Presentation is loading. Please wait.

Presentation is loading. Please wait.

Safety-Liveness Semantics for UML 2.0 Sequence Diagrams Radu Grosu SUNY at Stony Brook Joint work with Scott A. Smolka.

Published byKathlyn Kennedy Modified over 9 years ago

Similar presentations

Presentation on theme: "Safety-Liveness Semantics for UML 2.0 Sequence Diagrams Radu Grosu SUNY at Stony Brook Joint work with Scott A. Smolka."— Presentation transcript:

1 Safety-Liveness Semantics for UML 2.0 Sequence Diagrams Radu Grosu SUNY at Stony Brook Joint work with Scott A. Smolka

2 Convenient way of describing interaction among reactive systems, i.e.: - Systems where termination is rather an error than an expected behavior. Have become an integral part of all modern software engineering design methods: - SDL and ROOM MSC (message sequence charts), UML SD (sequence diagrams). Scenario-Based Specifications

3 Reactive Systems Commercial Aircraft Medical devices Household devices Telecommunication Nuclear Power Plants Automobiles

4 UML 2.0 SD Simplified Syntax mn b sd ack name of SDbody of SD process nameprocess lifeline receive event send event message Positive SD: describes traces that are valid and should be possible

5 UML 2.0 SD Simplified Syntax negative qualification Negative SD: describes traces that are invalid and should not be possible mn c neg sd nack

6 UML 2.0 SD Simplified Syntax mn a sd init mn b sd ack mn c neg sd nack sd iod init ref ack nack ref High level SD (IOD) synchronous/asynchronous sequencing

7 UML 2.0 SD Full Syntax mn a sd nsd neg mn a neg sd ng ng ref sd nsdsd asd a b ref mn a sd asd b alt mn a sd a mn b sd b

8 UML 2.0 SD Semantics ? mn a sd rs This is not a reactive system! What about asynchronous message passing? m:n!an:m?a Lang(rs) = {m:n!a n:m?a} rs Closed world semantics:

9 Positive SD Semantics ? mn a sd rs m:n!an:m?a Büchi automaton! L(rs) = {  * m:n!a  * n:m?a   } rs What about refinement?   tau transitions 

10 Positive SD and Refinement? mn a sd rs m:n!an:m?a Liveness Büchi automaton! rs    liveness closure mn b sd rs ,, ~ m:n!a ~ n:m?a chaos closure  L(rs) = {  * ~ m:n!a ( ,  ) ,  * m:n!a  * ~ n:m?a ( ,  ) ,  * n:m?a  * m:n!a  * n:m?a ( ,  )  }

11 Negative SD Semantics ? mn c neg sd nack Safety Büchi automaton! L(nack) = {  ,  * n:m!c  ,  * ~ n:m!c ( ,  ) ,  * n:m!c  * ~ m:n!c ( ,  )  }     n:m!cm:n?c  nack n:m!cm:n?c nack ,, ~ m:n?c ~ n:m!c complement + safety closure

12 High Level SD Semantics sd iod init ref ack nack ref init nack ack     init ack  Positive SD: - remove all negative nodes and all their associated transitions. init nack ack   Negative SD: - turn negative nodes into accepting sink nodes. Others nonaccepting.

13 HSD Positive Semantics ,, ~ m:n!a ~ n:m?a  m:n!an:m?a liod n:m!bm:n?c  ,,  ~ n:m!b ~ m:n!c m:n!an:m?a piod n:m!b  initack

14 m:n!an:m?a niod init nack ack  n:m?cn:m!c n:m!bn:m?b HSD Negative Semantics m:n!an:m?a siod n:m!c ~ n:m?c n:m!b n:m?b ~ n:m?b    ~ n:m!c ~ n:m?a ~ m:n!a ,,

15 HSD Semantics Parallel composition of: -Liveness Büchi automaton -Safety Büchi automaton Example: -Iod automaton: iod = liod  siod -Note: Lang(iod) = Lang(liod)  Lang(siod)

16 SD Refinement Definition: Let S 1 and S 2 be two SDs. Then: - S 1  S 2 iff Lang(S 1 )  Lang(S 2 ) Theorem: Let S, T and U be three bounded SD and assume that S* and T* are bounded, too. Then: 1. if S  T then U S  U T 2. if S  T then (S)*  (T)* 3. if S  T then S + U  T + U and U + S  U + T 4. if S  T then S || U  T || U and U || S  U || T

17 Examples of Refinement init ref init ref ack ref  Sequential: ack ref  Alternative: ack nack ref

18 Examples of Refinement Star? init ref ack ref init ref   ack nack ref init ref ack ref init ref Star:

19 Related Work PA and PO (Mauw, Alur, Muscholl, Peled, …): –Not compositional. Not interested in compositionality. Live SC (Damm, Harel, Kugler): –Elegant, alternative AT solution. Departure from UML. Triggered MSC (Cleaveland, Sengupta): –Prescriptive/constraint-based. Must preorder. STAIRS (Haugen, Stoelen): – Open semantics. Not fully formalized. Other semantics (Broy, Knapp, Krüger,…): – Also depart from closed world semantics.

20 Conclusions Presented an Automata-theoretic semantics that solves in a simple and elegant way one of the main open questions about UML 2.0 SD: –How to assign a precise meaning to a set of SD without compromising refinement? Provides a direct technique for checking SD refinement in a compositional way. Supports the development of a general purpose MC for property and refinement checking.

