A. Hall, "Seven myths of formal methods," IEEE Software, vol. 7, no. 5, pp. 11 -- 19, 1990.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....industry alone was 6 billion [RT02] In spite of the current best practice, significant and costly errors remain in production software. Techniques utilizing formal specification languages and based on sound mathematics have been successful at identifying subtle errors missed by other techniques [CW96, H90]. Common formal verification tools include theorem provers [RJ00] model checkers [H97] and runtime monitors [GR01, GM02, KV99, DG01] In theorem proving, a logic formula expressing a desired property is derived from axioms that describe system behavior. In model checking, a system is described ....

....enabling the use of the aforementioned tools as well as other formal methods such as automated analysis and code synthesis. While formal methods have been demonstrated to improve the dependability of programs, practitioners have not widely adopted them. The following reasons have been cited [I88, H90]: The use of formal methods requires a high level of mathematical sophistication and training. Tools supporting the use of formal methods are not mature enough for general use and have not been well integrated with widely used software development tools. Customers and clients have ....

A. Hall, Seven Myths of Formal Methods, IEEE Software, September 1990, pp. 11-19.

....in this case meant that it could no longer prove unambiguously and quantitatively exactly how much better a formal method can be. Some more details on the project follow in section 2.3. 1. 2 Opponents Formal methods are often opposed by practitioners on purely pragmatic grounds, cf. also [Ha90] and [BoHi94] The following is from an opponent of formal methods, who shall remain anonymous: A formal design method is often overkill. Only a small portion of the errors found by an expensive formal design process would ultimately show up in practice. And similarly, quoted verbatim from a ....

J. A. Hall, Seven myths of formal methods . IEEE Software, 7(5):11, 19, Sept. 1990.

....a formal concretisation process leading to provably correct code. This process is normally referred to as refinement within the specialist literature (see, for example, Morgan [12] More recently, formal specifications have come to be acknowledged for their contribution to problem understanding [9, 10, 2, 11], their precision offering potential for enhanced communication and evaluation of understanding. In this paper we use refinement in its more common sense of clarification or increasing relevance. Our preliminary research [13, 14, 15, 2] suggested that a socio organizational approach could be used ....

A. Hall. Seven myths of formal methods. IEEE Software 75(5) (1990) 11--19.

....adequately captured) 4] Aside from certain well understood domains, the cost of formally specifying requirements is not only exorbitant, but the cost of proving the correctness of an implementation may be unacceptably high. Furthermore, although there are some well documented counter examples [11], formal specifications and proofs typically do not scale well to large systems, and are rarely robust in the face of evolutionary changes. This suggests that formal methods most likely have their place in ensuring the robustness and correctness of individual, functional software components, but ....

Anthony Hall. Seven myths of formal methods. IEEE Software, 7(5):11--19, Sept. 1990.

....considered to be a conformance centred approach to software development. They were presented as a basis for a formal concretisation process leading to provably correct code. More recently, formal specifications have come to be acknowledged for their contribution to problem understanding [H90, S92a, SS92a, W90], their precision offering potential for enhanced communication and evaluation of understanding. Our preliminary research [FSS93, S93, SFG92, SS92a] suggested that a socio organisational approach could be used beneficially in concert with object oriented formal specification techniques within the ....

Hall, A. (1990). Seven myths of formal methods. IEEE Software, 7(5), 11--19.

....such methods are not routinely used in industry. Even when formal methods are often used, they are used only to a limited extent and resisted by engineers and programmers. This situation is hardly surprising, both because there are many widely held misconceptions about the use of formal techniques [2] and because many of the methods are not practical. Below we will argue that it is possible, to obtain benefits from methods based on a relational model of software requirements. The principles of documentation and the software design process most applicable for our objectives are based on the ....

Hall, A., "Seven myths of formal methods", IEEE Software, 7(5), pp. 11-20, 1990.

.... The capability and feasibility of the approach presented here is fully demonstrated by a prototype tool Venus[9] 2 Pragmatic Obstacles The have been laudable efforts by the formal methods community to demystifying formal methods and to convince practitioners that formal methods are practical [3]. However, as the formal methods community zealously appeals to the practitioners, it fails to fully understand and address the practical concerns of practitioners. Since a reasonably solid foundation has been established for formal methods, it s time to focus more on the pragmatics of formal ....

A. Hall. Seven myths of formal methods. IEEE Software, 7(5):11--19, Sept. 1990.

....these accidents with the Therac 25 the reader is referred to [LT93] Formal methods, the term with which the variety of mathematical modelling techniques that are applicable to computer system design is meant, are often advocated as a way of increasing confidence in computer based systems. Many [BS92, BH95b, BS93b, BBL93, BH95a, BS93a, Bow93, But93, CGR93, CG92, GCR94, Hal90, Kem90, Nic91, RvH93, Rus94, WW93] believe that the use of formal methods currently offers the only intellectually defensible method for handling the software crisis which increasingly affects the world of embedded systems. In this report we shall mainly concentrate on safety critical software design. Formal methods can be applied ....

A. Hall. Seven myths of formal methods. IEEE Software, pages 11--19, September 1990.

No context found.

Anthony Hall. Seven Myths of Formal Methods. IEEE Software, 7(5):11-19 (Sept. 1990).

No context found.

Anthony Hall. Seven Myths of Formal Methods. IEEE Software, 7(5):11-19 (Sept. 1990).

No context found.

A. Hall, "Seven myths of formal methods," IEEE Software, vol. 7, no. 5, pp. 11 -- 19, 1990.

No context found.

Hall, A. (1990). Seven myths of formal methods. IEEE Software, 7(5).

No context found.

J.A. Hall. Seven Myths of Formal Methods. IEEE Software, pages 11--19, September 1990.

No context found.

J.A. Hall. Seven myths of formal methods. IEEE Software, 7(5):11-19, 1990.

No context found.

J. Anthony Hall. Seven Myths of Formal Methods. IEEE Software, 7(5):11{ 19, September 1990. 14

No context found.

A. Hall. Seven Myths of Formal Methods. IEEE Software, September 1990.

No context found.

J. A. Hall. Seven myths of formal methods. IEEE Software, 7(5):11--19, September 1990.

No context found.

A. Hall. Seven myths of formal methods. IEEE Software, pages 11--19, September 1990.

No context found.

A. Hall, Seven Myths of Formal Methods, IEEE Software, 7, 5, pp. 11-19, 1990

No context found.

Anthony Hall. Seven myths of formal methods. IEEE Software, 7(5):11--19, September 1990.

No context found.

Anthony Hall. Seven myths of formal methods. IEEE Software, 7(5):11--19, September 1990.

No context found.

A. Hall. "Seven myths of formal methods," IEEE Software Vol. 7, No. 5, 1990, pp. 11-19.

No context found.

A. Hall. Seven myths of formal methods. IEEE Computer, pages 11--20, September 1990.

No context found.

A. Hall, "Seven Myths of Formal Methods," IEEE Software (Sept., 1990).

No context found.

Hall, A. (1990). Seven myths of formal methods. IEEE Software, 7(5).

First 50 documents  Next 50

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC