Presentation is loading. Please wait.

Presentation is loading. Please wait.

Compositional Verification of Timed Systems. A Concept. Bengt Jonsson Leonid Mokrushin Xiaochun Shi Wang Yi Uppsala University Sweden Distributed Embedded.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Compositional Verification of Timed Systems. A Concept. Bengt Jonsson Leonid Mokrushin Xiaochun Shi Wang Yi Uppsala University Sweden Distributed Embedded."— Presentation transcript:

1 Compositional Verification of Timed Systems. A Concept. Bengt Jonsson Leonid Mokrushin Xiaochun Shi Wang Yi Uppsala University Sweden Distributed Embedded Systems Workshop 23.11.05, Lorentz Center

2 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se The Problem: Robot Controller ABCD 100131 10 CommandsHigh-level instructions Precise moves Requests Welding program 2.5·10 6 LoC

3 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Properties of Interest Buffer Overflow/Underflow  component D never stops when welding Sufficient Buffer Sizes Schedulability  components execute tasks on a single CPU Task Response Times (and its reserve) ABCD 100131 10 CommandsHigh-level instructions Precise moves Requests

4 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Verification Using TA Models System abstraction  TA model Tasks, Scheduler  TA model Properties  TCTL formulae U PPAAL /T IMES : trying to search for bugs in ”all the combinations of local states”: S 1 || S 2 ||... || S m || q 1 || q 2 ||... || q n Very difficult, often impossible

5 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Stream Transformers System/Component = Stream Transformer Kahn Process Networks [Kahn74] One-way Infinite FIFO Queues Deterministic Model  Queue data is independent of the process firing order A2 A3 A1 Q1 Q2......eee..e.ee....aa..a...a...bb..b...cc..ccc...dd..d..dd

6 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Abstract Stream Transformers Network Calculus  Arrival Curves [Recent work, 90s-2005] A2 A3 A1 Q1 Q2 Set of streams

7 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Abstract Stream t window sizeslide Slide a timed window of a fixed size Count max/min number of events in the window Choose another window etc. t window size events [0,4] [1,5][1,5]

8 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Arrival Curve # of events window size C L(C)=Set of streams (set of event streams satisfying all bounds for all window sizes) lower bound upper bound

9 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Modular Analysis (no feedback) A1 System/Component = Arrival Curve Transformer A2A2 Assumption On The Environment The “Maximal Component Capability” Q1 This can be done modularly if there is no feedback We may need a buffer to connect them Comparing the curves we will answer:  if A1 and A2 can “work together”? (all the events generated by A1 will be received and processed by A2)  what is the sufficient size of the buffer?  what is the output curve of A2?

10 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Transforming Curves Using TA TA Model of a System Component Event Generator Event Observer L(EG) = L(AC) Arrival Curve Departure Curve Verification(s) in UPPAAL inputoutput F

11 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se What About Feedback? We may first assume some input curves e.g. the “worst case” or the “maximum capability” Compute the output curves by approximations Iterate… ABCD

12 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Resources & Scheduling FPS, priority order: Priority(A)<Priority(B)<Priority(C)<Priority(D) Service Curves  Same as arrival curves but express available resource within windows Service Curve Generators/Observers ABCD 100% <100%

13 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Putting It All Together Given input data and resource curves 1. Propagate resource to the left Assuming “worst case” for data 2. Propagate “real” data to the right Using pre-computed resources 3. Using new data refine step 1. 4. Using new resource refine step 2. 5. Iterate until it stabilizes (e.g. output/resource) ABCD 100% Input RESOURCE DATA

14 Informationsteknologi Institutionen för informationsteknologi | www.it.uu.se Cons & Pros One component at a time (no big product, GALP) Composability analysis (buffers) Possibility to parallelize verification Heterogeneous systems (a potential to combine different formalisms) Preemptive FPS Feedback Bound on max window size EDF Shared resources Precedence constraints

Download ppt "Compositional Verification of Timed Systems. A Concept. Bengt Jonsson Leonid Mokrushin Xiaochun Shi Wang Yi Uppsala University Sweden Distributed Embedded."

Similar presentations

Use trace algebra to formalize the YAPI model EE290N Spring2002 Alessandro Pinto Mentors: Roberto Passerone Jerry Burch.

Use trace algebra to formalize the YAPI model EE290N Spring2002 Alessandro Pinto Mentors: Roberto Passerone Jerry Burch.
ECE 720T5 Fall 2011 Cyber-Physical Systems Rodolfo Pellizzoni.

ECE 720T5 Fall 2011 Cyber-Physical Systems Rodolfo Pellizzoni.
CPE555A: Real-Time Embedded Systems

CPE555A: Real-Time Embedded Systems
1 Swiss Federal Institute of Technology Computer Engineering and Networks Laboratory Embedded Systems Exercise 2: Scheduling Real-Time Aperiodic Tasks.

