But acceleration creates a new challenge: understanding and control.

When systems are generated rapidly, whether by humans or AI, the limiting factor is no longer production capability. It is the ability to ensure that what has been built is correct, aligned with intent, and robust under all relevant conditions.

This is not only a safety issue. It is a systems engineering issue.

The real bottleneck: Clarity of intent

Many engineering failures do not originate in code. They originate in ambiguity:

• Requirements that are open to interpretation
• Assumptions that are not made explicit
• Incomplete descriptions of system behavior

AI amplifies this problem. It can generate implementations quickly, but it cannot resolve intent ambiguities. If the requirement is unclear, the generated result will faithfully encode that uncertainty.

The solution is not slower development. It is stronger specification.

Precise, structured, machine-verifiable specifications create a stable foundation for accelerated engineering. They turn intent into something analyzable, testable, and enforceable.

Executable models as a tool for understanding

One of the most powerful shifts in modern engineering is the transformation of specifications into executable models.

When specifications are expressed in a formal, structured way, they can be transformed into digital representations of system behavior, executable models that simulate how the system should act.

This fundamentally changes the early phases of development.

Instead of validating understanding through review alone, teams can:

• Execute scenarios against the intended behavior
• Detect inconsistencies before implementation
• Prototype system logic before committing to architecture
• Align stakeholders around observable behavior

Executable models are not merely simulation tools. They are instruments for shared understanding. They reduce ambiguity at the source.

Conformance and validation in an automated world

As automation increases, so must verification rigor.
Whether logic is handwritten, configured, or AI-generated, it must conform to the original intent. Formalized specifications allow automated conformance checking between:

• Requirements
• Design
• Implementations

This creates a closed loop in which generated artifacts can be systematically validated against defined behavior.

Verification and validation no longer depend solely on late-phase testing. They become continuous activities embedded in the development process.

The role of formal proof

Testing remains essential. But testing is inherently selective. It demonstrates that a system behaves correctly in tested scenarios, not that it behaves correctly in all scenarios.

Formal verification adds a fundamentally different dimension. Proving that defined properties always hold provides exhaustive logical coverage of the specified behavior.

This has two major effects:

• It reduces reliance on extensive test campaigns for certain defect classes.
• It strengthens the evidence base for safety, reliability, and correctness claims.

Formal proof does not replace engineering judgments. It augments it with mathematical certainty where it matters most.

In complex systems, particularly those developed with AI assistance, this level of rigor becomes a strategic advantage.

Engineering for both speed and confidence

The perceived tension between speed and rigor is a false dichotomy.

Strong specifications enable acceleration. Executable models enable early validation. Automated conformance checking maintains alignment. Formal proofs provide deep assurance. Together, they create a development process that is both faster and more controlled.

Prover’s methods support this paradigm by:

• Transforming specifications into executable system models
• Enabling early validation and prototyping
• Providing automated conformance checking
• Supporting formal verification to strengthen evidence and reduce excessive testing

The result is not only improved safety. It is improved understanding, improved predictability, and improved control over increasingly complex systems.

In the age of AI-driven engineering, the competitive edge will not belong to those who generate the most artifacts but to those who can demonstrate, with clarity and rigor, that their systems behave as intended.

Acceleration is inevitable. Assurance must be engineered.

Inlägget Engineering in the age of AI and executable specifications dök först upp på Prover - Engineering a Safer World.

LIVE WEBINAR

Case study: Automating data preparation for rail control systems

How automation and formal verification improve quality, efficiency, and safety

Live on April 14 at 15:00 CEST

Data preparation is one of the most time-consuming and error-prone parts of any rail control project. Generating, testing, and verifying the application data that configures a safety-critical system often requires extensive manual work, yet this phase rarely gets the attention it deserves.

In practice, a large share of project risk sits in the configuration data. While the generic application is designed to ensure system safety, errors in application data can still have major consequences. Too often, those errors are detected late in the project, when the cost of correction is higher, and the impact on delivery is greater.

In this webinar, we share how Signaling Design Automation and formal verification can transform data preparation across different rail control architectures, including CBTC, ERTMS, interlocking, and train protection systems. Through real-world use cases, we show how automation can reduce manual effort, improve data quality, and support safer, more efficient project delivery.

