The design of complex systems involves several design models supporting different analysis techniques for validation and verification purposes. These activities lead to the definition of heterogeneous modelling languages and analysis techniques. In this setting, meeting certification standards becomes a key issue in system engineering. Reducing heterogeneity due to the presence of different modelling languages can be addressed by providing an integrated framework in which modelling languages and techniques are formalised. In such a framework, checking the global correctness of heterogeneous models of a complex critical system becomes possible in many cases.

The work presented in this paper addresses the problem of integrated verification of system design models in the context of transportation systems, in particular railway systems. It has been achieved in context of the B-PERFect project of RATP (Parisian Public Transport Operator and Maintainer) aiming at applying formal verification using the PERF approach on the integrated safety-critical models of embedded software related to railway domain expressed in a single unifying modelling language: HLL.

This paper addresses the particular case of the B method. It presents a certified translation of B formal models to HLL models. The proposed approach uses Isabelle/HOL as a unified logical framework to describe the formal semantics and to formalise the transformation relation between both modelling languages. The developed Isabelle/HOL models are proved in order to guarantee the correctness of our translation process. Moreover, we have also used weak-bisimulation relation to check the correctness of each translation step. We also show that, when models are translated into this unified modelling language, it becomes possible to handle the verification of properties expressed across different models.

The overall approach is illustrated through a case study issued from a railway software system: on-board localisation function. Furthermore, it discusses the integrated verification at system level.

复杂系统的设计涉及几个设计模型，这些模型支持用于验证和验证目的的不同分析技术。这些活动导致了异构建模语言和分析技术的定义。在这种情况下，满足认证标准成为系统工程中的关键问题。可以通过提供一种集成框架来解决由于存在不同建模语言而导致的异构性降低的问题，在该框架中可以对建模语言和技术进行形式化。在这样的框架中，在许多情况下检查复杂关键系统的异构模型的全局正确性成为可能。

本文提出的工作解决了在运输系统（尤其是铁路系统）环境中对系统设计模型进行集成验证的问题。它是在RATP（巴黎公共交通运营商和维护商）的B-PERFect项目的背景下实现的，该项目旨在使用PERF方法将形式验证应用于与铁路领域相关的嵌入式安全集成软件的集成安全关键模型中，该模型以统一的方式表示建模语言：HLL。

本文介绍了B方法的特殊情况。它提供了B正式模型到HLL模型的认证翻译。所提出的方法使用Isabelle / HOL作为统一的逻辑框架来描述形式语义并形式化两种建模语言之间的转换关系。为了保证我们翻译过程的正确性，已开发了Isabelle / HOL模型。此外，我们还使用了弱双仿真关系来检查每个翻译步骤的正确性。我们还表明，将模型转换为这种统一的建模语言后，就可以处理跨不同模型表达的属性的验证。

通过铁路软件系统发布的案例研究说明了整体方法：车载定位功能。此外，它讨论了系统级别的集成验证。