Abstract:Rijkswaterstaat, the National Dutch body responsible for infrastructure, recognised the importance of formal modelling and set up a program to model the control of road tunnels. This is done to improve the standardisation of tunnel control and make communication with suppliers smoother. A subset of SysML is used to formulate the models, which are substantial. In an earlier paper we have shown that these models can be used to prove behavioural properties by manually translating the models to mCRL2. In this paper we report on an automatic translation to mCRL2. As the results of the translation became unwieldy, we also investigated modelling tunnel control in the specification language Dezyne which has built-in verification capabilities and compared the results.

What problem does this paper attempt to address?

This paper attempts to solve the problems encountered in the modeling and verification of the tunnel control system of Rijkswaterstaat in the Netherlands (the national agency responsible for road and water infrastructure in the Netherlands). Specifically, the main research problems include: 1. **Improve standardization and communication efficiency**: Improve the standardization of the tunnel control system through formal modeling and make communication with suppliers more smooth. 2. **Automatic translation from SysML to mCRL2**: Since manual translation of SysML models to mCRL2 is time - consuming and error - prone, the research attempts to achieve automatic translation from SysML to mCRL2 to ensure the quality and consistency of the models. 3. **Deal with the lack of formal semantics**: There is "structured natural language" in SysML models, and these descriptions have no formal grammar and semantics. The research solves this problem by systematically converting these descriptions into activity diagrams. 4. **Optimize the verification process**: The research finds that the mCRL2 models generated by automatic translation are too complex to be verified. Therefore, the research also explores the use of Dezyne specification language for modeling, which has built - in verification functions, thereby simplifying the verification process. 5. **Compare the effects of different modeling methods**: By comparing the results of three modeling methods, SysML, mCRL2 and Dezyne, evaluate their applicability and effectiveness in the tunnel control system. ### Main research objectives - **Improve model quality**: Improve the safety and reliability of the tunnel control system through formal verification. - **Automate the translation process**: Develop an automatic tool to translate SysML models into mCRL2, reducing the time and errors of manual translation. - **Explore more effective modeling methods**: Evaluate the performance of other specification languages such as Dezyne in the modeling of tunnel control systems and find more efficient solutions. ### Research background Rijkswaterstaat has already created models of all parts of the tunnel control system using SysML, but these models lack formal semantics, making it difficult to perform formal verification. In order to improve the reliability and safety of the system, the research team hopes to make up for this deficiency by introducing formal methods. ### Solutions 1. **Formalize "structured natural language"**: Convert the natural language descriptions in SysML models into formal descriptions with clear semantics. 2. **Automatic translation tool**: Develop a translation tool based on Spoofax to automatically convert SysML models into mCRL2. 3. **Use Dezyne for modeling**: Explore the application of Dezyne language in the modeling of tunnel control systems and use its built - in verification functions to simplify the verification process. Through these methods, the research aims to improve the quality and reliability of the tunnel control system while simplifying the development and maintenance processes.

Formally Modelling the Rijkswaterstaat Tunnel Control Systems in a Constrained Industrial Environment

Development of a 3D Digital Twin of the Swalmen Tunnel in the Rijkswaterstaat Project

Dezyne: Paving the Way to Practical Formal Software Engineering

Encapsulating Formal Methods within Domain Specific Languages: A Solution for Verifying Railway Scheme Plans

Automating Consistency Verification of Safety Requirements for Railway Interlocking Systems.

A Matlab/Simulink-Based Modeling for Industrial Hydraulic Vehicle Design – Application to Tunneling

Ten Diverse Formal Models for a CBTC Automatic Train Supervision System

Formal Methods in Railways: a Systematic Mapping Study

An approach for design and formal verification of safety-critical software

Toward Dependable Model-Driven Design of Low-Level Industrial Automation Control Systems

Empowering Domain Experts With Formal Methods for Consistency Verification of Safety Requirements

A MDE Based Approach for Bridging Formal Models

Electrical-hydraulic Modeling and Simulation in MATLAB/Simulink of an Industrial Multi-service Vehicle for Tunneling

Verification of the European Rail Traffic Management System in Real-Time Maude

An Research for Formal Verification of Safety-Critical Software

Formal Modeling and Initial Analysis of the 4SECURail Case Study

Industrial Experiences with a Formal DSL Semantics to Check Correctness of DSL Transformations

An Extension of the Systems Modeling Language for Physical Interaction and Signal Flow Simulation

Systematic Evaluation and Usability Analysis of Formal Tools for Railway System Design

Reduced-order Modeling of Modular, Position-dependent Systems with Translating Interfaces

Multiple Analyses, Requirements Once: simplifying testing & verification in automotive model-based development