You’ll get a practical view of how Prover’s solutions are used by BHEPL to automate data preparation for KAVACH, India’s Automatic Train Protection system, and to verify engineering rules for ERTMS data, as well as what these experiences mean for future rail projects.

What you will learn:

• Why spreadsheet- and document-based data workflows become a bottleneck in complex rail control projects
• How automated data generation, simulation-based testing, and formal verification help detect errors earlier
• How Prover iLock and Prover Certifier support application data generation, verification, and certification evidence across different system types

• How this approach supports traceability, assurance evidence, and tool qualification in line with CENELEC EN 50716

0

0

0

0

Days

0

0

Hrs

0

0

Min

0

0

Sec

Save my seat for April 14 webinar.

Speaker

Gunnar Smith
Chief Product Officer at Prover

Inlägget Case study: Automating data preparation for rail control systems dök först upp på Prover - Engineering a Safer World.

Inlägget Commercial Project Management Lead dök först upp på Prover - Engineering a Safer World.

Location: Stockholm/Toulouse 
Level: Mid-level 
Reports to: AI & Innovation Lead

The role

You’ll work within the AI team reporting to the AI & Innovation Lead. You will be primarily supporting R&D and Solutions but collaborating with all teams, to embed AI into Prover’s engineering workflows and help shape our next generation of AI-powered products, initially for railway signaling, and over time for safety-critical systems more broadly.

You will:

• Build AI agents and assistants that accelerate formal verification and engineering workflows
• Evaluate and integrate agent SDKs (e.g., Anthropic Agent SDK, OpenAI Agents SDK, or similar) to build our own internal AI platform
• Prototype AI-powered features for Prover Station, our digital twin and formal verification platform
• Explore how LLMs can accelerate the adoption of formal methods in safety-critical domains

What we’re looking for

• A hands-on builder who has shipped tools or prototypes using LLMs or AI agents, professionally, inside projects, or in open source
• Deeply curious about AI and the fast-moving landscape of agent frameworks and developer tooling
• Comfortable across the stack. We care more about builder mindset than a specific language or framework
• Strong communicator who enjoys collaborating with domain experts in formal methods and signaling
• Motivated by impact. Rail is one of the most energy-efficient modes of transport, and that matters to you

Nice to have:

• Experience with agent SDKs and platforms
• Familiarity with formal methods such as formal logic, formal specification, model checking, proof-oriented programming, and theorem proving
• Experience building internal developer tools or platforms
• Interest in domain-specific languages and how AI can make them more accessible

Why join us?

Prover isn’t a startup chasing hype. We’re an established company with real-world impact on sustainable transport infrastructure. You’ll join world-class engineers in formal methods, and you’ll have the freedom to define how AI transforms what we do.
If you want to build things that matter, we’d love to hear from you.

APPLY Today

Application
Please submit your application to: jobs@prover.com

Inlägget AI Engineer – Internal Tooling & AI-Powered Products dök först upp på Prover - Engineering a Safer World.

Prover will be exhibiting at RailTech Europe on March 4–5 in Utrecht, the Netherlands.

Come and meet us in Booth 2.509 to discuss Open Signaling, migration to PLC-based architectures, and how Prover Station supports structured design, verification, and validation of signaling systems.

Workshop: Migration of Signaling Systems to PLC-Based SIL 4 Solutions

On March 4, our COO Jesper Carlström will host a workshop focused on the migration of signaling systems to PLC-based SIL 4 solutions. The session will draw on experience from the Stockholm Metro relay-to-PLC pilot project and share practical insights into modernizing legacy signaling installations and avoiding vendor lock-in by the use of open standards.

If you are planning modernization initiatives or exploring open signaling approaches, this session will provide valuable perspectives.

About RailTech Europe

RailTech Europe is one of the leading international exhibitions and conferences dedicated to railway technology, infrastructure, and innovation. Held in Utrecht, the Netherlands, the event brings together infrastructure managers, operators, system suppliers, engineering firms, and policymakers to discuss the future of rail modernization across Europe.

Book a meeting

Planning to attend RailTech Europe? Schedule a meeting with our team to discuss your modernization plans and signaling strategy.

You can also visit us directly at Booth 2.509.

See you in Utrecht.

Inlägget Meet Prover at RailTech Europe – March 4–5 Utrecht, the Netherlands dök först upp på Prover - Engineering a Safer World.

