Formal Methods Information (Methods Formal) @ Demoz.org

Formal Methods Information

In computer science and software engineering, formal methods are a particular kind of mathematically-based techniques for the specification, development and verification of software and hardware systems.^[1] The use of formal methods for software and hardware design is motivated by the expectation that, as in other engineering disciplines, performing appropriate mathematical analysis can contribute to the reliability and robustness of a design.^[2] However, the high cost of using formal methods means that they are usually only used in the development of high-integrity systems,^[3] where safety or security is of utmost importance.

Formal methods are best described as the application of a fairly broad variety of theoretical computer science fundamentals, in particular logic calculi, formal languages, automata theory, and program semantics, but also type systems and algebraic data types to problems in software and hardware specification and verification.^[4]

1 Taxonomy
- 1.1 Lightweight formal methods
2 Uses
3 Criticisms
4 Formal methods and notations
5 See also
6 References
7 External links

Taxonomy

Formal methods can be used at a number of levels:

Level 0: Formal specification may be undertaken and then a program developed from this informally. This has been dubbed formal methods lite. This may be the most cost-effective option in many cases.

Level 1: Formal development and formal verification may be used to produce a program in a more formal manner. For example, proofs of properties or refinement from the specification to a program may be undertaken. This may be most appropriate in high-integrity systems involving safety or security.

Level 2: Theorem provers may be used to undertake fully formal machine-checked proofs. This can be very expensive and is only practically worthwhile if the cost of mistakes is extremely high (e.g., in critical parts of microprocessor design).

Further information on this is expanded below.

As with programming language semantics, styles of formal methods may be roughly classified as follows:

Denotational semantics, in which the meaning of a system is expressed in the mathematical theory of domains. Proponents of such methods rely on the well-understood nature of domains to give meaning to the system; critics point out that not every system may be intuitively or naturally viewed as a function.
Operational semantics, in which the meaning of a system is expressed as a sequence of actions of a (presumably) simpler computational model. Proponents of such methods point to the simplicity of their models as a means to expressive clarity; critics counter that the problem of semantics has just been delayed (who defines the semantics of the simpler model?).
Axiomatic semantics, in which the meaning of the system is expressed in terms of preconditions and postconditions which are true before and after the system performs a task, respectively. Proponents note the connection to classical logic; critics note that such semantics never really describe what a system does (merely what is true before and afterwards).

Lightweight formal methods

Some practitioners believe that the formal methods community has overemphasized full formalization of a specification or design.^[5]^[6] They contend that the expressiveness of the languages involved, as well as the complexity of the systems being modelled, make full formalization a difficult and expensive task. As an alternative, various lightweight formal methods, which emphasize partial specification and focused application, have been proposed. Examples of this lightweight approach to formal methods include the Alloy object modelling notation,^[7] Denney's synthesis of some aspects of the Z notation with use case driven development,^[8] and the CSK VDM Tools.^[9]

Uses

Formal methods can be applied at various points through the development process.

Specification

Formal methods may be used to give a description of the system to be developed, at whatever level(s) of detail desired. This formal description can be used to guide further development activities (see following sections); additionally, it can be used to verify that the requirements for the system being developed have been completely and accurately specified.

The need for formal specification systems has been noted for years. In the ALGOL 58 report^[10], John Backus presented a formal notation for describing programming language syntax (later named Backus Normal Form then renamed Backus-Naur Form (BNF)^[11]). Backus also wrote that a formal description of the meaning of syntactically-valid ALGOL programs wasn't completed in time for inclusion in the report. "Therefor the formal treatment of the semantics of legal programs will be included in a subsequent paper." It never appeared.

Development

Once a formal specification has been produced, the specification may be used as a guide while the concrete system is developed during the design process (i.e., realized typically in software, but also potentially in hardware). For example:

If the formal specification is in an operational semantics, the observed behavior of the concrete system can be compared with the behavior of the specification (which itself should be executable or simulateable). Additionally, the operational commands of the specification may be amenable to direct translation into executable code.
If the formal specification is in an axiomatic semantics, the preconditions and postconditions of the specification may become assertions in the executable code.

Verification

Once a formal specification has been developed, the specification may be used as the basis for proving properties of the specification (and hopefully by inference the developed system).

Human-directed proof

Sometimes, the motivation for proving the correctness of a system is not the obvious need for re-assurance of the correctness of the system, but a desire to understand the system better. Consequently, some proofs of correctness are produced in the style of mathematical proof: handwritten (or typeset) using natural language, using a level of informality common to such proofs. A "good" proof is one which is readable and understandable by other human readers.

