Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Compositional Verification of Hybrid Systems Using Simulation Relations Doctorate Defense Goran Frehse Radboud Universiteit, Nijmegen, Oct. 10, 2005.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Compositional Verification of Hybrid Systems Using Simulation Relations Doctorate Defense Goran Frehse Radboud Universiteit, Nijmegen, Oct. 10, 2005."— Presentation transcript:

1 1 Compositional Verification of Hybrid Systems Using Simulation Relations Doctorate Defense Goran Frehse Radboud Universiteit, Nijmegen, Oct. 10, 2005

2 2 Example 1: Überlingen, July 1, 2002 Boeing & Tupolew crossing 21:33:03 –Alarm from Collision Avoidance System (TCAS) B757-200TU154M !

3 3 Example 1: Überlingen, July 1, 2002 Boeing & Tupolew crossing 21:33:03 –Alarm from Collision Avoidance System (TCAS) 21:34:49 –Human controller command B757-200TU154M !

4 4 Example 1: Überlingen, July 1, 2002 Boeing & Tupolew crossing 21:33:03 –Alarm from Collision Avoidance System (TCAS) 21:34:49 –Human controller command 21:34:56 –TCAS recommendation B757-200TU154M !

5 5 Example 1: Überlingen, July 1, 2002 Boeing & Tupolew crossing 21:33:03 –Alarm from Collision Avoidance System (TCAS) 21:34:49 –Human controller command 21:34:56 –TCAS recommendation 21:35:32 –Collision B757-200TU154M !

6 6 ! Example 1: Überlingen, July 1, 2002 Boeing & Tupolew crossing 21:33:03 –Alarm from Collision Avoidance System (TCAS) 21:34:49 –Human controller command 21:34:56 –TCAS recommendation 21:35:32 –Collision Official Recommendation: “pilots are to obey and follow TCAS advisories, regardless of whether contrary instruction is given” Trust a computer!? Official Recommendation: “pilots are to obey and follow TCAS advisories, regardless of whether contrary instruction is given” Trust a computer!? B757-200TU154M

7 7 Formal Verification Characteristics –mathematical rigour –sound proofs & algorithms Hybrid System –continuous environment –discrete software Problems –only computable for certain types of models –must check all possibilities  computational complexity Solution –abstraction –compositionality Model of Environment Model of Software Precise Specification Hybrid System

8 8 Formal Verification Characteristics –mathematical rigour –sound proofs & algorithms Hybrid System –continuous environment –discrete software Problems –only computable for certain types of models –must check all possibilities  computational complexity Solution –abstraction –compositionality Model of Environment Model of Software Proof (algorithmic) Precise Specification Hybrid System

9 9 Formal Verification Characteristics –mathematical rigour –sound proofs & algorithms Hybrid System –continuous environment –discrete software Problems –only computable for certain types of models –must check all possibilities  computational complexity Solution –abstraction –compositionality Model of Environment Model of Software Proof (algorithmic) Guaranteed Correctness Precise Specification Hybrid System TCAS verified in part Livadas, Lygeros, Lynch, ‘00

10 10 Example 2: Join Manoeuvre [Tomlin et al.] Traffic Coordination Problem –join paths at different speed Goals –avoid collision –join with sufficient separation

11 11 Example 2: Join Manoeuvre [Tomlin et al.] Traffic Coordination Problem –join paths at different speed Goals –avoid collision –join with sufficient separation Models –Environment: Planes –Software: Controller switches fast/slow Specification –keep min. distance

12 12 Abstraction and Simulation Relations Goal –check all possibilities Abstraction  simplified model –here: linear bounds on direction disturbances

13 13 Abstraction and Simulation Relations Goal –check all possibilities Abstraction  simplified model –here: linear bounds on direction –bounds on trajectories bounds on direction original trajectory bounds on trajectories of abstraction disturbances

14 14 Abstraction and Simulation Relations Goal –check all possibilities Abstraction  simplified model –here: linear bounds on direction –bounds on trajectories Simulation Relation  formal relationship between original and abstraction –everything possible in implementation is also possible in abstraction –specification = abstraction original trajectory bounds on direction bounds on trajectories of abstraction disturbances

15 15 Compositionality From Components to Systems –Simulation relations must hold after composition Original Plane Abstract Plane satisfies Original Controller Abstract Controller satisfies while active do if altitude > 13000 check distance else if speed >= 10 check heading check distance else warning end while while active do check distance end while

16 16 Compositionality From Components to Systems –Simulation relations must hold after composition Original Controller Original Plane Abstract Plane Abstract Controller Original Plane Abstract Plane satisfies sat. Original Controller Abstract Controller satisfies while active do if altitude > 13000 check distance else if speed >= 10 check heading check distance else warning end while while active do check distance end while composed system composed abstraction

17 17 Compositionality From Components to Systems –Simulation relations must hold after composition Benefits –modular verification –advanced deduction techniques possible Difficulty –formalisms must fit together hybrid system simulation relation composition Original Controller Original Plane Abstract Plane Abstract Controller Original Plane Abstract Plane satisfies sat. Original Controller Abstract Controller satisfies while active do if altitude > 13000 check distance else if speed >= 10 check heading check distance else warning end while while active do check distance end while composed system composed abstraction

