This Article 
 Bibliographic References 
 Add to: 
Using Petri Nets for the Design of Conversation Boundaries in Fault-Tolerant Software
October 1994 (vol. 5 no. 10)
pp. 1106-1112

Only a few mechanisms have been proposed for the design of fault-tolerant software.One of these is the conversation, which, though it has some drawbacks, is a potentiallypromising structure. One of the problems with conversations is that they must be definedand verified by the user. In this short note, a systematic method for generating theboundaries of conversations directly from the specification is proposed. This method canalso be used to verify conversations selected by the user. The specification is describedby a high-level modified Petri net which can easily be transformed into a state modelcalled an action-ordered tree. The conversation boundaries are then determined from thistree. It is proved that the method proposed is complete in the sense that all of thepossible boundaries can be determined, and it has the merit of simplicity. A robot armcontrol system is used to illustrate the idea. The proposed method can serve as the basisof a tool to assist in conversation designs.

[1] M. Ancona, G. Dodero, V. Gianuzzi, A. Clematis, and E. B. Fernandez, "A system architecture for fault tolerance in concurrent software,"Comput., vol. 23, pp. 23-32, Oct. 1990.
[2] T. Anderson and J. C. Knight, "A framework for software fault tolerance in real time systems,"IEEE Trans. Software Eng., vol. 9, no. 3, pp. 355-364, May 1983.
[3] T. Anderson, P. A. Barrett, D. N. Halliwell, and M. R. Moulding, "Software fault tolerance: An evaluation,"IEEE Trans. Software Eng., vol. 11, no. 12, pp. 1502-1510, Dec. 1985.
[4] G. R. Andrews and F. B. Schneider, "Concepts and notations for concurrent programming,"ACM Comput. Surveys, vol. 15, no. 1, pp. 3-43, Mar. 1983.
[5] A. Avizienis and J. P. J. Kelly, "Fault tolerance by design diversity Concepts and experiments,"Comput., vol. 17, no. 8, pp. 67-80, Aug. 1984.
[6] B. Berthomieu and M. Diaz, "Modeling and verification of time dependent systems using timed Petri nets,"IEEE Trans. Software Eng., vol. 17, pp. 259-273, Mar. 1991.
[7] G. F. Carpenter and A. M. Tyrrell, "The use of GMB in the design of robust software for distributed systems,"Software Eng. J., pp. 268-282, Sept. 1989.
[8] B. Cohen, W.T. Harwood, and M.I. Jackson,The Specification of Complex Systems, Addison-Wesley, Reading, Mass., 1986.
[9] F. Di Giandomenico and L. Strigini, "Implementations and extensions of the conversation concept,"Proc. 5th GI/ITG/GMA Int. Conf. Fault-Tolerant Comput. Syst., Nürnberg, Germany, 1991.
[10] G. Estrin, R. S. Fenchel, R. R. Razouk, and M. K. Vernon, "SARA (System ARchitects Apprentice): Modeling, analysis, and simulation support for design of concurrent systems,"IEEE Trans. Software Eng., vol. SE-12, no. 2, pp. 293-311, Feb. 1986.
[11] S. T. Gregory and J. C. Knight, "A new linguistic approach to backward error recovery,"Proc. 15th Int. Symp. Fault Tolerant Comput., 1985, pp. 404-409.
[12] H. Hecht and M. Hecht, "Fault tolerant software," in D.K. Pradhan, Ed.,Fault Tolerant Computing: Theory and Techniques. Englewood Cliffs, NJ: Prentice-Hall, 1986, pp. 658-696.
[13] P. Jalote and R.H. Campbell, "Atomic Action for Fault Tolerance Using CSP,"IEEE Trans. Software Eng., Vol. SE-12, No. 1, Jan. 1986, pp. 59-68.
[14] J.M. Kerridge and D. Simpson, "Three solutions for a robot arm controller using Pascal-Plus, Occam, and Edison,"Software Practice and Experience, vol. 14, no. 1, pp. 3-15, Jan. 1984.
[15] K. H. Kim, "Approaches to mechanization of the conversation scheme based on monitors,"IEEE Trans. Software Eng., vol. 8, pp. 189-197, May 1982.
[16] K. H. Kim, "Programmer-transparent coordination of recovering concurrent processes: Philosophy and rules for efficient implementation,"IEEE Trans. Software Eng., vol. 14, pp. 810-821, June 1988.
[17] K. H. Kim and S. M. Yang, "Performance impact of look-ahead execution on the conversation scheme,"IEEE Trans. Comput., vol. 38, pp. 1188-1202, Aug. 1989.
[18] J. C. Laprie and A. Costes, "Dependability: A unifying concept for reliable computing," inProc. FTCS-12, June 1982, pp. 18-21.
[19] B. M. Ozaki, E. B. Fernandez, and E. Gudes, "Software fault tolerance in architectures with hierarchical protection levels,"IEEE Micro, vol. 8, pp. 30-43, Aug. 1988.
[20] J. L. Peterson,Petri Net Theory and the Modeling of Systems. Englewood Cliffs, NJ: Prentice-Hall, 1981.
[21] B. Randell, "System structure for software fault tolerance,"IEEE Trans. Software Eng., vol. 1, no. 2, pp. 220-232, June 1975.
[22] D. L. Russell and M. I. Tiedeman, "Multiprocess recovery using conversations,"Proc. 9th Int. Conf. Fault-Tolerant Comput., 1979, pp. 106-109.
[23] A.C. Shaw, "Communicating real-time state machines,"IEEE Trans. Software Eng., vol. 18, no. 9, pp. 805-816, Sept. 1982.
[24] A. M. Tyrrell and D. J. Holding, "Design of reliable software in distributed systems using the conversation scheme,"IEEE Trans. Software Eng., vol. SE-12, no. 9, pp. 921-928, Sept. 1986.
[25] J.M. Wing, "A specifier's introduction to formal methods,"Comput., vol. 23, pp. 8-24, Sept. 1990.
[26] J. Wu and E. B. Fernandez, "A simplification of a conversation design scheme using Petri nets,"IEEE Trans. Software Eng., vol. 15, pp. 658-660, May 1989.
[27] J. Wu and E. B. Fernandez, "Using Petri nets for fault tolerance in concurrent software," Tech. Rep. TR-CE-90-4, Dept. of Comput. Sci. and Eng., Florida Atlantic Univ., Boca Raton, FL, USA, 1990.
[28] S. M. Yang and K. H. Kim, "Implementation of the conversation scheme in message-based distributed computer systems,"IEEE Trans. Parallel Distrib. Syst., vol. 3, pp. 555-572, Sept. 1992.

Index Terms:
Index TermsPetri nets; fault tolerant computing; software reliability; system recovery; systemsanalysis; formal specification; parallel processing; Petri nets; conversation boundaries;fault-tolerant software; software design; high-level modified Petri net; state model;action-ordered tree; robot arm control system; conversation design tool
J. Wu, E.B. Fernandez, "Using Petri Nets for the Design of Conversation Boundaries in Fault-Tolerant Software," IEEE Transactions on Parallel and Distributed Systems, vol. 5, no. 10, pp. 1106-1112, Oct. 1994, doi:10.1109/71.313126
Usage of this product signifies your acceptance of the Terms of Use.