pruning nested dfs for parametric timed automata
play

PRUNING NESTED-DFS FOR PARAMETRIC TIMED AUTOMATA LAURE PETRUCCI - PowerPoint PPT Presentation

May 23, 2023 •34 likes •204 views

PRUNING NESTED-DFS FOR PARAMETRIC TIMED AUTOMATA LAURE PETRUCCI & JACO VAN DE POL CNRS/LIPN, PARIS 13 DEPT. OF CS, AARHUS AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE PARAMETRIC TIMED

  1. PRUNING NESTED-DFS FOR PARAMETRIC TIMED AUTOMATA LAURE PETRUCCI & JACO VAN DE POL CNRS/LIPN, PARIS 13 DEPT. OF CS, AARHUS AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE

  2. PARAMETRIC TIMED AUTOMATA ALUR, HENZINGER, VARDI [STOC 1993] Design of real-time systems Analysis and Synthesis  Locations, transitions Clocks  Reachability of locations   Guards  For all parameters  Invariants  Synthesise correct parameters x>d x <= c Resets Synthesise optimal parameters   y:=0 [TACAS 2019! Bloemen et al.]  Parameters Safety and Liveness properties (LTL)  Networks of PTA (as in Imitator) Parametric verification  Communicating automata   Synthesise correct parameters  Discrete variables Urgent locations  Note: everything is undecidable…  AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 2

  3. BOUNDED RETRANSMISSION PROTOCOL PEDRO D’ARGENIO, JOOST-PIETER KATOEN, THEO RUYS, JAN TRETMANS [TACAS 1997] Rfst Sok Rinc Sin Sdk Rok Bits: Snok Rnok • b1, bN: first/last rcvD sndD Lossy • ab: alternating bit Sender Receiver Channel rcvA sndA (TD sec) Integers: • i: frame number • rc: # retries Timing Parameters: TD: max delivery channel • TS: waiting time Sender • Clocks: TR: waiting time Receiver • • x: sender SYNC: Sender catch up • • z: receiver AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 3

  4. SYMBOLIC ZONE GRAPH Semantics of Timed Automata: x>d PTA:  Timed Transition System x <= c y:=0 (uncountably infinite) Finite abstraction:  Zone Automaton (extrapolation) PZG: x > d & x = y &  Efficient DBM representation (x-y < 3) d <= c & x <= c x-y > d PTA case:  Parametric Zone Graph (PZG): (t, 𝑎)  Representation: Polyhedra PC: True d<=c  Projection: Parametric Constraint ( 𝑎 ↓ � )  Note: PZG can become infinite AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 4

  5. LINEAR-TIME TEMPORAL LOGIC AMIR PNUELI [1977], COURCOUBETIS, VARDI, WOLPER, YANNAKAKIS [FMSD 1992] LTL properties:  Properties on execution paths through the system GF S_in  Expressivity: safety and liveness properties  We restrict to properties over transition labels Method: 1. Take the negation of the LTL property 2. Transform it into a Büchi Automaton (in Spot) 3. Add this automaton as a component in Imitator Correctness:  Every infinite run through the product is:  An infinite run in the original system  An infinite run through the Büchi automaton Büchi automaton for the negation  Accepting runs = counter examples  No accepting runs = LTL property holds AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 5

  6. NESTED DEPTH-FIRST SEARCH dfsblue(s): dfsred(s): s.color1 := cyan s.color2 := red for t in s.next do for t in s.next do if t.color1 == white if t.color1==cyan Blue search then dfsblue(t) then CYCLE if s.accepting if t.color2 == white Accepting states then dfsred(s) then dfsred(t) Bug found! s.color1 := blue Red search AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 6

  7. SUBSUMPTION AND LTL FOR TIMED AUTOMATA ALFONS LAARMAN, MADS OLESEN, ANDREAS DALSGAARD, KIM LARSEN, JVDP [CAV 2013] ( , � ) ( , � ) if � � Subsumption is: • Sound for reachability Theorem : an accepting cycle on • Unsound for liveness: can be always be simulated by an • Introduces cycles! accepting cycle on AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 7

  8. PRUNING NDFS WITH SUBSUMPTION Notes: dfsblue(s): dfsred(s): • If in the red search we s.color1 := cyan s.color2 := red encounter a state that for t in s.next do for t in s.next do subsumes a cyan state, if t.color1 == white if then we can already report then CYCLE & an accepting cycle if • If we encounter a state that then dfsblue(t) is subsumed by a red state , & 𝒒 = if s.accepting 𝒒 we can backtrack, since we then dfsred(t) then dfsred(s) would not find a new cycle s.color1 := blue • We can restrict the red search to the same layer, since parameters can never increase again AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 8

