Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 A Spectrum of IV&V Modeling Techniques Mats Heimdahl (Co-PI) Jimin Gao (RA) University of Minnesota Tim Menzies (Co-PI) David Owen (RA) West Virginia.

Published byMae Hicks Modified over 9 years ago

Similar presentations

Presentation on theme: "1 A Spectrum of IV&V Modeling Techniques Mats Heimdahl (Co-PI) Jimin Gao (RA) University of Minnesota Tim Menzies (Co-PI) David Owen (RA) West Virginia."— Presentation transcript:

1 1 A Spectrum of IV&V Modeling Techniques Mats Heimdahl (Co-PI) Jimin Gao (RA) University of Minnesota Tim Menzies (Co-PI) David Owen (RA) West Virginia University/NASA IV&V Sanjai Rayadurgam (RA) University of Minnesota—Today’s Speaker

2 http://www.cs.umn.edu/crisys 2 Model-Based Development Specification Model Code VisualizationPrototyping TestingAnalysis

3 http://www.cs.umn.edu/crisys 3 ROI with Model Based Development Source: Esterel Technologies - 37.5 % - 25 % - 75 % - 50 %

4 http://www.cs.umn.edu/crisys 4 Model-Based Development Coming to projects everywhere—soon Model based development in some form will in the near future be the norm in critical systems development  Airbus Industries require the use of model based techniques from all vendors  Boeing currently evaluating what to require— not if they will require something  Honeywell and Rockwell Collins are fielding the capabilities within the next two years  Etc., etc.

5 http://www.cs.umn.edu/crisys 5 Model-Based Development Tools Commercial Products  Esterel Studio and SCADE Studio from Esterel Technologies  Rhapsody from I-Logix  Rose Real-Time from Rational  Simulink and Stateflow from Mathworks Inc.

6 http://www.cs.umn.edu/crisys 6 Model-Based Tools-2 NASA tools  STANLEY/ LIVINGSTONE for Integrated (or Intelligent) Vehicle Health Maintenance (IVMS) for second- generation shuttle.

7 http://www.cs.umn.edu/crisys 7 RSML -e and Nimbus RSML -e Formal Models (~20 running concurrently) Java Simulations of environment Integration in MatLab Test case generation Model checking Theorem proving Project with Rockwell Collins Inc.

8 http://www.cs.umn.edu/crisys 8 Formal Model of SUS Typical Requirements IV&V Process Initial Assessment Using Low-Cost Approach Formal Inspection Formal Analysis System Under Study (typically English) Formal Model of SUS Inspection Automation Model Extraction

9 http://www.cs.umn.edu/crisys 9 Model-Based IV&V Process Formal Analysis Test Inspection Model v.1 Model Evolution Model v.2 Model v.n-1 Model v.n Formal Analysis Test Inspection Model Evolution Model Evolution Code Test Increased Effort and Cost

10 http://www.cs.umn.edu/crisys 10 Challenges in the New Process Scalability and cost of the formal analysis  State space explosion problems in model checking Cost effective model evolution  Process and guidelines for evolving the model  Early and cost effective problem detection Formal Analysis Test Inspection Model v.1 Model Evolution Model v.2 Model v.n-1 Model v.n Formal Analysis Test Inspection Model Evolution Model Evolution Code Test

11 http://www.cs.umn.edu/crisys 11 Scalable Analysis Model checking is plagued by state space explosion problems  Are there alternative, possibly heuristic, approaches that are effective? Alternate representations  NAYO: a no-and-yes-or graph Hypothesis:  NAYOs can be used to evaluate models Express interesting properties Find interesting problems  NAYO-based evaluation scale  NAYO can be used across the model evolution cycle Work with David Owen, WVU

12 http://www.cs.umn.edu/crisys 12 Q: NAYOs can be used to evaluate models? A: Yes!! (using a novel stochastic search engine- ISSRE02) Q: Does NAYO-based evaluation scale? A1: Stochastic search linear time! A2: NAYO stochastic search always plateau! A3: False negative rate falls to zero in the plateau Work with David Owen, WVU Some Results

13 http://www.cs.umn.edu/crisys 13 Open Issues If the stochastic search does not find problems, are there none?  Compare the stochastic results with full verification on realistic models  Experiments using: RSML -e Nimbus SMV Stochastic search Flight guidance models from Rockwell Collins How to perform model evolution?  Large case study with Rockwell Collins  RSML -e suitable for the full spectrum of models Does finding problem in early models indicate a problem system?  Does elimination of problems early reduce problems in subsequent models (even if substantially different)?  Very difficult to assess  No experiment this year  Planning for controlled experiment

14 http://www.cs.umn.edu/crisys 14 Analysis Experiment Available Resources:  6 RSML -e models of Flight Guidance System from Rockwell Collins Inc.  Collection of desirable properties  Translator from RSML -e to SMV FSM suitable for stochastic search Experimental Method:  Seed errors in the FGS models  Apply stochastic search as well as full formal verification  Compare performance and detection capability RSML -e Spec. SMV Spec. NAYO Graph Automatic Translation Work with Jimin Gao, U of Minnesota

