Presentation is loading. Please wait.

Presentation is loading. Please wait.

Job No/ 1 © British Crown Copyright 2008/MOD Developing a High Integrity Code Generator Using iUML/iCCG Sam Moody AWE plc, Aldermaston, Berkshire, United.

Published byCurtis Fleming Modified over 9 years ago

Similar presentations

Presentation on theme: "Job No/ 1 © British Crown Copyright 2008/MOD Developing a High Integrity Code Generator Using iUML/iCCG Sam Moody AWE plc, Aldermaston, Berkshire, United."— Presentation transcript:

1 Job No/ 1 © British Crown Copyright 2008/MOD Developing a High Integrity Code Generator Using iUML/iCCG Sam Moody AWE plc, Aldermaston, Berkshire, United Kingdom

2 Job No/ 2 © British Crown Copyright 2008/MOD Outline l Motivation l Building a code generator with iUML/iCCG l Application Development with iUML l Current Results l Other work exploring xUML

3 Job No/ 3 © British Crown Copyright 2008/MOD Motivation l Historically development has been based on bespoke processes l Research advances in software engineering in academia and industry l Links AWE formal methods research to commercial toolsets l Explore code generation l Combined with tried and trusted high integrity tools such as the SPARK toolset

4 Job No/ 4 © British Crown Copyright 2008/MOD Challenging Requirements l We must demonstrate 100% freedom of anomalous behaviour l 30 year working life cycle l Not to be maintained l Process and design must be understood over life

5 Job No/ 5 © British Crown Copyright 2008/MOD Tool Selection – Why xUML l UML is the prevalent modelling technology in use by the software industry at large l UML suffers semantic weaknesses l Precise Executable profile of the Unified Modelling Language (xUML) l Adds Action Semantics to Standard UML Diagrams l Supports Model Driven Architecture

6 Job No/ 6 © British Crown Copyright 2008/MOD Tool Selection – Why Kennedy-Carter l Interested in the application of static techniques l A business model which encourages technology transfer l Code generators built using the xUML formalism l Models are platform independent with full behavioural specification defined in ASL l No need to embed target code (i.e. SPARK, Ada or C)

7 Job No/ 7 © British Crown Copyright 2008/MOD Outline l Motivation l Building a code generator with iUML/iCCG l Application Development with iUML l Current Results l Other work exploring xUML

8 Job No/ 8 © British Crown Copyright 2008/MOD Building a code generator with iCCG Implementation Definition of Mapping Rules Requirements of software platform Code Generator

9 Job No/ 9 © British Crown Copyright 2008/MOD Code Generator Development with iUML l iCCG is a meta-model of the entire xUML profile itself in xUML l The classes in the iCCG are instantiated by the model for which code is to be generated l Operations added in ASL to target code generation to the desired language – ie. SPARK l Existing xUML code generators include targets such as C, C++, Java and Ada

10 Job No/ 10 © British Crown Copyright 2008/MOD Extract of the iCCG Meta-model Class Attribute Operation © Copyright Kennedy Carter Ltd 2008. Reproduced with permission

11 Job No/ 11 © British Crown Copyright 2008/MOD Building a code generator with iCCG

12 Job No/ 12 © British Crown Copyright 2008/MOD Building a code generator with iCCG

13 Job No/ 13 © British Crown Copyright 2008/MOD Building a code generator with iCCG l Precise xUML model of xUML l The same formalism used for application and code generator development l The code generator design will have longevity l Transformation rules are readily understandable l Allows different implementations to be targeted

14 Job No/ 14 © British Crown Copyright 2008/MOD Outline l Motivation l Building a code generator with iUML/iCCG l Application Development with iUML l Current Results l Other work exploring xUML

15 Job No/ 15 © British Crown Copyright 2008/MOD Application Development Write Annotations in description field Write ASL in the method field Examiner report Skeleton Class Diagram Generate SPARK code and Analyse with SPARK toolset Executable Model

