SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 1 Design, Implementation, and Validation of Embedded Software (DIVES) Contract No. F33615-00-C-1707.

Slides:

Advertisements

Similar presentations

ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.

Advertisements

DETAILED DESIGN, IMPLEMENTATIONA AND TESTING Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU.

Timed Automata.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

ECE 720T5 Fall 2012 Cyber-Physical Systems Rodolfo Pellizzoni.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.

Modular Specification of Hybrid Systems in CHARON R. Alur, R. Grosu, Y. Hur, V. Kumar, I. Lee University of Pennsylvania SDRL and GRASP.

Modeling and Verification of Embedded Software Rajeev Alur POPL Mentoring Workshop, Jan 2012 University of Pennsylvania.

Page 1 Building Reliable Component-based Systems Chapter 16 - Component based embedded systems Chapter 16 Component based embedded systems.

Systems Engineering for Automating V&V of Dependable Systems John S. Baras Institute for Systems Research University of Maryland College Park

System Design Research Lab University of Pennylvania 2/8/2006 CHARON modeling language.

Methodologies for Wireless Sensor Networks Design Alvise Bonivento Alessandro Pinto Prof. Sangiovanni-Vincentelli U.C. Berkeley.

Testing and Monitoring at Penn Testing and Monitoring Model-based Generated Program Li Tan, Jesung Kim, and Insup Lee July, 2003.

DIVES: Design, Implementation and Validation of Embedded Software Alur, Kumar, Lee(PI), Pappas, Sokolsky GRASP/SDRL University of Pennsylvania

1 University of Pennsylvania Demonstrations Alur, Kumar, Lee, Pappas Rafael Fierro Yerang Hur Franjo Ivancic PK Mishra.

From Hybrid Models to Embedded Software Rajeev Alur System Design Research Lab University of Pennsylvania Workshop on Robustness,

University of Pennsylvania 1 SDRL CHARON SDRL and GRASP University of Pennsylvania Funded by DARPA ITO.

Modeling Hybrid Systems Yerang Hur CIS 640, October 10, 2002 Department of Computer and Information Science University of Pennsylvania Code generation.

CIS 700-3: Selected Topics in Embedded Systems Insup Lee University of Pennsylvania June 24, 2015 Introduction.

Tools for Formal Modeling And Verification: MOCHA, HeRMes, CHARON Rajeev Alur Systems Design Research Lab University of Pennsylvania

Modeling State-Dependent Objects Using Colored Petri Nets

1 Design, Implementation, and Validation of Embedded Software (DIVES) Rajeev Alur, Vijay Kumar, Insup Lee (PI), George Pappas, Oleg Sokolsky Department.

System Design Research Laboratory Model-based Testing and Monitoring for Hybrid Embedded Systems Li Tan Jesung Kim Oleg Sokolsky Insup Lee University of.

Chapter 1 Principles of Programming and Software Engineering.

Designing Predictable and Robust Systems Tom Henzinger UC Berkeley and EPFL.

November 18, 2004 Embedded System Design Flow Arkadeb Ghosal Alessandro Pinto Daniele Gasperini Alberto Sangiovanni-Vincentelli

DIVES Alur, Lee, Kumar, Pappas: University of Pennsylvania  Charon: high-level modeling language and a design environment reflecting the current state.

Testing and Monitoring at Penn An Integrated Framework for Validating Model-based Embedded Software Li Tan University of Pennsylvania September, 2003.

© 2006 Pearson Addison-Wesley. All rights reserved2-1 Chapter 2 Principles of Programming & Software Engineering.

1 Formal Engineering of Reliable Software LASER 2004 school Tutorial, Lecture1 Natasha Sharygina Carnegie Mellon University.

Tool Integration of Ptolemy II EE290N Class Project Haiyang Zheng May

MOBIES Project Progress Report Engine Throttle Controller Design Using Multiple Models of Computation Edward Lee Haiyang Zheng with thanks to Ptolemy Group.

Introduction & Overview CS4533 from Cooper & Torczon.

Code Generation from CHARON Rajeev Alur, Yerang Hur, Franjo Ivancic, Jesung Kim, Insup Lee, and Oleg Sokolsky University of Pennsylvania.

Object-oriented design CS 345 September 20,2002. Unavoidable Complexity Many software systems are very complex: –Many developers –Ongoing lifespan –Large.

5/24/011 Advanced Tool Integration for Embedded Systems Assurance Insup Lee Department of Computer and Information Science University of Pennsylvania.

Verification technique on SA applications using Incremental Model Checking 컴퓨터학과 신영주.

ECE 720T5 Winter 2014 Cyber-Physical Systems Rodolfo Pellizzoni.

Model-based Analysis and Implementation of Embedded Systems

Extreme Makeover for EDA Industry

Overview of Formal Methods. Topics Introduction and terminology FM and Software Engineering Applications of FM Propositional and Predicate Logic Program.

Programming Models & Runtime Systems Breakout Report MICS PI Meeting, June 27, 2002.

