Automation systems within nuclear laboratories are intended to work under harsh operating conditions. Selective Production of Exotic Species (SPES) is a nuclear research facility currently under construction by the Istituto Nazionale di Fisica Nucleare, dedicated to the production and study of radioactive ion beams. Isotopes are produced within the target ion source unit, a vacuum vessel that must be replaced on a regular basis. The highly radioactive environment necessitates the deployment of a set of automated systems dedicated to the unit's remote management. To meet high-level security standards, the design of such instrumentation and control systems must include extensive verification. Based on specific safety requirements, model checking can be used to assess the systems' correctness. This article describes how to employ an integrated toolchain to design, simulate, formally verify, and deploy the control software for the Horizontal Handling Machine, a safety-critical remote handling system in operation at SPES. The IEC 61499 standard's adoption led to a redesign of the control logic. Following a preliminary online simulation, the closed-loop system has been formally verified using the NuSMV symbolic model checker, with the help of the FB2SMV converter. In addition, the Function Blocks Modeling Environment tool was used for automating verification and analyzing counterexamples.

中文翻译：

---

基于 IEC 61499 的放射性材料远程处理系统控制软件的形式验证

核实验室内的自动化系统旨在在恶劣的操作条件下工作。外来物种选择性生产（SPES）是国家核研究所目前正在建设的核研究设施，致力于放射性离子束的生产和研究。同位素是在目标离子源单元内产生的，该单元是一个必须定期更换的真空容器。高放射性环境需要部署一套专用于设备远程管理的自动化系统。为了满足高级别安全标准，此类仪表和控制系统的设计必须包括广泛的验证。根据具体的安全要求，可以使用模型检查来评估系统的正确性。本文介绍如何使用集成工具链来设计、模拟、形式验证和部署水平搬运机的控制软件，水平搬运机是 SPES 运行的安全关键型远程搬运系统。IEC 61499 标准的采用导致了控制逻辑的重新设计。经过初步在线仿真后，在 FB2SMV 转换器的帮助下，使用 NuSMV 符号模型检查器对闭环系统进行了正式验证。此外，功能块建模环境工具用于自动验证和分析反例。