18 18 Contribution of this Thesis Formal Framework for Compositional Verification –simulation relations for hybrid systems –semi-computable for linear bounds time collision possible! safety margin

19 19 Contribution of this Thesis Formal Framework for Compositional Verification –simulation relations for hybrid systems –semi-computable for linear bounds Verification Tool: PHAVer (Polyhedral Hybrid Automaton Verifier) –compute simulation relations and reachable states –most powerful verification tool for hybrid systems time collision possible! safety margin

20 20 Contribution of this Thesis Formal Framework for Compositional Verification –simulation relations for hybrid systems –semi-computable for linear bounds Verification Tool: PHAVer (Polyhedral Hybrid Automaton Verifier) –compute simulation relations and reachable states –most powerful verification tool for hybrid systems Future Work –compositional over- approximations (submitted) –efficiency & applications time collision possible! safety margin

Download ppt "1 Compositional Verification of Hybrid Systems Using Simulation Relations Doctorate Defense Goran Frehse Radboud Universiteit, Nijmegen, Oct. 10, 2005."

Similar presentations

Copyright 2000 Cadence Design Systems. Permission is granted to reproduce without modification. Introduction An overview of formal methods for hardware.

Copyright 2000 Cadence Design Systems. Permission is granted to reproduce without modification. Introduction An overview of formal methods for hardware.
Hierarchical, distributed and multi-agent control for ATM

Hierarchical, distributed and multi-agent control for ATM
1 October 16 th, 2009 Meaning to motion: Transforming specifications to provably-correct control Hadas Kress-Gazit Cornell University George Pappas University.

1 October 16 th, 2009 Meaning to motion: Transforming specifications to provably-correct control Hadas Kress-Gazit Cornell University George Pappas University.
Introducing Formal Methods, Module 1, Version 1.1, Oct., 1998 1 Formal Specification and Analytical Verification L 5.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.
Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.

Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.
Timed Automata.

Timed Automata.
Zonotopes Techniques for Reachability Analysis Antoine Girard Workshop “Topics in Computation and Control” March 27 th 2006, Santa Barbara, CA, USA

Zonotopes Techniques for Reachability Analysis Antoine Girard Workshop “Topics in Computation and Control” March 27 th 2006, Santa Barbara, CA, USA
Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.
Reachability Analysis for AMS Verification using Hybrid Support Function and SMT- based Method Honghuang Lin, Peng Li Dept. of ECE, Texas A&M University.

Reachability Analysis for AMS Verification using Hybrid Support Function and SMT- based Method Honghuang Lin, Peng Li Dept. of ECE, Texas A&M University.
Aditya Zutshi Sriram Sankaranarayanan Ashish Tiwari TIMED RELATIONAL ABSTRACTIONS FOR SAMPLED DATA CONTROL SYSTEMS.

Aditya Zutshi Sriram Sankaranarayanan Ashish Tiwari TIMED RELATIONAL ABSTRACTIONS FOR SAMPLED DATA CONTROL SYSTEMS.
Combining Symbolic Simulation and Interval Arithmetic for the Verification of AMS Designs Mohamed Zaki, Ghiath Al Sammane, Sofiene Tahar, Guy Bois FMCAD'07.

Combining Symbolic Simulation and Interval Arithmetic for the Verification of AMS Designs Mohamed Zaki, Ghiath Al Sammane, Sofiene Tahar, Guy Bois FMCAD'07.
HSCC 03 MIT LCS Safety Verification of Model Helicopter Controller Using Hybrid Input/Output Automata Sayan Mitra MIT Hybrid Systems: Computation and Control.

HSCC 03 MIT LCS Safety Verification of Model Helicopter Controller Using Hybrid Input/Output Automata Sayan Mitra MIT Hybrid Systems: Computation and Control.
CIS 540 Principles of Embedded Computation Spring 2015 Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur
Multiple Shooting, CEGAR-based Falsification for Hybrid Systems

Multiple Shooting, CEGAR-based Falsification for Hybrid Systems
An Introduction to Programming and Object Oriented Design using Java 2 nd Edition. May 2004 Jaime Niño Frederick Hosch Chapter 0 : Introduction to Object.

An Introduction to Programming and Object Oriented Design using Java 2 nd Edition. May 2004 Jaime Niño Frederick Hosch Chapter 0 : Introduction to Object.
MaC Monitoring and Checking at Runtime Presented By Usa Sammapun CIS 700 Oct 10, 2005.

MaC Monitoring and Checking at Runtime Presented By Usa Sammapun CIS 700 Oct 10, 2005.
1 Formal Models for Stability Analysis : Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying Exam 20 th December.

1 Formal Models for Stability Analysis : Verifying Average Dwell Time * Sayan Mitra MIT,CSAIL Research Qualifying Exam 20 th December.
1 Stability of Hybrid Automata with Average Dwell Time: An Invariant Approach Daniel Liberzon Coordinated Science Laboratory University of Illinois at.

1 Stability of Hybrid Automata with Average Dwell Time: An Invariant Approach Daniel Liberzon Coordinated Science Laboratory University of Illinois at.
1 Verification and Synthesis of Hybrid Systems Thao Dang October 10, 2000.

1 Verification and Synthesis of Hybrid Systems Thao Dang October 10, 2000.
Intelligent Vehicle-Highway Systems

Intelligent Vehicle-Highway Systems

Similar presentations

Ads by Google