design verification of restart robust industrial control
play

Design & Verification of Restart-robust Industrial Control - PowerPoint PPT Presentation

Nov 03, 2023 •339 likes •803 views

Design & Verification of Restart-robust Industrial Control Software Dimitri Bohlender VTSA18, Inria Nancy, 27 August 2018 Introduction On Restart-robustness Programmable Logic Controllers (PLCs) PLCs are devices tailored to the

  1. Design & Verification of Restart-robust Industrial Control Software Dimitri Bohlender VTSA’18, Inria Nancy, 27 August 2018

  2. Introduction On Restart-robustness Programmable Logic Controllers (PLCs) ◮ PLCs are devices tailored to the domain of industrial automation, e.g. for actuating valves of a tank ◮ Realise reactive systems, repeatedly executing the same task Single Cycle actuators sensors PLC Design & Verification of Restart-robust Industrial Control Software 1 / 9 D. Bohlender

  3. Introduction On Restart-robustness Programmable Logic Controllers (PLCs) ◮ PLCs are devices tailored to the domain of industrial automation, e.g. for actuating valves of a tank ◮ Realise reactive systems, repeatedly executing the same task Single Cycle actuators sensors Input Variables PLC Design & Verification of Restart-robust Industrial Control Software 1 / 9 D. Bohlender

  4. Introduction On Restart-robustness Programmable Logic Controllers (PLCs) ◮ PLCs are devices tailored to the domain of industrial automation, e.g. for actuating valves of a tank ◮ Realise reactive systems, repeatedly executing the same task Single Cycle Program actuators sensors Input Variables PLC Design & Verification of Restart-robust Industrial Control Software 1 / 9 D. Bohlender

  5. Introduction On Restart-robustness Programmable Logic Controllers (PLCs) ◮ PLCs are devices tailored to the domain of industrial automation, e.g. for actuating valves of a tank ◮ Realise reactive systems, repeatedly executing the same task Single Cycle Program actuators sensors Input Output Variables Variables PLC Design & Verification of Restart-robust Industrial Control Software 1 / 9 D. Bohlender

  6. Introduction On Restart-robustness Programmable Logic Controllers (PLCs) ◮ PLCs are devices tailored to the domain of industrial automation, e.g. for actuating valves of a tank ◮ Realise reactive systems, repeatedly executing the same task Single Cycle Program actuators sensors Input Local Output Variables Variables Variables PLC Design & Verification of Restart-robust Industrial Control Software 1 / 9 D. Bohlender

  7. Introduction On Restart-robustness PLC Software ◮ Written in textual & graphical languages from IEC 61131-3 ◮ Features no recursion ⇒ Formalised as Control Flow Automaton (CFA) ✞ ☎ 1 1 PROGRAM RunningExample fs 2 VAR RETAIN 2 3 fs: BOOL := TRUE; 4 END_VAR fs:=FALSE !fs 5 VAR 3 6 a: INT := 0; b:=2 7 b: INT := 0; 4 IO 8 END_VAR 9 IF fs THEN 10 fs := FALSE; a:=1234/b 11 b := 2; 12 END_IF 13 a := 1234/b; 5 14 END_PROGRAM ✝ ✆ Design & Verification of Restart-robust Industrial Control Software 2 / 9 D. Bohlender

  8. Introduction On Restart-robustness PLC Software ◮ Written in textual & graphical languages from IEC 61131-3 ◮ Features no recursion ⇒ Formalised as Control Flow Automaton (CFA) ✞ ☎ 1 1 PROGRAM RunningExample fs 2 VAR RETAIN 2 3 fs: BOOL := TRUE; 4 END_VAR fs:=FALSE !fs 5 VAR 3 6 a: INT := 0; b:=2 7 b: INT := 0; 4 IO 8 END_VAR 9 IF fs THEN 10 fs := FALSE; a:=1234/b 11 b := 2; 12 END_IF 13 a := 1234/b; 5 14 END_PROGRAM ✝ ✆ Design & Verification of Restart-robust Industrial Control Software 2 / 9 D. Bohlender

  9. Introduction On Restart-robustness PLC Software ◮ Written in textual & graphical languages from IEC 61131-3 ◮ Features no recursion ⇒ Formalised as Control Flow Automaton (CFA) ✞ ☎ 1 1 PROGRAM RunningExample fs 2 VAR RETAIN 2 3 fs: BOOL := TRUE; 4 END_VAR fs:=FALSE !fs 5 VAR 3 6 a: INT := 0; b:=2 7 b: INT := 0; 4 IO 8 END_VAR 9 IF fs THEN 10 fs := FALSE; a:=1234/b 11 b := 2; 12 END_IF 13 a := 1234/b; 5 14 END_PROGRAM ✝ ✆ Design & Verification of Restart-robust Industrial Control Software 2 / 9 D. Bohlender