  9. OPPORTUNITIES FOR PRUNING NESTED-DFS BEZDEK, BENES, BARNAT, CERNÁ [SEFM 2016], GIA NGUYEN, LAURE PETRUCCI, JVDP [ICECCS 2018] Prune using the collected constraints [collecting] • Assume: so far we found parametric constraints C • Assume: current state’s parametric constraint s is subsumed by C •  search from s will not contribute to C Prune or prioritize based on decreasing parametric constraint [layered] • Assume: parametric constraint strictly decreases along some transition •  this transition cannot be on a cycle: abort the red search •  safe to postpone this transition in blue search: layering algorithm Prune based on subsumption by previous states [subsumption] •  prune blue search on states that are subsumed by red states •  prune red search on states that subsume cyan states (spiral  cycle) AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 9

  10. COLLECTING AND LAYERED NDFS Notes: dfsblue(s): dfsred(s): if Constr s.color2 := red 𝒒 • We collect all constraints for t in s.next do s.color1 := cyan that lead to an accepting if for t in s.next do cycle then Constr += if • We can prune states 𝒒 𝒒 𝒒 if contained in the constraint, then Pending += t since they cannot contribute & 𝒒 = else if t.color1 == white 𝒒 to the constraint & then dfsred(t) • Heuristic: all states in the then dfsblue(t) next parametric layer can if s.accepting Main loop: be safely postponed in the then dfsred(s) while s from Pending: pending list s.color1 := blue dfsblue(s) AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 10

  11. OTHER SEARCH STRATEGIES HERBRETEAU, SRIVATHSAN, TRAN, WALUKIEWICZ [FSTTCS 2016], ÉTIENNE ANDRÉ, GIA NGUYEN, LAURE PETRUCCI [ICECCS 2017] Search strategy matters for effective subsumption  BFS tends to find “large” zones earlier Priority queue for frontier of next states   For NDFS:  at least reorder successor states for layered NDFS: reorder the Pending set  Abstraction & Refinement  Search accepting cycles in abstract PZG No cycles: LTL formula holds   Cycle found? Refine search (per SCC) AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 11

  12. IMITATOR BENCHMARK (ICECCS 2018) AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 12

  13. NEW RESULTS ON IMITATOR BENCHMARKS NDFS sub NDFS layer NDFS collect Layers + Pruning Solved!! Critical XXX XXX XXX Solved!! F4 XXX 0.007 0.006 Solved!! JLR13 XXX XXX XXX Sched2.50.2 0.011 XXX XXX XXX Relatively simple ideas:  Giving priority to accepting successors  Checking for self-loops  Handling “early termination” cases  Cyan successor is accepting AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 13

  14. RESULTS ON BRP: REACHABILITY  Imitator (with –incl and –merge) can easily generate constraints for timing parameters Imitator cannot handle discrete parameters like “number of retries”, “length of message”    sharper bounds than in original paper [d’Argenio, TACAS 1997] Original constraints: T1 > 2.TD && SYNC >= TR > 2.MAX.T1 + 3.TD Instantiated for MAX=2: T1 > 2.TD && SYNC >= TR > 4.T1 + 3.TD (1) Imitator result (MAX=2): T1 > 2.TD && SYNC + T1 >= TR + TD && TR > 4.T1 + 3.TD (2) Note: (1) implies (2), but (2) does not imply (1), so Imitator found more solutions AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 14

  15. RESULTS ON BRP: REACHABILITY BY LTL  All old approaches fail NDFS + subsumption /collecting / layering: cannot handle the simplest case  NDFS + subsumption + dedicated pruning: finds some constraints  NDFS + abstraction refinement: finds more constraints (maybe all)  1. Run NDFS on full subsumption (unsound for counter-examples) 2. Confirm found counter-examples 3. Add negation of found constraints to the initial state, and rerun the procedure On arbitrary LTL formulas (e.g. GF S_in): currently unsuccessful…  AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 15

  16. CONCLUSION Herbretau et al.: LTL model checking for TAs is inherently harder than Reachability The reachability problem for PTAs is already undecidable What can we expect?  We have improved search space pruning We can still explore more search order heuristics (like layering, priorities, BMC)   We will further explore Abstraction Refinement, including acceleration techniques Currently, Bounded Retransmission Protocol as a (modest) challenge AARHUS SYNCOP JACO VAN DE POL UNIVERSITY 7 APRIL 2019 PROFESSOR DEPARTMENT OF COMPUTER SCIENCE 16

