Fig 2 - uploaded by Thierry Lecomte
Content may be subject to copyright.
Process for developing an application and the safety library. Both application and safety belt rely on the B method plus some handwritten code -mainly I/O. The safety is based on several features such as: -the detection of a divergent behaviour, -micro-controller liveness regularly checked by messages, -the detection of the inability for a processor to execute an instruction properly 3 , 3 all instructions are tested regularly against an oracle
Source publication
Industrial applications involving formal methods are still exceptions to the general rule. Lack of understanding, employees without proper education, difficulty to integrate existing development cycles, no explicit requirement from the market, etc. are explanations often heard for not being more formal. This article reports some experience about a...
Similar publications
La gamificación se refiere a la utilización de métodos y tácticas de juego en áreas no tradicionales, como la educación. En este trabajo se describe una experiencia basada en la gamificación para la enseñanza del control automático en los estudios de ingeniería, como alternativa o apoyo al sistema de enseñanza tradicional. Esta experiencia se desar...
Citations
... Toward this goal, research must be conducted at the intersection of robotics, control, learning, safety, security, resilience, testing, and formal methods. For example, roboticists must include realistic dynamical models for surrounding information that can be given by learning [28], learning must be interpretable based on test vectors [27], control must account for clashing safety requirements based on dynamics [24], and safety [22], security [33], and resilience [7] must be given formal interpretations that are based on realism but allow partial modeling, precisely to account for the uncertainty arising from coupled learning systems. Two recent improvements that will assist with developing dynamic certification are compositional verification, which relates different model types [5], and more operational data, e.g., high-definition maps for streets in major cities [1]. ...
Autonomous systems are often deployed in complex sociotechnical environments, such as public roads, where they must behave safely and securely. Unlike many traditionally engineered systems, autonomous systems are expected to behave predictably in varying "open world" environmental contexts that cannot be fully specified formally. As a result, assurance about autonomous systems requires us to develop new certification methods and mathematical tools that can bound the uncertainty engendered by these diverse deployment scenarios, rather than relying on static tools.
An attempt to provide a common language between formal models, simulations, real-world (testing) data, and regulatory mechanisms.
The CLEARSY Safety Platform (CSSP) is both a hardware and software platform aimed at developing safety critical applications. A smart combination of hardware features (double processor) and formal method (B method and code generators) was used to produce a SIL4-ready platform where safety principles are built-in. A first version, SK0, was released for education purpose with a restricted application template. An industry-strength version, CS0, was then released, providing more degrees of freedom at the cost of a more tricky development and engineering process. This article presents the new CS0 modelling paradigm, lists the conditions to be verified by the system developed, and briefly introduces a first application, software only: a safety flasher.