  10. Introduction On Restart-robustness Specifications ◮ Intermediate states are not observable 1 fs ⇒ Automation engineers and specs always 2 refer to the observable state fs:=FALSE !fs ◮ Most specifications can be formalised via 3 b:=2 invariants or temporal logics 4 IO ◮ Off-the-shelf verifier backend checks formalised program w.r.t. the specification a:=1234/b ◮ Domain-specific specifications may require dedicated procedures: 5 • PLCopen-/Specification automata • Cycle-bounded temporal logics Design & Verification of Restart-robust Industrial Control Software 3 / 9 D. Bohlender

  11. Introduction On Restart-robustness Specifications ◮ Intermediate states are not observable ⇒ Automation engineers and specs always refer to the observable state ◮ Most specifications can be formalised via invariants or temporal logics ◮ Off-the-shelf verifier backend checks formalised program w.r.t. the specification IO ◮ Domain-specific specifications may require dedicated procedures: 5 • PLCopen-/Specification automata • Cycle-bounded temporal logics Design & Verification of Restart-robust Industrial Control Software 3 / 9 D. Bohlender

  12. Introduction On Restart-robustness Specifications ◮ Intermediate states are not observable ⇒ Automation engineers and specs always refer to the observable state ◮ Most specifications can be formalised via invariants or temporal logics ◮ Off-the-shelf verifier backend checks formalised program w.r.t. the specification IO ◮ Domain-specific specifications may require dedicated procedures: 5 • PLCopen-/Specification automata • Cycle-bounded temporal logics Design & Verification of Restart-robust Industrial Control Software 3 / 9 D. Bohlender

  13. Introduction On Restart-robustness Specifications ◮ Intermediate states are not observable ⇒ Automation engineers and specs always refer to the observable state ◮ Most specifications can be formalised via invariants or temporal logics ◮ Off-the-shelf verifier backend checks formalised program w.r.t. the specification IO ◮ Domain-specific specifications may require dedicated procedures: 5 • PLCopen-/Specification automata • Cycle-bounded temporal logics Design & Verification of Restart-robust Industrial Control Software 3 / 9 D. Bohlender

  14. Introduction On Restart-robustness Specifications ◮ Intermediate states are not observable ⇒ Automation engineers and specs always refer to the observable state ◮ Most specifications can be formalised via invariants or temporal logics ◮ Off-the-shelf verifier backend checks formalised program w.r.t. the specification IO ◮ Domain-specific specifications may require dedicated procedures: 5 • PLCopen-/Specification automata • Cycle-bounded temporal logics Design & Verification of Restart-robust Industrial Control Software 3 / 9 D. Bohlender

  15. Introduction On Restart-robustness Retain Variables ◮ PLC applications are often safety critical ◮ Power outage or manual restart should not affect correctness ⇒ PLCs feature battery-backed memory for retain variables Example Retain drill’s position in automated processing of workpieces ◮ Assignments to such variables have unspecified semantics ◮ Prominent: delayed writing at the current PLC cycle’s end Design & Verification of Restart-robust Industrial Control Software 4 / 9 D. Bohlender

  16. Introduction On Restart-robustness Retain Variables ◮ PLC applications are often safety critical ◮ Power outage or manual restart should not affect correctness ⇒ PLCs feature battery-backed memory for retain variables Example Retain drill’s position in automated processing of workpieces ◮ Assignments to such variables have unspecified semantics ◮ Prominent: delayed writing at the current PLC cycle’s end Design & Verification of Restart-robust Industrial Control Software 4 / 9 D. Bohlender

  17. Introduction On Restart-robustness Retain Variables ◮ PLC applications are often safety critical ◮ Power outage or manual restart should not affect correctness ⇒ PLCs feature battery-backed memory for retain variables Example Retain drill’s position in automated processing of workpieces ◮ Assignments to such variables have unspecified semantics ◮ Prominent: delayed writing at the current PLC cycle’s end Design & Verification of Restart-robust Industrial Control Software 4 / 9 D. Bohlender

  18. Introduction On Restart-robustness Retain Variables ◮ PLC applications are often safety critical ◮ Power outage or manual restart should not affect correctness ⇒ PLCs feature battery-backed memory for retain variables Example Retain drill’s position in automated processing of workpieces ◮ Assignments to such variables have unspecified semantics ◮ Prominent: delayed writing at the current PLC cycle’s end Design & Verification of Restart-robust Industrial Control Software 4 / 9 D. Bohlender

  19. Introduction On Restart-robustness Retain Variables ◮ PLC applications are often safety critical ◮ Power outage or manual restart should not affect correctness ⇒ PLCs feature battery-backed memory for retain variables Example Retain drill’s position in automated processing of workpieces ◮ Assignments to such variables have unspecified semantics ◮ Prominent: delayed writing at the current PLC cycle’s end Design & Verification of Restart-robust Industrial Control Software 4 / 9 D. Bohlender

