Model checking wrap up

• The goal of model checking is to allow finite state descriptions to be analyzed and shown to have particular desirable properties

  • Won’t help when you don’t want or need finite state descriptions
  • Definitely added value when you do, but it’s not turnkey yet
    • Some other experience by other researchers, too (and we’ve worked on an electrical distribution spec, a research prototype at Boeing)
  • Definitely feasible on modest sized systems

Previous slide

Next slide

Back to first slide

View graphic version