Critics of such approaches point out that the ambiguity inherent in natural language allows errors to be undetected in such proofs; often, subtle errors can be present in the low-level details typically overlooked by such proofs. Additionally, the work involved in producing such a good proof requires a high level of mathematical sophistication and expertise.

Automated proof

In contrast, there is increasing interest in producing proofs of correctness of such systems by automated means. Automated techniques fall into two general categories:

Automated theorem proving, in which a system attempts to produce a formal proof from scratch, given a description of the system, a set of logical axioms, and a set of inference rules.
Model checking, in which a system verifies certain properties by means of an exhaustive search of all possible states that a system could enter during its execution.

Neither of these techniques work without human assistance. Automated theorem provers usually require guidance as to which properties are "interesting" enough to pursue; model checkers can quickly get bogged down in checking millions of uninteresting states if not given a sufficiently abstract model.

Proponents of such systems argue that the results have greater mathematical certainty than human-produced proofs, since all the tedious details have been algorithmically verified. The training required to use such systems is also less than that required to produce good mathematical proofs by hand, making the techniques accessible to a wider variety of practitioners.

Critics note that some of those systems are like oracles: they make a pronouncement of truth, yet give no explanation of that truth. There is also the problem of "verifying the verifier"; if the program which aids in the verification is itself unproven, there may be reason to doubt the soundness of the produced results. Some modern model checking tools produce a "proof log" detailing each step in their proof, making it possible to perform, given suitable tools, independent verification.

Criticisms

The field of formal methods has its critics. Handwritten proofs of correctness need significant time (and thus money) to produce, with limited utility other than assuring correctness. This makes formal methods more likely to be used in fields where it is possible to perform automated proofs using software, or in cases where the cost of a fault is high. Example: in railway engineering and aerospace engineering, undetected errors may cause death, so formal methods are more popular in this field than in other application areas.

Formal methods and notations

This section is in a list format that may be better presented using prose. You can help by converting this section to prose, if appropriate. Editing help is available. (August 2009)

There are a variety of formal methods and notations available.

Specification languages

Abstract State Machines (ASMs)
ANSI/ISO C Specification Language (ACSL)
Alloy
B-Method
CADP
Common Algebraic Specification Language (CASL)
Process calculi
- CSP
- LOTOS
- π-calculus
Actor model
Esterel
Lustre
mCRL2
Petri nets
RAISE
Specification and Description Language
Temporal logic of actions (TLA)
USL
VDM
- VDM-SL
- VDM++
Z notation
Rebeca Modeling Language

Model checkers

SPIN
PAT is a powerful free model checker, simulator and refinement checker for concurrent systems and CSP extensions (e.g. shared variables, arrays, fairness).

References

Jean François Monin, Michael Gerard Hinchey, Understanding formal methods, Springer, 2003, ISBN 1852332476

^ R. W. Butler (2001-08-06). "What is Formal Methods?". http://shemesh.larc.nasa.gov/fm/fm-what.html. Retrieved 2006-11-16.
^ C. Michael Holloway. Why Engineers Should Consider Formal Methods. 16th Digital Avionics Systems Conference (27-30 October 1997). http://klabs.org/richcontent/verification/holloway/nasa-97-16dasc-cmh.pdf. Retrieved 2006-11-16.
^ M. Archer, C. Heitmeyer and E. Riccobene. Proving invariants of I/O automata with TAME. Automated Software Engineering, 9, 201-232 (2002).
^ Monin, pp.3-4
^ Daniel Jackson and Jeannette Wing, "Lightweight Formal Methods", IEEE Computer, April 1996
^ Vinu George and Rayford Vaughn, "Application of Lightweight Formal Methods in Requirement Engineering", Crosstalk: The Journal of Defense Software Engineering, January 2003
^ Daniel Jackson, "Alloy: A Lightweight Object Modelling Notation", ACM Transactions on Software Engineering and Methodology (TOSEM), Volume 11, Issue 2 (April 2002), pp. 256-290
^ Richard Denney, Succeeding with Use Cases: Working Smart to Deliver Quality, Addison-Wesley Professional Publishing, 2005, ISBN 0-321-31643-6.
^ Sten Agerholm and Peter G. Larsen, "A Lightweight Approach to Formal Methods", In Proceedings of the International Workshop on Current Trends in Applied Formal Methods, Boppard, Germany, Springer-Verlag, October 1998
^ Backus, J.W. (1959). "The Syntax and Semantics of the Proposed International Algebraic Language of Zürich ACM-GAMM Conference". Proceedings of the International Conference on Information Processing. UNESCO.
^ Knuth, Donald E. (1964) Backus Normal Form vs Backus Naur Form. Communications of the ACM 7(12):735-736

This article was originally based on material from the Free On-line Dictionary of Computing, which is licensed under the GFDL.