Recommend

Cooperative Particle Swarm Optimization for Robust Control System Design Renato A. Krohling

Cooperative Particle Swarm Optimization for Robust Control System Design Renato A. Krohling

WSC7 7th Online World Conference on Soft Computing in Industrial Applications Cooperative Particle Swarm Optimization for Robust Control System Design Renato A. Krohling Federal University of Esprito Santo, Electrical Engineering

574 views • 19 slides
Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken

Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken

Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken Wai-Kin Au School of Computing Science University of Glasgow Zhaohui Tang School of Infocomm Republic Polytechnic, Singapore 1 Introduction

576 views • 21 slides
Industrial Robots Industrial Robots Control Control Part 2 Control Control Part 2 Part 2

Industrial Robots Industrial Robots Control Control Part 2 Control Control Part 2 Part 2

Industrial Robots Industrial Robots Control Control Part 2 Control Control Part 2 Part 2 Part 2 Introduction to centralized control Independent joint decentralized control may prove inadequate when the user requires high task

673 views • 36 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (11/26/07) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (11/26/07) I E S R C E O V

VLSI Design Verification and Test Simulation CMPE 646 Design Verification Simulation used for 1) design verification : verify the correctness of the design and 2) test verification. Design verification: Specification Critical or

426 views • 15 slides
Towards robust control design for active flow control on wind turbine blades first results based

Towards robust control design for active flow control on wind turbine blades first results based

Towards robust control design for active flow control on wind turbine blades first results based on numerical simulations Dimitri Peaucelle Caroline Braud, Emmanuel Guilmineau Active flow control on wind turbine blades session - 29 August - 12

620 views • 12 slides
Nickel: A framework for design and verification of information flow control systems Luke Nelson

Nickel: A framework for design and verification of information flow control systems Luke Nelson

Nickel: A framework for design and verification of information flow control systems Luke Nelson Joint work with Helgi Sigurbjarnarson, Bruno Castro-Karney, James Bornholt, Emina Torlak, Xi Wang 2018 New England Systems Verification Day 1

749 views • 31 slides
Industrial Robots Industrial Robots Control Control Part 1 Control Control Part 1 Part 1

Industrial Robots Industrial Robots Control Control Part 1 Control Control Part 1 Part 1

Industrial Robots Industrial Robots Control Control Part 1 Control Control Part 1 Part 1 Part 1 Introduction to robot control The motion control problem motion control problem consists in the design of control algorithms for the robot

822 views • 46 slides
A Mechanism for Session Initiation Protocol (SIP) Avalanche Restart Overload Control

A Mechanism for Session Initiation Protocol (SIP) Avalanche Restart Overload Control

A Mechanism for Session Initiation Protocol (SIP) Avalanche Restart Overload Control draft-shen-soc-avalanche-restart-overload-00 Charles Shen and Henning Schulzrinne, Columbia University Arata Koike, NTT IETF 80, Prague, Czech Republic

443 views • 10 slides
Ni Nickel A Framework for Design and Verification of Information Flow Control Systems Helgi

Ni Nickel A Framework for Design and Verification of Information Flow Control Systems Helgi

Ni Nickel A Framework for Design and Verification of Information Flow Control Systems Helgi Sigurbjarnarson , Luke Nelson, Bruno Castro-Karney, James Bornholt, Emina Torlak, and Xi Wang .org Enforcing information flow control is critical

1.02k views • 58 slides
LMI results for robust control design of observer-based controllers, the discrete-time case with

LMI results for robust control design of observer-based controllers, the discrete-time case with

LMI results for robust control design of observer-based controllers, the discrete-time case with polytopic uncertainties Dimitri PEAUCELLE Yoshio EBIHARA IFAC World Congress Wednesday August 25, 2014, Cape Town Introduction Curiosity at

399 views • 13 slides
Network Anomaly Detection in Modbus TCP Industrial Control Systems RP1 #52: Industrial Control

Network Anomaly Detection in Modbus TCP Industrial Control Systems RP1 #52: Industrial Control

Network Anomaly Detection in Modbus TCP Industrial Control Systems RP1 #52: Industrial Control Systems Research Philipp Mieden & Rutger Beltman, 2020 Supervisor: Bartosz Czaszynski, Deloitte Industrial Network VS Corporate Network 2

379 views • 35 slides
Restart to Recover Restart and debottleneck your business operations to adjust to changes in

Restart to Recover Restart and debottleneck your business operations to adjust to changes in

Restart to Recover Restart and debottleneck your business operations to adjust to changes in operations, workforce, supply chain and sales In partnership with www.b3cmsme.org 1 Restart Start in mission-mode to problem-solve through Rebuild

