[SystemSafety] Correctness by Construction

andrew at andrewbanks.com andrew at andrewbanks.com
Mon Jul 13 20:29:46 CEST 2020


On 2020-07-13 14:31, Peter Bernard Ladkin wrote:
> On 2020-07-13 14:59 , Michael Jackson wrote:
>> Hoping for illuminating replies, I ask an open question.
>> 
>> In the phrase "Correctness by Construction", what does 'correctness' 
>> mean?
> As I use the term, source code SC is developed CbyC, it means
> 
> * there is a Requirements Specification RS which allows one
> practically to determine whether certain
> program behaviours fulfil it or not
> 
> * there is a means Chk of determining whether program behaviours will
> satisfy RS through analysis of
> the source code SC of the program and the meaning of SC. (This
> statement assumes Chk is sound.)
> 
> * Chk is incremental, that is, it may be applied soundly to source
> code as it is being written, and
> relatively comprehensive, that is, it can be applied to most programs 
> SC
> 
> * SC is indeed developed with incremental use of Chk
> 

But surely, at some stage, "Correctness" can only be actually proven by 
EXECUTING that code on the target hardware.

There are nuances and subtleties that can only ever be truly discovered 
by running the code it its true environment.


A


More information about the systemsafety mailing list