Presentation is loading. Please wait.

Presentation is loading. Please wait.

Xiaosong Lu Togashi Laboratory Department of Computer Science Shizuoka University April 1999 Specification and Verification of Hierarchical Reactive Systems.

Published byIra Flowers Modified over 9 years ago

Similar presentations

Presentation on theme: "Xiaosong Lu Togashi Laboratory Department of Computer Science Shizuoka University April 1999 Specification and Verification of Hierarchical Reactive Systems."— Presentation transcript:

1 Xiaosong Lu Togashi Laboratory Department of Computer Science Shizuoka University April 1999 Specification and Verification of Hierarchical Reactive Systems

2 * Research Background and Objective * System Properties and Requirements * Formal Specifications * Soundness and Completeness * Synthesis of Formal Specifications * Compositional Verification * Reflection Introduction

3 * Statecharts (Modechart, RSML) *Visual Formalism *State Hierarchy and broadcast communication * SDL: Communicating finite-state machines * Petri Net: Event-driven, one-level concurrency * CCS, CSP: algebraic nature, recursion, nested concurrency, naming, channel communication... Related Work

4 * A New Methodology for Reactive Systems *System requirements: Declarative language *Formal specifications: Hierarchical state machines * A Flexible Development Environment *Stepwise Refinement *Reflection * Automatic Synthesis and Verification * Support of Modularity and Reusability Research Objective

5 System Requirements Synthesis System Formal Specifications Compiler Programs Requirement Acquisition VerifierSimulator Present system Reflection System System Overview

6 * SPS = * P: all atomic propositions * L: partition of P * D ⊆ L×L: partial order relation * L 0: topmost level propositions Hierarchical System Properties

7 SPS of a Radio/Tape Player On Radio, Tape Stereo Am, Fm Play, Pause P Lo D L

8 * ρ = * id: name * a: input symbol * f in : pre-condition * o: output symbol * f out : post-condition * Power on : ¬ On ⇒ On : * Function Requirement Power

9 * A Requirement Module of the Player * RM = System Requirement Module RM1 ¬ On Power ¬ On ⇒ On, Power TF : Temporal logic formulae BNameγ0 ΣΟ On ⇒ ¬ On Power

10 Other Requirement Modules RM2Radio RT Radio ⇒ Tape, RT TF : Temporal logic formulae On RT Tape ⇒ Radio RM3 Stereo S Stereo ⇒ ¬ Stereo, S TF : Temporal logic formulae On S ¬ Stereo ⇒ Stereo Radio/Tape Stereo

11 Other Requirement Modules RM4 Play Pause ¬ Play ⇒ Play (TF : Temporal logic formulae) PL,PA Stop Tape Play ∧¬ Pause ⇒ Pause, Play ∧ Pause ⇒ ¬ Pause Play ⇒ ¬ Play ∧¬ Pause PA RM5Am,Fm AF Am ⇒ Fm, Fm ⇒ Am (TF : Temporal logic formulae) Radio Tape Radio

12 * R = * System Requirement of the Player System Requirement RM1 - Power RM2 - Radio/Tape RM3 - Stereo RM5 - Radio RM4 - Tape RM0 >

13 * TM = * A State Transition Module of the Player State Transition Module Power ¬ On On Power Q Σ → q0q0

14 * M = * TM: state transition modules * 》 : partial order relation of state transition modules *TM 0 ⊆ TM: initial state transition modules Formal Specification

15 Formal Specification of the Player ¬ On On Power Radio Tape RT Stereo ¬ Stereo S S ¬ Play ∧¬ Pause PL Play ∧¬ Pause Play ∧ Pause PA Stop PA Am Fm AF TM0 》

16 Sub-states, Sub-transition, Default ¬ On On Power Radio Tape RT Stereo ¬ Stereo S S ¬ Play ∧¬ Pause PL Play ∧¬ Pause Play ∧ Pause PA Stop PA Am Fm AF TM0 》 Substates(Tape) Default(On) Sub-transition(Radio)

17 Global Behavior of the Player ¬ On Stereo On Radio Am Power RT Tape ¬ Play ∧¬ Pause On Stereo PL Play ∧¬ Pause On Tape Stereo ¬ On Power

18 Global Transition System Power ¬ On Power AF RT On, Tape ¬ Play, ¬ Pause On, Tape ¬ Play, ¬ Pause PL Stop PA On, Tape Play,Pause On, Tape Play,Pause On, Tape Play, ¬ Pause On, Tape Play, ¬ Pause PA On, Radio Am On, Radio Am On, Radio Fm On, Radio Fm AF RT Power Stereo ¬ Stereo S S

19 * Transition ├ Function Requirement * Transition Module ├ Requirement Module * Formal Specification ├ System Requirement Soundness

20 * M is Complete w.r.t. R * M is sound w.r.t. R * ∀ sound M’ w.r.t. R, * ∃ homomorphism ξ: M’→M * Standard System of R * sound * complete * unique Completeness

21 * Synthesis System * * Theorem on Synthesis: *The derived system is standard. Synthesis of Formal Specification system requirement module system requirement module State transition module State transition module System Requirement System Requirement Formal Specification Formal Specification

22 * Verification of Linear-time Properties * reachability analysis * liveness, fairness and safeness verification * trace analysis * Verification with Branching-time Logic * TCTL * partial model checker * further discussion Compositional Verification

23 * Bottom-up Algorithm * Time Complexity: O(|T| ・ log s |M|) Reachability Analysis Power Radio/Tape Stereo Radio Tape 1. Analyze local reachability [Play, Pause] 2. Find upper module, analyze [Tape] 3. Until initial module reached [On]

