Laurent George Tullio Vardanega (Eds.) Reliable Software 4 5 Technologies – 4 8 S C Ada-Europe 2014 N L 19th Ada-Europe International Conference on Reliable Software Technologies Paris, France, June 23–27, 2014, Proceedings 123 Lecture Notes in Computer Science 8454 CommencedPublicationin1973 FoundingandFormerSeriesEditors: GerhardGoos,JurisHartmanis,andJanvanLeeuwen EditorialBoard DavidHutchison LancasterUniversity,UK TakeoKanade CarnegieMellonUniversity,Pittsburgh,PA,USA JosefKittler UniversityofSurrey,Guildford,UK JonM.Kleinberg CornellUniversity,Ithaca,NY,USA AlfredKobsa UniversityofCalifornia,Irvine,CA,USA FriedemannMattern ETHZurich,Switzerland JohnC.Mitchell StanfordUniversity,CA,USA MoniNaor WeizmannInstituteofScience,Rehovot,Israel OscarNierstrasz UniversityofBern,Switzerland C.PanduRangan IndianInstituteofTechnology,Madras,India BernhardSteffen TUDortmundUniversity,Germany DemetriTerzopoulos UniversityofCalifornia,LosAngeles,CA,USA DougTygar UniversityofCalifornia,Berkeley,CA,USA GerhardWeikum MaxPlanckInstituteforInformatics,Saarbruecken,Germany Laurent George Tullio Vardanega (Eds.) Reliable Software Technologies – Ada-Europe 2014 19th Ada-Europe International Conference on Reliable Software Technologies Paris, France, June 23-27, 2014 Proceedings 1 3 VolumeEditors LaurentGeorge UniversityofParis-Est ChampssurMarne,France E-mail:[email protected] TullioVardanega UniversityofPadua,Italy E-mail:[email protected] ISSN0302-9743 e-ISSN1611-3349 ISBN978-3-319-08310-0 e-ISBN978-3-319-08311-7 DOI10.1007/978-3-319-08311-7 SpringerChamHeidelbergNewYorkDordrechtLondon LibraryofCongressControlNumber:2014941454 LNCSSublibrary:SL2–ProgrammingandSoftwareEngineering ©SpringerInternationalPublishingSwitzerland2014 Thisworkissubjecttocopyright.AllrightsarereservedbythePublisher,whetherthewholeorpartof thematerialisconcerned,specificallytherightsoftranslation,reprinting,reuseofillustrations,recitation, broadcasting,reproductiononmicrofilmsorinanyotherphysicalway,andtransmissionorinformation storageandretrieval,electronicadaptation,computersoftware,orbysimilarordissimilarmethodology nowknownorhereafterdeveloped.Exemptedfromthislegalreservationarebriefexcerptsinconnection withreviewsorscholarlyanalysisormaterialsuppliedspecificallyforthepurposeofbeingenteredand executedonacomputersystem,forexclusiveusebythepurchaserofthework.Duplicationofthispublication orpartsthereofispermittedonlyundertheprovisionsoftheCopyrightLawofthePublisher’slocation, inistcurrentversion,andpermissionforusemustalwaysbeobtainedfromSpringer.Permissionsforuse maybeobtainedthroughRightsLinkattheCopyrightClearanceCenter.Violationsareliabletoprosecution undertherespectiveCopyrightLaw. Theuseofgeneraldescriptivenames,registerednames,trademarks,servicemarks,etc.inthispublication doesnotimply,evenintheabsenceofaspecificstatement,thatsuchnamesareexemptfromtherelevant protectivelawsandregulationsandthereforefreeforgeneraluse. Whiletheadviceandinformationinthisbookarebelievedtobetrueandaccurateatthedateofpublication, neithertheauthorsnortheeditorsnorthepublishercanacceptanylegalresponsibilityforanyerrorsor omissionsthatmaybemade.Thepublishermakesnowarranty,expressorimplied,withrespecttothe materialcontainedherein. Typesetting:Camera-readybyauthor,dataconversionbyScientificPublishingServices,Chennai,India Printedonacid-freepaper SpringerispartofSpringerScience+BusinessMedia(www.springer.com) Preface The19th editionofthe InternationalConferenceonReliableSoftwareTechnolo- gies (Ada-Europe 2014) took place in the fascinating venue