robust model checking of timed automata
play

Robust Model-Checking of Timed Automata Ocan Sankur 1 2 March - - PowerPoint PPT Presentation

Feb 08, 2023 •476 likes •1.09k views

Robust Model-Checking of Timed Automata Ocan Sankur 1 2 March - September 2010 (Joint work with Patricia Bouyer-Decitre 2 and Nicolas Markey 2 ) 1 Ecole Normale Sup erieure, Paris 2 LSV, CNRS & Ecole Normale Sup erieure de

  1. Robust Model-Checking of Timed Automata Ocan Sankur 1 2 March - September 2010 (Joint work with Patricia Bouyer-Decitre 2 and Nicolas Markey 2 ) 1 ´ Ecole Normale Sup´ erieure, Paris 2 LSV, CNRS & ´ Ecole Normale Sup´ erieure de Cachan Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 1 / 15

  2. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  3. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  4. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  5. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Exact semantics of TA Given a TA A , the the exact semantics of A is denoted by � A � . Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  6. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Exact semantics of TA Given a TA A , the the exact semantics of A is denoted by � A � . A run of � A � is as follows. ( q 0 , ( x = 0 , y = 0)) Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  7. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Exact semantics of TA Given a TA A , the the exact semantics of A is denoted by � A � . A run of � A � is as follows. ( q 0 , ( x = 0 , y = 0)) 1 . 7 − − → ( q 0 , ( x = 1 . 7 , y = 1 . 7)) Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  8. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Exact semantics of TA Given a TA A , the the exact semantics of A is denoted by � A � . A run of � A � is as follows. ( q 0 , ( x = 0 , y = 0)) 1 . 7 → ( q 0 , ( x = 1 . 7 , y = 1 . 7)) a − − − → ( q 1 , ( x = 0 , y = 1 . 7)) Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  9. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Exact semantics of TA Given a TA A , the the exact semantics of A is denoted by � A � . A run of � A � is as follows. ( q 0 , ( x = 0 , y = 0)) 1 . 7 → ( q 0 , ( x = 1 . 7 , y = 1 . 7)) a − − − → ( q 1 , ( x = 0 , y = 1 . 7)) 0 . 5 − − → ( q 1 , ( x = 0 . 5 , y = 2 . 2)) Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  10. Timed Automata (TA) Timed automata = Finite automata + Clocks. [Alur and Dill 1994] Clocks grow continuously, all at the same rate. They are used to (de)activate the transitions of the automaton and can be reset when taking a transition. a: x ≤ 2 / x := 0 c: x = 0& y ≥ 2 q 0 q 1 error start b: y ≥ 2 / y := 0 Exact semantics of TA Given a TA A , the the exact semantics of A is denoted by � A � . A run of � A � is as follows. ( q 0 , ( x = 0 , y = 0)) 1 . 7 → ( q 0 , ( x = 1 . 7 , y = 1 . 7)) a − − − → ( q 1 , ( x = 0 , y = 1 . 7)) 0 . 5 → ( q 1 , ( x = 0 . 5 , y = 2 . 2)) b − − − → ( q 0 , ( x = 0 . 5 , y = 0)) . . . Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 2 / 15

  11. Model-Checking Timed Automata Model-checking : Given a TA A , decide whether all runs of � A � verify some property P , written A | = P . Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 3 / 15

  12. Model-Checking Timed Automata Model-checking : Given a TA A , decide whether all runs of � A � verify some property P , written A | = P . where P is a LTL formula (such as a safety or liveness property). Theorem (Alur and Dill 1994) Model-checking timed-automata against LTL formulae is PSPACE -complete. Industrial applications: audio/video, communication protocols, ... Existing model-checking tools: Uppaal, Kronos, ... Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 3 / 15

  13. Implementability of Timed Automata Problem: The exact semantics of timed automata makes unrealistic assumptions: → 0 . 00001 a → b Systems have instant reaction time, − − − − − − → . clocks are infinitely precise. “ x ≤ k ”. Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 4 / 15

  14. Implementability of Timed Automata Problem: The exact semantics of timed automata makes unrealistic assumptions: → 0 . 00001 a → b Systems have instant reaction time, − − − − − − → . clocks are infinitely precise. “ x ≤ k ”. [De Wulf, Doyen and Raskin 2004] introduced the enlarged semantics of A , parameterized by δ > 0, taking into account these problems. � A � δ is obtained by relaxing all constraints by δ , i.e. each constraint of the form x ≤ k x ≥ k . Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 4 / 15

  15. Implementability of Timed Automata Problem: The exact semantics of timed automata makes unrealistic assumptions: → 0 . 00001 a → b Systems have instant reaction time, − − − − − − → . clocks are infinitely precise. “ x ≤ k ”. [De Wulf, Doyen and Raskin 2004] introduced the enlarged semantics of A , parameterized by δ > 0, taking into account these problems. � A � δ is obtained by relaxing all constraints by δ , i.e. each constraint of the form becomes x ≤ k + δ x ≥ k − δ. Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 4 / 15