  17. AARHUS UNIVERSITY

Recommend

Reachability In Parametric Timed Automata With Two Parametric Clocks And One Parameter Is

Reachability In Parametric Timed Automata With Two Parametric Clocks And One Parameter Is

Introduction Upper Bound Lower Bound Reachability In Parametric Timed Automata With Two Parametric Clocks And One Parameter Is EXPSPACE-complete Mathieu Hilaire Paris-Saclay University, LSV, France joint work with Stefan G oller MOVEP

532 views • 51 slides
Nested Timed Automata Guoqiang Li Shanghai Jiao Tong University Feb. 9, 2014 Guoqiang LI | Feb.

Nested Timed Automata Guoqiang Li Shanghai Jiao Tong University Feb. 9, 2014 Guoqiang LI | Feb.

Nested Timed Automata Guoqiang Li Shanghai Jiao Tong University Feb. 9, 2014 Guoqiang LI | Feb. 9, 2014 1 / 32 Joint work with Xiaojuan Cai, Mizuhito Ogawa and Shoji Yuen. Guoqiang LI | Feb. 9, 2014 2 / 32 Motivation Hybrid automata extend

1.08k views • 63 slides
TCTL model checking lower/upper-bound Introduction parametric timed automata without Parametric

TCTL model checking lower/upper-bound Introduction parametric timed automata without Parametric

TCTL model checking lower/upper-bound parametric timed automata without invariants TCTL model checking lower/upper-bound Introduction parametric timed automata without Parametric timed automata invariants Model checking with unknown

476 views • 33 slides
Tutorial on Parametric Timed Automata for RT Scheduling Examples of scheduling models Giuseppe

Tutorial on Parametric Timed Automata for RT Scheduling Examples of scheduling models Giuseppe

Tutorial on Parametric Timed Automata for RT Scheduling Examples of scheduling models Giuseppe Lipari and tienne Andr CRIStAL - Universit de Lille Outline Models Example 1: response time calculation Example 2: Sensitivity on

555 views • 27 slides
OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A UPPAAL Tutorial &amp; Verification Problems Data stuctures &amp; central algorithms UPPAAL input languages 1 2 Timed Automata: Syntax

408 views • 11 slides
MTL-Model Checking of One-Clock Parametric Timed Automata is Undecidable SynCop 2014 1st

MTL-Model Checking of One-Clock Parametric Timed Automata is Undecidable SynCop 2014 1st

MTL-Model Checking of One-Clock Parametric Timed Automata is Undecidable SynCop 2014 1st International Workshop on Synthesis of Continuous Parameters Karin Quaas University of Leipzig 6th April 2014 Outline of the Talk param param param

340 views • 23 slides
Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt

Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt

Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt Mnchen ITP Talk on August 24, 2016 Timed Automata Timed Automata (TA) Finite Automata with clocks Clock guards on transitions and clock

735 views • 35 slides
Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software

Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software

Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software Engineering Albert-Ludwigs Universit at Freiburg 11 th February 2016 Jennifer Nist Timed Automata 1 / 28 Outline 1 Timed Automata 2 Timed Language

676 views • 30 slides
Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science

Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science

Timed Transition Systems Timed Automata Networks of Timed Automata Regions and Region Graph Equivalence Checking Problems Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science Reykjavik University,

1.12k views • 65 slides
Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and

Nested Word Automata Jens Stimpfle 30.6.2014 Nested Words Nested Words Theoretically and practically pleasant model for the representation of data with both: a linear ordering a hierarchically nested matching Nested Words

796 views • 58 slides
Decomposition of Weighted Timed Automata Vitaly Perevo shchi kov she (joint work with

Decomposition of Weighted Timed Automata Vitaly Perevo shchi kov she (joint work with

Decomposition of Weighted Timed Automata Vitaly Perevo shchi kov she (joint work with Manfred Droste) Leipzig University, QuantLA FFM 2015 Timed automata 1 Nondeterministic finite automata A with clocks a , x 2, y 0 Edges: a

374 views • 36 slides
Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Timed Transition Systems Timed Automata Networks of Timed Automata Equivalence Checking Problems Regions and Region Graph Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition systems with time

1.21k views • 62 slides
Abstractions for timed automata B. Srivathsan Chennai Mathematical Institute Joint work with F.

