Loading...
Please wait, while we are loading the content...
Similar Documents
Proceedings of the Workshop on Rigorous Engineering of Fault-Tolerant Systems (REFT 2005).
| Content Provider | Semantic Scholar |
|---|---|
| Author | Butler, Michael R. G. Jones, Cliff B. Romanovsky, Alexander Troubitsyna, Elena |
| Copyright Year | 2005 |
| Abstract | In order to specify a control system one needs a model of the domain being controlled including its interface to the controlling machine. It should be adequate to formally specify: • the overall system's required behaviour (1), • the assumptions the machine can rely on about the domain's (normal) behaviour (2), and • the constraints on the way the domain may be controlled via its interface. To accommodate fault-tolerance one also needs to be able to formally specify: • hazardous behaviour of the system (to be avoided), • possible misbehaviour of the domain -faults or failure modes -this weakens the assumptions (2), • allowable responses to faults -this weakens (1), and • healthy behaviour of the domain to allow checks to be made on the domain's behaviour -this should imply the assumptions (2). Choice of an adequate level of abstraction for the domain model is essential (and difficult). It should allow the specification of the above characteristics without including extraneous characteristics. For this an engineer with domain experience is typically required. This work is conducted in cooperation with Michael Jackson and Cliff Jones. |
| File Format | PDF HTM / HTML |
| Alternate Webpage(s) | http://www.cs.ncl.ac.uk/research/pubs/trs/papers/915.pdf |
| Language | English |
| Access Restriction | Open |
| Content Type | Text |
| Resource Type | Proceeding |