Responsibilities

• Manage day-to-day office operations and facilities coordination
• Handle finance-related administration and invoice management
• Support HR processes, including onboarding and staff updates
• Coordinate travel and internal events
• Provide administrative support to management and internal projects

Qualifications

We are looking for a structured, dependable and service-oriented professional with strong organizational skills and high integrity.

You should have:

• Experience from office administration or support roles
• Fluency in Swedish and English
• Strong written communication skills
• Good IT knowledge, including MS Office
• The ability to work independently and collaborate across the organization

• Experience working in a confidential environment is an advantage.

Working at Prover

Prover is an international company at the forefront of formal methods and software verification. We value precision, reliability and long-term thinking – both in our technical work and in how we operate as an organization.

This role offers the opportunity to contribute to the professional foundation that supports our continued growth.

About Prover

Engineering a safer world

Prover develops advanced formal verification technology that helps ensure safety and reliability in critical systems. Our customers operate in industries where precision and quality are essential. To deliver at this level, we rely on a structured and professional internal environment.

APPLICATION CLOSED

Application
Thank you for your interest. This position has now been filled.

Inlägget Office Coordinator dök först upp på Prover - Engineering a Safer World.

RECORDED WEBINAR

Case study: Replacing a relay interlocking with an open PLC solution

Learnings from the Stockholm Metro’s open signaling pilot

Traditionally, computer-based signaling systems come with long support and maintenance commitments, often lasting 25–40 years. The downside is the risk of vendor lock-in. Changes, upgrades, and even component replacements can become dependent on a single supplier’s roadmap.

In this webinar, we share learnings from an ongoing pilot project in which the Stockholm Metro is replacing a legacy relay-based signaling system with a modern PLC-based SIL 4 solution. The pilot explores what it really takes to design and maintain an open signaling system over time so that maintenance and upgrades can be sourced from an open market, with 100% guaranteed safety.

You’ll get a practical view of the technical choices, project setup, and verification & validation approach, what’s working, what’s been harder than expected, and what we’d recommend if you’re considering a similar modernization.

What you will learn:

• Why long-term maintenance contracts create lock-in and where the real risks appear when systems age
• What “open signaling” means in practice: standardized, interchangeable components and vendor-independent integration
• How and why the pilot uses a standard PLC approach to reduce dependence on specific hardware models
• The biggest obstacles encountered so far and how the team is addressing them
• Why automation, code generation, and efficient V&V are critical to make this type of project scalable and affordable
• A project model for relay-to-PLC modernization that enables IM/Operator ownership with engineering-firm support
• Prover’s contributions to the project and where we see the highest leverage

This recorded session includes insights from Prover and representatives from Stockholm Metro.

Yes please, send me the recording!

Speaker

Jesper Carlström
COO at Prover

Inlägget Case study: Replacing a relay interlocking with an open PLC solution dök först upp på Prover - Engineering a Safer World.

Inlägget COTS – A key enabler of open signaling dök först upp på Prover - Engineering a Safer World.

Empowering the Future of Indian Railways

India is undertaking one of the world’s largest railway modernization initiatives, with KAVACH — the nation’s indigenous Automatic Train Protection (ATP) system — at its core. Through this partnership, Prover and BHEPL will focus on automating data preparation and verification for KAVACH deployments, enabling suppliers to streamline engineering workflows, reduce manual errors and improve overall safety. 

Leveraging Prover iLock, BHEPL will customize and automate the generation of essential datasets such as RFID tag layouts, control tables, gradient plans and other key KAVACH project deliverables. These activities, traditionally performed manually over several weeks, can now be completed in a fraction of the time with higher accuracy and consistency. 

Extending Automation to Metros and Beyond

Our collaboration extends beyond KAVACH. Prover and BHEPL are actively working with metro operators, Indian Railways, and signaling suppliers to explore broader automation opportunities — ranging from interlocking design to CBTC (Communication-Based Train Control) software development. Together, we aim to accelerate the deployment of safe, efficient, and digitally–verified signaling systems across India. 

A Shared Commitment to Safety, Reliability, and Efficiency

“India’s railway modernization drive presents an incredible opportunity to showcase how automation and formal methods can enhance safety, reliability and cost efficiency,” says Gunnar Smith, Chief Product Officer at Prover. “BHEPL’s strong engineering expertise, combined with our globally proven automation tools, is a powerful combination for achieving these goals.” 

