International audienceThis paper describes the formal verification of an interlocking system. We have formally proved the non-derailing and non-collision safety properties for an existing interlocking system operating on Paris Metro's line 3Bis. These high-level properties have first been refined to an intermediate level permitting their expression in terms of the control system's inputs and outputs. The resulting properties have then been formalised in the Prover iLock Verifier engine's internal language. The Prover iLock Verifier engine is a COTS commercialised by Prover Technology. For this project some specific features have been added to the engine to provide certified proofs that can be used, instead of testing, in the SIL-4 qualifica...
This study presents new risk analysis tools and demonstrates the feasibility and applicability of th...
locking In the railway domain, an interlocking is the system controlling active components in a stat...
International audienceIn the railway domain, an interlocking is the system ensuring safe train traff...
A railway interlocking is the system ensuring a safe train traffic inside a station by monitoring an...
The railways have been a vector of progress and economic growth since the 18th century. At the same ...
Abstract. We report on the inclusion of a formal method into an in-dustrial design process. Concrete...
International audienceThis chapter presents the proof process used by Thales and Autonomous Operator...
. A fundamental problem in the design and development of embedded control systems is the verificatio...
A fundamental problem in the design and development of embedded control systems is the verification ...
The goal of this document is to define a case study in formal verification, based on a complex real...
The verification of safety requirements is a fundamental problem in railway signalling system design...
Modern railway stations are controlled by computerized systems called interlockings. In fact the mid...
It is well-known that a fundamental problem in embedded control systems is the verification of the s...
An experience on the specification and verification of a railway interlocking system produced in a j...
AbstractIn this paper we present a verification strategy for signalling principles for the control o...
This study presents new risk analysis tools and demonstrates the feasibility and applicability of th...
locking In the railway domain, an interlocking is the system controlling active components in a stat...
International audienceIn the railway domain, an interlocking is the system ensuring safe train traff...
A railway interlocking is the system ensuring a safe train traffic inside a station by monitoring an...
The railways have been a vector of progress and economic growth since the 18th century. At the same ...
Abstract. We report on the inclusion of a formal method into an in-dustrial design process. Concrete...
International audienceThis chapter presents the proof process used by Thales and Autonomous Operator...
. A fundamental problem in the design and development of embedded control systems is the verificatio...
A fundamental problem in the design and development of embedded control systems is the verification ...
The goal of this document is to define a case study in formal verification, based on a complex real...
The verification of safety requirements is a fundamental problem in railway signalling system design...
Modern railway stations are controlled by computerized systems called interlockings. In fact the mid...
It is well-known that a fundamental problem in embedded control systems is the verification of the s...
An experience on the specification and verification of a railway interlocking system produced in a j...
AbstractIn this paper we present a verification strategy for signalling principles for the control o...
This study presents new risk analysis tools and demonstrates the feasibility and applicability of th...
locking In the railway domain, an interlocking is the system controlling active components in a stat...
International audienceIn the railway domain, an interlocking is the system ensuring safe train traff...