robustness in timed automata
play

Robustness in Timed Automata: Analysis, Synthesis, Implementation - PowerPoint PPT Presentation

Dec 23, 2022 •114 likes •1.01k views

Robustness in Timed Automata: Analysis, Synthesis, Implementation Ocan Sankur PhD Thesis Defense LSV, Ecole Normale Sup erieure de Cachan May 24, 2013 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 1 / 28 Real-Time

  1. Robustness in Timed Automata: Analysis, Synthesis, Implementation Ocan Sankur PhD Thesis Defense LSV, Ecole Normale Sup´ erieure de Cachan May 24, 2013 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 1 / 28

  2. Real-Time Systems Systems whose behaviors depend on real-time constraints, such as Robots, Car, train, airplane components, Biomedical systems (e.g. insuline pump), ... Developing correct real-time systems is difficult: formal verification Model-checking ? | = is reachable Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 2 / 28

  3. Robustness Model-checking is often used to validate abstract designs. Verify Implement Model Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 3 / 28

  4. Robustness Model-checking is often used to validate abstract designs. Verify Implement Model Model ≈ Implementation? Model: Implementation: Abstract, simplified measurement errors, Idealized: perfect unexpected input, measurements and hardware errors... timings Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 3 / 28

  5. Robustness Model-checking is often used to validate abstract designs. Verify Implement Model Model ≈ Implementation? Model: Implementation: Abstract, simplified measurement errors, Idealized: perfect unexpected input, measurements and hardware errors... timings Robustness The ability of a system to resist to errors upto some bound. Goal: Add robustness to model-checking of real-time systems. Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 3 / 28

  6. Real-Time System Example: Producer-Consumer ... frame 1 frame 2 frame 3 frame 4 frame 5 frame 6 enc 1 enc 2 enc 3 enc 4 enc 5 t 0 2 4 6 8 10 Components are abstracted as periodic events Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 4 / 28

  7. Real-Time System Example: Producer-Consumer ... frame 1 frame 2 frame 3 frame 4 frame 5 frame 6 enc 1 enc 2 enc 3 enc 4 enc 5 t 0 2 4 6 8 10 Components are abstracted as periodic events Property : No buffer overflow. Model-checking : � Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 4 / 28

  8. Real-Time System Example: Producer-Consumer ... frame 1 frame 2 frame 3 frame 4 frame 5 frame 6 enc 1 enc 2 enc 3 enc 4 t 0 2 4 6 8 10 Assume that the implementation of the encoder is slightly slower due to unexpected workload, wrong hardware specification, etc. Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 4 / 28

  9. Real-Time System Example: Producer-Consumer ... frame 1 frame 2 frame 3 frame 4 frame 5 frame 6 enc 1 enc 2 enc 3 enc 4 t 0 2 4 6 8 10 Overflow Assume that the implementation of the encoder is slightly slower due to unexpected workload, wrong hardware specification, etc. Under the slightest enlargement , the system is incorrect. The system is not robust to small increases in execution times. Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 4 / 28

  10. Real-Time System Example: Scheduling Scenario 0 1 2 3 4 5 6 7 A D E M 1 C B M 2 with the constraints: A → B , C → D , E . 1 A , D , E must be scheduled on machine M 1 , 2 B , C must be scheduled on machine M 2 , 3 C starts no sooner than 2 time units, Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 5 / 28

  11. Real-Time System Example: Scheduling Scenario 0 1 2 3 4 5 6 7 A D E M 1 C B M 2 with the constraints: A → B , C → D , E . 1 A , D , E must be scheduled on machine M 1 , 2 B , C must be scheduled on machine M 2 , 3 C starts no sooner than 2 time units, Goal: Analyse a work-conserving scheduling policy on a given scenario ( work-conserving: no machine is idle if a task is waiting for execution) Property : All tasks terminate in 6 time units Model-checking : � Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 5 / 28

  12. Real-Time System Example: Scheduling Scenario 0 1 2 3 4 5 6 7 A D E M 1 C B M 2 This cannot be an outcome of an algorithm (not work-conserving). � Unexpectedly � : duration of A is reduced to 1 . 999 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 5 / 28

  13. Real-Time System Example: Scheduling Scenario 0 1 2 3 4 5 6 7 8 A D E M 1 B C M 2 � Unexpectedly � : duration of A is reduced to 1 . 999 The best scheduling in this case takes 7 . 999 time units. The system is not robust to small decreases in execution times. Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 5 / 28