24 * Liveness: every state is in a circle *local liveness *upper state liveness * Fairness: strongly connected *initial module local fairness *all states reachable * Safeness: absence of deadlock *deadlock detection Liveness, Fairness, Safeness A A D D C C B B A A D D C C B B A A D D C C B B

25 * Syntax * p, a, o are TCTL formulae * ¬ f 1, f 1 ∧ f 2, AXf 1, EXf 1, A[f 1 Uf 2 ], E[f 1 Uf 2 ] are TCTL formula * f \ P, f \ A, f \ O are TCTL formulae * Trace-based Semantics Branching-time Logic: TCTL

26 * Partial verification * hierarchical structure based * sequential portion of formal specification * any level specification * Partial Model Checker * obtain list of all subformulas of f to be verified * label states with formulas on the hierarchical structure * backwards search for EX and EU Partial Model Checker

27 * Compositional Verification with Proof * Compositional Minimization * Symbolic Model Checking Further Discussion on Verification

28 * Transition Addition/Deletion/Modification * State Addition/Deletion * Nonexecutable Function Detection Reflection System Requirement System Requirement Formal Specification Formal Specification

29 * A Methodology for Specification and Verification of Reactive Systems * Future Work * Real-time, Predicate logic * Extensions on compositional verification * An integrated support environment Conclusion

Download ppt "Xiaosong Lu Togashi Laboratory Department of Computer Science Shizuoka University April 1999 Specification and Verification of Hierarchical Reactive Systems."

Similar presentations

Model Checking Lecture 1.

Model Checking Lecture 1.
Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.

Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.
Efficient Reachability Analysis of Hierarchic Reactive Modules R. Alur, R.Grosu, M.McDougall University of Pennsylvania www.cis.upenn.edu/~alur,grosu,mmcdougall.

Efficient Reachability Analysis of Hierarchic Reactive Modules R. Alur, R.Grosu, M.McDougall University of Pennsylvania
CS 267: Automated Verification Lecture 2: Linear vs. Branching time. Temporal Logics: CTL, CTL*. CTL model checking algorithm. Counter-example generation.

CS 267: Automated Verification Lecture 2: Linear vs. Branching time. Temporal Logics: CTL, CTL*. CTL model checking algorithm. Counter-example generation.
Algorithmic Software Verification VII. Computation tree logic and bisimulations.

Algorithmic Software Verification VII. Computation tree logic and bisimulations.
CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.

CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.
ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.

ECOE 560 Design Methodologies and Tools for Software/Hardware Systems Spring 2004 Serdar Taşıran.
An Introduction to the Model Verifier verds Wenhui Zhang September 15 th, 2010.

An Introduction to the Model Verifier verds Wenhui Zhang September 15 th, 2010.
ECE 667 - Synthesis & Verification - L271 ECE 697B (667) Spring 2006 Synthesis and Verification of Digital Systems Model Checking basics.

ECE Synthesis & Verification - L271 ECE 697B (667) Spring 2006 Synthesis and Verification of Digital Systems Model Checking basics.
François Fages MPRI Bio-info 2006 Formal Biology of the Cell Modeling, Computing and Reasoning with Constraints François Fages, Constraints Group, INRIA.

François Fages MPRI Bio-info 2006 Formal Biology of the Cell Modeling, Computing and Reasoning with Constraints François Fages, Constraints Group, INRIA.
Automated Refinement Checking of Concurrent Systems Sudipta Kundu, Sorin Lerner, Rajesh Gupta Department of Computer Science and Engineering, University.

Automated Refinement Checking of Concurrent Systems Sudipta Kundu, Sorin Lerner, Rajesh Gupta Department of Computer Science and Engineering, University.
UPPAAL Introduction Chien-Liang Chen.

UPPAAL Introduction Chien-Liang Chen.
Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.
卜磊 Transition System. Part I: Introduction  Chapter 0: Preliminaries  Chapter 1: Language and Computation Part II: Models  Chapter.

卜磊 Transition System. Part I: Introduction  Chapter 0: Preliminaries  Chapter 1: Language and Computation Part II: Models  Chapter.
Digitaalsüsteemide verifitseerimise kursus1 Formal verification: Property checking Property checking.

Digitaalsüsteemide verifitseerimise kursus1 Formal verification: Property checking Property checking.
Anna Philippou Department of Computer Science University of Cyprus Joint work with Mauricio Toro Department of Comp. Sc. EAFIT University Christina Kassara.

Anna Philippou Department of Computer Science University of Cyprus Joint work with Mauricio Toro Department of Comp. Sc. EAFIT University Christina Kassara.
Software Reliability CIS 640 Adapted from the lecture notes by Doron Pelel (www.dcs.warwick.ac.uk/~doron/notes.html)

Software Reliability CIS 640 Adapted from the lecture notes by Doron Pelel (
Course Summary. © Katz, 2003 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.

Course Summary. © Katz, 2003 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.
Model Checking. Used in studying behaviors of reactive systems Typically involves three steps: Create a finite state model (FSM) of the system design.

Model Checking. Used in studying behaviors of reactive systems Typically involves three steps: Create a finite state model (FSM) of the system design.
Lecture 4&5: Model Checking: A quick introduction Professor Aditya Ghose Director, Decision Systems Lab School of IT and Computer Science University of.

Lecture 4&5: Model Checking: A quick introduction Professor Aditya Ghose Director, Decision Systems Lab School of IT and Computer Science University of.

Similar presentations

Ads by Google