@inbook{46b33faf47074960a8a015266d677f2a,

title = "Proving the shalls",

abstract = "This paper describes an experiment conducted to determine how effectively formal methods could be used to capture and validate the requirements of a typical embedded system. A model of the mode logic of a Flight Guidance System was specified in the RSML-e notation and translated into the NuSMV model checker and the PVS theorem prover. These tools were then used to verify several hundred properties of the RSML-e model. In the process, several errors were discovered and corrected in the original model. This demonstrates that formal requirements models can be written for real problems and that formal analysis tools have matured to the point where they can be used to find errors before implementation. It also points out a clear relationship between requirements stated informally as {"}shalls{"}, formal properties, and requirements models.",

author = "Miller, {Steven P.} and Tribble, {Alan C.} and Heimdahl, {Mats P.E.}",

year = "2003",

doi = "10.1007/978-3-540-45236-2_6",

language = "English (US)",

isbn = "9783540408284",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "75--93",

editor = "Keijiro Araki and Stefania Gnesi and Dino Mandrioli",

booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

}