Sudhir Reddy, Director at BHEPL, adds: 
“By partnering with Prover, we aim to bring world-class automation and verification capabilities to Indian Railways and metro systems. This collaboration aligns perfectly with India’s vision for a digitally transformed rail ecosystem. The automation tools and products we are co-developing with Prover will be a significant technological advancement for Indian Railways.” 

Introducing Prover iLock for KAVACH: Generative-AI–Driven Design Document Automation for Indian Railways

Prover and BHEPL are launching a Generative AI-powered solution, based on Prover iLock, designed specifically for automating signaling and KAVACH engineering documentation. 

This solution, co-engineered with BHEPL, uses Generative AI, formal methods and rule-based validation to: 

• Generate, verify and standardize complex signaling documents 

• Interpret datasets such as SIPs, TOCs, gradient plans and RFID tag layouts 

• Produce RDSO-compliant outputs automatically 

• Reduce engineering cycle times from weeks to hours 

With adaptive learning models tailored to Indian Railways, Prover iLock understands and evolves with: 

• National railway standards 

• KAVACH-specific data structures 

• Interlocking principles 

• RFID-based control logic 

This enables Prover iLock to function not only as a documentation tool but also as a simulation, verification and validation environment capable of: 

• Virtual testing of KAVACH configurations 

• Simulating interlocking behavior 

• Verifying tag placement logic 

• Ensuring fail-safe operation before field implementation 

These capabilities significantly reduce on-site testing time and accelerate certification. 

Upcoming CBTC Automation Module

Prover and BHEPL are finalizing a CBTC design automation module, marking a major advancement for India’s metro signaling ecosystem. By integrating Prover’s proven formal verification technologies, the CBTC extension will automate the generation and verification of: 

• Zone Controller and ATS control logic, including routing rules, interlocking behavior and operational constraints 

• Movement authority and speed profile logic, consistent with moving block or quasi-moving block CBTC principles 

• Interface and communication message definitions, ensuring correctness of onboard-trackside and ATS-DCS interactions 

This automation significantly reduces manual engineering effort, enhances functional safety and accelerates delivery of highly reliable, digitally verified CBTC systems – supporting India’s transition toward a fully automated, safety-assured metro network. 

About Prover 

Prover is a global leader in signaling design automation and formal verification, helping rail operators and suppliers deliver safe, certifiable signaling systems faster and more efficiently. Our tools are deployed worldwide to automate the design, verification and validation of rail control systems. 
Learn more at www.prover.com. 

About BHEPL

BHEPL (Bharat Heavy Engineering Private Ltd) is an Indian engineering company specializing in railway signaling, electrification and automation. With a strong presence in national infrastructure projects, BHEPL delivers end-to-end solutions to Indian Railways and metro systems, contributing to India’s ongoing modernization efforts. 
Learn more at  www.bhepl.com. 

Inlägget Prover and BHEPL Partner to Bring Signaling Design Automation to India dök först upp på Prover - Engineering a Safer World.

Exploring the interlocking’s full lifecycle

Our goal was to help them explore the entire lifecycle of a railway interlocking system, from layout design and safety requirements to formal verification and testing, all supported by Prover Studio and Prover iLock. The challenge was to build a complete railway line with 7 interlockings, prove the safety of the line, and simulate the behaviour of the whole system.

We began by introducing the fundamentals of railway signalling and explaining what an interlocking is. Equipped with this knowledge, the students first debugged an existing interlocking system following fundamental signalling principles by using formal verification.
Once confident, they defined and verified new safety requirements, created test cases, and implemented a manual release feature, addressing design, safety, and testing aspects within a single, integrated workflow.

Impressive Progress and Collaboration

We extend our warmest thanks to the CentraleSupélec students for their commitment and enthusiasm throughout the week. They impressed us with how quickly they are handling our tools, modelling language, and dealing with the complexities of the railway domain. Special thanks also go to Idir Ait Sadoune and the teaching team for renewing their trust in us again this year.

At Prover, we firmly believe that introducing formal methods and signalling engineering to the next generation of engineers is essential for building safer and more reliable railway systems. We look forward to seeing these talented students again, in the railway industry or the field of formal verification, as they help engineer a safer world.

Inlägget CentraleSupélec students taste Signal Design Automation dök först upp på Prover - Engineering a Safer World.