Presentation is loading. Please wait.

Presentation is loading. Please wait.

ECE/CS 584: Hybrid Automaton Modeling Framework Simulations and Composition Lecture 05 Sayan Mitra.

Published byAnis Byrd Modified over 5 years ago

Similar presentations

Presentation on theme: "ECE/CS 584: Hybrid Automaton Modeling Framework Simulations and Composition Lecture 05 Sayan Mitra."— Presentation transcript:

1 ECE/CS 584: Hybrid Automaton Modeling Framework Simulations and Composition
Lecture 05 Sayan Mitra

2 Plan for Today Abstraction and Implementation relations (continued)
Composition Substitutivity Looking ahead Tools: PVS, SpaceEx, Z3, UPPAAL Decidable classes Invariant generation CEGAR

3 Some nice properties of Forward Simulation
Let 𝒜, ℬ, and 𝒞 be comparable TAs. If R1 is a forward simulation from 𝒜 to ℬ and R2 is a forward simulation from ℬ to 𝒞, then R1 ∘ R2 is a forward simulation from 𝒜 to 𝒞 𝒜 implements 𝒞 The implementation relation is a preorder of the set of all (comparable) hybrid automata (A preorder is a reflexive and transitive relation) If R is a forward simulation from 𝒜 to ℬ and R-1 is a forward simulation from ℬ to 𝒜 then R is called a bisimulation and ℬ are 𝒜 bisimilar Bisimilarity is an equivalence relation (reflexive, transitive, and symmetric) Relational composition

4 A Simulation Example ℬ 𝒜 𝒜 is an implementation of ℬ
Is there a forward simulation from 𝒜 to ℬ ? Consider the forward simulation relation 𝒜 : 2—c4 cannot be simulated by ℬ from 2’ although (2,2’) are related. a 3 2’ b 1 a c 2 4 𝒜 3 b a 1 2 c 4

5 Backward Simulations Backward simulation relation from 𝒜1 to 𝒜2 is a relation R ⊆ 𝑄 1 × 𝑄 2 such that If x1 ∈ Θ1 and x1 R x2 then x2 ∈ Θ2 such that If x’1 R x’2 and x2—a x2’ then x2 –𝜷 x2’ and x1 R x2 Trace(𝜷) = a1 For every 𝝉 ∈ 𝒯 and x2 ∈ Q2 such that x1’ R x2’, there exists x2 such that Trace(𝜷) = 𝝉 Theorem. If there exists a backward simulation relation from 𝒜1 to 𝒜2 then ClosedTraces1 ⊆ ClosedTraces2

6 Composition of Hybrid Automata
The parallel composition operation on automata enable us to construct larger and more complex models from simpler automata modules 𝒜1 to 𝒜2 are compatible if X1 ∩ X2 = H1 ∩ A2 = H2 ∩ A1 = ∅ Variable names are disjoint; Action names of one are disjoint with the internal action names of the other

7 Composition For compatible 𝒜1 and 𝒜2 their composition 𝒜1 || 𝒜2 is the structure 𝓐= 𝑋,𝑄,Θ,𝐸,𝐻,𝒟,𝒯 𝑋=𝑋1 ∪𝑋2 (disjoint union) 𝑄⊆𝑣𝑎𝑙(𝑋) Θ= 𝒙∈𝑄 ∀ 𝑖 ∈ 1,2 : 𝒙.𝑋𝑖∈Θ𝑖} H = H1 ∪ H2 (disjoint union) E = E1 ∪ E2 and A= E ∪ H 𝒙,𝑎,𝒙 ∈ 𝒟 iff 𝑎 ∈𝐻1 and (𝒙.𝑋1,𝑎,𝒙′.𝑋1) ∈ 𝒟1 and 𝒙.𝑋2=𝒙.𝑋2 𝑎 ∈𝐻2 and (𝒙.𝑋2,𝑎,𝒙′.𝑋2) ∈ 𝒟2 and 𝒙.𝑋1=𝒙.𝑋1 Else, (𝒙.𝑋1,𝑎,𝒙′.𝑋1) ∈ 𝒟1 and (𝒙.𝑋2,𝑎,𝒙′.𝑋2) ∈ 𝒟2 𝒯: set of trajectories for X 𝜏 ∈ 𝒯 iff ∀ 𝑖 ∈ 1,2 , 𝜏.Xi ∈𝒯i Theorem . 𝓐 is also a hybrid automaton.

