@article{JoergesMargariaSteffen2011,
  author    = {J{\"o}rges, Sven and Margaria, Tiziana and Steffen, Bernhard},
  title     = {Assuring property conformance of code generators via model checking},
  series = {Formal aspects of computing : the international journal of formal methods},
  volume    = {23},
  journal   = {Formal aspects of computing : the international journal of formal methods},
  number    = {5},
  publisher = {Springer},
  address   = {New York},
  issn      = {0934-5043},
  doi       = {10.1007/s00165-010-0169-9},
  pages     = {589 -- 606},
  year      = {2011},
  abstract  = {Automatic code generation is an essential cornerstone of today's model-driven approaches to software engineering. Thus a key requirement for the success of this technique is the reliability and correctness of code generators. This article describes how we employ standard model checking-based verification to check that code generator models developed within our code generation framework Genesys conform to (temporal) properties. Genesys is a graphical framework for the high-level construction of code generators on the basis of an extensible library of well-defined building blocks along the lines of the Extreme Model-Driven Development paradigm. We will illustrate our verification approach by examining complex constraints for code generators, which even span entire model hierarchies. We also show how this leads to a knowledge base of rules for code generators, which we constantly extend by e.g. combining constraints to bigger constraints, or by deriving common patterns from structurally similar constraints. In our experience, the development of code generators with Genesys boils down to re-instantiating patterns or slightly modifying the graphical process model, activities which are strongly supported by verification facilities presented in this article.},
  language  = {en}
}
@article{BakeraMargariaRenneretal.2011,
  author    = {Bakera, Marco and Margaria, Tiziana and Renner, Clemens D. and Steffen, Bernhard},
  title     = {Game-Based model checking for reliable autonomy in space},
  series = {Journal of aerospace computing, information, and communication},
  volume    = {8},
  journal   = {Journal of aerospace computing, information, and communication},
  number    = {4},
  publisher = {American Institute of Aeronautics and Astronautics},
  address   = {Reston},
  issn      = {1940-3151},
  doi       = {10.2514/1.32013},
  pages     = {100 -- 114},
  year      = {2011},
  abstract  = {Autonomy is an emerging paradigm for the design and implementation of managed services and systems. Self-managed aspects frequently concern the communication of systems with their environment. Self-management subsystems are critical, they should thus be designed and implemented as high-assurance components. Here, we propose to use GEAR, a game-based model checker for the full modal mu-calculus, and derived, more user-oriented logics, as a user friendly tool that can offer automatic proofs of critical properties of such systems. Designers and engineers can interactively investigate automatically generated winning strategies resulting from the games, this way exploring the connection between the property, the system, and the proof. The benefits of the approach are illustrated on a case study that concerns the ExoMars Rover.},
  language  = {en}
}
@unpublished{KroeningMargariaWoodcock2011,
  author    = {Kr{\"o}ning, Daniel and Margaria, Tiziana and Woodcock, Jim},
  title     = {Untitled},
  series = {Formal aspects of computing : the international journal of formal methods},
  volume    = {23},
  journal   = {Formal aspects of computing : the international journal of formal methods},
  number    = {5},
  publisher = {Springer},
  address   = {New York},
  issn      = {0934-5043},
  doi       = {10.1007/s00165-011-0201-8},
  pages     = {585 -- 588},
  year      = {2011},
  language  = {en}
}