Presentation is loading. Please wait.

Presentation is loading. Please wait.

Jun. Sun Singapore University of Technology and Design Songzheng Song and Yang Liu National University of Singapore.

Published byOctavia Robbins Modified over 9 years ago

Similar presentations

Presentation on theme: "Jun. Sun Singapore University of Technology and Design Songzheng Song and Yang Liu National University of Singapore."— Presentation transcript:

1 Jun. Sun Singapore University of Technology and Design Songzheng Song and Yang Liu National University of Singapore

2 Model checking A model covers all relevant details may not be feasible. Probability is necessary. Randomized distributed algorithms, Bio-systems, Decision processes, Human factor in system reliability, etc. Problem: How to verify a system with one or more random components? Example: a pacemaker malfunctions with a probability of 0.46%. 2

3 PRISM 3

4 PRISM’s Language “…[a model] must be specified in the PRISM language, a simple, state-based language, based on the Reactive Modules formalism of Alur and Henzinger...” Example module phil1 p1: [0..11]; [] p1=0 -> (p1'=1); // trying [] p1=1 -> 0.5 : (p1'=2) + 0.5 : (p1'=3); // draw randomly [] p1=2 & lfree -> (p1'=4); // pick up left [] p1=3 & rfree -> (p1'=5); // pick up right [] p1=4 & rfree -> (p1'=8); // pick up right (got left) … 4

5 PAT 5

6 PAT’s Probabilistic Language PCSP# = CSP# + PCSP = CSP Stop, Skip, e -> P, P [] Q, P || Q, P|[X]| Q, P; Q, etc. + Data Structure e{x=y+5; z=obj.Method1(x,y,z)} -> P + Probabilistic Choice pcase { [p1]: P1; [p2]: P2; …; [pn]: Pn } 6

7 PCSP# Semantics Markov Decision Processes (MDP) Operational Semantics: extending semantics of CSP# with one rule ------------- (V, pcase {[p1] P1; [p2] P2; … })  (V, u) such that u(P1) = p1 and u(P2) = p2 and etc. 7 0.3 0.7 1

8 Property: Reachability 8 Example: what is the probability of severe consequence due to pacemaker malfunctioning? What is the probability of reaching a bad state? 0.3 0.7 0.25 0.5 0.25 0.4 0.6 1

9 Property: Refinement Example: What is the probability of a heart (with an installed pacemaker) behaving normally? What is the probability of a PCSP# implementation model trace-refining a CSP# specification model? The implementation model is the parallel composition of a model of a problematic heart and the pacemaker. The specification model is a model of a normal heart. 9

10 Refinement: Algorithm Determinize the specification model So that a state in the determinized specification contains a set of states which can be reached via the same trace. Compute the synchronous product of the implementation and the determinized specification So that a state in the product is of the form (s, X) such that s is a state of implementation and X is a state of the determinized specification. Compute the probability of reaching any state of the form (s, {}) in the product. 10

11 Refinement: Example 11 cs.1 cs.2 exit.1 with prob 0.9 exit.2 with prob 08 cs.1 with prob 0.2 cs.2 with prob 0.1 exit.12 cs.1 cs.2 exit.1 exit.2 The ImplementationThe Specification

12 Property: LTL Problem: Given an LTL formula ψ, what is probability of a PCSP# model satisfies ψ? Automata theoretic approach Build a deterministic Rabin automaton which is equivalent to ψ. Build the product of the PCSP# model and the Rabin automaton. Identify end components in the product which satisfies Rabin acceptance condition. Compute the probability of reaching any states in the end components. 12

13 Improved LTL Verification 13 Generate Buchi Automaton from ψ Refinement Checking The BA is Safety Generate Buchi Automaton from ψ Generate Buchi Automaton from -ψ The BA is NOT Safety Standard Probabilistic LTL Model Checking The BA is NOT Safety

14 Experiment PAT vs PRISM 3.3.1 Note 1: PCSP# is capable of specifying hierarchical probabilistic system. Note 2: The experiment is based on benchmark systems which are NOT hierarchical. Note 3: PAT is currently based on explicit state whereas PRISM is based (MT)BDD. 14

15 Experiment: Modeling 15

16 Experiment: Refinement 16

17 Experiment: LTL 17

18 Before Demonstration Contributions PCSP#: a language for modeling hierarchical probabilistic systems. PAT: a reliable toolkit for probabilistic model checking. Future work State reduction. PCSP# + real-time http://www.patroot.com 18 The modeling language is extremely important in system verification.