8 Example: Send || TimedChannel
Automaton Channel(b,M) variables: queue: Queue[M,Reals] := {} clock1: Reals := 0 actions: external send(m:M), receive(m:M) transitions: send(m) pre true eff queue := append(<m, clock1+b>, queue) receive(m) pre head(queue)[1] = m eff queue := queue.tail trajectories: evolve d(clock1) = 1 stop when ∃ m, d, <m,d> ∈ queue /\ clock=d Automaton PeriodicSend(u, M) variables: analog clock: Reals := 0 states: True actions: external send(m:M) transitions: send(m) pre clock = u eff clock := 0 trajectories: evolve d(clock) = 1 stop when clock=u

9 Composed Automaton Automaton SC(b,u) variables: queue: Queue[M,Reals] := {} clock_s, clock_c: Reals := 0 actions: external send(m:M), receive(m:M) transitions: send(m) pre clock_s = u eff queue := append(<m, clock_c+b>, queue); clock_s := 0 receive(m) pre head(queue)[1] = m eff queue := queue.tail trajectories: evolve d(clock_c) = 1; d(clock_s) = 1 stop when (∃ m, d, <m,d> ∈ queue /\ clock_c=d) \/ (clock_s=u)

10 Some properties about composed automata
Let 𝓐= 𝒜1 || 𝒜2 and let α be an execution fragment of 𝓐. Then αi = α|(Ai, Xi) is an execution fragment of 𝒜i α is time-bounded iff both α1 and α2 are time-bounded α is admissible iff both α1 and α2 are admissible α is closed iff both α1 and α2 are closed α is non-Zeno iff both α1 and α2 are non-Zeno α is an execution iff both α1 and α2 are executions Traces 𝓐= 𝜷 𝜷| Ei ϵ Traces 𝒜i } See examples in the TIOA monograph

11 Substitutivity Theorem. Suppose 𝒜1 , 𝒜2 and ℬ have the same external interface and 𝒜1 , 𝒜2 are compatible with ℬ. If 𝒜1 implemens 𝒜2 then 𝒜1|| ℬ implements 𝒜2 || ℬ Proof sketch. Define the simulation relation:

12 Substutivity Theorem. Suppose 𝒜1 𝒜2 ℬ1 and ℬ2 are HAs and 𝒜1 𝒜2 have the same external actions and ℬ1 ℬ2 have the same external actions and 𝒜1 𝒜2 is compatible with each of ℬ1 and ℬ2 If 𝒜1 implements ℬ1 and 𝒜2 implements ℬ2 then 𝒜1 || ℬ1 implements 𝒜2||ℬ2 . Proof. 𝒜1 || ℬ1 implements 𝒜2||ℬ1 𝒜2||ℬ1 implements 𝒜2||ℬ2 By transitivity of implementation relation 𝒜1 || ℬ1 implements 𝒜2||ℬ2

13 Theorem. 𝒜1 || ℬ2 implements 𝒜2||ℬ2 and ℬ1 implements ℬ2 then 𝒜1 || ℬ1 implements 𝒜2||ℬ2.

14 Summary Implementation Relation Composition Substitutivity
Forward and Backward simulations Composition Substitutivity

15 Example

Download ppt "ECE/CS 584: Hybrid Automaton Modeling Framework Simulations and Composition Lecture 05 Sayan Mitra."

Similar presentations

Process Algebra Book: Chapter 8. The Main Issue Q: When are two models equivalent? A: When they satisfy different properties. Q: Does this mean that the.

Process Algebra Book: Chapter 8. The Main Issue Q: When are two models equivalent? A: When they satisfy different properties. Q: Does this mean that the.
Hybrid automata - Abstraction Anders P. Ravn Department of Computer Science, Aalborg University, Denmark Hybrid Systems – PhD School Aalborg University.