of Paris, graciously hosted by the E´cole d’Ing´enieurs, ECE, on their spectacular campus very close to the Eiffel Tower. With this edition, the conference returned to France for the third time after Toulouse in 2003 and Brest in 2009. Two other countries have hosted the conference three times since its inception: Spain (Santander, 1999, PalmadeMallorca,2004,andValencia,2010),andtheUK(London,1997,York, 2005,andEdinburgh,2011).Threecountrieshostedittwice:Switzerland(Mon- treux, for the inaugurationin 1996,and Geneva, 2007),Sweden(Uppsala, 1998, and Stockholm, 2012), and Germany (Potsdam, 2000, and Berlin, 2013). Four countrieshavetheirhostingcounterstillatone:Belgium(Leuven,2001),Austria (Vienna, 2002), Portugal (Porto, 2006) and Italy (Venice, 2008). The conference series is run and sponsored by Ada-Europe, in collaboration with local organizers, whenever possible (and luckily, often enough) represent- ing the local Ada communities. This was the case this year, with Ada-France leading the organizing team, with precious reinforcement from members of the host institution, ECE. There were two main reasons for the conference to come to Paris. One was to facilitate an encounter between the vast industrial pole based around Paris and the 2012 revision of the Ada language standard, which makesitespeciallyattractivewherereliabilityisafactor.Theotherwastostart the celebrations of the 20th anniversary of the first validation of GNAT, which actuallyhappenedin1995,beforebuildingahomeinParisafteritsbirthinNew York.Thesecelebrationswillpeakin2015,innicesyncwiththe20thanniversary of the conference series. The conference took place during June 23-27, 2014, featuring a rich and attractive program on both technical and social grounds. In building the pro- gram, the organizers had to choose from 68 submissions, 37 of which were for peer-reviewed papers, 12 for industrial papers, 16 for tutorials, and three for workshops.Outofthishealthybatchofmaterial,tentutorialsfortheequivalent of12half-daysessionswerescheduledonMondayandFriday,togetherwithtwo full-dayworkshopsonthemesofhighrelevancetoindustrialresearch,oneonthe engineering of “Dependable Cyber-Physical Systems” (Monday), and the other on“Mixed-CriticalitySystems.”Thecoreprogram,runfromTuesdaytoThurs- day, included three keynote talks, 12 presentations from peer-reviewed papers, six industrial presentations, three experience reports positioned between indus- tryandresearch,onevendorsessionwithanaccompanyingindustrialexhibition, anda retrospectivesessiononthe first20yearsofGNAT andits ecosystem.On theWednesdayoftheconferenceweek,Ada-Francealsoorganizedaspecialevent dedicated to presenting Ada 2012 to high-ranking members of French industry. VI Preface Theproceedingscontainedinthisvolumecovertwoofthethreekeynotetalks that opened each day of the core conference program, and the full set of peer- reviewed papers. The remainder of the conference proceedings were published, in successive instalments, in the Ada User Journal, the quarterly magazine of Ada-Europe. – Lessons Learned and Easily Forgotten, Robert Lain´e, SPACINOV, France, delivered insights drawn from over 40 years of experience in leading large space projects. – From ARTEMIS to ECSEL: Growing a Large Eco-System for High- Dependability Systems, Alun Foster, ARTEMIS, Belgium, gave testimony of the power of larger-scale collaborative research, and the importance of the public–private partnership model for R&D investments. – Future Challenges in Design Tools and Frameworks for Embedded