15 http://www.cs.umn.edu/crisys 15 Summary Model based development is here  Or, will be here shortly Great potential to improve quality and decrease cost of IV&V Must meet some crucial challenges first  Scalability of formal analysis In particular, state space exploration—model checking  Evolution of models Stochastic state space exploration may hold the key But, we need to explore  The fault detection capability of stochastic search  The efficiency of stochastic search Rigorous experiments are starting as I speak We will also evaluate alternative analysis tools  SAL from SRI

Download ppt "1 A Spectrum of IV&V Modeling Techniques Mats Heimdahl (Co-PI) Jimin Gao (RA) University of Minnesota Tim Menzies (Co-PI) David Owen (RA) West Virginia."

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

1 Verification by Model Checking. 2 Part 1 : Motivation.
MDI 2010, Oslo, Norway Behavioural Interoperability to Support Model-Driven Systems Integration Alek Radjenovic, Richard Paige The University of York,

MDI 2010, Oslo, Norway Behavioural Interoperability to Support Model-Driven Systems Integration Alek Radjenovic, Richard Paige The University of York,
Omnibus: A clean language and supporting tool for integrating different assertion-based verification techniques Thomas Wilson, Savi Maharaj, Robert G.

Omnibus: A clean language and supporting tool for integrating different assertion-based verification techniques Thomas Wilson, Savi Maharaj, Robert G.
Technology Drivers Traditional HPC application drivers – OS noise, resource monitoring and management, memory footprint – Complexity of resources to be.

Technology Drivers Traditional HPC application drivers – OS noise, resource monitoring and management, memory footprint – Complexity of resources to be.
A Survey of Runtime Verification Jonathan Amir 2004.

A Survey of Runtime Verification Jonathan Amir 2004.
Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:

Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:
Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.

Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.
Model Checker In-The-Loop Flavio Lerda, Edmund M. Clarke Computer Science Department Jim Kapinski, Bruce H. Krogh Electrical & Computer Engineering MURI.

Model Checker In-The-Loop Flavio Lerda, Edmund M. Clarke Computer Science Department Jim Kapinski, Bruce H. Krogh Electrical & Computer Engineering MURI.
LIFE CYCLE MODELS FORMAL TRANSFORMATION

LIFE CYCLE MODELS FORMAL TRANSFORMATION
Dagstuhl Intro Mike Whalen. 2 Mike Whalen My main goal is to reduce software verification and validation (V&V) cost and increasing.

Dagstuhl Intro Mike Whalen. 2 Mike Whalen My main goal is to reduce software verification and validation (V&V) cost and increasing.
Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.
Alternate Software Development Methodologies

Alternate Software Development Methodologies
Run Time Monitoring of Reactive System Models Mikhail Auguston Naval Postgraduate School Mark Trakhtenbrot Holon Academic Institute of.

Run Time Monitoring of Reactive System Models Mikhail Auguston Naval Postgraduate School Mark Trakhtenbrot Holon Academic Institute of.
Advanced Technology Center Slide 1 Formal Verification of Flight Critical Software Dr. Steven P. Miller Advanced Computing Systems Elise A. Anderson Commercial.

Advanced Technology Center Slide 1 Formal Verification of Flight Critical Software Dr. Steven P. Miller Advanced Computing Systems Elise A. Anderson Commercial.
Advanced Technology Center Slide 1 Formal Methods in Safety-Critical Systems Dr. Steven P. Miller Advanced Computing Systems Rockwell Collins 400 Collins.

Advanced Technology Center Slide 1 Formal Methods in Safety-Critical Systems Dr. Steven P. Miller Advanced Computing Systems Rockwell Collins 400 Collins.
Formal Model-Based Development in Aerospace Systems: Challenges to Adoption Mats P. E. Heimdahl University of Minnesota Software Engineering Center Critical.

Formal Model-Based Development in Aerospace Systems: Challenges to Adoption Mats P. E. Heimdahl University of Minnesota Software Engineering Center Critical.
Research Heaven, West Virginia 1 Static Analysis of Software for Autonomous Spacecrafts Supratik Mukhopadhyay Research Heaven, West.

Research Heaven, West Virginia 1 Static Analysis of Software for Autonomous Spacecrafts Supratik Mukhopadhyay Research Heaven, West.
1 Independent Verification and Validation Current Status, Challenges, and Research Opportunities Dan McCaugherty IV&V Program Manager Titan Systems Corporation.

1 Independent Verification and Validation Current Status, Challenges, and Research Opportunities Dan McCaugherty IV&V Program Manager Titan Systems Corporation.
Chapter 6: Design of Expert Systems

Chapter 6: Design of Expert Systems
ECE 667 - Synthesis & Verification1 ECE 667 Spring 2011 Synthesis and Verification of Digital Systems Verification Introduction.

ECE Synthesis & Verification1 ECE 667 Spring 2011 Synthesis and Verification of Digital Systems Verification Introduction.

Similar presentations

Ads by Google