@inproceedings{cd5a95238354496a8582501475938547,
title = "Model checking of I&C software in the Loviisa NPP automation renewal project",
abstract = "Model checking is a formal method for verifying hardware and software designs. A software tool called a model checker is used to exhaustively verify that a system model fulfils stated properties. The exhaustiveness means that design errors can be found in systems that have already undergone V&V based on more traditional methods like testing and simulation. In this paper, we discuss the application of model checking in the verification of instrumentation and control (I&C) application software. As a practical example, we look at the third party verification service VTT has provided for Fortum in the Loviisa nuclear power plant automation renewal project. We also introduce the tools developed by VTT and Fortum for the model checking of I&C software based on function block diagrams. The experience of VTT (and others) has shown that the method is very powerful in the evaluation of function block based control software, particularly in safety-critical applications. Indeed, in Finland, model checking is already a well-established part of nuclear industry practices, as VTT has been evaluating the I&C systems of the Olkiluoto 3 plant for STUK, as well as supporting Fortum in the licensing of renewed systems for Loviisa. Fortum has also cooperated with VTT on the development of model checking tools. A graphical toolset based on the open source modelling and simulation platform Simantics has already been put to use in VTT projects. A long term objective is the commercialisation of the tools as part of the Apros product family, as well as integration into different engineering and modelling tools.",
keywords = "model checking, verification and validation, digital I&C, nuclear power",
author = "Antti Pakonen and Janne Valkonen and Sami Matinaho and Markus Hartikainen",
note = "Project code: 102392; Automaatio XXI ; Conference date: 17-03-2015 Through 18-03-2015",
year = "2015",
language = "English",
isbn = "978-952-5183-46-7",
series = "Suomen automaatioseura. Julkaisusarja",
publisher = "Suomen automaatioseura",
editor = "Sirkka-Liisa J{\"a}ms{\"a}-Jounela",
booktitle = "Automaatio XXI Proceedings",
address = "Finland",
}