Context: Safety is of paramount importance for cyber–physical systems in domains such as
automotive, robotics, and avionics. Formal methods such as model checking are one way to …

Runtime verification is an area of formal methods that studies the dynamic analysis of
execution traces against formal specifications. Typically, the two main activities in runtime …

Simulation is favored by roboticists to evaluate controller design and software. Often, state
machines are drawn to convey overall ideas and used as a basis to program tool-specific …

A robot affects and is affected by its environment, so that typically its behaviour depends on
properties of that environment. For verification, we need to formalise those properties …

In designing safety-critical infrastructures sa railway systems, engineers often have to deal
with complex and large-scale designs. Formal methods can play an important role in hel** …

Railway capacity is complex to define and analyze, and existing tools and methods used in
practice require comprehensive models of the railway network and its timetables. Design …

Designs of railway infrastructure (tracks, signalling and control systems, etc.) need to comply
with comprehensive sets of regulations describing safety requirements, engineering …

This paper proposes a new method of combining SAT with discrete event simulation. This
new integration proved useful for designing a solver for capacity analysis in early phase …

Models-at different levels of abstraction and pertaining to different engineering views-are
central in the design of railway networks, in particular signalling systems. The design of such …

The train control data is crucial for the safe operation of trains. However, the correctness of
train control data relies too much on expert experience in the field of railways due to the …