Copyright John C. Knight SOFTWARE ENGINEERING FOR DEPENDABLE SYSTEMS John C. Knight Department of Computer Science University of Virginia.

5/27/03MDES Supporting Model-Based Validation at Run-time Insup Lee and Oleg Sokolsky Department of Computer and Information Science University of.

Interactive CARA Simulation Prof. Insup Lee. Hierarchical EFSM Specification for CARA.

System Design Research Lab University of Pennylvania 1/29/2002 CHARON modeling language.

Model Checking and Model-Based Design Bruce H. Krogh Carnegie Mellon University.

FDT Foil no 1 On Methodology from Domain to System Descriptions by Rolv Bræk NTNU Workshop on Philosophy and Applicablitiy of Formal Languages Geneve 15.

Fall 2004EE 3563 Digital Systems Design EE 3563 VHSIC Hardware Description Language  Required Reading: –These Slides –VHDL Tutorial  Very High Speed.

The basics of the programming process The development of programming languages to improve software development Programming languages that the average user.

1. 2 Preface In the time since the 1986 edition of this book, the world of compiler design has changed significantly 3.

Electrical and Computer Engineering University of Cyprus LAB 1: VHDL.

University of Pennsylvania 7/15/98 Asymmetric Bandwidth Channel (ABC) Architecture Insup Lee University of Pennsylvania July 25, 1998.

Modular Refinement of Hierarchic Reactive Machines Rajeev Alur Radu Grosu University of Pennsylvania

© 2006 Pearson Addison-Wesley. All rights reserved2-1 Chapter 2 Principles of Programming & Software Engineering.

© 2006 Pearson Addison-Wesley. All rights reserved 2-1 Chapter 2 Principles of Programming & Software Engineering.

Title 11/5/2000 eSimplex Architecture Using MaCS Insup Lee Oleg Sokolsky Moonjoo Kim Anirban Majumdar Sampath Kannan Mahesh Viswanathan Insik Shin and.

University of Pennsylvania 1 GRASP Cooperative Control and Coordination of Multiple Robots Vijay Kumar GRASP Laboratory University of Pennsylvania

SWARMS Scalable sWarms of Autonomous Robots and Mobile Sensors Ali Jadbabaie, Daniel E. Koditchek, Vijay Kumar (PI), and George Pappas l.

Real-time Systems Group University of Pennsylvania 10/13/98 1 Design-time and Run-time Assurance Insup Lee Department of Computer and Information Science.

Principles of Programming & Software Engineering

OPERATING SYSTEMS CS 3502 Fall 2017

课程名编译原理 Compiling Techniques

Formally Specified Monitoring of Temporal Properties

Gabor Madl Ph.D. Candidate, UC Irvine Advisor: Nikil Dutt

Shanna-Shaye Forbes Ben Lickly Man-Kit Leung

SOFTWARE DESIGN (SWD) Instructor: Dr. Hany H. Ammar

Compositional Refinement for Hierarchical Hybrid Systems

CHARON modeling language

Presentation transcript:

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 1 Design, Implementation, and Validation of Embedded Software (DIVES) Contract No. F C-1707 Rajeev Alur, Vijay Kumar, Insup Lee (PI), and George Pappas Department of Computer and Information Science Department of Electrical Engineering Department of Mechanical Engineering and Applied Mechanics University of Pennsylvania

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 2 Our Group Prof. Rajeev Alur (CIS) Prof. Vijay Kumar (MEAM, CIS) Prof. Insup Lee (CIS) Prof. George Pappas (EE, CIS) Dr. Rafael Fierro (Postdoc) Dr. Oleg Sokolsky (Research associate) Joel Esposito (Ph.D. student) Yerang Hur (Ph.D. student) Franjo Ivancic (Ph.D. student)

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 3 Outline Goal and approach Modeling language for hybrid systems Analysis approaches Toolset Summary

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 4 The DIVES Project Goal –Develop languages, algorithms and tools for hybrid systems to facilitate the development of reliable embedded systems Approach –Design and modeling language (called CHARON) with formal semantics –Analysis, verification, and validation techniques –Programming environment and software tools –Methodology for hybrid embedded systems development

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 5 CHARON: Modeling Language Compositional and Modular specification of multi- agent hybrid systems Individual components described as agents –Composition, instantiation, and hiding Individual behaviors described as modes –Encapsulation, instantiation, and scoping Support for both discrete and continuous behavior –Differential as well as algebraic constraints –Discrete transitions can call library routines Resource requirements and constraints Well-defined formal semantics

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 6 Architectural Hierarchy in CHARON Each agent can be represented as a parallel composition of sub-agents Agent Robot1 Robot2 sensor actuator processor Input Port Output Port sensor actuator processor

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 7 Behavioral Hierarchy in CHARON main awayTargetatTarget controlsensing Entry Port Exit Port Modes Each agent consists of modes or behaviors Modes can in turn consist of submodes