1 Swiss Federal Institute of Technology Computer Engineering and Networks Laboratory Embedded Systems Exercise 2: Scheduling Real-Time Aperiodic Tasks.
Silberschatz, Galvin and Gagne  2002 Modified for CSCI 399, Royden, 2005 6.1 Operating System Concepts Operating Systems Lecture 19 Scheduling IV.

Silberschatz, Galvin and Gagne  2002 Modified for CSCI 399, Royden, Operating System Concepts Operating Systems Lecture 19 Scheduling IV.
Automatic Verification of Component-Based Real-Time CORBA Applications Gabor Madl Sherif Abdelwahed

Automatic Verification of Component-Based Real-Time CORBA Applications Gabor Madl Sherif Abdelwahed
Planning under Uncertainty

Planning under Uncertainty
Lab Meeting Performance Analysis of Distributed Embedded Systems Lothar Thiele and Ernesto Wandeler Presented by Alex Cameron 17 th August, 2012.

Lab Meeting Performance Analysis of Distributed Embedded Systems Lothar Thiele and Ernesto Wandeler Presented by Alex Cameron 17 th August, 2012.
1 Swiss Federal Institute of Technology Computer Engineering and Networks Laboratory Performance Analysis of Embedded Systems Lothar Thiele ETH Zurich.

1 Swiss Federal Institute of Technology Computer Engineering and Networks Laboratory Performance Analysis of Embedded Systems Lothar Thiele ETH Zurich.
Compositional Analysis of Timed Systems by Abstraction Leonid Mokrushin TAPVES 2007-02-08.

Compositional Analysis of Timed Systems by Abstraction Leonid Mokrushin TAPVES
Simulation Where real stuff starts. ToC 1.What, transience, stationarity 2.How, discrete event, recurrence 3.Accuracy of output 4.Monte Carlo 5.Random.

Simulation Where real stuff starts. ToC 1.What, transience, stationarity 2.How, discrete event, recurrence 3.Accuracy of output 4.Monte Carlo 5.Random.
Nick McKeown CS244 Lecture 6 Packet Switches. What you said The very premise of the paper was a bit of an eye- opener for me, for previously I had never.

Nick McKeown CS244 Lecture 6 Packet Switches. What you said The very premise of the paper was a bit of an eye- opener for me, for previously I had never.
Scheduling for Embedded Real-Time Systems Amit Mahajan and Haibo.

Scheduling for Embedded Real-Time Systems Amit Mahajan and Haibo.
Institut für Datentechnik und Kommunikationetze Analysis of Shared Coprocessor Accesses in MPSoCs Overview Bologna, 22.05.2006 Simon Schliecker Matthias.

Institut für Datentechnik und Kommunikationetze Analysis of Shared Coprocessor Accesses in MPSoCs Overview Bologna, Simon Schliecker Matthias.
February 12, 2009 Center for Hybrid and Embedded Software Systems Encapsulated Model Transformation Rule A transformation.

February 12, 2009 Center for Hybrid and Embedded Software Systems Encapsulated Model Transformation Rule A transformation.
Design of Fault Tolerant Data Flow in Ptolemy II Mark McKelvin EE290 N, Fall 2004 Final Project.

Design of Fault Tolerant Data Flow in Ptolemy II Mark McKelvin EE290 N, Fall 2004 Final Project.
1 of 12 May 3, 2000 Performance Estimation for Embedded Systems with Data and Control Dependencies Paul Pop, Petru Eles, Zebo Peng Department of Computer.

1 of 12 May 3, 2000 Performance Estimation for Embedded Systems with Data and Control Dependencies Paul Pop, Petru Eles, Zebo Peng Department of Computer.
A Denotational Semantics For Dataflow with Firing Edward A. Lee Jike Chong Wei Zheng Paper Discussion for.

A Denotational Semantics For Dataflow with Firing Edward A. Lee Jike Chong Wei Zheng Paper Discussion for.
What we will cover…  CPU Scheduling  Basic Concepts  Scheduling Criteria  Scheduling Algorithms  Evaluations 1-1 Lecture 4.

What we will cover…  CPU Scheduling  Basic Concepts  Scheduling Criteria  Scheduling Algorithms  Evaluations 1-1 Lecture 4.
February 12, 2009 Center for Hybrid and Embedded Software Systems Model Transformation Using ERG Controller Thomas H. Feng.

February 12, 2009 Center for Hybrid and Embedded Software Systems Model Transformation Using ERG Controller Thomas H. Feng.

Similar presentations

Ads by Google