%0 Journal Article %1 botta_06_when %A Botta, Rick %A Bahill, Zach %A Bahill, Terry %C BAE Systems, 10920 Technology Place, San Diego, CA 92127; Boeing Integrated Defense Systems, Kent, WA; Systems and Industrial Engineering, University of Arizona, Tucson, AZ 85721-0020 %D 2006 %J Systems Engineering %K 2006 reuse tests statecharts \_pdf %N 3 %P 228--240 %R http://dx.doi.org/10.1002/sys.20053 %T When are observable states necessary? %U http://dx.doi.org/10.1002/sys.20053 %V 9 %X In order to use commercial off-the-shelf (COTS) products, the engineer must be able to prove that the COTS product is equivalent to the specified design. In most cases, this requires observable states, which are usually not available, because the supplier may not know or may not want to disclose the internal states of the system. This paper first presents the following reasons for proving system equivalence: to reuse existing systems, to upgrade systems, to use COTS products, to replicate failures, to verify that a physical system conforms to its design, and to test evolving systems. Next, the paper presents the following techniques that have been used in lieu of proving system equivalence: Create multiple reset (or test) states and prove I/O equivalence with respect to all initial state pairs, implement built-in self-tests, use regression testing, define pre and post conditions, only use COTS products in places where you do not care about observable states, put a wrapper around COTS products, record the mode the system was in when the event of interest occurred, abstract the code into a state machine, build an observer to estimate the system states, and add extra outputs so that the states can be identified by examining the outputs. Finally, this paper gives examples where states are necessary and unnecessary in modeling systems. \\\\\\\\copyright 2006 Wiley Periodicals, Inc. Syst Eng 5: 228-240, 2006

@article{botta_06_when, abstract = {In order to use commercial off-the-shelf (COTS) products, the engineer must be able to prove that the COTS product is equivalent to the specified design. In most cases, this requires observable states, which are usually not available, because the supplier may not know or may not want to disclose the internal states of the system. This paper first presents the following reasons for proving system equivalence: to reuse existing systems, to upgrade systems, to use COTS products, to replicate failures, to verify that a physical system conforms to its design, and to test evolving systems. Next, the paper presents the following techniques that have been used in lieu of proving system equivalence: Create multiple reset (or test) states and prove I/O equivalence with respect to all initial state pairs, implement built-in self-tests, use regression testing, define pre and post conditions, only use COTS products in places where you do not care about observable states, put a wrapper around COTS products, record the mode the system was in when the event of interest occurred, abstract the code into a state machine, build an observer to estimate the system states, and add extra outputs so that the states can be identified by examining the outputs. Finally, this paper gives examples where states are necessary and unnecessary in modeling systems. {\\\\\\\\copyright} 2006 Wiley Periodicals, Inc. Syst Eng 5: 228-240, 2006}, added-at = {2009-03-10T04:49:33.000+0100}, address = {BAE Systems, 10920 Technology Place, San Diego, CA 92127; Boeing Integrated Defense Systems, Kent, WA; Systems and Industrial Engineering, University of Arizona, Tucson, AZ 85721-0020}, author = {Botta, Rick and Bahill, Zach and Bahill, Terry}, biburl = {https://www.bibsonomy.org/bibtex/2e1fc9a49280494e368c37d6070f3a707/leonardo}, citeulike-article-id = {890303}, doi = {http://dx.doi.org/10.1002/sys.20053}, interhash = {c655efe4f72f13e56477ec2bec9d816e}, intrahash = {e1fc9a49280494e368c37d6070f3a707}, journal = {Systems Engineering}, keywords = {2006 reuse tests statecharts \_pdf}, number = 3, pages = {228--240}, posted-at = {2006-10-09 18:16:03}, priority = {4}, timestamp = {2009-03-10T04:49:33.000+0100}, title = {When are observable states necessary?}, url = {http://dx.doi.org/10.1002/sys.20053}, volume = 9, year = 2006 }