External links

Foldoc:formal methods
Formal Methods Wiki
- List of formal methods and tools
- Formal methods publications
- Who's who in formal methods
Formal Methods Europe (FME)

· · Major fields of computer science

Mathematical foundations	Mathematical logic · Set theory · Number theory · Graph theory · Type theory · Category theory · Numerical analysis · Information theory

Theory of computation	Automata theory · Computability theory · Computational complexity theory · Quantum computing theory

Algorithms, data structures	Analysis of algorithms · Algorithm design · Computational geometry

Programming languages, compilers	Parsers · Interpreters · Procedural programming · Object-oriented programming · Functional programming · Logic programming · Programming paradigms

Concurrent, parallel, distributed systems	Multiprocessing · Grid computing · Concurrency control

Software engineering	Requirements analysis · Software design · Computer programming · Formal methods · Software testing · Software development process

System architecture	Computer architecture · Computer organization · Operating systems

Telecommunication, networking	Computer audio · Routing · Network topology · Cryptography

Databases	Database management systems · Relational databases · SQL · Transactions · Database indexes · Data mining

Artificial intelligence	Automated reasoning · Computational linguistics · Computer vision · Evolutionary computation · Expert systems · Machine learning · Natural language processing · Robotics

Computer graphics	Visualization · Computer animation · Image processing

Human–computer interaction	Computer accessibility · User interfaces · Wearable computing · Ubiquitous computing · Virtual reality

Scientific computing	Artificial life · Bioinformatics · Cognitive science · Computational chemistry · Computational neuroscience · Computational physics · Numerical algorithms · Symbolic mathematics

Note: Computer science can also be divided into different topics or fields according to the ACM Computing Classification System.

· · Software engineering

Fields

Requirements analysis • Systems analysis • Software design • Computer programming • Formal methods • Software testing • Software deployment • Software maintenance

Concepts

Data modeling • Enterprise architecture • Functional specification • Modeling language • Programming paradigm • Software • Software architecture • Software development methodology • Software development process • Software quality • Software quality assurance • Software archaeology • Structured analysis

Orientations

Agile • Aspect-oriented • Object orientation • Ontology • Service orientation • SDLC

Models

Development models	Agile • Iterative model • RUP • Scrum • Spiral model • Waterfall model • XP • V-Model • Incremental model • Prototype model

Other models	Automotive SPICE • CMMI • Data model • Function model • Information model • Metamodeling • Object model • Systems model • View model

Modeling languages	IDEF • UML

Software engineers

Kent Beck • Grady Booch • Fred Brooks • Barry Boehm • Ward Cunningham • Ole-Johan Dahl • Tom DeMarco • Martin Fowler • C. A. R. Hoare • Watts Humphrey • Michael A. Jackson • Ivar Jacobson • Craig Larman • James Martin • Bertrand Meyer • David Parnas • Winston W. Royce • Colette Rolland • James Rumbaugh • Niklaus Wirth • Edward Yourdon • Victor Basili

Categories: Formal methods | Software development philosophies | Formal sciences

The above information uses material from Wikipedia and is licensed under the GNU Free Documentation License.
Some facts may not have been fully verified for accuracy. [Disclaimers]
This page was last archived by our server on Fri Dec 30 10:24:02 2011.
Displaying this page or its contents does not use any Wikimedia Foundation's resources.
The owners of this site proudly support the Wikimedia Foundation.

More Information Results for "Formal Methods"

[Hide]▼

[Hide]▲

Related 'Formal Methods' Searches:

Related Terms:	Formal	Methods	Formal Methods	Methods Formal

« Proximate Terms »

or search for "formal methods" in:	Web:	The Entire Web	Web Directory
	This Site:	Page Titles	This Site	Related Terms	Proximate Terms
	News:	Headlines	Events	Blogs
	Reference:	Encyclopedia	Dictionary	eTexts	Quotes
		Answers
	Multimedia:	Images	Videos	Audio
	People:	Discussion Groups	Social Networking
	Shopping:	General Merch.	Consumer Info		Classifieds

Home • About Us • Contact • Copyright • Privacy • About Thumbshots Thumbnails
stats: Recently Viewed Pages | Most Popular Pages | Search Words | Search Phrases | Referrers | Domain Details
sitemaps: xml | rss | html | text

Demoz.org is designed and maintained by K. Keith Karr and is a part of Karr Network.
Web hosting by pair Networks.
See more sites within this network (e.g., e Classifier)
This page was last updated on: Mon May 28 23:56:30 2012 [refresh]