Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models

T. Xu, O. M. Santos, X. Ge, J. Woodcock

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Model transformation is at the heart of Model-Driven Engineering (MDE). In MDE, the system model is specified using a modelling language, such as UML (Unified Modelling Language) or a DSL (Domain-Specific Language). Once a model is specified, executable code for a computing platform can be automatically generated by means of model transformation (code generation). Besides the support for incremental model development, MDE also enables the formal verification of system properties. In the context of safety-critical systems, such as railway interlockings, the system model (e.g., specified in terms of UML) can be translated to a formal (mathematical) language more amendable to rigorous analysis. This paper presents a model transformation that takes a railway interlocking model (specified in Executable UML (xUML)) as input and outputs a formal model that can be mathematically analysed. This can potentially bridge the gap between well-known modelling languages (such as xUML) and formal languages, which facilitates the systematic development of safety-critical systems in terms of MDE. A small xUML railway interlocking model is used to illustrate the proposed method.

Original languageEnglish
Title of host publicationComputers in Railways XII
Subtitle of host publicationComputer System Design and Operation in the Railway and Other Transit Systems, COMPRAIL 2010
EditorsB. Ning, C. A. Brebbia
PublisherWIT Press
Pages815-826
Number of pages12
Volume114
ISBN (Print)9781845644680
DOIs
Publication statusPublished - 2010
Externally publishedYes
Event12th International Conference on Computer System Design and Operation in the Railways and other Transit Systems - Beijing, China
Duration: 31 Aug 20102 Sep 2010
Conference number: 12

Publication series

NameWIT Transactions on the Built Environment
Volume114
ISSN (Print)1743-3509

Conference

Conference12th International Conference on Computer System Design and Operation in the Railways and other Transit Systems
Abbreviated titleCOMPRAIL 2010
CountryChina
CityBeijing
Period31/08/102/09/10

Fingerprint

German Federal Railways
Unified Modeling Language
engineering
system model
Formal Analysis
Railway
development model
language
Formal languages

Cite this

Xu, T., Santos, O. M., Ge, X., & Woodcock, J. (2010). Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models. In B. Ning, & C. A. Brebbia (Eds.), Computers in Railways XII: Computer System Design and Operation in the Railway and Other Transit Systems, COMPRAIL 2010 (Vol. 114, pp. 815-826). (WIT Transactions on the Built Environment; Vol. 114). WIT Press. https://doi.org/10.2495/CR100741
Xu, T. ; Santos, O. M. ; Ge, X. ; Woodcock, J. / Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models. Computers in Railways XII: Computer System Design and Operation in the Railway and Other Transit Systems, COMPRAIL 2010. editor / B. Ning ; C. A. Brebbia. Vol. 114 WIT Press, 2010. pp. 815-826 (WIT Transactions on the Built Environment).
@inproceedings{ecd6175431b04c12846be2f4f47f777e,
title = "Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models",
abstract = "Model transformation is at the heart of Model-Driven Engineering (MDE). In MDE, the system model is specified using a modelling language, such as UML (Unified Modelling Language) or a DSL (Domain-Specific Language). Once a model is specified, executable code for a computing platform can be automatically generated by means of model transformation (code generation). Besides the support for incremental model development, MDE also enables the formal verification of system properties. In the context of safety-critical systems, such as railway interlockings, the system model (e.g., specified in terms of UML) can be translated to a formal (mathematical) language more amendable to rigorous analysis. This paper presents a model transformation that takes a railway interlocking model (specified in Executable UML (xUML)) as input and outputs a formal model that can be mathematically analysed. This can potentially bridge the gap between well-known modelling languages (such as xUML) and formal languages, which facilitates the systematic development of safety-critical systems in terms of MDE. A small xUML railway interlocking model is used to illustrate the proposed method.",
keywords = "executable UML (xUML), formal analysis, formal languages, model driven engineering (MDE), railway interlocking systems",
author = "T. Xu and Santos, {O. M.} and X. Ge and J. Woodcock",
year = "2010",
doi = "10.2495/CR100741",
language = "English",
isbn = "9781845644680",
volume = "114",
series = "WIT Transactions on the Built Environment",
publisher = "WIT Press",
pages = "815--826",
editor = "B. Ning and Brebbia, {C. A.}",
booktitle = "Computers in Railways XII",
address = "United Kingdom",

