Abstract
Operator procedures are documents telling operators what to do in various situations. They are widely used in process industries including the nuclear power industry. The correctness of such procedures is of great importance. We describe how model checking can be used to detect potential errors and to verify properties of operator procedures. As there could be problems with modelling and model checking large systems, incremental modelling and verification is proposed as a strategy to help overcome these problems. A case study is presented to show how model checking (with the model checker Spin [5]) and the incremental strategy work in practise.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
M. Abadi and L. Lamport. Conjoining specifications. ACM Transactions on Programming Languages and Systems 17(3):507–534. May 1995.
J. R. Burch, E. M. Clarke and D. E. Long. Symbolic Model Checking with Partitioned Transition Relations. International Conference on Very Large Scale Integration, pp. 49–58. North-Holland, August 1991.
O. Grumberg and D. E. Long. Model Checking and Modular Verification. ACM Transactions on Programming Languages and Systems 16(3):843–871. May 1994.
D. G. Hoecker, K. M. Corker, E. M. Roth, M. H. Lipner and M. S. Bunzo. Man-Machine Design and Analysis System (MIDAS) Applied to a Computer-Based Procedure-Aiding System. Proceedings of the Human Factors and Ergonomics Society 38th Annual Meeting 1: 195–199. 1994.
G. J. Holzmann. The Model Checker Spin. IEEE Transaction on Software Engineering 23(5): 279–295. 1997.
J. G. Kemeny. Report of the President’s Commission on the Accident at Three Mile Island. U.S. Government Accounting Office. 1979.
N. G. Leveson.Software System Safety and Computers. Addison-Wesley Publishing Company. 1995.
M. H. Lipner and S. P. Kerch. Operational Bene-ts of an Advanced Computerised Procedure System. 1994 IEEE Conference Record: Nuclear Science Symposium and Medical Imaging Conference:(1068–1072). 1995.
L. Reynes and G. Beltranda. A Computerised Control Room to Improve Nuclear Power Plant Operation and Safety. Nuclear Safety 31(4):504–511. 1990.
T. Sivertsen and H. Valisuo. Algebraic Specification and Theorem Proving used in Formal Verification of Discrete Event Control Systems. OECD Halden Reactor Project Report: HWR-260, Institute for Energy Technology, Norway. 1989.
J. Teigen and J. E. Hulsund. COPMA-III-Software Design and Implementation Issues. OECD Halden Reactor Project Report: HWR-509, Institute for Energy Technology, Norway. 1998.
H. J. Touati, H. Savoj, B. Lin, R. K. Brayton and A. Sangiovanni-Vincentelli. Implicit State Enumeration of Finite State Machines Using BDDs. IEEE International Conference on Computer-Aided Design, pp. 130–133. IEEE Computer Society Press, November 1990.
K. Ylikoski and G. Dahll. Verification of Procedures. OECD Halden Reactor Project Report: HWR-318, Institute for Energy Technology, Norway. 1992.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1999 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Zhang, W. (1999). Model Checking Operator Procedures. In: Dams, D., Gerth, R., Leue, S., Massink, M. (eds) Theoretical and Practical Aspects of SPIN Model Checking. SPIN 1999. Lecture Notes in Computer Science, vol 1680. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-48234-2_16
Download citation
DOI: https://doi.org/10.1007/3-540-48234-2_16
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-66499-4
Online ISBN: 978-3-540-48234-5
eBook Packages: Springer Book Archive