Evaluating model testing and model checking for finding requirements violations in Simulink models

Shiva Nejati; Khouloud Gaaloul; Claudio Menghi; Lionel C. Briand; Stephen Foster; David Wolfe

doi:10.1145/3338906.3340444

Evaluating model testing and model checking for finding requirements violations in Simulink models

Shiva Nejati, Khouloud Gaaloul, Claudio Menghi, Lionel C. Briand, Stephen Foster, David Wolfe

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Matlab/Simulink is a development and simulation language that is widely used by the Cyber-Physical System (CPS) industry to model dynamical systems. There are two mainstream approaches to verify CPS Simulink models: model testing that attempts to identify failures in models by executing them for a number of sampled test inputs, and model checking that attempts to exhaustively check the correctness of models against some given formal properties. In this paper, we present an industrial Simulink model benchmark, provide a categorization of different model types in the benchmark, describe the recurring logical patterns in the model requirements, and discuss the results of applying model checking and model testing approaches to identify requirements violations in the benchmarked models. Based on the results, we discuss the strengths and weaknesses of model testing and model checking. Our results further suggest that model checking and model testing are complementary and by combining them, we can significantly enhance the capabilities of each of these approaches individually. We conclude by providing guidelines as to how the two approaches can be best applied together.

Original language	English
Title of host publication	ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering
Editors	Sven Apel, Marlon Dumas, Alessandra Russo, Dietmar Pfahl
Publisher	Association for Computing Machinery, Inc
Pages	1015-1025
Number of pages	11
ISBN (Electronic)	9781450355728
DOIs	https://doi.org/10.1145/3338906.3340444
Publication status	Published - 12 Aug 2019
Externally published	Yes
Event	27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, ESEC/FSE 2019 - Tallinn, Estonia Duration: 26 Aug 2019 → 30 Aug 2019

Publication series

Name	ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering

Conference

Conference	27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, ESEC/FSE 2019
Country/Territory	Estonia
City	Tallinn
Period	26/08/19 → 30/08/19

Keywords

Model Checking
Model Testing
SMT Solver
Search-based Software Testin
Simulink Model

Access to Document

10.1145/3338906.3340444

Cite this

Nejati, S., Gaaloul, K., Menghi, C., Briand, L. C., Foster, S., & Wolfe, D. (2019). Evaluating model testing and model checking for finding requirements violations in Simulink models. In S. Apel, M. Dumas, A. Russo, & D. Pfahl (Eds.), ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering (pp. 1015-1025). (ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering). Association for Computing Machinery, Inc. https://doi.org/10.1145/3338906.3340444

Nejati, Shiva ; Gaaloul, Khouloud ; Menghi, Claudio et al. / Evaluating model testing and model checking for finding requirements violations in Simulink models. ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering. editor / Sven Apel ; Marlon Dumas ; Alessandra Russo ; Dietmar Pfahl. Association for Computing Machinery, Inc, 2019. pp. 1015-1025 (ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering).

@inproceedings{f9ee5f5c8a634b3f9979b0586b5df105,

title = "Evaluating model testing and model checking for finding requirements violations in Simulink models",

abstract = "Matlab/Simulink is a development and simulation language that is widely used by the Cyber-Physical System (CPS) industry to model dynamical systems. There are two mainstream approaches to verify CPS Simulink models: model testing that attempts to identify failures in models by executing them for a number of sampled test inputs, and model checking that attempts to exhaustively check the correctness of models against some given formal properties. In this paper, we present an industrial Simulink model benchmark, provide a categorization of different model types in the benchmark, describe the recurring logical patterns in the model requirements, and discuss the results of applying model checking and model testing approaches to identify requirements violations in the benchmarked models. Based on the results, we discuss the strengths and weaknesses of model testing and model checking. Our results further suggest that model checking and model testing are complementary and by combining them, we can significantly enhance the capabilities of each of these approaches individually. We conclude by providing guidelines as to how the two approaches can be best applied together.",

keywords = "Model Checking, Model Testing, SMT Solver, Search-based Software Testin, Simulink Model",

author = "Shiva Nejati and Khouloud Gaaloul and Claudio Menghi and Briand, {Lionel C.} and Stephen Foster and David Wolfe",

note = "Publisher Copyright: {\textcopyright} 2019 ACM.; 27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, ESEC/FSE 2019 ; Conference date: 26-08-2019 Through 30-08-2019",