Systems; Application to Intelligent Transportation Systems, Mohamed Shawky, Uni- versit´e de Technologie Compi`egne, France, presented a synopsis of the new challenges that future designers and tool developers for intelligent trans- portation systems will face in the near future. Submissionsto the peer-reviewedtrackofthe conferenceprogramcamefrom18 countriesand87distinctauthors,fromEurope,Asia,Australia,NorthAmerica, and Africa. The selection was very competitive and resulted in the making of fourtechnical sessions,allcoveredinthis volume,ontopicsrangingfromformal verificationtoreal-timeschedulingviaAdatechnologyandcriticalapplications. The tutorial program covered a rich spectrum of topics in close match with the central themes of the conference, as follows: – Proving Safety of Parallel/Multi-Threaded Programs, TuckerTaft,AdaCore, USA – MulticoreProgrammingUsingDivide-and-ConquerandWorkStealing,Tucker Taft, AdaCore, USA – Debugging Real-Time Systems, Ian Broster and Andrew Coombes, Rapita Systems, UK – Developing Mixed-Criticality Systems with GNAT/ORK and Xtratum, Al- fons Crespo, Alejandro Alonso, and Jon Perez, Universidad Polit`ecnica de Val`encia, Universidad Polit´ecnica de Madrid, IKERLAN, Spain – High-Integrity Object-Oriented Programming with Ada 2012, Ben Brosgol, AdaCore, USA – Ada 2012 (Sub)type and Subprogram Contracts in Practice, Jacob Sparre- Andersen, JSA R&I, Denmark – Technical Basis of Model-Driven Engineering, William Bail, MITRE, USA – An Overview of Software Testing with an Emphasis on Statistical Testing, William Bail, MITRE, USA – Robotic Programming, Lars Asplund, Asplund Data AB, Sweden – Introduction to Verification with SPARK 2014, Rod Chapman and Yannick Moy, Altran, UK, and AdaCore, France. Preface VII The industrial session featured six presentations centered on various aspects of reliable software development: – From Ada 83 toAda2012, PhilippeGastandDavidLesens,AstriumEADS, France – Test Means at Airbus Defence and Space, Military Aircraft Business Line: Making Ada the Heart of an All •Encompassing Aircraft Test Life •Cycle, Javier Arroyo and Bartolome Lozano, Airbus Defence and Space, Spain – PolarSys: Open Source Tools for Embedded Systems, and Use Cases, Gael Blondelle, Pierre Gaufillet and Silvia Mazzini, Eclipse Foundation, France, Airbus, France, Intecs, Italy – AgileSoftwareDevelopmentComplianttoSafetyStandards?,ChristianScholz, Thales Transportation Systems GmbH, Germany – Critical Software for the First European Rail Traffic Management System, Ana Rodriguez, Silver Atena, Spain – AdDoc (Beyond a Document Generator), Robert Cholay, Systerel, France. The program also included an experience report session, which contained the following presentations: – Modified Condition/Decision Coverage (MC/DC) of Ada Case Statements, Antoine Colin, Roger Braff and Andrew Coombes, Rapita Systems, UK – Privacy Leaks in Java Classes, JacobSparre Andersen, JSA R&I, Denmark – ExperienceinSpacecraft On•BoardSoftwareDevelopment,JuanAntoniode LaPuente,AlejandroAlonso,JuanZamorano,JorgeGarrido,EmilioSalazar and Miguel A. De Miguel, Universidad Polit´ecnica de Madrid, Spain. Before closing this preface, we must acknowledge those who, serving in various roles – some in the foreground, others in the background – were central to the makingoftheconferenceprogram.Thefirsttodeservegratitudearetheauthors ofallpresentations:Theyhadalargetakeinthesuccessoftheevent.Nextcome the membersofthe ProgramCommittee –their reviewingandadvisingwerees- sential to achieving a high standard of