Model checking has been successfully used for detailed formal verification of instrumentation and control (IC) systems, as long as the focus has been on the application logic, alone. In safety-critical applications, fault tolerance is also an important aspect, but introducing IC hardware failure modes to the formal models comes at a significant computational cost. Previous attempts have led to state space explosion, and prohibitively long processing times. In this paper, we present a method for adding hardware component failures and communication delays into IC application logic models for the NuSMV symbolic model checker. Based on a case study built around a semi-fictitious, four-redundant nuclear power plant protection system, we demonstr...
Instrumentation and control (I&C) systems play a crucial role in the operation of nuclear power ...
The demand for electricity has increased proportionately with massive urbanisation and in-dustrialis...
Model checking methods have been proven to be a valuable asset for identifying undesired behaviour o...
Model checking has been successfully used for detailed formal verification of instrumentation and co...
A spurious actuation of an industrial instrumentation and control (I&C) system is a failure mode...
Model checking is a formal, computer-assisted verification method, used to prove that a model of a (...
One of the approaches to assure reliability of nuclear instrumentation and control (I&C) systems...
In nuclear power plants, novel digitalized I&C systems have brought out new needs for safety eva...
Model checking is a formal method that has proven useful for verifying e.g. logic designs of safety ...
Since 2008, VTT has used a formal verification method called model checking to verify instrumentatio...
A spurious actuation of an industrial Instrumentation and Control (I&C) system is a failure mode...
Certain safety-critical systems, such as nuclear instrumentation and control (I&C) systems, must...
Digital instrumentation and control (I&C) systems are increasingly being used for implementing s...
In the Finnish nuclear industry, model checking, a formal verification technique, is used as an addi...
For over a decade, model checking has been successfully used to formally verify the instrumentation ...
Instrumentation and control (I&C) systems play a crucial role in the operation of nuclear power ...
The demand for electricity has increased proportionately with massive urbanisation and in-dustrialis...
Model checking methods have been proven to be a valuable asset for identifying undesired behaviour o...
Model checking has been successfully used for detailed formal verification of instrumentation and co...
A spurious actuation of an industrial instrumentation and control (I&C) system is a failure mode...
Model checking is a formal, computer-assisted verification method, used to prove that a model of a (...
One of the approaches to assure reliability of nuclear instrumentation and control (I&C) systems...
In nuclear power plants, novel digitalized I&C systems have brought out new needs for safety eva...
Model checking is a formal method that has proven useful for verifying e.g. logic designs of safety ...
Since 2008, VTT has used a formal verification method called model checking to verify instrumentatio...
A spurious actuation of an industrial Instrumentation and Control (I&C) system is a failure mode...
Certain safety-critical systems, such as nuclear instrumentation and control (I&C) systems, must...
Digital instrumentation and control (I&C) systems are increasingly being used for implementing s...
In the Finnish nuclear industry, model checking, a formal verification technique, is used as an addi...
For over a decade, model checking has been successfully used to formally verify the instrumentation ...
Instrumentation and control (I&C) systems play a crucial role in the operation of nuclear power ...
The demand for electricity has increased proportionately with massive urbanisation and in-dustrialis...
Model checking methods have been proven to be a valuable asset for identifying undesired behaviour o...