Hardware and software systems will inevitably grow in scale and functionality. Because of
this increase in complexity, the likelihood of subtle errors is much greater. Moreover, some of …

A foundational text that offers a rigorous introduction to the principles of design,
specification, modeling, and analysis of cyber-physical systems. A cyber-physical system …

Reactive systems are computing systems which are interactive, such as real-time systems,
operating systems, concurrent systems, control systems, etc. They are among the most …

The temporal logic of actions (TLA) is a logic for specifying and reasoning about concurrent
systems. Systems and their properties are represented in the same logic, so the assertion …

* Comprehensive introduction to the fundamental results in the mathematical foundations of
distributed computing* Accompanied by supporting material, such as lecture notes and …

As we learn from the literature, flexibility in choosing synchroni~ ation operations greatly
simplifies the task of designing highly concurrent programs. Unfortunately, existing hardware …

We augment the I/O automaton model of Lynch and Tuttle with probability, as a step toward
the ultimate goal of obtaining a useful tool for specifying and reasoning about asynchronous …

Refinement map**s are used to prove that a lower-level specification correctly implements
a higher-level one. We consider specifications consisting of a state machine (which may be …

This book is about the verification of reactive systems. A reactive system is a system that
maintains an ongoing interaction with its environment, as opposed to computing some final …

Conventional type systems specify interfaces in terms of values and domains. We present a
light-weight formalism that captures the temporal aspects of software component interfaces …