21 Rough Complexity Analysis Translation of HSD to Pos/Neg FA: - linear time (in the size of the HSD). Translation of Pos/Neg FA to Safe/Live BA: - exponential due to flattening, Complementation hard: - double exponential due to BA. In practice: - avoid flattening for synchronous sequencing? - special kind of BA with simple complementation.

22

Download ppt "Safety-Liveness Semantics for UML 2.0 Sequence Diagrams Radu Grosu SUNY at Stony Brook Joint work with Scott A. Smolka."

Similar presentations

Synthesis of Protocol Converter Using Timed Petri-Nets Anh Dang Balaji Krishnamoorthy Manoj Iyer Presented by:

Synthesis of Protocol Converter Using Timed Petri-Nets Anh Dang Balaji Krishnamoorthy Manoj Iyer Presented by:
Model Checking Lecture 3. Specification Automata Syntax, given a set A of atomic observations: Sfinite set of states S 0 Sset of initial states S S transition.

Model Checking Lecture 3. Specification Automata Syntax, given a set A of atomic observations: Sfinite set of states S 0 Sset of initial states S S transition.
Model Checking Lecture 2. Three important decisions when choosing system properties: 1automata vs. logic 2branching vs. linear time 3safety vs. liveness.

Model Checking Lecture 2. Three important decisions when choosing system properties: 1automata vs. logic 2branching vs. linear time 3safety vs. liveness.
FMCO 2005 / UpSTAIRS with Sequence Diagrams Ragnhild Kobro Runde UpSTAIRS with Sequence Diagrams Øystein Haugen, Ragnhild Kobro Runde, Ketil Stølen University.

FMCO 2005 / UpSTAIRS with Sequence Diagrams Ragnhild Kobro Runde UpSTAIRS with Sequence Diagrams Øystein Haugen, Ragnhild Kobro Runde, Ketil Stølen University.
CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.

CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.
Translation-Based Compositional Reasoning for Software Systems Fei Xie and James C. Browne Robert P. Kurshan Cadence Design Systems.

Translation-Based Compositional Reasoning for Software Systems Fei Xie and James C. Browne Robert P. Kurshan Cadence Design Systems.
Lei Bu Message Sequence Chart. MSCs Message sequence chart (MSC) is a graphical and textual language for the description and specification of the interactions.

Lei Bu Message Sequence Chart. MSCs Message sequence chart (MSC) is a graphical and textual language for the description and specification of the interactions.
1 Model checking. 2 And now... the system How do we model a reactive system with an automaton ? It is convenient to model systems with Transition systems.

1 Model checking. 2 And now... the system How do we model a reactive system with an automaton ? It is convenient to model systems with Transition systems.
ARCH-05 Application Prophecy UML 101 Peter Varhol Principal Product Manager.

ARCH-05 Application Prophecy UML 101 Peter Varhol Principal Product Manager.
Deterministic Negotiations: Concurrency for Free Javier Esparza Technische Universität München Joint work with Jörg Desel and Philipp Hoffmann.

Deterministic Negotiations: Concurrency for Free Javier Esparza Technische Universität München Joint work with Jörg Desel and Philipp Hoffmann.
1 Behavioral Modeling Chapter 8. 2 Key Ideas Behavioral models describe the internal dynamic aspects of an information system that supports business processes.

1 Behavioral Modeling Chapter 8. 2 Key Ideas Behavioral models describe the internal dynamic aspects of an information system that supports business processes.
Formal Specification of Topological Relations Erika Asnina, Janis Osis and Asnate Jansone Riga Technical University The 10th International Baltic Conference.

Formal Specification of Topological Relations Erika Asnina, Janis Osis and Asnate Jansone Riga Technical University The 10th International Baltic Conference.
Software Engineering COMP 201

Software Engineering COMP 201
An Integrated Framework for Scenarios and State Machines Bikram Sengupta IBM Research India Rance Cleaveland Department of Computer Science University.

An Integrated Framework for Scenarios and State Machines Bikram Sengupta IBM Research India Rance Cleaveland Department of Computer Science University.
Course Summary. © Katz, 2003 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.

Course Summary. © Katz, 2003 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.
Introduction to UML Part 2 Behavioral Modeling. Sequence (event) diagram Describes object interaction Typically captures behavior of a single use case.

Introduction to UML Part 2 Behavioral Modeling. Sequence (event) diagram Describes object interaction Typically captures behavior of a single use case.
Model Checking. Used in studying behaviors of reactive systems Typically involves three steps: Create a finite state model (FSM) of the system design.

Model Checking. Used in studying behaviors of reactive systems Typically involves three steps: Create a finite state model (FSM) of the system design.
Bridging the gap between Interaction- and Process-Oriented Choreographies Talk by Ivan Lanese Joint work with Claudio Guidi, Fabrizio Montesi and Gianluigi.

Bridging the gap between Interaction- and Process-Oriented Choreographies Talk by Ivan Lanese Joint work with Claudio Guidi, Fabrizio Montesi and Gianluigi.
Design of Fault Tolerant Data Flow in Ptolemy II Mark McKelvin EE290 N, Fall 2004 Final Project.

Design of Fault Tolerant Data Flow in Ptolemy II Mark McKelvin EE290 N, Fall 2004 Final Project.
Www.sensoria-ist.eu Bridging the gap between Interaction- and Process-Oriented Choreographies Talk by Ivan Lanese Joint work with Claudio Guidi, Fabrizio.

Bridging the gap between Interaction- and Process-Oriented Choreographies Talk by Ivan Lanese Joint work with Claudio Guidi, Fabrizio.

Similar presentations

Ads by Google