Abstractions for timed automata B. Srivathsan Chennai Mathematical Institute Joint work with F.

Abstractions for timed automata B. Srivathsan Chennai Mathematical Institute Joint work with F. Herbreteau, I. Walukiewicz (LaBRI, Bordeaux) 1 / 35 Reachability for timed automata Observation 1 Observation 2 2 / 35 Timed Automata q 2 ( y

1.71k views • 131 slides
The Timestamp of Timed Automata Amnon Rosenmann Graz University of Technology

The Timestamp of Timed Automata Amnon Rosenmann Graz University of Technology

The Timestamp of Timed Automata Amnon Rosenmann Graz University of Technology rosenmann@math.tugraz.at Amnon Rosenmann (TU Graz) The Timestamp of Timed Automata 1 / 30 Introduction Timed automata (TA) are finite automata extended with clocks

1.02k views • 30 slides
Efficient Emptiness Check for Timed B uchi Automata F. Herbreteau, B. Srivathsan and I.

Efficient Emptiness Check for Timed B uchi Automata F. Herbreteau, B. Srivathsan and I.

Efficient Emptiness Check for Timed B uchi Automata F. Herbreteau, B. Srivathsan and I. Walukiewicz Universit e de Bordeaux, LaBRI - CNRS August 2010 Efficient Emptiness Check for Timed B uchi Automata - 1/24 Timed B uchi Automata

653 views • 54 slides
A Nivat Theorem for Weighted Timed Automata and Weighted Relative Distance Logic Manfred Droste

A Nivat Theorem for Weighted Timed Automata and Weighted Relative Distance Logic Manfred Droste

A Nivat Theorem for Weighted Timed Automata and Weighted Relative Distance Logic Manfred Droste and Vitaly Perevoshchikov Leipzig University ICALP, Track B 9 th of July 2014 Timed automata 1 Nondeterministic finite automata A with clocks a ,

947 views • 32 slides
Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI,

Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI,

Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI, Universit e Bordeaux 1 Software modeling and verification group, RWTH-Aachen MOVES Seminar, March 2013 Lazy abstractions for timed automata -

609 views • 60 slides
Coinduction in concurrent timed systems Jan Komenda Institute of Mathematics, Czech Academy of

Coinduction in concurrent timed systems Jan Komenda Institute of Mathematics, Czech Academy of

Mealy and weighted automata as coalgebras Functional stream calculus (max,+)-automata and timed automata Synchronous composition Produc Coinduction in concurrent timed systems Jan Komenda Institute of Mathematics, Czech Academy of Sciences,

573 views • 43 slides
Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed

Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed

Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed Automata Contributors Ting Wang, Zhejiang University Jun Sun, SUTD Yang Liu, NTU Xinyu Wang, Zhejiang University Shanping Li, Zhejiang University

706 views • 41 slides
Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018

Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018

Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018 Summary 1. The model: Timed communicating automata (TCA). 2. The problem: control-state reachability. 3. Solution technique: quantifier

263 views • 24 slides
News on Safety Properties for Timed Petri Nets Patrick Totzke Edinburgh 2018-09-24 1 / 15 2 /

News on Safety Properties for Timed Petri Nets Patrick Totzke Edinburgh 2018-09-24 1 / 15 2 /

News on Safety Properties for Timed Petri Nets Patrick Totzke Edinburgh 2018-09-24 1 / 15 2 / 15 Networks of Timed Automata - a (finite-state) control program ( S ) - K indistinguishable d -clock Timed Automata ( C ) 2 / 15 Networks of Timed

1.58k views • 121 slides
Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification &amp; V erification CNRS &amp; ENS Cachan France March 3, 2010 Time is not always sufficient Timed automata are (rather) well understood

1.58k views • 129 slides
On Interleaving in Timed Automata Oded Maler, Marius Bozga, Ramzi Ben Salah VERIMAG 24th August

On Interleaving in Timed Automata Oded Maler, Marius Bozga, Ramzi Ben Salah VERIMAG 24th August

On Interleaving in Timed Automata Oded Maler, Marius Bozga, Ramzi Ben Salah VERIMAG 24th August 2006 Introduction Exploring the state space of Timed Automata is important (circuits timing analysis, scheduling, etc). However, its a very

657 views • 37 slides
01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and

01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and

01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and hybrid systems: -abstract data type region algebra yp g g specific region algebra p g g -termination analysis (e.g. clock regions, polyhedra)

807 views • 49 slides

More recommend