Hybrid automata - Abstraction Anders P. Ravn Department of Computer Science, Aalborg University, Denmark Hybrid Systems – PhD School Aalborg University.
Section 7.5: Equivalence Relations Def: A relation R on a set A is called an equivalence relation if it is reflexive, symmetric, and transitive. Ex: Let.

Section 7.5: Equivalence Relations Def: A relation R on a set A is called an equivalence relation if it is reflexive, symmetric, and transitive. Ex: Let.
Equivalence Relations

Equivalence Relations
N-Consensus is the Second Strongest Object for N+1 Processes Eli Gafni UCLA Petr Kuznetsov Max Planck Institute for Software Systems.

N-Consensus is the Second Strongest Object for N+1 Processes Eli Gafni UCLA Petr Kuznetsov Max Planck Institute for Software Systems.
Interface Theories With Component Reuse Laurent DoyenEPFL Thomas HenzingerEPFL Barbara JobstmannEPFL Tatjana PetrovEPFL.

Interface Theories With Component Reuse Laurent DoyenEPFL Thomas HenzingerEPFL Barbara JobstmannEPFL Tatjana PetrovEPFL.
1 Fault Diagnosis for Timed Automata Stavros Tripakis VERIMAG.

1 Fault Diagnosis for Timed Automata Stavros Tripakis VERIMAG.
Game-theoretic approach to the simulation checking problem Peter Bulychev Vladimir Zakharov Lomonosov Moscow State University.

Game-theoretic approach to the simulation checking problem Peter Bulychev Vladimir Zakharov Lomonosov Moscow State University.
Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?

Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?
Timed Automata.

Timed Automata.
Introduction to Uppaal ITV Multiprogramming & Real-Time Systems Anders P. Ravn Aalborg University May 2009.

Introduction to Uppaal ITV Multiprogramming & Real-Time Systems Anders P. Ravn Aalborg University May 2009.
Hybrid Approach to Model-Checking of Timed Automata DAT4 Project Proposal Supervisor: Alexandre David.

Hybrid Approach to Model-Checking of Timed Automata DAT4 Project Proposal Supervisor: Alexandre David.
1 Formal Models for Stability Analysis : Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying Exam 20 th December.

1 Formal Models for Stability Analysis : Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying Exam 20 th December.
1 Stability of Hybrid Automata with Average Dwell Time: An Invariant Approach Daniel Liberzon Coordinated Science Laboratory University of Illinois at.

1 Stability of Hybrid Automata with Average Dwell Time: An Invariant Approach Daniel Liberzon Coordinated Science Laboratory University of Illinois at.
Introduction to Computability Theory

Introduction to Computability Theory
An Introduction to Input/Output Automata Qihua Wang.

An Introduction to Input/Output Automata Qihua Wang.
Approximate Abstraction for Verification of Continuous and Hybrid Systems Antoine Girard Guest lecture ESE601: Hybrid Systems 03/22/2006

Approximate Abstraction for Verification of Continuous and Hybrid Systems Antoine Girard Guest lecture ESE601: Hybrid Systems 03/22/2006
Hybrid Systems a lecture over: Tom Henzinger’s The Theory of Hybrid Automata Anders P. Ravn Aalborg University PhD-reading course November 2005.

Hybrid Systems a lecture over: Tom Henzinger’s The Theory of Hybrid Automata Anders P. Ravn Aalborg University PhD-reading course November 2005.
Embedded Systems Laboratory Department of Computer and Information Science Linköping University Sweden Formal Verification and Model Checking Traian Pop.

Embedded Systems Laboratory Department of Computer and Information Science Linköping University Sweden Formal Verification and Model Checking Traian Pop.
Hybrid automata Rafael Wisniewski Automation and Control, Dept. of Electronic Systems Aalborg University, Denmark Hybrid Systems October 9th 2009.

Hybrid automata Rafael Wisniewski Automation and Control, Dept. of Electronic Systems Aalborg University, Denmark Hybrid Systems October 9th 2009.

Similar presentations

Ads by Google