Model-checking the Flooding Time Synchronization Protocol
Large-scale wireless sensor networks must be reliable, since they are intended to be operated without human intervention. Using well-understood building-blocks is one method of increasing confidence in the reliability of a sensor network design. In this paper, we use model-checking to analyze and characterize the Flooding Time Synchronization Protocol, a synchronization protocol that is distributed along with the TinyOS sensor network operating system. We apply a number of abstraction techniques to keep the model state-space small, and as a result are able to verify several properties of FTSP networks that have not previously been checked. Our results provide greater confidence in FTSP, and also establish some limitations on the size of FTSP networks. Our FTSP model provides a basis for further model-checking of FTSP.