year = "2019",

month = aug,

day = "12",

doi = "10.1145/3338906.3340444",

language = "English",

series = "ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering",

publisher = "Association for Computing Machinery, Inc",

pages = "1015--1025",

editor = "Sven Apel and Marlon Dumas and Alessandra Russo and Dietmar Pfahl",

booktitle = "ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering",

}

Nejati, S, Gaaloul, K, Menghi, C, Briand, LC, Foster, S & Wolfe, D 2019, Evaluating model testing and model checking for finding requirements violations in Simulink models. in S Apel, M Dumas, A Russo & D Pfahl (eds), ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering. ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering, Association for Computing Machinery, Inc, pp. 1015-1025, 27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, ESEC/FSE 2019, Tallinn, Estonia, 26/08/19. https://doi.org/10.1145/3338906.3340444

Evaluating model testing and model checking for finding requirements violations in Simulink models. / Nejati, Shiva; Gaaloul, Khouloud; Menghi, Claudio et al.
ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering. ed. / Sven Apel; Marlon Dumas; Alessandra Russo; Dietmar Pfahl. Association for Computing Machinery, Inc, 2019. p. 1015-1025 (ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Evaluating model testing and model checking for finding requirements violations in Simulink models

AU - Nejati, Shiva

AU - Gaaloul, Khouloud

AU - Menghi, Claudio

AU - Briand, Lionel C.

AU - Foster, Stephen

AU - Wolfe, David

PY - 2019/8/12

Y1 - 2019/8/12

N2 - Matlab/Simulink is a development and simulation language that is widely used by the Cyber-Physical System (CPS) industry to model dynamical systems. There are two mainstream approaches to verify CPS Simulink models: model testing that attempts to identify failures in models by executing them for a number of sampled test inputs, and model checking that attempts to exhaustively check the correctness of models against some given formal properties. In this paper, we present an industrial Simulink model benchmark, provide a categorization of different model types in the benchmark, describe the recurring logical patterns in the model requirements, and discuss the results of applying model checking and model testing approaches to identify requirements violations in the benchmarked models. Based on the results, we discuss the strengths and weaknesses of model testing and model checking. Our results further suggest that model checking and model testing are complementary and by combining them, we can significantly enhance the capabilities of each of these approaches individually. We conclude by providing guidelines as to how the two approaches can be best applied together.

AB - Matlab/Simulink is a development and simulation language that is widely used by the Cyber-Physical System (CPS) industry to model dynamical systems. There are two mainstream approaches to verify CPS Simulink models: model testing that attempts to identify failures in models by executing them for a number of sampled test inputs, and model checking that attempts to exhaustively check the correctness of models against some given formal properties. In this paper, we present an industrial Simulink model benchmark, provide a categorization of different model types in the benchmark, describe the recurring logical patterns in the model requirements, and discuss the results of applying model checking and model testing approaches to identify requirements violations in the benchmarked models. Based on the results, we discuss the strengths and weaknesses of model testing and model checking. Our results further suggest that model checking and model testing are complementary and by combining them, we can significantly enhance the capabilities of each of these approaches individually. We conclude by providing guidelines as to how the two approaches can be best applied together.

KW - Model Checking

KW - Model Testing

KW - SMT Solver

KW - Search-based Software Testin

KW - Simulink Model

UR - http://www.scopus.com/inward/record.url?scp=85071930534&partnerID=8YFLogxK

U2 - 10.1145/3338906.3340444

DO - 10.1145/3338906.3340444

M3 - Conference contribution

AN - SCOPUS:85071930534

T3 - ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering

SP - 1015

EP - 1025

BT - ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering

A2 - Apel, Sven

A2 - Dumas, Marlon

A2 - Russo, Alessandra

A2 - Pfahl, Dietmar

PB - Association for Computing Machinery, Inc

T2 - 27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, ESEC/FSE 2019

Y2 - 26 August 2019 through 30 August 2019

ER -

Nejati S, Gaaloul K, Menghi C, Briand LC, Foster S, Wolfe D. Evaluating model testing and model checking for finding requirements violations in Simulink models. In Apel S, Dumas M, Russo A, Pfahl D, editors, ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering. Association for Computing Machinery, Inc. 2019. p. 1015-1025. (ESEC/FSE 2019 - Proceedings of the 2019 27th ACM Joint Meeting European Software Engineering Conference and Symposium on the Foundations of Software Engineering). doi: 10.1145/3338906.3340444

Evaluating model testing and model checking for finding requirements violations in Simulink models

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this