如何将系统的安全要求转换为线性时态属性..?

时间:2016-07-15 03:32:35

标签: formal-verification formal-methods system-requirements

我在这里更清楚地改变了我的问题。有两种不同的模型,一种是发送者模型,一种是接收者模型。我想检查发送的消息与接收方接收的属性不同的属性。 

MODULE main()
VAR 
    state : { informationsource, getinformation, transmitter, receiver, destination, ACK }; 
    messageReceived : boolean;
    messageTransmitted : boolean;

ASSIGN
    init(state) := informationsource; 
    init(messageReceived) := FALSE;


    next(state) := case 
        state = informationsource : getinformation; 
        state = getinformation : transmitter; 
        state = transmitter : receiver; 
        state = receiver  & messageReceived = TRUE : destination;
        TRUE : {destination, ACK} ;

    esac;

LTLSPEC(G(州=接收方 - > messageTransmited!= messageReceived))

0 个答案:

没有答案
相关问题
最新问题