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 8 Modes main awayTargetatTarget controlsensing Each agent consists of modes or behaviors A mode describes flow of control inside an agent. Modes contain –Control points (entry points, exit points) –Variables (private, input, output) –Continuous dynamics –Invariants –Transitions –Nested submodes

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 9 Specification of Continuous Behavior in CHARON Differential Equations –diff position robot_Pos; –diffEqn diffStop { d (robot_ Pos.x) = 0.0; d (robot_ Pos.y) = 0.0; } Continuous Equations –cont robotEST; –contEqn contEST { robotEST = foo(x) +bar(x); } Invariant Constraints in Modes –inv invTUCost { lub <= x<=gub; }

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 10 Sample code in CHARON macro target { x=50.0; y=50.0;} agent Robot ( diff analog position initPos, real speed) { input channel of estimate inLink[5]; output channel of estimate outLink[5]; extern estimate updateEstimate(position, estimate); mode main() { diff analog position myPos; … trans init from main to awayTarget when true do { myPos = initPos; … } mode awayTarget() { inv invAway {myPos != target;} mode moving() { … } mode updating() { … } trans … from … to … when … { … } } trans arrived from awayTarget to atTarget when (myPos == target ); mode atTarget() { diff diffStop { d(myPos.x) = 0.0; d(myPos.y) = 0.0; } robot1 = Robot (iPos, spd) [inLink[1..5],outLink[1..5] = r12inLink,r12outLink,r13inLink, r13outLink,r14inLink,r14outLink, r15outLink,r15outLink; … robot5 = Robot (iPos, spd) [inLink[1..5],outLink[1..5] = r51inLink,r51outLink,r52inLink, r52outLink,r53inLink,r53outLink, r54outLink,r54outLink; Sys = robot1 || robot2 || robot3 || robot 4 || robot5

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 11 Analysis Algorithms and Techniques Robust and scalable simulation –Modular –Distributed Model checking Synthesis of embedded hybrid systems Runtime monitoring and checking Theme: Scalability by exploiting modular/hierarchical structure

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 12 Modular Simulation x. y. z. 1.Hierarchical modes can be integrated at different time scales 2.Submodes viewed as black-boxes 3.Initial experimental results encouraging , x, inv1 ,x,y,inv2 Goal: To speed up simulation by exploiting the modular structure of specification Challenges: Robustness Scalability Accuracy

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 13 Distributed Simulation Process allocation can be done at –Agent level –Mode level Synchronization approach –Conservative: LP (Logical Process) executes only after all values are available Cons: LPs do not utilize concurrency fully –Optimistic: LP executes even though all the values are not ready and roll back later if necessary Cons: rollbacks cause communication overhead Develop an integrated approach Challenges –Speedup –Integrated simulation with real components

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 14 Conservative vs. Optimistic time LPs A1 A2  t time LPs A1 A2 A3 t

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 15 Model Checking Goal: Atomically determine if a Charon program satisfies a temporal requirement Current technology: symbolic reachability analysis using polyhedra (Hytech, Kronos) Challenges –Scalability –How to handle complex dynamics? Research directions –Discrete approximation using abstractions –Assume-guarantee –Exploiting hierarchical structure

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 16 Hierarchical Synthesis for Hybrid Systems Hierarchical synthesis methods require property preserving abstractions of –Continuous systems –Hybrid systems Concurrency theory + control theory Hybrid/timed abstractions of hybrid systems Optimal control of real time systems Mode switching controllers

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 17 Runtime Monitoring and Checking Run-time monitoring and checking to validate an implementation Execution is monitored for compliance with formal requirements The approach can be used to –detect incorrect execution of an application –predict error and steer computation –measure statistics of actual execution which can not be measured in either testing or formal verification –certify plug-in components –increase the assurance of a running system

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 18 Monitoring and Checking Framework Model Spec Model Spec Property Formal verification Design System Implementation System Implementation Monitoring Script Monitoring Script Implementation Checker/ Corrector Checker/ Corrector System Filter Communication Run-time Check Event Handler Event Handler Corrector Checker

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 19 The Overall Architecture Checking based on hybrid system model Distributed monitoring and checking

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 20 DIVES Programming Environment CHARON Code (High level language) Java Code Charon to Java Translator Control Code Generator Java Libraries Human Interface Analysis Simulator Code Generator Drivers Model Checker Runtime Monitor Formal Requirements

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 21 Toolset components CHARON to intermediate internal representation (IR) Simulator generation from IR Model checking from IR Graphical user interface Error trace generator Runtime monitor and checker generator

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 22 Methodology Compositional modeling Stepwise refinement Hierarchical abstractions of physical constraints

SDRL and GRASP University of Pennsylvania 6/27/00 MoBIES 23 Summary DIVES:includes high-level modeling language (Charon) and a design environment reflecting the current state of the art both in formal and object oriented methods (UML) Tools for Formal Analysis –Simulation –Model checking –Controller synthesis –Runtime monitoring Emphasis on hierarchy and compositionality