  14. Real-Time System Example: Scheduling Scenario 0 1 2 3 4 5 6 7 8 A D E M 1 B C M 2 � Unexpectedly � : duration of A is reduced to 1 . 999 The best scheduling in this case takes 7 . 999 time units. The system is not robust to small decreases in execution times. Next: Timed automata formalism to model real-time systems. Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 5 / 28

  15. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 Runs: time delays + discrete actions y ( ℓ 0 , 0 , 0) 2 1 0 x 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  16. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 Runs: time delays + discrete actions y 1 ( ℓ 0 , 0 , 0) → ( ℓ 0 , 1 , 1) − 2 1 0 x 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  17. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 Runs: time delays + discrete actions y 1 a ( ℓ 0 , 0 , 0) − → ( ℓ 0 , 1 , 1) − → ( ℓ 1 , 1 , 0) 2 1 0 x 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  18. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 Runs: time delays + discrete actions y 1 a ( ℓ 0 , 0 , 0) − → ( ℓ 0 , 1 , 1) − → ( ℓ 1 , 1 , 0) 0 . 6 → ( ℓ 1 , 1 . 6 , 0 . 6) b − − − → ( ℓ 2 , 0 , 0 . 6) 2 1 0 x 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  19. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 Runs: time delays + discrete actions y 1 a ( ℓ 0 , 0 , 0) − → ( ℓ 0 , 1 , 1) − → ( ℓ 1 , 1 , 0) 0 . 6 → ( ℓ 1 , 1 . 6 , 0 . 6) b − − − → ( ℓ 2 , 0 , 0 . 6) 2 1 0 x 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  20. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 Runs: time delays + discrete actions y 1 a ( ℓ 0 , 0 , 0) → ( ℓ 0 , 1 , 1) − − → ( ℓ 1 , 1 , 0) 0 . 6 → ( ℓ 1 , 1 . 6 , 0 . 6) b 1 . 8 − − − → ( ℓ 2 , 0 , 0 . 6) − − → 2 ( ℓ 2 , 1 . 8 , 2 . 4) c → ( ℓ 1 , 1 . 8 , 0) − 1 0 x 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  21. Timed Automata Timed automata = Finite automata + Analog clocks. [Alur and Dill 1994] x ≤ 2 , b , x ← 0 x = 1 , a , y ← 0 ℓ 0 ℓ 1 ℓ 2 y ≥ 2 , c , y ← 0 y Theorem - [Alur & Dill 1994] 2 Checking the existence of a run reaching a location, or satisfying a 1 B¨ uchi condition is PSPACE-comp. 0 x ◮ Efficient algorithms and tools. 0 1 2 Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 6 / 28

  22. Robustness in Timed Automata The semantics is idealistic Convenient for modeling and verification but not realistic: Clocks are perfectly continuous and can be read exactly Discrete actions are instantaneous No lower bounds on time between consecutive actions (infinite frequency) ◮ How does a timed automaton perform under different assumptions? ◮ Timed automaton (Design) ↔ Real-world system (Implementation)? Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 7 / 28

  23. Robustness in Timed Automata The semantics is idealistic Convenient for modeling and verification but not realistic: Clocks are perfectly continuous and can be read exactly Discrete actions are instantaneous No lower bounds on time between consecutive actions (infinite frequency) ◮ How does a timed automaton perform under different assumptions? ◮ Timed automaton (Design) ↔ Real-world system (Implementation)? In this thesis: Study of robustness in different models of perturbations of timings. Several methodologies to develop robust systems with timed automata. Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 7 / 28

  24. Overview Guard Enlargement 1 Robustness Analysis Robust Implementation Robust Controller Synthesis Guard Shrinking 2 Robustness Analysis The Shrinktech Tool Robust B¨ uchi Acceptance Ocan Sankur (ENS Cachan) Robustness in Timed Automata May 24, 2013 8 / 28

  25. Overview Guard Enlargement 1 Robustness Analysis Robust Implementation Robust Controller Synthesis Guard Shrinking 2 Robustness Analysis The Shrinktech Tool Robust B¨ uchi Acceptance

Recommend

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A UPPAAL Tutorial & Verification Problems Data stuctures & central algorithms UPPAAL input languages 1 2 Timed Automata: Syntax

408 views • 11 slides
Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt

Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt

Formalized Timed Automata Simon Wimmer Fakultt fr Informatik, Technische Universitt Mnchen ITP Talk on August 24, 2016 Timed Automata Timed Automata (TA) Finite Automata with clocks Clock guards on transitions and clock

735 views • 35 slides
Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software

Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software

Seminar: Automata Theory Timed Automata Jennifer Nist 11 th February 2016 Chair of Software Engineering Albert-Ludwigs Universit at Freiburg 11 th February 2016 Jennifer Nist Timed Automata 1 / 28 Outline 1 Timed Automata 2 Timed Language

676 views • 30 slides
Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science

Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science

Timed Transition Systems Timed Automata Networks of Timed Automata Regions and Region Graph Equivalence Checking Problems Timed Automata and Logics for Real-time Systems Luca Aceto ICE-TCS, School of Computer Science Reykjavik University,

1.12k views • 65 slides
Decomposition of Weighted Timed Automata Vitaly Perevo shchi kov she (joint work with

Decomposition of Weighted Timed Automata Vitaly Perevo shchi kov she (joint work with

Decomposition of Weighted Timed Automata Vitaly Perevo shchi kov she (joint work with Manfred Droste) Leipzig University, QuantLA FFM 2015 Timed automata 1 Nondeterministic finite automata A with clocks a , x 2, y 0 Edges: a

374 views • 36 slides
Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Timed Transition Systems Timed Automata Networks of Timed Automata Equivalence Checking Problems Regions and Region Graph Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition systems with time

1.21k views • 62 slides
Abstractions for timed automata B. Srivathsan Chennai Mathematical Institute Joint work with F.

Abstractions for timed automata B. Srivathsan Chennai Mathematical Institute Joint work with F.

Abstractions for timed automata B. Srivathsan Chennai Mathematical Institute Joint work with F. Herbreteau, I. Walukiewicz (LaBRI, Bordeaux) 1 / 35 Reachability for timed automata Observation 1 Observation 2 2 / 35 Timed Automata q 2 ( y

1.71k views • 131 slides
The Timestamp of Timed Automata Amnon Rosenmann Graz University of Technology

The Timestamp of Timed Automata Amnon Rosenmann Graz University of Technology

The Timestamp of Timed Automata Amnon Rosenmann Graz University of Technology rosenmann@math.tugraz.at Amnon Rosenmann (TU Graz) The Timestamp of Timed Automata 1 / 30 Introduction Timed automata (TA) are finite automata extended with clocks

1.02k views • 30 slides
Efficient Emptiness Check for Timed B uchi Automata F. Herbreteau, B. Srivathsan and I.

Efficient Emptiness Check for Timed B uchi Automata F. Herbreteau, B. Srivathsan and I.

Efficient Emptiness Check for Timed B uchi Automata F. Herbreteau, B. Srivathsan and I. Walukiewicz Universit e de Bordeaux, LaBRI - CNRS August 2010 Efficient Emptiness Check for Timed B uchi Automata - 1/24 Timed B uchi Automata

653 views • 54 slides
A Nivat Theorem for Weighted Timed Automata and Weighted Relative Distance Logic Manfred Droste

A Nivat Theorem for Weighted Timed Automata and Weighted Relative Distance Logic Manfred Droste

A Nivat Theorem for Weighted Timed Automata and Weighted Relative Distance Logic Manfred Droste and Vitaly Perevoshchikov Leipzig University ICALP, Track B 9 th of July 2014 Timed automata 1 Nondeterministic finite automata A with clocks a ,

947 views • 32 slides
Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI,

Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI,

Lazy abstractions for timed automata F. Herbreteau 1 , B. Srivathsan 2 , I. Walukiewicz 1 LaBRI, Universit e Bordeaux 1 Software modeling and verification group, RWTH-Aachen MOVES Seminar, March 2013 Lazy abstractions for timed automata -

609 views • 60 slides
Coinduction in concurrent timed systems Jan Komenda Institute of Mathematics, Czech Academy of

Coinduction in concurrent timed systems Jan Komenda Institute of Mathematics, Czech Academy of

Mealy and weighted automata as coalgebras Functional stream calculus (max,+)-automata and timed automata Synchronous composition Produc Coinduction in concurrent timed systems Jan Komenda Institute of Mathematics, Czech Academy of Sciences,

573 views • 43 slides
Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed

Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed

Are Timed Automata Bad for a Specification Language? Language Inclusion Checking for Timed Automata Contributors Ting Wang, Zhejiang University Jun Sun, SUTD Yang Liu, NTU Xinyu Wang, Zhejiang University Shanping Li, Zhejiang University

706 views • 41 slides
Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018

Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018

Decidability of Timed Communicating Automata L. Clemente, University of Warsaw Praha, July 2018 Summary 1. The model: Timed communicating automata (TCA). 2. The problem: control-state reachability. 3. Solution technique: quantifier

