ECE/CS 584: Verification of Embedded Computing Systems Model Checking Timed Automata Sayan Mitra Lecture 09.

Slides:

Advertisements

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

Advertisements

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Timed Automata Rajeev Alur University of Pennsylvania SFM-RT, Bertinoro, Sept 2004.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.

Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:

UPPAAL Introduction Chien-Liang Chen.

Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.

Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?

Timed Automata.

Introduction to Uppaal ITV Multiprogramming & Real-Time Systems Anders P. Ravn Aalborg University May 2009.

ESE601: Hybrid Systems Some tools for verification Spring 2006.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

1 Mechanical Verification of Timed Automata Myla Archer and Constance Heitmeyer Presented by Rasa Bonyadlou 24 October 2002.

ECE 720T5 Fall 2012 Cyber-Physical Systems Rodolfo Pellizzoni.

6/14/991 Symbolic verification of systems with state machines David L. Dill Jeffrey Su Jens Skakkebaek Computer System Laboratory Stanford University.

HSCC 03 MIT LCS Safety Verification of Model Helicopter Controller Using Hybrid Input/Output Automata Sayan Mitra MIT Hybrid Systems: Computation and Control.

Model Checking for Probabilistic Timed Systems Jeremy Sproston Università di Torino VOSS Dagstuhl seminar 9th December 2002.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

1 Formal Models for Stability Analysis : Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying Exam 20 th December.

1 Stability of Hybrid Automata with Average Dwell Time: An Invariant Approach Daniel Liberzon Coordinated Science Laboratory University of Illinois at.

Analysis of a Clock Synchronization Protocol for Wireless Sensor Networks Faranak Heidarian Julien Schmaltz Frits Vaandrager.

Introduction to Computability Theory

Discrete Abstractions of Hybrid Systems Rajeev Alur, Thomas A. Henzinger, Gerardo Lafferriere and George J. Pappas.

1 Introduction to Computability Theory Lecture2: Non Deterministic Finite Automata (cont.) Prof. Amos Israeli.

1 An Inheritance-Based Technique for Building Simulation Proofs Incrementally Idit Keidar, Roger Khazan, Nancy Lynch, Alex Shvartsman MIT Lab for Computer.

Reachability Analysis for Some Models of Infinite-State Transition Systems Oscar H. Ibarra, Tevfik Bultan, and Jianwen Su Department of Computer Science.

Approximate Abstraction for Verification of Continuous and Hybrid Systems Antoine Girard Guest lecture ESE601: Hybrid Systems 03/22/2006

The Symbolic Approach to Hybrid Systems Tom Henzinger University of California, Berkeley.

Hybrid Systems a lecture over: Tom Henzinger’s The Theory of Hybrid Automata Anders P. Ravn Aalborg University PhD-reading course November 2005.

ESE601: Hybrid Systems Introduction to verification Spring 2006.

Hybrid automata Rafael Wisniewski Automation and Control, Dept. of Electronic Systems Aalborg University, Denmark Hybrid Systems October 9th 2009.

Chapter 8 Asynchronous System Model by Mikhail Nesterenko “Distributed Algorithms” by Nancy A. Lynch.

ECE/CS 584: Hybrid Automaton Modeling Framework Executions, Reach set, Invariance Lecture 03 Sayan Mitra.

1 DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA # 88ABW , 09 April 2014) Reducing the Wrapping Effect.

ECE 720T5 Winter 2014 Cyber-Physical Systems Rodolfo Pellizzoni.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

Department of Mechanical Engineering The University of Strathclyde, Glasgow Hybrid Systems: Modelling, Analysis and Control Yan Pang Department of Mechanical.

Introduction to CS Theory Lecture 3 – Regular Languages Piotr Faliszewski

Hybrid automata and temporal logics

ECE/CS 584: PVS Tutorial Part 1 Lecture 05 Sayan Mitra 1.

Lecture 81 Regional Automaton CS 5270 Lecture 8. Lecture 82 What We Need to Do Problem: –We need to analyze the timed behavior of a TTS. –The timed behavior.

Timed I/O Automata: A Mathematical Framework for Modeling and Analyzing Real-Time Systems Frits Vaandrager, University of Nijmegen joint work with Dilsun.

Lecture 81 Optimizing CTL Model checking + Model checking TCTL CS 5270 Lecture 9.

1 Modeling and Analyzing Distributed Systems Using I/O Automata Nancy Lynch, MIT Draper Laboratory, IR&D Mid-Year Meeting December 11, 2002.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

ECE/CS 584: Hybrid Automaton Modeling Framework Invariance, Abstractions, Simulation Lecture 04 Sayan Mitra.

Control Synthesis and Reconfiguration for Hybrid Systems October 2001 Sherif Abdelwahed ISIS Vanderbilt University.

