The University of Southampton
University of Southampton Institutional Repository

Retrenching the Purse: Finite Exception Logs, and Validating the Small

Retrenching the Purse: Finite Exception Logs, and Validating the Small
Retrenching the Purse: Finite Exception Logs, and Validating the Small
The Mondex Electronic Purse is an outstanding example of industrial scale formal refinement, and was the first verification to achieve ITSEC level E6 certification. A formal abstract model and a formal concrete model were developed, and a formal refinement was hand-proved between them. Nevertheless, certain requirements issues were set beyond the scope of the formal development, or handled in an unnatural manner. The retrenchment Tower Pattern is used to address one such issue in detail: the finiteness of the purse log (which records unsuccessful transactions). A retrenchment is constructed from the lowest level model of the purse system to a model in which logs are finite, and is then lifted to create two refinement developments of the purse, working at different levels of detail, and connected via retrenchments, forming the tower. The tower development is appropriately validated, vindicating the design used.
retrenchment, refinement, mondex, pattern
Banach, Richard
3c9a2946-4d86-428e-bce2-6dfdde219ff3
Jeske, Czeslaw
fbe74737-872a-44ad-9592-d2036aeb95a1
Poppleton, Michael
00f3ffec-b4ff-4dd3-89a4-7a9aaff1c9f1
Stepney, Susan
7a80b0af-85d5-4686-87fe-62d782c72156
Banach, Richard
3c9a2946-4d86-428e-bce2-6dfdde219ff3
Jeske, Czeslaw
fbe74737-872a-44ad-9592-d2036aeb95a1
Poppleton, Michael
00f3ffec-b4ff-4dd3-89a4-7a9aaff1c9f1
Stepney, Susan
7a80b0af-85d5-4686-87fe-62d782c72156

Banach, Richard, Jeske, Czeslaw, Poppleton, Michael and Stepney, Susan (2006) Retrenching the Purse: Finite Exception Logs, and Validating the Small. IEEE SEW-30: 30th Annual Software Engineering Workshop, United States. 25 - 27 Apr 2006.

Record type: Conference or Workshop Item (Paper)

Abstract

The Mondex Electronic Purse is an outstanding example of industrial scale formal refinement, and was the first verification to achieve ITSEC level E6 certification. A formal abstract model and a formal concrete model were developed, and a formal refinement was hand-proved between them. Nevertheless, certain requirements issues were set beyond the scope of the formal development, or handled in an unnatural manner. The retrenchment Tower Pattern is used to address one such issue in detail: the finiteness of the purse log (which records unsuccessful transactions). A retrenchment is constructed from the lowest level model of the purse system to a model in which logs are finite, and is then lifted to create two refinement developments of the purse, working at different levels of detail, and connected via retrenchments, forming the tower. The tower development is appropriately validated, vindicating the design used.

PDF
Retrench.Mondex.Log.pdf - Other
Download (160kB)

More information

Published date: 2006
Additional Information: [1] R. Banach. Maximally abstract retrenchments. In Proc. IEEE ICFEM2000, pages 133–142, York, August 2000. IEEE Computer Society Press. [2] R. Banach, C. Jeske, and M. Poppleton. Composition mechanisms for retrenchment. 2004. submitted, http://www.cs.man.ac.uk/˜banach/some.pubs/ Retrench. Composition.pdf. [3] R. Banach and M. Poppleton. Retrenchment: An engineering variation on refinement. In D. Bert, editor, 2nd International B Conference, volume 1393 of LNCS, pages 129–147, Montpellier, France, April 1998. Springer. Event Dates: 25-27 April 2006
Venue - Dates: IEEE SEW-30: 30th Annual Software Engineering Workshop, United States, 2006-04-25 - 2006-04-27
Keywords: retrenchment, refinement, mondex, pattern
Organisations: Electronics & Computer Science

Identifiers

Local EPrints ID: 262809
URI: https://eprints.soton.ac.uk/id/eprint/262809
PURE UUID: a52cb562-b5c8-4e8f-a4fd-10b35cde71e6

Catalogue record

Date deposited: 06 Jul 2006
Last modified: 18 Jul 2017 08:47

Export record

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of https://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×