Yuri Yushtein

Learn More
This paper reports on the usage of a broad palette of formal modeling and analysis techniques on a regular industrial-size design of an ultra-modern satellite platform. These efforts were carried out in parallel with the conventional software development of the satellite platform. The model itself is expressed in a formalized dialect of AADL. Its formal(More)
We describe an approach to support UML-based development of embedded systems by formal techniques. A subset of UML is extended with timing annotations and given a formal semantics. UML models are translated, via XMI, to the input format of formal tools, to allow timed and non-timed model checking and interactive theorem proving. Moreover, the Play-Engine(More)
This paper shows on hand of a case study the usefulness of the UML profile with real-time defined in the Omega project and of the IF validation tool-set. The case study is about intricate timing aspects arising in a small but complex component of the airborne Medium Altitude Reconnaissance System produced by NLR 1. The purpose is to show how automata-based(More)
This paper presents a case study in UML-based modelling and validation of the intricate timing aspects arising in a small but complex component of the airborne Medium Altitude Reconaissance System produced by NLR 1. The purpose is to show how automata-based timing analysis and verification tools can be used by field engineers for solving isolated hard(More)
Deep space and remote planetary exploration missions are characterized by severely constrained communication links and often require intervention from Ground to overcome the difficulties encountered during the mission. An adequate Ground control could be compromised due to communication delays and required Ground decision-making time, endangering the(More)
Recent studies focused on the achievement of autonomy of exploration spacecrafts, such as Mars rovers. The traditional approach for on-board FDIR (Fault Detection, Identification and Recovery) is based on the run-time observation of the system operational status in order to detect faults, while the initiation of the corresponding recovery actions uses(More)
  • 1