16 Job No/ 16 © British Crown Copyright 2008/MOD Development Process – Model Annotation l Code generator provides ‘low-level’ embedded annotations l “Inherits”, “Owns” and operations supporting the formalism l Analyst provides annotations for the design on xUML active elements l i.e. State Actions and Operations

17 Job No/ 17 © British Crown Copyright 2008/MOD xUML Skeleton Design

18 Job No/ 18 © British Crown Copyright 2008/MOD xUML Annotated Design

19 Job No/ 19 © British Crown Copyright 2008/MOD xUML Annotated Design

20 Job No/ 20 © British Crown Copyright 2008/MOD xUML Executable Design

21 Job No/ 21 © British Crown Copyright 2008/MOD Multi-Domain - - - - - - - Bridge CPR1

22 Job No/ 22 © British Crown Copyright 2008/MOD Multi Domain l Supports complete analysis on domain by domain bases l Domains can be implemented and tested in isolation l Bridges analysed in context of relevant domain l Minor constraints on xUML bridges

23 Job No/ 23 © British Crown Copyright 2008/MOD Outline l Motivation l Building a code generator with iUML/iCCG l Application Development with iUML l Current Results l Other work exploring xUML

24 Job No/ 24 © British Crown Copyright 2008/MOD Current Status l Successfully analysed a representative model using SPARK Examiner l Generation of SPARK from multi domain xUML models l Process defined to allow complete system analysis l Supports all SPARK ‘core’ Annotations l Only minor restrictions on xUML

25 Job No/ 25 © British Crown Copyright 2008/MOD Outline l Motivation l Building a code generator with iUML/iCCG l Application Development with iUML/iCCG l Current Results l Other work exploring xUML

26 Job No/ 26 © British Crown Copyright 2008/MOD SystemB Project l Automatic generation of CSP||B specifications from xUML models l Generator built using Kennedy Carter tools l Generator based on model-text transformations l Verification of CSP||B specifications using ProB and FDR l Provides greater assurance in UML models than is possible within Kennedy Carter tools xUML MetaModel xUML ModelCSP ModelCSP||B Model SystemB CCG

27 Job No/ 27 © British Crown Copyright 2008/MOD Summary l Code generator is itself captured in a precise industrially accepted format l The resulting code is produced from a precisely defined, traceable process l Generated code can be statically checked for correctness l Provides additional rigour to development cycle l Development can begin earlier before Hardware is available or known. l Knowledge captured is likely to have longevity

28 Job No/ 28 © British Crown Copyright 2008/MOD Questions ?

Download ppt "Job No/ 1 © British Crown Copyright 2008/MOD Developing a High Integrity Code Generator Using iUML/iCCG Sam Moody AWE plc, Aldermaston, Berkshire, United."

Similar presentations

Fraunhofer FOKUS Competence Center MOTION FOKUS VIEW ON MODEL-BASED TEST DESCRIPTION LANGUAGES (TDLS) Alain-G. Vouffo Feudjio.

Fraunhofer FOKUS Competence Center MOTION FOKUS VIEW ON MODEL-BASED TEST DESCRIPTION LANGUAGES (TDLS) Alain-G. Vouffo Feudjio.
Profiles Construction Eclipse ECESIS Project - 1 - Construction of Complex UML Profiles UPM ETSI Telecomunicación Ciudad Universitaria s/n Madrid 28040,

Profiles Construction Eclipse ECESIS Project Construction of Complex UML Profiles UPM ETSI Telecomunicación Ciudad Universitaria s/n Madrid 28040,
Model Driven Generative Programming Reza Azimi February 6, 2003 ECE1770: Trends in Middleware Systems.

Model Driven Generative Programming Reza Azimi February 6, 2003 ECE1770: Trends in Middleware Systems.
Omnibus: A clean language and supporting tool for integrating different assertion-based verification techniques Thomas Wilson, Savi Maharaj, Robert G.

