N. Lynch · S. Mitra · S. Umeno Computer Science and Artificial Intelligence Laboratory, Massachusetts Institute of Technology, Cambridge, MA 02139, USA H. Lim e-mail: [email protected] N. Lynch e-mail: [email protected] S. Mitra e-mail: [email protected] S. Umeno e-mail: [email protected]