On the Adoption of Model Checking in Safety-Related Software Industry

  • Alessandro Fantechi
  • Stefania Gnesi
Part of the Lecture Notes in Computer Science book series (LNCS, volume 6894)


In the last fifteen years, model checking has been applied successfully in the design and verification of many safety related software systems. However, it is not yet routinely adopted in the industry of safety-critical systems. In this paper we introduce the model checking technique and its relations to safety; then we survey the sensible areas of research related to the current and potential industrial application of this technique, exploring the current trends, that in our opinion will bring to a wider adoption of model checking in the next years.


Model Check Temporal Logic Safety Property Satisfying Assignment Computation Tree Logic 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Abdulla, P.A., Deneux, J., Stålmarck, G., Ågren, H., Åkerlund, O.: Designing safe, reliable systems using scade. In: Margaria, T., Steffen, B. (eds.) ISoLA 2004. LNCS, vol. 4313, pp. 115–129. Springer, Heidelberg (2006)CrossRefGoogle Scholar
  2. 2.
    Angeletti, D., Giunchiglia, E., Narizzano, M., Puddu, A., Sabina, S.: Using Bounded Model Checking for Coverage Analysis of Safety-Critical Software in an Industrial Setting. J. Autom. Reason. 45(4) (2010)Google Scholar
  3. 3.
    Avizienis, A., Laprie, J.C., Randell, B., Landwehr, C.E.: Basic Concepts and Taxonomy of Dependable and Secure Computing. IEEE Trans. Dependable Sec. Comput. 1(1), 11–33 (2004)CrossRefGoogle Scholar
  4. 4.
    Bacherini, S., Fantechi, A., Tempestini, M., Zingoni, N.: A story about formal methods adoption by a railway signaling manufacturer. In: Misra, J., Nipkow, T., Karakostas, G. (eds.) FM 2006. LNCS, vol. 4085, pp. 179–189. Springer, Heidelberg (2006)CrossRefGoogle Scholar
  5. 5.
    Biere, A., Cimatti, A., Clarke, E., Zhu, Y.: Symbolic model checking without bDDs. In: Cleaveland, W.R. (ed.) TACAS 1999. LNCS, vol. 1579, pp. 193–207. Springer, Heidelberg (1999)CrossRefGoogle Scholar
  6. 6.
    Bochot, T., Virelizier, P., Waeselynck, H., Wiels, V.: Model checking flight control systems: The Airbus experience. In: ICSE Companion 2009, pp. 18–27 (2009)Google Scholar
  7. 7.
    Bryant, R.: Graph-based algorithms for Boolean function manipulation. IEEE Transactions on Computers C-35(8), 677–691 (1986)CrossRefzbMATHGoogle Scholar
  8. 8.
    Clarke, E., Grumberg, O., Peled, D.: Model Checking. MIT Press, Cambridge (1999)Google Scholar
  9. 9.
    Clarke, E., Grumberg, O., Jha, S., Lu, Y., Veith, H.: Counterexample-guided abstraction refinement. In: Emerson, E.A., Sistla, A.P. (eds.) CAV 2000. LNCS, vol. 1855, pp. 154–169. Springer, Heidelberg (2000)CrossRefGoogle Scholar
  10. 10.
    Clarke, E., Kroening, D., Sharygina, N., Yorav, K.: Predicate Abstraction of ANSI-C Programs Using SAT. Form. Methods Syst. Des. 25, 105–127 (2004)CrossRefzbMATHGoogle Scholar
  11. 11.
    Clarke, E., Biere, A., Raimi, R., Zhu, Y.: Bounded model checking using satisfiability solving. Form. Methods Syst. Des. 19, 7–34 (2001)CrossRefzbMATHGoogle Scholar
  12. 12.
    Cousot, P., Cousot, R.: Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints. In: Proceedings of the 4th POPL, pp. 238–252. ACM, Los Angeles (1977)Google Scholar
  13. 13.
    Deutsch, A.: Static verification of dynamic properties - Polyspace white paper (2004)Google Scholar
  14. 14.
    Ferrari, A., Grasso, D., Magnani, G., Fantechi, A., Tempestini, M.: The metrô rio ATP case study. In: Kowalewski, S., Roveri, M. (eds.) FMICS 2010. LNCS, vol. 6371, pp. 1–16. Springer, Heidelberg (2010)CrossRefGoogle Scholar
  15. 15.
    Ferrari, A., Grasso, D., Magnani, G., Fantechi, A.: Model Checking Interlocking Control Tables. In: FORMS/FORMAT 2010, Braunschweig, Germany (December 2-3, 2010)Google Scholar
  16. 16.
    Havelund, K., Lowry, M., Park, S.J., Pecheur, C., Penix, J., Visser, W., White, J.L.: Formal Analysis of the Remote Agent Before and After Flight. In: 5th NASA Langley Formal Methods Workshop, Williamsburg, Virginia (June 13-15, 2000)Google Scholar
  17. 17.
    Miller, S.P., Whalen, M.W., Cofer, D.D.: Software model checking takes off. Commun. ACM 53(2), 58–64 (2010)CrossRefGoogle Scholar
  18. 18.
    Visser, W., Havelund, K., Brat, G., Park, S.J., Lerda, F.: Model Checking Programs. Automated Software Engineering 10(2), 203–232 (2003)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • Alessandro Fantechi
    • 1
    • 2
  • Stefania Gnesi
    • 1
  1. 1.Istituto di Scienza e Tecnologie dell’Informazione “A. Faedo”, CNRPisaItaly
  2. 2.Dipartimento di Sistemi e InformaticaUniversità degli Studi di FirenzeItaly

Personalised recommendations