Citation Context

...represents falsity, and 1/2 represents “unknown whether true or false”. Model checking with the lattice L2,2 can be used to analyze whether conflict will arise when multiple requirements are combined =-=[8, 18]-=-. Temporal logic query checking [6, 3, 9] can be regarded as model checking over lattices in which each element is a set of propositional formulas. One approach to multi-valued model checking is the r...

Citation Context

...s the lattice L2,2, with the values ⊤⊥ and ⊥⊤ representing disagreement (see Fig. 1). Model checking using this lattice (or its generalizations) has been used to handle inconsistent views of a system =-=[11, 17]-=-. Temporal logic query checking [5, 3, 15] can also be reduced to multi-valued model checking, where the elements of the lattice are sets of propositional formulas. One way of handling the multi-value...

Citation Context

...r example, 3-valued models are used to describe models with partial information [3]. 4-valued models can model disagreement and their generalizations are used to handle inconsistent views of a system =-=[10, 16]-=-. Temporal logic query checking [6, 5] can also be reduced to multi-valued model checking. Multi-valued models have been widely used for abstraction as well: 3-valued (abstract) models allow proving t...

Citation Context

... means that properties consistent at a viewpoint are obliged to be consistent in viewpoints of higher priorities. A semantics collects these obligations of validity {|M:φ|}a and consistency {|M:φ|}c (=-=Huth and Pradhan 2002-=-) {|M:φ|}a def= {d ∈ D | ∃e ∈ D: d e, e|=aφ} {|M:φ|}c def= {d ∈ D | ∃e ∈ D: e d, e|=cφ} {|M:φ|} def= ({|M:φ|}a, {|M:φ|}c). (5) In general, {|M:φ|}a will not be a subset of {|M:φ|}c, but {|M:φ|} is...