quality in the conference proceedings, in its various guises – Springer’s LNCS for the peer-reviewed papers, and the Ada UserJournalfortheindustrialpresentationsandtheworkshops.Asmallergroup of people ran, for a full year,the preparation,constructionand execution ofthe conference program: Local Chair Magali Munoz; Conference Chair Jean-Pierre Rosen;IndustrialChairJørgenBundgaard;PublicityChairDirkCraeynest;Ex- hibitionCo-chairsJamieAyreandGuillaumeFoliard;TutorialCo-chairsLiliana Cucu and Albert Llemos`ı; Finance Chair Paul Duquennoy. They all deserve a big thank you. We hope thatthe attendeesenjoyedthe conference,inbothits technical and social program, as much as we did in organizing it. June 2014 Laurent George Tullio Vardanega Organization Conference Chair Jean-Pierre Rosen, Ada-France Finance Chair Paul Duquennoy, Ada-France Program Co-chairs Laurent George University of Paris-Est, Marne La Vall´ee, France Tullio Vardanega University of Padua, Italy Industrial Chair Jørgen Bundgaard Ramboll, Denmark Tutorial Co-chairs Liliana Cucu Inria, France Albert Llemos`ı Universitat des Illes Balears, Spain Exhibition Co-chairs Jamie Ayre AdaCore, France Guillaume Foliard Thales, France Publicity Chair Dirk Craeynest Aubay Belgium & K.U. Leuven, Belgium Local Chair Magali Munoz ECE, France X Organization Sponsoring Institutions AdaCore Altran Rapita Systems Ltd Squoring TNI – Ellidiss Software Program Committee Mario Aldea Universidad de Cantabria, Spain Ted Baker US National Science Foundation, USA Johann Blieberger Technische Universita¨t Wien, Austria Bernd Burgstaller Yonsei University, Korea Maryline Chetto University of Nantes, France Liliana Cucu Inria, France Christian Fraboul ENSEEIHT, France Laurent George LIGM/UPEMLV – ECE Paris, France Xavier Grave Centre National de la Recherche, France Emmanuel Grolleau ENSMA, France J´erˆome Hugues ISAE Toulouse, France Albert Llemos´ı Universitat de les Illes Balears, Spain Kristina Lundqvist Ma¨lardalen University, Sweden Franco Mazzanti ISTI-CNR Pisa, Italy John McCormick University of Northern Iowa, USA Stephen Michell Maurya Software, Canada Laurent Pautet Telecom ParisTech, France Lu´ıs Miguel Pinho CISTER Research Centre/ISEP, Portugal Erhard Plo¨dereder Universit¨at Stuttgart, Germany Juan A. de la Puente Universidad Polit´ecnica de Madrid, Spain Jorge Real Universitat Polit´ecnica de Val`encia, Spain Jos´e Ruiz AdaCore, France Sergio S´aez Universidad Polit´ecnica de Valencia, Spain Amund Skavhaug NTNU, Norway Yves Sorel Inria, France Tucker Taft AdaCore, USA Theodor Tempelmeier University of Applied Sciences Rosenheim, Germany Elena Troubitsyna Aˆbo Akademi University, Finland Tullio Vardanega University of Padova, Italy Juan Zamorano Universidad Polit´ecnica de Madrid, Spain Organization XI Industrial Committee Jacob Sparre Andersen JSA Consulting, Denmark Roger Brandt Roger Brandt IT Konsult AB, Sweden Ian Broster Rapita Systems, UK Jørgen Bundgaard Rambøll Denmark A/S, Denmark Dirk Craeynest Ada-Belgium & KU Leuven, Belgium Peter Dencker ETAS GmbH, Germany Ismael Lafoz Airbus Military, Spain Maria del Carmen Lomba Sorrondegui GMV, Spain Ahlan Marriott White Elephant, Switzerland Robin Messer Altran-Praxis, UK Quentin Ochem AdaCore, France Steen Palm Terma, Denmark Paolo Panaroni Intecs, Italy Paul Parkinson Wind River, UK Ana Rodriguez Silver-Atena, Spain Jean-Pierre Rosen Adalog, France Alok Srivastava TASC, USA Claus Stellwag, Elektrobit AG, Germany Jean-Loup Terraillon European Space Agency, The Netherlands Rod White MBDA, UK