Fault-Tolerant Real-Time Networks Tom Henzinger UC Berkeley MURI Kick-off Workshop Berkeley, May 2000.

Slides:

Advertisements

Similar presentations

Embedded System, A Brief Introduction

Advertisements

Impossibility of Distributed Consensus with One Faulty Process

Marc Geilen, Eindhoven University of Technology, Information and Communication Systems 1 Object-Oriented Modelling and Specification.

Timed Automata.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Background information Formal verification methods based on theorem proving techniques and modelchecking –to prove the absence of errors (in the formal.

1 Formal Models for Stability Analysis : Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying Exam 20 th December.

EECE Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.

PTIDES: Programming Temporally Integrated Distributed Embedded Systems Yang Zhao, EECS, UC Berkeley Edward A. Lee, EECS, UC Berkeley Jie Liu, Microsoft.

Architecture Modeling and Analysis for Embedded Systems Oleg Sokolsky CIS700 Fall 2005.

Integrated Design and Analysis Tools for Software-Based Control Systems Shankar Sastry (PI) Tom Henzinger Edward Lee University of California, Berkeley.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.

CS 582 / CMPE 481 Distributed Systems Fault Tolerance.

A Platform for WEbS (wireless embedded sensor/actuator) systems David Culler Eric Brewer Dave Wagner.

Software modeling for embedded systems: static and dynamic behavior.

Review of “Embedded Software” by E.A. Lee Katherine Barrow Vladimir Jakobac.

EECE Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.

EECE Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.

Models of Computation for Embedded System Design Alvise Bonivento.

Chess Review November 21, 2005 Berkeley, CA Edited and presented by Advances in Hybrid System Theory: Overview Claire J. Tomlin UC Berkeley.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.

Probabilistic Verification of Discrete Event Systems Håkan L. S. Younes.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI Hybrid Systems: From.

 Idit Keidar, Principles of Reliable Distributed Systems, Technion EE, Spring Principles of Reliable Distributed Systems Lecture 6: Impossibility.

SEC PI Meeting Annapolis, May 8-9, 2001 Component-Based Design of Embedded Control Systems Edward A. Lee & Jie Liu UC Berkeley with thanks to the entire.

Modeling State-Dependent Objects Using Colored Petri Nets

Department of Electrical Engineering and Computer Sciences University of California at Berkeley System-Level Types for Component-Based Design Edward A.

Department of Electrical Engineering and Computer Sciences University of California at Berkeley Concurrent Component Patterns, Models of Computation, and.

Chess Review November 18, 2004 Berkeley, CA Hybrid Systems Theory Edited and Presented by Thomas A. Henzinger, Co-PI UC Berkeley.

Designing Predictable and Robust Systems Tom Henzinger UC Berkeley and EPFL.

Verification of Hierarchical Component-Based Designs in FRESCO Tom Henzinger, Marius Minea, Vinayak Prabhu.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI Program Review May 10,

Department of Electrical Engineering and Computer Sciences University of California at Berkeley The Ptolemy II Framework for Visual Languages Xiaojun Liu.

Code Generation from CHARON Rajeev Alur, Yerang Hur, Franjo Ivancic, Jesung Kim, Insup Lee, and Oleg Sokolsky University of Pennsylvania.

SE-565 Software System Requirements More UML Diagrams.

Chapter 8 Asynchronous System Model by Mikhail Nesterenko “Distributed Algorithms” by Nancy A. Lynch.

Benjamin Gamble. What is Time?  Can mean many different things to a computer Dynamic Equation Variable System State 2.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 2 Module 9 Basic Router Troubleshooting.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

ARMADA Middleware and Communication Services T. ABDELZAHER, M. BJORKLUND, S. DAWSON, W.-C. FENG, F. JAHANIAN, S. JOHNSON, P. MARRON, A. MEHRA, T. MITTON,

CS4730 Real-Time Systems and Modeling Fall 2010 José M. Garrido Department of Computer Science & Information Systems Kennesaw State University.

- 1 - Embedded Systems - SDL Some general properties of languages 1. Synchronous vs. asynchronous languages Description of several processes in many languages.

