Validation Obligations: A Novel Approach to Check Compliance between Requirements and their Formal Specification

TL;DR

This paper introduces 'validation obligations', a new method to ensure early compliance between requirements and formal specifications during system refinement, addressing a gap in traditional verification-focused formal methods.

Contribution

It proposes a novel approach integrating validation into each refinement step, enhancing early detection of requirement misinterpretations.

Findings

Enables early validation during refinement stages

Improves detection of requirement errors early in development

Bridges the gap between verification and validation processes

Abstract

Traditionally, practitioners use formal methods pre-dominately for one half of the quality-assurance process: verification (do we build the software right?). The other half -- validation (do we build the right software?) -- has been given comparatively little attention. While verification is the core of refinement-based formal methods, where each new refinement step must preserve all properties of its abstract model, validation is usually postponed until the latest stages of the development, when models can be automatically executed. Thus mistakes in requirements or in their interpretation are caught too late: usually at the end of the development process. In this paper, we present a novel approach to check compliance between requirements and their formal refinement-based specification during the earlier stages of development. Our proposed approach -- "validation obligations" -- is based on the simple idea that both verification and validation are an integral part of all refinement steps of a system.