Download ppt "Jun. Sun Singapore University of Technology and Design Songzheng Song and Yang Liu National University of Singapore."

Similar presentations

Model Checking Lecture 3. Specification Automata Syntax, given a set A of atomic observations: Sfinite set of states S 0 Sset of initial states S S transition.

Model Checking Lecture 3. Specification Automata Syntax, given a set A of atomic observations: Sfinite set of states S 0 Sset of initial states S S transition.
Model Checking Lecture 2. Three important decisions when choosing system properties: 1automata vs. logic 2branching vs. linear time 3safety vs. liveness.

Model Checking Lecture 2. Three important decisions when choosing system properties: 1automata vs. logic 2branching vs. linear time 3safety vs. liveness.
Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.

Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.
Monte Carlo Model Checking Radu Grosu SUNY at Stony Brook Joint work with Scott A. Smolka.

Monte Carlo Model Checking Radu Grosu SUNY at Stony Brook Joint work with Scott A. Smolka.
CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.

CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.
Introducing Formal Methods, Module 1, Version 1.1, Oct., 1998 1 Formal Specification and Analytical Verification L 5.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.
1 Model checking. 2 And now... the system How do we model a reactive system with an automaton ? It is convenient to model systems with Transition systems.

1 Model checking. 2 And now... the system How do we model a reactive system with an automaton ? It is convenient to model systems with Transition systems.
Distributed Markov Chains P S Thiagarajan School of Computing, National University of Singapore Joint work with Madhavan Mukund, Sumit K Jha and Ratul.

Distributed Markov Chains P S Thiagarajan School of Computing, National University of Singapore Joint work with Madhavan Mukund, Sumit K Jha and Ratul.
The cardiac pacemaker – SystemJ versus Safety Critical Java Heejong Park, Avinash Malik, Muhammad Nadeem, and Zoran Salcic. University of Auckland, NZ.

The cardiac pacemaker – SystemJ versus Safety Critical Java Heejong Park, Avinash Malik, Muhammad Nadeem, and Zoran Salcic. University of Auckland, NZ.
Game-theoretic approach to the simulation checking problem Peter Bulychev Vladimir Zakharov Lomonosov Moscow State University.

Game-theoretic approach to the simulation checking problem Peter Bulychev Vladimir Zakharov Lomonosov Moscow State University.
Timed Automata.

Timed Automata.
Model Checking : Making Automatic Formal Verification Scale Shaz Qadeer EECS Department University of California at Berkeley.

Model Checking : Making Automatic Formal Verification Scale Shaz Qadeer EECS Department University of California at Berkeley.
CS 267: Automated Verification Lecture 10: Nested Depth First Search, Counter- Example Generation Revisited, Bit-State Hashing, On-The-Fly Model Checking.

CS 267: Automated Verification Lecture 10: Nested Depth First Search, Counter- Example Generation Revisited, Bit-State Hashing, On-The-Fly Model Checking.
Process Algebra (2IF45) Probabilistic Process Algebra Suzana Andova.

Process Algebra (2IF45) Probabilistic Process Algebra Suzana Andova.
Process Algebra (2IF45) Probabilistic Process Algebra Suzana Andova.

Process Algebra (2IF45) Probabilistic Process Algebra Suzana Andova.
CIS 540 Principles of Embedded Computation Spring 2015 Instructor: Rajeev Alur

CIS 540 Principles of Embedded Computation Spring Instructor: Rajeev Alur
Luca de Alfaro Thomas A. Henzinger Ranjit Jhala UC Berkeley Compositional Methods for Probabilistic Systems.

Luca de Alfaro Thomas A. Henzinger Ranjit Jhala UC Berkeley Compositional Methods for Probabilistic Systems.
Components based systems with Probabilistic choice Doron Peled Bar Ilan University.

Components based systems with Probabilistic choice Doron Peled Bar Ilan University.
Anna Philippou Department of Computer Science University of Cyprus Joint work with Mauricio Toro Department of Comp. Sc. EAFIT University Christina Kassara.

Anna Philippou Department of Computer Science University of Cyprus Joint work with Mauricio Toro Department of Comp. Sc. EAFIT University Christina Kassara.
SUN, Jun Assistant Visiting Jing Song Dong and Yang Liu, NUS.

SUN, Jun Assistant Visiting Jing Song Dong and Yang Liu, NUS.

Similar presentations

Ads by Google