Timed Use Case Maps Jameleddine Hassine Concordia University, Montreal, Canada URN Meeting, Ottawa, January 16-18, 2008.

Lyra – A service-oriented and component-based method for the development of communicating systems (by Sari Leppänen, Nokia/NRC) Traditionally, the design,

Aravind Venkataraman. Topics of Discussion Real-time Computing Synchronous Programming Languages Real-time Operating Systems Real-time System Types Real-time.

Introduction to WOLFASI: Workshop on Logical Foundations of an Adaptive Security Infrastructure Leo Marcus The Aerospace Corporation Los Angeles July 13,

Timed I/O Automata: A Mathematical Framework for Modeling and Analyzing Real-Time Systems Frits Vaandrager, University of Nijmegen joint work with Dilsun.

Model-Based Embedded Real- Time Software Development Dionisio de Niz and Raj Rajkumar Real-Time and Multimedia Sys Lab Carnegie Mellon University.

Design Languages in 2010 Chess: Center for Hybrid and Embedded Software Systems Edward A. Lee Professor UC Berkeley Panel Position Statement Forum on Design.

A. Haeberlen Fault Tolerance and the Five-Second Rule 1 HotOS XV (May 18, 2015) Ang Chen Hanjun Xiao Andreas Haeberlen Linh Thi Xuan Phan Department of.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

CS4730 Real-Time Systems and Modeling Fall 2010 José M. Garrido Department of Computer Science & Information Systems Kennesaw State University.

Designing Games for Distributed Optimization Na Li and Jason R. Marden IEEE Journal of Selected Topics in Signal Processing, Vol. 7, No. 2, pp ,

Protocol Specification Prof Pallapa. Venkataram Department of Electrical Communication Engineering Indian Institute of Science Bangalore – , India.

CS3773 Software Engineering Lecture 06 UML State Machines.

Modelling Reactive Systems 4 Professor Muffy Calder Dept. of Computing Science University of Glasgow

Self-stabilization in NEST Mikhail Nesterenko (based on presentation by Anish Arora, Ohio State University)

Shinya Umeno Nancy Lynch’s Group CSAIL, MIT TDS seminar September 18 th, 2009 Machine-Assisted Parameter Synthesis of the Biphase Mark Protocol Using Event.

Chapter 8 Asynchronous System Model by Mikhail Nesterenko “Distributed Algorithms” by Nancy A. Lynch.

G.v. Bochmann, revised Jan Comm Systems Arch 1 Different system architectures Object-oriented architecture (only objects, no particular structure)

Compositional Formal Verification using MOCHA PI: Tom Henzinger Student 1: Freddy Mang (game-theoretic methods) Student 2: Ranjit Jhala (probabilistic.

Formal Verification. Background Information Formal verification methods based on theorem proving techniques and modelchecking –To prove the absence of.

DEPENDABILITY ANALYSIS (towards Networked Information Systems) Ester Ciancamerla, Michele Minichino ENEA {ciancamerlae, In.

Giotto Embedded Control Systems Development with Thomas A. Henzinger Ben Horowitz Christoph M. Kirsch University of California, Berkeley

Copyright 1999 G.v. Bochmann ELG 7186C ch.1 1 Course Notes ELG 7186C Formal Methods for the Development of Real-Time System Applications Gregor v. Bochmann.

1 Compositional Design and Analysis of Timing-Based Distributed Algorithms Nancy Lynch Theory of Distributed Systems MIT Third MURI Workshop Washington,

1 Modeling and Analyzing Distributed Systems Using I/O Automata Nancy Lynch, MIT Draper Laboratory, IR&D Kickoff Meeting Aug. 30, 2002.

What contribution can automated reasoning make to e-Science?

