Using Alloy for Compliance Analysis

Search

Navigation

User login

Using Alloy for Compliance Analysis

Posted on: Fri, 08/08/2008 - 18:47

anonymous

Joined: 2008-01-25

Points: 1874

Using Alloy for Compliance Analysis

From: w.icelander

I would like to trigger a discussion related to the use of Alloy as a compliance tool.
It would also be interesting to learn about Daniel's thoughts on this since this
topic was not 'directly' addressed in his book.

Given a system S and requirement R. The goal is to validate if S is compliant to R.

1# How would we validate compliance using Alloy?

Is the following approach valid?

Create an Alloy Model:
- Represent S as a system : S (signatures, facts, functions, etc..)
- Assert R : (rules to be asserted)
The result of the assertion can help us validate compliance.

Are there any other ways that Alloy can validate compliance?

2# Can we say that compliance is equivalent to conformance as defined by the SE community?

3# Can we say that Alloys validation of compliance is based on a simulation approach?

Cheers
Will

Posted on: Thu, 08/21/2008 - 19:16 #1

dnj

Joined: 2008-06-06

Points: 39

Will,

It depends on what you mean by "system". If want you want to do is check an abstract system design against requirements properties, then that is exactly what Alloy is intended for, and many people have used it in that way. For a recent example, see Eunsuk Kang's work on checking conformance of a Flash File System design to the Posix standard. If you what you want to do is check code against specifications, there's also a long line of work doing that -- see papers by Mandana Vaziri, Mana Taghdiri, and most recently the work of Greg Dennis and Kuat Yessenov on Forge (which now has a nice Eclipse plugin that allows you to check Java code against Alloy specs).

Regards,

--Daniel