Robots artificially replicate human capabilities thanks to their software, the main
embodiment of intelligence. However, engineering robotics software has become …

A robot affects and is affected by its environment, so that typically its behaviour depends on
properties of that environment. For verification, we need to formalise those properties …

Simulation is favored by roboticists to evaluate controller design and software. Often, state
machines are drawn to convey overall ideas and used as a basis to program tool-specific …

Assurance cases are often required to certify critical systems. The use of formal methods in
assurance can improve automation, increase confidence, and overcome errant reasoning …

The growing complexity and diversity of models used for engineering dependable systems
implies that a variety of formal methods, across differing abstractions, paradigms, and …

Simulation and formal verification are important complementary techniques necessary in
high assurance model-based systems development. In order to support coherent results, it is …

Matlab/Simulink is a de-facto industrial standard for modelling embedded systems.
Reflecting the complexity of cyber-physical system (CPS) design, the semantics of Simulink …

State-machine based notations are ubiquitous in the description of component systems,
particularly in the robotic domain. To ensure these systems are safe and predictable, formal …

The behaviour of a robot affects and is affected by its environment. So, many of the expected
and desirable properties of a robotic system depend on properties of its environment. While …

We describe our UTP theory of hybrid relations, which extends the relational calculus with
continuous variables and differential equations. This enables the use of UTP in modelling …