352 views • 9 slides
Recent robust analysis and design results for simple adaptive control Dimitri PEAUCELLE

Recent robust analysis and design results for simple adaptive control Dimitri PEAUCELLE

Recent robust analysis and design results for simple adaptive control Dimitri PEAUCELLE LAAS-CNRS - Universit e de Toulouse - FRANCE Cooperation program between CNRS, RAS and RFBR A. Fradkov, B. Andrievsky, P . Pakshin Introduction Simple

529 views • 19 slides
robust control for analysis and design of large-scale optimization algorithms Laurent Lessard

robust control for analysis and design of large-scale optimization algorithms Laurent Lessard

robust control for analysis and design of large-scale optimization algorithms Laurent Lessard University of WisconsinMadison Joint work with Ben Recht and Andy Packard LCCC Workshop on Large-Scale and Distributed Optimization Lund

435 views • 32 slides
Take Control Automated Control Industrial Engineering Industrial I.T. C/ Halcn n 20, 6H

Take Control Automated Control Industrial Engineering Industrial I.T. C/ Halcn n 20, 6H

Programming and Automation Ltd. www.proconingenieros.com Take Control Automated Control Industrial Engineering Industrial I.T. C/ Halcn n 20, 6H Granada. info@proconingenieros.com Automation and control Industrial I.T. - Industrial

304 views • 19 slides
Robust control of a risk-sensitive performance measure Paul Dupuis Division of Applied

Robust control of a risk-sensitive performance measure Paul Dupuis Division of Applied

Robust control of a risk-sensitive performance measure Paul Dupuis Division of Applied Mathematics Brown University R. Atar, A. Budhiraja, R. Wu ICERM, June 2019 Three settings for robust optimization/control Three settings for robust

505 views • 48 slides
Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary for a complete verification tool Allows objects in the verification environment to be extended Needs to express constraints Coverage

946 views • 80 slides
Fragility of controllers Robust and non-fragile control systems Robust and non-fragile control

Fragility of controllers Robust and non-fragile control systems Robust and non-fragile control

5/16/2018 2 1 Fragility of controllers Robust and non-fragile control systems Robust and non-fragile control systems 5/7/2018 5/7/2018 Any controller should be able to tolerate some uncertainty in its coefficients (stability and

352 views • 6 slides
What is Verification? Oded Maler CNRS-VERIMAG Grenoble, France Control from Computer Science

What is Verification? Oded Maler CNRS-VERIMAG Grenoble, France Control from Computer Science

What is Verification? Oded Maler CNRS-VERIMAG Grenoble, France Control from Computer Science Oded Maler Plan 1. Context: system design and mathematical models 2. Example: how to have a free coffee 3. Major issues in discrete verification

829 views • 54 slides
CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test,

CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test,

CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test, Fall 2006. 3 credits. Course Instructor: Dr. Jim Plusquellic, Professor of Computer Science & Electrical Engineering Office: ECS 212,

760 views • 3 slides
Scenario Optimization for Robust Design foundations and recent developments Giuseppe Carlo

Scenario Optimization for Robust Design foundations and recent developments Giuseppe Carlo

Scenario Optimization for Robust Design foundations and recent developments Giuseppe Carlo Calafiore Dipartimento di Elettronica e Telecomunicazioni Politecnico di Torino ITALY Learning for Control Workshop 2018 IEEE Conference on Decision

814 views • 54 slides
Robust Simple Adaptive Control with Relaxed Passivity and PID control of a Helicopter Benchmark

Robust Simple Adaptive Control with Relaxed Passivity and PID control of a Helicopter Benchmark

Robust Simple Adaptive Control with Relaxed Passivity and PID control of a Helicopter Benchmark Dimitri Peaucelle Vincent Mahout Boris Andrievsky Alexander Fradkov IFAC World Congress / Milano / August 28 - September 2, 2011 Introduction

334 views • 14 slides
Action Robust Reinforcement Learning and Applications in Continuous Control Chen Tessler *,

Action Robust Reinforcement Learning and Applications in Continuous Control Chen Tessler *,

Action Robust Reinforcement Learning and Applications in Continuous Control Chen Tessler *, Yonathan Efroni* and Shie Mannor *equal contribution Poster #272 Action Robust Reinforcement Learning and Applications in Continuous Control Robust MDPs

502 views • 8 slides
Event-Triggered Control Design with Performance Barrier Pio Ong and Jorge Cort es Mechanical

Event-Triggered Control Design with Performance Barrier Pio Ong and Jorge Cort es Mechanical

Event-Triggered Control Design with Performance Barrier Pio Ong and Jorge Cort es Mechanical and Aerospace Engineering University of California, San Diego http://carmenere.ucsd.edu/jorge 57th IEEE Conference on Decision and Control: Robust

1.93k views • 40 slides

More recommend