Towards Next Generation Panel at SAINT 2002

Compositional Refinement for Hierarchical Hybrid Systems

Presentation transcript:

Fault-Tolerant Real-Time Networks Tom Henzinger UC Berkeley MURI Kick-off Workshop Berkeley, May 2000

Participants Mostafa Ammar (Georgia Tech) Luca de Alfaro (Univ of California, Berkeley) Tom Henzinger (Univ of California, Berkeley) Idit Keidar (MIT) Nancy Lynch (MIT) Kang Shin (Univ of Michigan) Kishor Trivedi (Duke Univ) Avideh Zakhor (Univ of California, Berkeley)

Network Protocols: The Conventional Research Tasks Design Experiment Analysis validatepredict

Network Protocols: Our View of the Research Tasks Design Experiment Analysis validatepredict Theory Practice Formal Modeling Design Methodology

Network Protocols: The Research Issues Rely on weaker assumptions: Dynamic traffic changes Dynamic network changes (e.g. faults) Heterogeneous network properties (e.g. wireless) Heterogeneous collection of protocols Provide stronger guarantees: Reliability (e.g. no packet loss) Real time (e.g. multimedia) Inter-stream and inter-protocol fairness Network stability and utilization Security

Formal Modeling and Analysis: The Algorithmic Approach Model Checking Tool Formal model Desired property Affirmation or Failure scenario State space exploration Decomposition of the analysis Protocol Formal Automatic

Formal Modeling and Analysis: The Algorithmic Approach What we know how to do well: Highly concurrent systems Very large but regular systems (e.g. hardware) Reliability and fairness properties What we don’t know how to do well: Real time “Global” properties (e.g. performance, utilization) Dynamically changing systems Heterogeneous systems Uncertain behavior (probabilistic models) Adversarial behavior (game modes)

Formal Modeling and Analysis: The Algorithmic Approach What helps? Design structure which enables the decomposition of the analysis

Formal Modeling and Analysis: The Algorithmic Approach What helps? Design structure which enables the decomposition of the analysis Examples of design structure: Spatial hierarchy (e.g. process, host, subnet) Temporal hierarchy (e.g. bit, packet, message) Orthogonalize concerns (e.g. syntax, process semantics, communication semantics, timing, probabilities)

Assume-Guarantee Reasoning R < S Sender Receiver Property || has

Assume-Guarantee Reasoning R R < < S S

R R < < S R S S S R < <

R R < < S R S S S R < <

R R < < S S m! a? m! a? m? a! m? a! m?

Assume-Guarantee Reasoning R R < < S R S S RS RS < <

R R -> S R S S RS RS & & & &

Assume-Guarantee Reasoning R R -> S S RS & & & & R R S S R R S S Need Receptiveness!

Decomposing the Analysis We have assume-guarantee methods: Parallel (spatial) composition Reliability properties We need assume-guarantee methods: Sequential (temporal) composition Real-time properties Probabilistic properties (e.g. fault tolerance, performance) Adversarial properties (e.g. security)

Masaccio: A Formal Model for Hierarchical Real-Time Processes Predecessor models and tools: Reactive Modules and Mocha (spatial hierarchy) Hybrid Automata and HyTech (real time) The new model includes: Parallel and sequential composition, arbitrarily nested Real-time behavior

Masaccio: A Formal Model for Hierarchical Real-Time Processes Short-term plan: Assume-guarantee decomposition Model checking algorithms Long-term plan: Stochastic behavior and analysis Adversarial behavior and analysis

Masaccio: A Formal Model for Hierarchical Real-Time Processes Semantics: Process = interface + behaviors Interface (the “statics”): Input and output variables (data) Some of the variables are real-valued clocks Entry and exit locations (control) Behavior (the “dynamics”): Sequence of transitions (instantaneous) and delays (real-valued duration) Variables may change with transitions Clocks change with delays

Masaccio: A Formal Model for Hierarchical Real-Time Processes Syntax: Process = operators applied to atomic processes Operators (six): Parallel and sequential composition Variable and location renaming (connection) Variable and location hiding (abstraction) Atomic processes (two): Atomic discrete process = guarded difference equation Atomic continuous process = guarded differential equation

Masaccio: A Formal Model for Hierarchical Real-Time Processes Example: Send a message every 5 time units. P = hide x in (C+D) /* m: message (output) */ /* x: clock (hidden) */ C: x x’:=1 D: x=5 -> m’:=msg; x’:=0 Behavior: delay of duration 5 followed by transition that sends a message and resets the clock x to 0, followed by delay of duration 5 etc.

Summary of Activities Compositional modeling of hierarchical real-time processes Time, games, and probabilities in model checking Rich APIs for network protocols (Luca de Alfaro)