1 Model Checking of of Timed Systems Rajeev Alur University of Pennsylvania.

Foundations of (Theoretical) Computer Science Chapter 2 Lecture Notes (Section 2.2: Pushdown Automata) Prof. Karen Daniels, Fall 2010 with acknowledgement.

Shinya Umeno Nancy Lynch’s Group CSAIL, MIT TDS seminar September 18 th, 2009 Machine-Assisted Parameter Synthesis of the Biphase Mark Protocol Using Event.

Chapter 8 Asynchronous System Model by Mikhail Nesterenko “Distributed Algorithms” by Nancy A. Lynch.

Symbolic Algorithms for Infinite-state Systems Rupak Majumdar (UC Berkeley) Joint work with Luca de Alfaro (UC Santa Cruz) Thomas A. Henzinger (UC Berkeley)

1 Formal Models for Stability Analysis of Hybrid Systems: Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying.

Introduction to Hardware Verification ECE 598 SV Prof. Shobha Vasudevan.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

ECE/CS 584: Verification of Embedded Computing Systems Timed to Hybrid Automata Sayan Mitra (edited by Yu Wang) Lecture 10.

Mathematical Models and Proof/Analysis Methods for Timing-Based Systems And… Their Application to Communication, Fault-Tolerant Distributed Computing,

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

CS5270 Lecture 41 Timed Automata I CS 5270 Lecture 4.

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur

1 Modeling and Analyzing Distributed Systems Using I/O Automata Nancy Lynch, MIT Draper Laboratory, IR&D Kickoff Meeting Aug. 30, 2002.

Instructor: Rajeev Alur

Timed Automata Formal Systems Pallab Dasgupta Professor,

ECE/CS 584: Hybrid Automaton Modeling Framework Simulations and Composition Lecture 05 Sayan Mitra.

CSEP590 – Model Checking and Automated Verification

ECE/CS 584: Verification of Embedded Computing Systems

CSCI1600: Embedded and Real Time Software

Introduction to verification

Modeling and Analysis of Complex Computational Systems

Presentation transcript:

ECE/CS 584: Verification of Embedded Computing Systems Model Checking Timed Automata Sayan Mitra Lecture 09

What we have seen so far A very general modeling framework (Lynch et al.’s Hybrid Automata[1]) – Complex discrete dynamics – Possibly nonlinear continuous dynamics – Distributed General proof techniques for the above model – Inductive invariants for proving safety – Simulation relations for trace inclusion Introduction to a General-purpose theorem prover (PVS) and examples of mechanizing proofs for state machines – How to model state machines in PVS – How to construct invariant proofs – Can be partially automated but requires a lot of manual work [1] Nancy Lynch, Roberto Segala, and Frits Vaandrager. Hybrid I/O automata. Information and Computation, 185(1): , August Hybrid I/O automata

Next Focus on specific classes of Hybrid Automata for which safety properties (invariants) can be verified completely automatically – Alur-Dill’s Timed Automata[1] (Today) – Rectangular initializaed hybrid automata – Linear hybrid automata – … Later we will look at other types of properties like stability, liveness, etc. Abstractions and invariance are still going to be important [1] Rajeev Alur et al. The Algorithmic Analysis ofHybrid Systems. Theoretical Computer Science, colume 138, pages 3-34, The Algorithmic Analysis ofHybrid Systems

Today Algorithmic analysis of (Alur-Dill’s) Timed Automata[1] – A restricted class of what we call hybrid automata in this course with only clock variables [1] Rajeev Alur and David L. Dill. A theory of timed automata. Theoretical Computer Science, 126: , 1994.A theory of timed automata

Clocks and Clock Constraints

Integral Timed Automata

Example: Light switch Description Switch can be turned on whenever at least 2 time units have elapsed since the last turn off. Switches off automatically 15 time units after the last on.

Control State (Location) Reachability Problem Given an ITA, check if a particular location is reachable from the initial states This problem is decidable Key idea: – Construct a Finite State Machine that is a time- abstract bisimilar to the ITA – Check reachability of FSM

A Simulation Relation with a finite quotient

What do the clock regions look like?

Complexity

Region Automaton

Time Successors The clock regions in blue are time successors of the clock region in red.

Example 1: Region Automata ITA Corresponding FA

Example 2 ITA Clock Regions

Corresponding FA Drastically increasing with the number of clocks

Summary ITA: (very) Restricted class of hybrid automata – Clocks, integer constraints – No clock comparison, linear Control state reachability Alur-Dill’s algorithm – Construct finite bisimulation (region automaton) – Idea is to lump together states that behave similarly and reduce the size of the model UPPAAL model checker based on similar model of timed automata