Omnibus: A clean language and supporting tool for integrating different assertion-based verification techniques Thomas Wilson, Savi Maharaj, Robert G.
Lockheed Martin Aeronautics Company © 2001 Lockheed Martin Corporation F-16 Modular Mission Computer Application Software Achieving Cross-Platform Compatibility.

Lockheed Martin Aeronautics Company © 2001 Lockheed Martin Corporation F-16 Modular Mission Computer Application Software Achieving Cross-Platform Compatibility.
2009 – E. Félix Security DSL Toward model-based security engineering: developing a security analysis DSML Véronique Normand, Edith Félix, Thales Research.

2009 – E. Félix Security DSL Toward model-based security engineering: developing a security analysis DSML Véronique Normand, Edith Félix, Thales Research.
Lockheed Martin Aeronautics Company © 2001 Lockheed Martin Corporation F-16 Modular Mission Computer Application Software Achieving Cross-Platform Compatibility.

Lockheed Martin Aeronautics Company © 2001 Lockheed Martin Corporation F-16 Modular Mission Computer Application Software Achieving Cross-Platform Compatibility.
Guaranteed Component Assembly with Round Trip Analysis for Energy Efficient High-integrity Multi-core Systems Artemis-AAL day 7 May, Budapest 1BME and.

Guaranteed Component Assembly with Round Trip Analysis for Energy Efficient High-integrity Multi-core Systems Artemis-AAL day 7 May, Budapest 1BME and.
ARCH-05 Application Prophecy UML 101 Peter Varhol Principal Product Manager.

ARCH-05 Application Prophecy UML 101 Peter Varhol Principal Product Manager.
Production Rule Representation Team Response Presentation to BEIDTF OMG Montreal Aug 2004 Ruleml.org.

Production Rule Representation Team Response Presentation to BEIDTF OMG Montreal Aug 2004 Ruleml.org.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 8 Slide 1 System modeling 2.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 8 Slide 1 System modeling 2.
Model-Based Programming: Executable UML with Sequence Diagrams By Ruben Campos Cal State L.A. Computer Science Thesis Work Spring 2007.

Model-Based Programming: Executable UML with Sequence Diagrams By Ruben Campos Cal State L.A. Computer Science Thesis Work Spring 2007.
Amit, Keyur, Sabhay and Saleh Model Driven Architecture in the Enterprise.

Amit, Keyur, Sabhay and Saleh Model Driven Architecture in the Enterprise.
Chapter 6: Design of Expert Systems

Chapter 6: Design of Expert Systems
Automated Analysis and Code Generation for Domain-Specific Models George Edwards Center for Systems and Software Engineering University of Southern California.

Automated Analysis and Code Generation for Domain-Specific Models George Edwards Center for Systems and Software Engineering University of Southern California.
7 July 2003 MDA presentation Dennis Wagelaar 1 Model-Driven Architecture The current state of affairs.

7 July 2003 MDA presentation Dennis Wagelaar 1 Model-Driven Architecture The current state of affairs.
UML CASE Tool. ABSTRACT Domain analysis enables identifying families of applications and capturing their terminology in order to assist and guide system.

UML CASE Tool. ABSTRACT Domain analysis enables identifying families of applications and capturing their terminology in order to assist and guide system.
Executable UML By Luca Pellicoro. Definitions Acronym: xtUML or xUML Technology where models (such as state diagrams and class diagrams) are automatically.

Executable UML By Luca Pellicoro. Definitions Acronym: xtUML or xUML Technology where models (such as state diagrams and class diagrams) are automatically.
Creating Architectural Descriptions. Outline Standardizing architectural descriptions: The IEEE has published, “Recommended Practice for Architectural.

Creating Architectural Descriptions. Outline Standardizing architectural descriptions: The IEEE has published, “Recommended Practice for Architectural.
R R R CSE870: Advanced Software Engineering: Extending and Using UML (Cheng) Supplementary: Using and Extending UML.

R R R CSE870: Advanced Software Engineering: Extending and Using UML (Cheng) Supplementary: Using and Extending UML.

Similar presentations

Ads by Google