  16. Implementability of Timed Automata Problem: The exact semantics of timed automata makes unrealistic assumptions: → 0 . 00001 a → b Systems have instant reaction time, − − − − − − → . clocks are infinitely precise. “ x ≤ k ”. [De Wulf, Doyen and Raskin 2004] introduced the enlarged semantics of A , parameterized by δ > 0, taking into account these problems. � A � δ is obtained by relaxing all constraints by δ , i.e. each constraint of the form becomes x ≤ k + δ x ≥ k − δ. ◮ This corresponds to the (over-approximation of the) implementation of A in a simple micro-processor model, with finite precision and a nonzero reaction time. Fast micro-processor ⇔ small δ . Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 4 / 15

  17. Robustness of Timed Automata - 2 For δ = 0 . 1, � A � δ is defined by, a: x ≤ 2 . 1 / x := 0 c: x ≤ 0 . 1& y ≥ 1 . 9 q 0 q 1 start error b: y ≥ 1 . 9 / y := 0 Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 5 / 15

  18. Robustness of Timed Automata - 2 For δ = 0 . 1, � A � δ is defined by, a: x ≤ 21 / x := 0 c: x ≤ 1& y ≥ 19 q 0 q 1 start error b: y ≥ 19 / y := 0 There is an equivalent timed automaton obtained by changing the scale of time (multiplying all constants by 10) - For fixed δ , � A � δ is the exact semantics of a timed automaton. Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 5 / 15

  19. Robustness in Timed Automata - 3 Robust model-checking Given A and a property P , does � A � δ verify P for some δ > 0? If it does, we write A | ≡ P . Ocan Sankur (ENS & ENS Cachan) Robust Model-Checking of Timed Automata September 7, 2010 6 / 15

Recommend

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A UPPAAL Tutorial & Verification Problems Data stuctures & central algorithms UPPAAL input languages 1 2 Timed Automata: Syntax

408 views • 11 slides
Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking

Statistical Statistical Statistical Model Statistical Model Model Checking Model Checking Checking Checking for Timed Automata Timed Automata Coll C l C ll b llabora orators: t ors: Peter Bulychev, Alexandre David Axel Legay, Marius

725 views • 59 slides
Directed Model Checking (not only) for Timed Automata Sebastian Kupferschmid March, 2010 Model

Directed Model Checking (not only) for Timed Automata Sebastian Kupferschmid March, 2010 Model

Directed Model Checking (not only) for Timed Automata Sebastian Kupferschmid March, 2010 Model Checking Motivation Embedded Systems Omnipresent Safety relevant systems Pentium bug Ariane 5 Errors can be extremely harmful Correct

837 views • 67 slides
Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification & V erification CNRS & ENS Cachan France March 3, 2010 Time is not always sufficient Timed automata are (rather) well understood

1.58k views • 129 slides
01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and

01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and

01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and hybrid systems: -abstract data type region algebra yp g g specific region algebra p g g -termination analysis (e.g. clock regions, polyhedra)

807 views • 49 slides
TCTL model checking lower/upper-bound Introduction parametric timed automata without Parametric

TCTL model checking lower/upper-bound Introduction parametric timed automata without Parametric

TCTL model checking lower/upper-bound parametric timed automata without invariants TCTL model checking lower/upper-bound Introduction parametric timed automata without Parametric timed automata invariants Model checking with unknown

476 views • 33 slides
MTL-Model Checking of One-Clock Parametric Timed Automata is Undecidable SynCop 2014 1st

MTL-Model Checking of One-Clock Parametric Timed Automata is Undecidable SynCop 2014 1st

MTL-Model Checking of One-Clock Parametric Timed Automata is Undecidable SynCop 2014 1st International Workshop on Synthesis of Continuous Parameters Karin Quaas University of Leipzig 6th April 2014 Outline of the Talk param param param

340 views • 23 slides
Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science

Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science

Timed Transition Systems Timed Automata Networks of Timed Automata Regions and Region Graph Equivalence Checking Problems Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science Reykjavik University,

1.12k views • 65 slides
Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed

Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed

Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed Automata Contributors Ting Wang, Zhejiang University Jun Sun, SUTD Yang Liu, NTU Xinyu Wang, Zhejiang University Shanping Li, Zhejiang University

706 views • 41 slides
Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the

Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the

Equivalence Checking Problems Regions Region Graph Networks of Timed Automata Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the reachability problem Networks of timed automata Model checking of timed

628 views • 30 slides
Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Timed Transition Systems Timed Automata Networks of Timed Automata Equivalence Checking Problems Regions and Region Graph Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition systems with time

