Presentation is loading. Please wait.

Presentation is loading. Please wait.

Where Agile Meets Formal Methods

Published byConnor Hill Modified over 10 years ago

Similar presentations

Presentation on theme: "Where Agile Meets Formal Methods"— Presentation transcript:

1 Where Agile Meets Formal Methods
Design by Contract Where Agile Meets Formal Methods

2 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

3 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

4 Motivation Improve software quality and reliability
Second NASA Formal Methods Symposium (April 13 – 15, 2010) Verification and Validation of Flight-Critical Systems An Overview of Formal Methods at Intel Decision Engine for Software Analysis at Microsoft.

5 Motivation What are Formal Methods?
“mathematically rigorous techniques and tools for developing specification, design and verification of software and hardware systems” -- Wikipedia

6 Motivation Agile: Are we building the right product?
making sure clients get what they want won’t waste resources unnecessarily Formal: Are we building the product right? making sure code does exactly as specified separate process to determine right product

7 Motivation Is there a common ground? Alloy (MIT)
Object Constraint Language (IBM) Design by Contract (Effiel)

8 Motivation Why should the Agile community care?
Tests often insufficient to safeguard changes Documentations are poorly-written or outdated Collective code ownership  misinterpretation Why should the FM community care? Overemphasized full formalization of design Few people understand formal notations

9 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

10 Design by Contract – History
Bertrand Meyer developed DbC in 1986 “The quality factors on which we have concentrated — reusability, extendibility, compatibility — must not be attained at the expense of reliability (correctness and robustness).” -- Bertrand Meyer, Object Oriented Software Construction Correctness  Assertions Robustness  Exception Handling

11 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

12 Design by Contract – Concept
Example: a contract between an airline and a customer Obligations Benefits Customer (client) (Must ensure precondition) Be at the Pearson airport at least 5 minutes before scheduled departure time. Bring only acceptable baggage. Pay ticket price. (May benefit from postcondition) Reach Chicago. Airline (supplier) (Must ensure postcondition) Bring customer to Chicago. (May assume precondition) No need to carry passenger who is late, has unacceptable baggage, or has not paid ticket price.

13 Design by Contract – Concept
Precondition: an obligation for the client and a benefit for the supplier Postcondition: a benefit for the client and an obligation for the supplier

14 Design by Contract – Concept
Example: a contract between an airline and a customer Before Purchase After Purchase Airline (supplier) (Must ensure invariant) Ensures plane has certain number of free seats (Must ensure invariant) Number of free seats decreases appropriately Class Invariant: global property of the instances of a class, which must be preserved by all routines

15 Design by Contract – Concept
Example: a contract between an airline and a customer Airline (General) Airline (Business) Customer (client) Be at the Pearson airport at least 5 minutes before scheduled departure time. Bring only acceptable baggage. Pay ticket price. Be at the Pearson airport at least 30 minutes before scheduled departure time. Bring only acceptable baggage. Pay ticket price. Airline (supplier) Bring customer to Chicago. Bring customer to O’Hare International Airport in Chicago.

16 Design by Contract – Concept
Subcontract: Precondition can be weaken Postcondition can be strengthen

17 Design by Contract – Concept
Example: a contract between an airline and a customer While Loading Baggage Handling Airline (supplier) Detected a snake in Customer A’s baggage Ask Customer A to leave the plane along with his baggage Exception: a run-time event that may cause a routine call to fail

18 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

19 Design by Contract – Integrate
"We will derive tremendous benefits from writing the assertions at the same time as we write the software, or indeed before we write the software." -- Bertran Meyer, Object Oriented Software Construction Differ from TDD, DbC checks for all cases ESC/Java2 checks spec consistency at runtime JMLUnit auto-generates test cases JMLDoc embeds JML in JavaDoc

20 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

21 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

22 Design by Contract – Reviews
“I've tried to use [DbC] in a number of enterprise application settings, and I've found that in many situations it's as hard to write the pre and post conditions as it is to write the solution.” -- Martin Fowler “Design by Contract practice lessened the number of person-hours required to perform software testing.” -- An Experience With Design by Contract

23 What is Design by Contract?
Motivation History Concept Integrate with Agile Example Reviews Current State

24 Design by Contract – Current State
Effiel – built into the language Java – JCR305 submitted for JML Microsoft – Spec# and Boggie

25 Q & A

Download ppt "Where Agile Meets Formal Methods"

Similar presentations

Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 18 Program Correctness To treat programming.

Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 18 Program Correctness To treat programming.
Formal techniques for getting software right: some old ideas and some new tools Applied Formal Methods Research Group 2012-11-02 David Lightfoot:

Formal techniques for getting software right: some old ideas and some new tools Applied Formal Methods Research Group David Lightfoot:
Configuration management

Configuration management
Configuration management

Configuration management
Design by Contract.

Design by Contract.
Presenter: Chris Treml

Presenter: Chris Treml
Copyright W. Howden1 Programming by Contract CSE 111 6/4/2014.

Copyright W. Howden1 Programming by Contract CSE 111 6/4/2014.
Building Bug-Free O-O Software: An Introduction to Design By Contract A presentation about Design By Contract and the Eiffel software development tool.

Building Bug-Free O-O Software: An Introduction to Design By Contract A presentation about Design By Contract and the Eiffel software development tool.
Carlos D. Rivera February 28, 2007 Design-by-Contract.

Carlos D. Rivera February 28, 2007 Design-by-Contract.
Addressing the Challenges of Current Software. Questions to Address Why? What? Where? How?

Addressing the Challenges of Current Software. Questions to Address Why? What? Where? How?
Design by Contract. Design by contract is the process of developing software based on the notion of contracts between objects, which are expressed as.

Design by Contract. Design by contract is the process of developing software based on the notion of contracts between objects, which are expressed as.
Building bug-free O-O software: An introduction to Design by Contract Eiffel Software Presented by Bert Bruce.

Building bug-free O-O software: An introduction to Design by Contract Eiffel Software Presented by Bert Bruce.
1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.

1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.
1 - 7 - Design by Contract ™. 2 Design by Contract A discipline of analysis, design, implementation, management.

Design by Contract ™. 2 Design by Contract A discipline of analysis, design, implementation, management.
91.3913Feb 2003 R McFadyen1 Contracts (Ch 13) Used to help understand requirements more completely based on assertions; assertions are applicable to any.

Feb 2003 R McFadyen1 Contracts (Ch 13) Used to help understand requirements more completely based on assertions; assertions are applicable to any.
92.3913Jan 2005 Ron McFadyen1 Contracts Used to help understand requirements more completely (and so may not always be necessary) based on assertions;

Jan 2005 Ron McFadyen1 Contracts Used to help understand requirements more completely (and so may not always be necessary) based on assertions;
Chapter 15 Design, Coding, and Testing. Copyright © 2005 Pearson Addison-Wesley. All rights reserved. 15-2 Design Document The next step in the Software.

Chapter 15 Design, Coding, and Testing. Copyright © 2005 Pearson Addison-Wesley. All rights reserved Design Document The next step in the Software.
Copyright W. Howden1 Lecture 13: Programming by Contract.

Copyright W. Howden1 Lecture 13: Programming by Contract.
Software Testing and Quality Assurance

Software Testing and Quality Assurance
Static and Dynamic Contract Verifiers For Java Hongming Liu.

Static and Dynamic Contract Verifiers For Java Hongming Liu.

Similar presentations

Ads by Google