Luc Engelen

Technische Universiteit Eindhoven, Eindhoven, North Brabant, Netherlands

Are you Luc Engelen?

Claim your profile

Publications (10)0 Total impact

  • [Show abstract] [Hide abstract]
    ABSTRACT: As safety standards are widely used in safety-critical domains, such as ISO 26262 in the automotive domain, the use of safety cases to demonstrate product safety is stimulated. It is crucial to ensure that a safety case is both correct and clear. To support this, we proposed to make use of modeling techniques to support safety assurance in the automotive domain. Continuing on our previous work, a rule-based approach enables us to extract a conceptual model from safety standards or project guidelines. Then, by applying structured English using an SBVR vocabulary, the safety case is linked to the conceptual model, and the content of it is enforced to be well structured and controlled. The contribution of the explicit link between the safety case and the conceptual model is to reduce the ambiguity of natural language, and to increase the confidence in the claimed safety assurance. Finally, tooling is developed that enables syntax highlighting and content assistance while editing safety cases.
    No preview · Article · Jan 2015
  • [Show abstract] [Hide abstract]
    ABSTRACT: Safety assurance or certification is one of the most costly and time-consuming tasks in automotive, railway, avionics, and other safety-critical domains. Different transport sectors have developed their own specific sets of safety standards, which creates a big challenge to reuse pre-certified components and share expertise between different transport sectors. In this paper, we propose to use conceptual models in the form of metamodels to support certification data reuse and facilitate safety compliance. A metamodel transformation approach is outlined to derive domain or project specific metamodels using a generic metamodel as basis. Furthermore, we present a metamodel refinement language, which is a domain-specific language that facilitates simple refinement of metamodels. Finally, we use two case studies from the automotive domain to demonstrate our approach and its ability to reuse metamodels across companies.
    No preview · Chapter · Oct 2014
  • Yaping Luo · Luc Engelen · Mark van den Brand
    [Show abstract] [Hide abstract]
    ABSTRACT: In safety-critical domains, conceptual models are created in the form of metamodels using different concepts from possibly overlapping domains. Comparison between those conceptual models can facilitate the reuse of models from one domain to another. This paper describes the mappings detected when comparing metamodels and models used for safety assurance. We use a small use case to discuss the mappings between metamodels and models, and the relations between model elements expressed in mappings. Finally, an illustrative case study is used to demonstrate our approach.
    No preview · Chapter · Sep 2014
  • [Show abstract] [Hide abstract]
    ABSTRACT: As more and more complex software is deployed in safety-critical embedded systems, the challenge of assessing the safety of those systems according to the relevant standards is becoming greater. Due to the extensive manual work required, validating compliance of these systems with safety standards is an expensive and time-consuming activity; furthermore, as products evolve, re-assessment may become necessary. Therefore, obtaining reusable assurance data for safety assessment or re-assessment is very desirable. In this paper, we propose a model-based approach for assuring compliance with safety standards to facilitate reuse in the assessment, qualification and certification processes, using the automotive safety standard ISO 26262 as a specific example. Three different modeling techniques are described: A structure model is introduced to describe the overall structure of the standard; a rule-based technique is used for extracting the conceptual model from it; and a mapping to the software and systems process engineering metamodel provides a description of its processes. Finally, validation in the context of a concrete use case in the FP7 project OPENCOSS shows that the resulting models of our approach resemble the industrial models, but that they, inevitably, require the fine-tuning of domain experts.
    No preview · Chapter · Jun 2013
  • Anton Wijs · Luc Engelen
    [Show abstract] [Hide abstract]
    ABSTRACT: In model-driven software development, models and model refinements are used to create software. To automatically generate correct software from abstract models by means of model refinement, desirable properties of the initial models must be preserved. We propose an explicit-state model checking technique to determine whether refinements are property preserving. We use networks of labelled transition systems (LTSs) to represent models with concurrent components, and formalise refinements as systems of LTS transformation rules. Property preservation checking involves determining how a rule system relates to an input network, and checking bisimilarity between behaviour subjected to transformation and the corresponding behaviour after transformation. In this way, one avoids generating the entire LTS of the new model. Experimental results demonstrate speedups of several orders of magnitude.
    No preview · Conference Paper · Mar 2013
  • Anton Wijs · Luc Engelen
    [Show abstract] [Hide abstract]
    ABSTRACT: When developing complex software systems, it is vital to ensure that the final product satisfies all the stated requirements. Model checking can help to exhaustively check models of such systems, but due to its high computation demands, it is often not practical. In this paper, we present a new technique to check that properties are preserved when a model at a high level of abstraction is refined to one at a lower level through transformations. In this way, correctness of the resulting models can be determined efficiently. This technique has been implemented, and we demonstrate its usefulness in practice.
    No preview · Conference Paper · Oct 2012
  • Source
    Suzana Andova · Mark van den Brand · Luc Engelen
    [Show abstract] [Hide abstract]
    ABSTRACT: A formal definition of the semantics of a domain-specific language (DSL) is a key prerequisite for the verification of the correctness of models specified using such a DSL and of transformations applied to these models. For this reason, we implemented a prototype of the semantics of a DSL for the specification of systems consisting of concurrent, communicating objects. Using this prototype, models specified in the DSL can be transformed to labeled transition systems (LTS). This approach of transforming models to LTSs allows us to apply existing tools for visualization and verification to models with little or no further effort. The prototype is implemented using the ASF+SDF Meta-Environment, an IDE for the algebraic specification language ASF+SDF, which offers efficient execution of the transformation as well as the ability to read models and produce LTSs without any additional pre or post processing.
    Preview · Article · Jun 2011
  • Source
    Luc Engelen · Mark van den Brand
    [Show abstract] [Hide abstract]
    ABSTRACT: Graphical diagrams are the main modelling constructs offered by the popular modelling language UML. Because textual representations of models also have their benefits, we investigated the integration of textual and graphical modelling languages, by comparing two approaches. One approach uses grammarware and the other uses modelware. As a case study, we implemented two versions of a textual alternative for Activity Diagrams, which is an example of a surface language. This paper describes our surface language, the two approaches, and the two implementations that follow these approaches.
    Preview · Article · Sep 2010 · Electronic Notes in Theoretical Computer Science
  • Source
    [Show abstract] [Hide abstract]
    ABSTRACT: This paper presents the main results and conclusions of the Third Rewrite Engines Competition (REC III). This edition of the competition took place as part of the 8th Workshop on Rewriting Logic and its Applications (WRLA 2010), and the systems ASF+SDF, Maude, Stratego/XT, Tom, and TXL participated in it.
    Full-text · Chapter · Feb 2010
  • Source
    [Show abstract] [Hide abstract]
    ABSTRACT: We describe our experiences with the process of designing a domain-specific language (DSL) and corresponding model transformations. The simultaneous development of the language and the transformations has lead to an iterative evolution of the DSL. We identified four main influences on the evolution of our DSL: the problem domain, the target platforms, model quality, and model transformation quality. Our DSL is aimed at modeling the structure and behavior of distributed communicating systems. Simultaneously with the development of our DSL, we implemented three model transformations to different formalisms: one for simulation, one for execution, and one for verification. Transformations to each of these formalisms were implemented one at the time, while preserving the validity of the existing ones. The DSL and the formalisms for simulation, execution, and verification have different semantic characteristics. We also implemented a number of model transformations that bridge the semantic gaps between our DSL and each of the three formalisms. In this paper, we describe our development process and how the aforementioned influences have caused our DSL to evolve.
    Preview · Conference Paper · Jan 2010