Stateful-Failure Reactive Designs specialise reactive design contracts with failures traces, as present in languages like CSP and Circus. A failure trace consists of a sequence of events and a refusal set. It intuitively represents a quiescent observation, where certain events have previously occurred, and others are currently being accepted. Following the UTP book, we add an observational variable to represent refusal sets, and healthiness conditions that ensure their well-formedness. Using these, we also specialise our theory of reactive relations with operators to characterise both completed and quiescent interactions, and an accompanying equational theory. We use these to define the core operators — including assignment, event occurrenc...
PhD ThesisWhile specification formalisms for reactive concurrent systems are now reasonably well-un...
Reactive programming is a programming paradigm whereby programs are internally represented by a depe...
AbstractConsistency between a process and its specification expressed in CSP is typically presented ...
Hoare and He’s UTP theory of reactive processes provides a unifying foundation for the semantics of ...
Design-by-contract is an important technique for model-based design in which a composite system is s...
This report is a summary of our work for the VeTSS funded project “Mechanised Assume-Guarantee Reaso...
Isabelle/UTP is a mechanised theory engineering toolkit based on Hoare and He’s Unifying Theories of...
In the formal modelling of systems, demonic and angelic nondeterminism play fundamental roles as abs...
Abstract Event-driven reactive programs combine traditional sequential programming constructs with ...
Reactive programs combine traditional sequential programming constructs with primitives to allow com...
Simulation and formal verification are important complementary techniques necessary in high assuranc...
Reactive programs are ubiquitous in modern applications, and so verification is highly desirable. We...
State-machine based notations are ubiquitous in the description of component systems, particularly i...
We describe our UTP theory of hybrid relations, which extends the relational calculus with continuou...
We present a theory of contracts that is centered around reacting to failures and explore it from a ...
PhD ThesisWhile specification formalisms for reactive concurrent systems are now reasonably well-un...
Reactive programming is a programming paradigm whereby programs are internally represented by a depe...
AbstractConsistency between a process and its specification expressed in CSP is typically presented ...
Hoare and He’s UTP theory of reactive processes provides a unifying foundation for the semantics of ...
Design-by-contract is an important technique for model-based design in which a composite system is s...
This report is a summary of our work for the VeTSS funded project “Mechanised Assume-Guarantee Reaso...
Isabelle/UTP is a mechanised theory engineering toolkit based on Hoare and He’s Unifying Theories of...
In the formal modelling of systems, demonic and angelic nondeterminism play fundamental roles as abs...
Abstract Event-driven reactive programs combine traditional sequential programming constructs with ...
Reactive programs combine traditional sequential programming constructs with primitives to allow com...
Simulation and formal verification are important complementary techniques necessary in high assuranc...
Reactive programs are ubiquitous in modern applications, and so verification is highly desirable. We...
State-machine based notations are ubiquitous in the description of component systems, particularly i...
We describe our UTP theory of hybrid relations, which extends the relational calculus with continuou...
We present a theory of contracts that is centered around reacting to failures and explore it from a ...
PhD ThesisWhile specification formalisms for reactive concurrent systems are now reasonably well-un...
Reactive programming is a programming paradigm whereby programs are internally represented by a depe...
AbstractConsistency between a process and its specification expressed in CSP is typically presented ...