--%>

Identifying and Eliciting Critical Properties

Identification and elicitation of critical properties is the initial and essential step in the verification process; however, there is no well-defined and generally accepted process to follow.

we employed a combination of approaches in an attempt to be thorough and to understand which approaches were most helpful To do this effectively, we collaborated closely with the SAFM domain experts to identify the set of properties for model checking. Working closely with those who had intimate knowledge of the requirements, design, code, and existing testing infrastructure saved a lot of time and effort.

We then classified those properties in terms of their criticality and importance as well as their general applicability (generic properties such as “no divide by zeros” or “no overflows/underflows”) versus their particular relevance to SAFM (application-specific properties; for example, “the value of the time step shall be between the values … and …”).

Generic properties can be formulated and understood by those who do not have any application-specific domain knowledge. Model checkers such as SPIN and Java PathFinder are able to detect violations of many such properties by default or by the user setting one or more configuration options.

In contrast, specifying application-specific properties is more challenging. As their name suggests, they often require intimate understanding of the system under analysis. Therefore this information is best formulated and captured by or in close collaboration with the original requirements engineers, designers, and developers who have such domain-specific knowledge.

Even with intimate knowledge of the system, the process of identifying the properties of interest is usually not straightforward. These properties must make sense and be the right ones to use for verification of the system. You may also need to further constrain a property or widen its applicability. They must be specified, developed, validated & verified in the same way as any other software artifact.

   Related Questions in Science

  • Q : Vitamins in bananas Explain the

    Explain the vitamins that are contained within the bananas.

  • Q : Characteristics of Electronic

    What are the Characteristics of Electronic Communications? Explain briefly.

  • Q : Processor lines of two major

    Normal 0 false false

  • Q : What is Property Specification in Java

    Property Specification in Java PathFinder: In Java PathFinder, properties are specified in Java. JPF can check a number of properties out of the box: No Deadlocks No Assertion Violation No Uncaught Exceptions (i.e.,

  • Q : Operation of a Model checker Model

    Model Checking a Program: The operation of a model checker can be described in terms of the familiar metaphor of searching a graph (Figure shown below). The nodes of the graph represent the states of the program and the links connecting the nodes repr

  • Q : Call constructor for parent class

    Normal 0 false false

  • Q : Secondary and primary ecological

    Explain what is difference between the secondary ecological succession and the primary ecological succession?

  • Q : Difference between primary and

    Difference between primary & secondary storage device: In primary storage device the storage capacity is restricted. It contains volatile memory. In secondary storage device storage capacity is larger. This is

  • Q : Test-Related Code Annotation and

    Test-Related Code Annotation and Runtime System: As useful as test systems like JUnit are, test cases do require a significant amount of work to create and maintain, especially since they are implemented outside of the SUT sources, and need to be kept

  • Q : Command to display the page size of

    Normal 0 false false