}

Xu, T, Santos, OM, Ge, X & Woodcock, J 2010, Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models. in B Ning & CA Brebbia (eds), Computers in Railways XII: Computer System Design and Operation in the Railway and Other Transit Systems, COMPRAIL 2010. vol. 114, WIT Transactions on the Built Environment, vol. 114, WIT Press, pp. 815-826, 12th International Conference on Computer System Design and Operation in the Railways and other Transit Systems, Beijing, China, 31/08/10. https://doi.org/10.2495/CR100741

Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models. / Xu, T.; Santos, O. M.; Ge, X.; Woodcock, J.

Computers in Railways XII: Computer System Design and Operation in the Railway and Other Transit Systems, COMPRAIL 2010. ed. / B. Ning; C. A. Brebbia. Vol. 114 WIT Press, 2010. p. 815-826 (WIT Transactions on the Built Environment; Vol. 114).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models

AU - Xu, T.

AU - Santos, O. M.

AU - Ge, X.

AU - Woodcock, J.

PY - 2010

Y1 - 2010

N2 - Model transformation is at the heart of Model-Driven Engineering (MDE). In MDE, the system model is specified using a modelling language, such as UML (Unified Modelling Language) or a DSL (Domain-Specific Language). Once a model is specified, executable code for a computing platform can be automatically generated by means of model transformation (code generation). Besides the support for incremental model development, MDE also enables the formal verification of system properties. In the context of safety-critical systems, such as railway interlockings, the system model (e.g., specified in terms of UML) can be translated to a formal (mathematical) language more amendable to rigorous analysis. This paper presents a model transformation that takes a railway interlocking model (specified in Executable UML (xUML)) as input and outputs a formal model that can be mathematically analysed. This can potentially bridge the gap between well-known modelling languages (such as xUML) and formal languages, which facilitates the systematic development of safety-critical systems in terms of MDE. A small xUML railway interlocking model is used to illustrate the proposed method.

AB - Model transformation is at the heart of Model-Driven Engineering (MDE). In MDE, the system model is specified using a modelling language, such as UML (Unified Modelling Language) or a DSL (Domain-Specific Language). Once a model is specified, executable code for a computing platform can be automatically generated by means of model transformation (code generation). Besides the support for incremental model development, MDE also enables the formal verification of system properties. In the context of safety-critical systems, such as railway interlockings, the system model (e.g., specified in terms of UML) can be translated to a formal (mathematical) language more amendable to rigorous analysis. This paper presents a model transformation that takes a railway interlocking model (specified in Executable UML (xUML)) as input and outputs a formal model that can be mathematically analysed. This can potentially bridge the gap between well-known modelling languages (such as xUML) and formal languages, which facilitates the systematic development of safety-critical systems in terms of MDE. A small xUML railway interlocking model is used to illustrate the proposed method.

KW - executable UML (xUML)

KW - formal analysis

KW - formal languages

KW - model driven engineering (MDE)

KW - railway interlocking systems

UR - http://www.scopus.com/inward/record.url?scp=78649399877&partnerID=8YFLogxK

U2 - 10.2495/CR100741

DO - 10.2495/CR100741

M3 - Conference contribution

AN - SCOPUS:78649399877

SN - 9781845644680

VL - 114

T3 - WIT Transactions on the Built Environment

SP - 815

EP - 826

BT - Computers in Railways XII

A2 - Ning, B.

A2 - Brebbia, C. A.

PB - WIT Press

ER -

Xu T, Santos OM, Ge X, Woodcock J. Use of Nodel Transformation For The Formal Analysis Of Railway Interlocking Models. In Ning B, Brebbia CA, editors, Computers in Railways XII: Computer System Design and Operation in the Railway and Other Transit Systems, COMPRAIL 2010. Vol. 114. WIT Press. 2010. p. 815-826. (WIT Transactions on the Built Environment). https://doi.org/10.2495/CR100741