1.21k views • 62 slides
Scheduling Optim al & Real Tim e using CORA CORA CORA Overview Timed Automata &

Scheduling Optim al & Real Tim e using CORA CORA CORA Overview Timed Automata &

Model Checking Technology Scheduling Optim al & Real Tim e using CORA CORA CORA Overview Timed Automata & Scheduling Informationsteknologi Priced Timed Automata and Optimal Scheduling Optimal Infinite Scheduling

1.04k views • 76 slides
Optimal and Robust controller Synthesis Using Energy Timed Automata with Uncertainty Giovanni

Optimal and Robust controller Synthesis Using Energy Timed Automata with Uncertainty Giovanni

Optimal and Robust controller Synthesis Using Energy Timed Automata with Uncertainty Giovanni Bacci, Patricia Bouyer, Uli Fahrenberg, Kim G. Larsen, Nicolas Markey, Pierre-Alain Reynier Presentation based on a paper accepted for publication at

672 views • 36 slides
Real-time Model Checking Timed Temporal Logics Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Timed Temporal Logics Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Timed Temporal Logics Nicolas M ARKEY Lav. Sp ecification & V erification CNRS & ENS Cachan France March 3, 2010 (Quantitative) Model checking system: property: Always ( safe )

1.28k views • 102 slides
Multi-core model checking for biological applications Jaco van de Pol 22 November 2013

Multi-core model checking for biological applications Jaco van de Pol 22 November 2013

UNIVERSITY OF TWENTE. Formal Methods & Tools. Multi-core model checking for biological applications Jaco van de Pol 22 November 2013 NWPT13, Tallinn ... Multi-core Reachability Multi-core LTL model checking Timed Automata

1.24k views • 119 slides
Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt

Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt

Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt Mnchen ITP Talk on August 24, 2016 Timed Automata Timed Automata (TA) Finite Automata with clocks Clock guards on transitions and clock

735 views • 35 slides
Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software

Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software

Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software Engineering Albert-Ludwigs Universit at Freiburg 11 th February 2016 Jennifer Nist Timed Automata 1 / 28 Outline 1 Timed Automata 2 Timed Language

676 views • 30 slides
UC UCb b 1 2 methods a b c 3 4 & Tools b c 3 4 UPPAAL Model 2 DISC Summer

UC UCb b 1 2 methods a b c 3 4 & Tools b c 3 4 UPPAAL Model 2 DISC Summer

UCb Validation & Verification Timed Automata Construction of UPPAAL models & Controller Program Plant Model Checking Discrete Continuous Using UPPAALx : x {1,2,3,4} sensors Task Task Task Task Model actuators of tasks

486 views • 11 slides
Verifying Timed Reachability Properties Lecture #17 of Advanced Model Checking Joost-Pieter

Verifying Timed Reachability Properties Lecture #17 of Advanced Model Checking Joost-Pieter

Verifying Timed Reachability Properties Lecture #17 of Advanced Model Checking Joost-Pieter Katoen Lehrstuhl 2: Software Modeling & Verification E-mail: katoen@cs.rwth-aachen.de June 30, 2014 c JPK Advanced model checking Timelock,

720 views • 31 slides
Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018

Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018

Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018 Summary 1. The model: Timed communicating automata (TCA). 2. The problem: control-state reachability. 3. Solution technique: quantifier

263 views • 24 slides
Towards efficient model checking for variants of ATL under different semantics Wojciech Penczek

Towards efficient model checking for variants of ATL under different semantics Wojciech Penczek

Specification of Strategic Abilities in ATL* Model checking Multi-Valued ATL* Partial order reductions for sATL* Simpler strategies for Timed ATL Conclusions Towards efficient model checking for variants of ATL under different semantics

1.1k views • 88 slides
Semantics and Verification 2005 Lecture 10 region graph and the reachability problem networks of

Semantics and Verification 2005 Lecture 10 region graph and the reachability problem networks of

Regions Region Graph Networks of Timed Automata Semantics and Verification 2005 Lecture 10 region graph and the reachability problem networks of timed automata model checking of timed automata Lecture 10 Semantics and Verification 2005

331 views • 15 slides
Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F.

Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F.

Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F. Raskin (ULB) TACAS 2007 Braga - Portugal March 28, 2007 Automata-based approach to model-checking Programs and properties are formalized as

812 views • 52 slides
Multi-Core Model Checking Alfons Laarman November 14, 2013 ... Introduction Reachability LTL

Multi-Core Model Checking Alfons Laarman November 14, 2013 ... Introduction Reachability LTL

UNIVERSITY OF TWENTE. Formal Methods & Tools. Multi-Core Model Checking Alfons Laarman November 14, 2013 ... Introduction Reachability LTL Timed Automata LTSmin Conclusions ... State Space Explosion An exponential problem

956 views • 80 slides

More recommend