Engineering and theoretical underpinnings of retrenchment
Refinement is reviewed, highlighting in particular the distinction between its use as a
specification constructor at a high level, and its use as an implementation mechanism at a …
specification constructor at a high level, and its use as an implementation mechanism at a …
Retrenchment, refinement, and simulation
R Banach, M Poppleton - ZB 2000: Formal Specification and Development …, 2000 - Springer
Retrenchment is introduced as a liberalisation of refinement intended to address some of the
shortcomings of refinement as sole means of progressing from simple abstract models to …
shortcomings of refinement as sole means of progressing from simple abstract models to …
Defect oriented testing of the strap problem under process variations in DRAMs
Z Al-Ars, S Hamdioui, AJ van de Goor… - … IEEE International Test …, 2008 - ieeexplore.ieee.org
Efficient and effective methods are needed to generate defect oriented tests for todays VLSI
circuits. This paper describes an industrial case study for using defect injection and Spice …
circuits. This paper describes an industrial case study for using defect injection and Spice …
Retrenchment, and the generation of fault trees for static, dynamic and cyclic systems
For large systems, the manual construction of fault trees is error-prone, encouraging
automated techniques. In this paper we show how the retrenchment approach to formal …
automated techniques. In this paper we show how the retrenchment approach to formal …
Maximally abstract retrenchments
R Banach - ICFEM 2000. Third IEEE International Conference …, 2000 - ieeexplore.ieee.org
The more obvious and well known drawbacks of using refinement as the sole means of
progressing from an abstract model to a concrete implementation are reviewed …
progressing from an abstract model to a concrete implementation are reviewed …
Controlling control systems: An application of evolving retrenchment
M Poppleton, R Banach - International Conference of B and Z Users, 2002 - Springer
We review retrenchment as a liberalisation of refinement, for the description of applications
too rich (eg using continuous and infinite types) for refinement. A specialisation of the notion …
too rich (eg using continuous and infinite types) for refinement. A specialisation of the notion …
A deidealisation semantics for KAOS
R Banach - Proceedings of the 2010 ACM Symposium on Applied …, 2010 - dl.acm.org
KAOS is a goal directed requirements engineering framework based on the decomposition
and refinement of goals. Decomposition and refinement continue until a point is reached at …
and refinement of goals. Decomposition and refinement continue until a point is reached at …
Retrenchment: Extending the reach of refinement
MR Poppleton, RH Banach - 14th IEEE International …, 1999 - ieeexplore.ieee.org
Discusses a simple example that demonstrates various expressive limitations of the
refinement calculus, and suggests a liberalization of refinement, called retrenchent, which …
refinement calculus, and suggests a liberalization of refinement, called retrenchent, which …
Simulation relations for fault-tolerance
We present a formal characterization of fault-tolerant behaviors of computing systems via
simulation relations. This formalization makes use of variations of standard simulation …
simulation relations. This formalization makes use of variations of standard simulation …
Safety requirements and fault trees using retrenchment
R Banach, R Cross - … Conference on Computer Safety, Reliability, and …, 2004 - Springer
In the formal modelling of safety critical systems, an initial abstract model captures the ideal,
fault free, conception of the system. Subsequently, this model is enriched with the detail …
fault free, conception of the system. Subsequently, this model is enriched with the detail …