Hemodialysis machine in hybrid Event-B
R Banach - Abstract State Machines, Alloy, B, TLA, VDM, and Z: 5th …, 2016 - Springer
The hemodialysis machine case study is examined in Hybrid Event-B (an extension of Event-
B that includes provision for continuously varying behaviour as well as the usual discrete …
B that includes provision for continuously varying behaviour as well as the usual discrete …
The landing gear system in multi-machine Hybrid Event-B
R Banach - International Journal on Software Tools for Technology …, 2017 - Springer
A system development case study problem based on a set of aircraft landing gear is
examined in Hybrid Event-B (an extension of Event-B that includes provision for …
examined in Hybrid Event-B (an extension of Event-B that includes provision for …
Experiences in the development and usage of a privacy requirements framework
I Oliver - 2016 IEEE 24th International Requirements …, 2016 - ieeexplore.ieee.org
Any reasonable implementation of privacy requirements can not be made through legal
compliance alone. The belief that a software system can be developed without privacy being …
compliance alone. The belief that a software system can be developed without privacy being …
An Event-B based generic framework for hybrid systems formal modelling
Designing hybrid systems requires the handling of discrete and continuous behaviours. The
formal verification of such systems revolves around the use of heavy mathematical features …
formal verification of such systems revolves around the use of heavy mathematical features …
Retrenchment and refinement interworking: the tower theorems
R Banach, C JESKE - Mathematical Structures in Computer Science, 2015 - cambridge.org
Retrenchment is a flexible model evolution formalism that compensates for the limitations
imposed by specific formulations of refinement. Its refinement-like proof obligations feature …
imposed by specific formulations of refinement. Its refinement-like proof obligations feature …
Composition mechanisms for retrenchment
R Banach, C Jeske, M Poppleton - The Journal of Logic and Algebraic …, 2008 - Elsevier
Retrenchment is a flexible model evolution formalism that arose as a reaction to the
limitations imposed by refinement, and for which the proof obligations feature additional …
limitations imposed by refinement, and for which the proof obligations feature additional …
A formal method for developing provably correct fault-tolerant systems using partial refinement and composition
R Jeffords, C Heitmeyer, M Archer… - FM 2009: Formal Methods …, 2009 - Springer
It is widely agreed that building correct fault-tolerant systems is very difficult. To address this
problem, this paper introduces a new model-based approach for developing masking fault …
problem, this paper introduces a new model-based approach for developing masking fault …
Graded refinement, retrenchment, and simulation
R Banach - ACM Transactions on Software Engineering and …, 2023 - dl.acm.org
Refinement of formal system models towards implementation has been a mainstay of system
development since the inception of formal and Correct by Construction approaches to …
development since the inception of formal and Correct by Construction approaches to …
A continuous ASM modelling approach to pacemaker sensing
The cardiac pacemaker system, proposed as a problem topic in the Verification Grand
Challenge, offers a range of difficulties to address for formal specification, development, and …
Challenge, offers a range of difficulties to address for formal specification, development, and …
Continuous KAOS, ASM, and formal control system design across the continuous/discrete modeling interface: a simple train stopping application
A very simple model for train stopping is used as a vehicle for investigating how the
development of a control system, initially designed in the continuous domain and …
development of a control system, initially designed in the continuous domain and …