263 views • 24 slides
News on Safety Properties for Timed Petri Nets Patrick Totzke Edinburgh 2018-09-24 1 / 15 2 /

News on Safety Properties for Timed Petri Nets Patrick Totzke Edinburgh 2018-09-24 1 / 15 2 /

News on Safety Properties for Timed Petri Nets Patrick Totzke Edinburgh 2018-09-24 1 / 15 2 / 15 Networks of Timed Automata - a (finite-state) control program ( S ) - K indistinguishable d -clock Timed Automata ( C ) 2 / 15 Networks of Timed

1.58k views • 121 slides
Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification

Real-time Model Checking Priced timed automata Nicolas M ARKEY Lav. Sp ecification & V erification CNRS & ENS Cachan France March 3, 2010 Time is not always sufficient Timed automata are (rather) well understood

1.58k views • 129 slides
On Interleaving in Timed Automata Oded Maler, Marius Bozga, Ramzi Ben Salah VERIMAG 24th August

On Interleaving in Timed Automata Oded Maler, Marius Bozga, Ramzi Ben Salah VERIMAG 24th August

On Interleaving in Timed Automata Oded Maler, Marius Bozga, Ramzi Ben Salah VERIMAG 24th August 2006 Introduction Exploring the state space of Timed Automata is important (circuits timing analysis, scheduling, etc). However, its a very

657 views • 37 slides
01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and

01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and

01/07/2010 Two Parallel Stories Timed and Hybrid Automata Symbolic model checking: Timed and hybrid systems: -abstract data type region algebra yp g g specific region algebra p g g -termination analysis (e.g. clock regions, polyhedra)

807 views • 49 slides
Topics in Timed Automata B. Srivathsan RWTH-Aachen Software modeling and Verification group

Topics in Timed Automata B. Srivathsan RWTH-Aachen Software modeling and Verification group

Topics in Timed Automata B. Srivathsan RWTH-Aachen Software modeling and Verification group 1/29 Theorem (Lecture 2) Deterministic timed automata are closed under complement 2/29 Theorem (Lecture 2) Deterministic timed automata are closed under

654 views • 50 slides
Timed pushdown automata and branching vector addition systems S awomir Lasota University of

Timed pushdown automata and branching vector addition systems S awomir Lasota University of

Timed pushdown automata and branching vector addition systems S awomir Lasota University of Warsaw joint work with Lorenzo Clemente, Filip Mazowiecki and Ranko Lazic AVERTS 2016, Chennai 1 Definable sets offer a right setting for timed

2.11k views • 181 slides
A Concurrency-Preserving Translation from Time Petri Nets to Networks of Timed Automata Sandie

A Concurrency-Preserving Translation from Time Petri Nets to Networks of Timed Automata Sandie

A Concurrency-Preserving Translation from Time Petri Nets to Networks of Timed Automata Sandie Balaguer, Thomas Chatain, Stefan Haar LSV ENS Cachan, INRIA, CNRS France ACTS January 28, 2011 Introduction 1 Motivation Timed and

684 views • 50 slides
Timed automata with diagonal constraints B. Srivathsan Chennai Mathematical Institute, India In

Timed automata with diagonal constraints B. Srivathsan Chennai Mathematical Institute, India In

Timed automata with diagonal constraints B. Srivathsan Chennai Mathematical Institute, India In this lecture, we will consider timed automata that can additionally take guards of the form x y 5, z x > 20, etc. Such guards are

346 views • 5 slides
Scheduling Optim al & Real Tim e using CORA CORA CORA Overview Timed Automata &

Scheduling Optim al & Real Tim e using CORA CORA CORA Overview Timed Automata &

Model Checking Technology Scheduling Optim al & Real Tim e using CORA CORA CORA Overview Timed Automata & Scheduling Informationsteknologi Priced Timed Automata and Optimal Scheduling Optimal Infinite Scheduling

1.04k views • 76 slides
Robustness issues in timed models Nicolas Markey LSV, CNRS & ENS Cachan, France (based on

Robustness issues in timed models Nicolas Markey LSV, CNRS & ENS Cachan, France (based on

Robustness issues in timed models Nicolas Markey LSV, CNRS & ENS Cachan, France (based on joint works with Patricia Bouyer, Erwin Fang, Pierre-Alain Reynier, Ocan Sankur) (also starring Martin De Wulf, Laurent Doyen, Jean-Fran cois

1.37k views • 102 slides

More recommend