towards physical hybrid systems
play

Towards Physical Hybrid Systems Katherine Cordwell and Andr Platzer - PowerPoint PPT Presentation

Mar 02, 2024 •153 likes •868 views

Towards Physical Hybrid Systems Katherine Cordwell and Andr Platzer Carnegie Mellon University August 29, 2019 This material is based upon work supported by the National Science Foundation Graduate Research Fellowship under Grant No.

  1. Towards Physical Hybrid Systems Katherine Cordwell and André Platzer Carnegie Mellon University August 29, 2019 This material is based upon work supported by the National Science Foundation Graduate Research Fellowship under Grant No. DGE-1252522. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the National Science Foundation or of any other sponsoring institution. This research was also sponsored by the AFOSR under grant number FA9550-16-1-0288 and by the Alexander von Humboldt Foundation. 1 / 1

  2. Safety-critical CPS • How do we know that cyber-physical systems (CPS) are functioning correctly? 2 / 1

  3. Safety-critical CPS • How do we know that cyber-physical systems (CPS) are functioning correctly? • First step: model your CPS • Hybrid systems model CPS 2 / 1

  4. Safety-critical CPS • How do we know that cyber-physical systems (CPS) are functioning correctly? • First step: model your CPS • Hybrid systems model CPS 2 / 1

  5. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  6. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  7. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  8. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  9. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  10. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  11. Then write hybrid systems in logic... ...with differential dynamic logic, perhaps? 3 / 1

  12. Problems? • The model could be overly permissive 4 / 1

  13. Problems? • The model could be overly permissive • Or the model could be overly strict 4 / 1

  14. Problems? • The model could be overly permissive • Or the model could be overly strict • Logic is precise, physical systems are not • Note that we absolutely want to have precise safety guarantees 4 / 1

  15. Math versus physics • How can models be too strict? 5 / 1

  16. Math versus physics • How can models be too strict? • Models can classify systems as being unsafe on minutely small sets 5 / 1

  17. Math versus physics • How can models be too strict? • Models can classify systems as being unsafe on minutely small sets • Is this realistic? 5 / 1

  18. Math versus physics • How can models be too strict? • Models can classify systems as being unsafe on minutely small sets • Is this realistic? • No! Even math allows more imprecision than models 5 / 1

  19. Math versus physics • How can models be too strict? • Models can classify systems as being unsafe on minutely small sets • Is this realistic? • No! Even math allows more imprecision than models • Does it matter? 5 / 1

  20. Math versus physics • How can models be too strict? • Models can classify systems as being unsafe on minutely small sets • Is this realistic? • No! Even math allows more imprecision than models • Does it matter? • Yes! Physically unrealistic counterexamples can distract from real unsafeties of a system 5 / 1

  21. Our Approach • We propose physical hybrid systems (PHS), which are systems that behave safely almost everywhere 6 / 1

  22. Our Approach • We propose physical hybrid systems (PHS), which are systems that behave safely almost everywhere • There are multiple ways to develop PHS 6 / 1

  23. Our Approach • We propose physical hybrid systems (PHS), which are systems that behave safely almost everywhere • There are multiple ways to develop PHS • Our first foray into PHS stays very close to the usual notion of safety 6 / 1

  24. Our Approach • We propose physical hybrid systems (PHS), which are systems that behave safely almost everywhere • There are multiple ways to develop PHS • Our first foray into PHS stays very close to the usual notion of safety 6 / 1

  25. Our Approach • We propose physical hybrid systems (PHS), which are systems that behave safely almost everywhere • There are multiple ways to develop PHS • Our first foray into PHS stays very close to the usual notion of safety 6 / 1

  26. Our Approach • We propose physical hybrid systems (PHS), which are systems that behave safely almost everywhere • There are multiple ways to develop PHS • Our first foray into PHS stays very close to the usual notion of safety • Our new logic (PdTL) is designed to ignore “very small”, meaningless sets of safety violations along the execution trace of a system. 6 / 1

  27. FAQ, anticipated • Why not ask the user to edit the models? 7 / 1

  28. FAQ, anticipated • Why not ask the user to edit the models? • PdTL is capturing something that is even closer to the normal notion of safety • Also, we don’t want to limit the models that a user can write 7 / 1

  29. FAQ, anticipated • Why not ask the user to edit the models? • PdTL is capturing something that is even closer to the normal notion of safety • Also, we don’t want to limit the models that a user can write • Why isn’t this just solved by robustness? 7 / 1

  30. Robustness • Safe up to small perturbations • Tool support, e.g. dReach 8 / 1

  31. Robustness • Safe up to small perturbations • Tool support, e.g. dReach • Models of CPS can and should be robust 8 / 1

  32. Robustness • But robustness is only one piece of the puzzle. We’re trying to do something different. 9 / 1

  33. Robustness • But robustness is only one piece of the puzzle. We’re trying to do something different. 9 / 1

  34. Robustness • But robustness is only one piece of the puzzle. We’re trying to do something different. • Also, robustness often requires a reachability analysis and can be more limited in scope (no induction!) 9 / 1

  35. Let’s talk PdTL • Physical differential temporal dynamic logic (PdTL) extends dTL extends dL • dTL rigorizes execution traces 10 / 1

  36. Formulas in dTL (and PdTL!) • State formulas • Evaluated in a state (at a snapshot in time) 11 / 1

  37. Formulas in dTL (and PdTL!) • State formulas • Evaluated in a state (at a snapshot in time) • States map variables to R 11 / 1

  38. Formulas in dTL (and PdTL!) • Trace formulas • State formulas • Evaluated along • Evaluated in a state execution traces (at a snapshot in (sequences of time) functions mapping • States map intervals to states) variables to R 11 / 1

  39. Traces in PdTL 12 / 1

  40. PdTL • Trace semantics • The same as in dTL, except we allow Carathéodory solutions to ODEs 13 / 1

  41. PdTL • Trace semantics • The same as in dTL, except we allow Carathéodory solutions to ODEs • Formulas • The same state formulas as dTL • Instead of dTL’s trace formulas, use � tae 13 / 1

  42. PdTL • Trace semantics • The same as in dTL, except we allow Carathéodory solutions to ODEs • Formulas • The same state formulas as dTL • Instead of dTL’s trace formulas, use � tae • Intuitively, σ | = � tae φ means φ holds except at only a “small” set of positions along the trace 13 / 1

  43. PdTL • Trace semantics • The same as in dTL, except we allow Carathéodory solutions to ODEs • Formulas • The same state formulas as dTL • Instead of dTL’s trace formulas, use � tae • Intuitively, σ | = � tae φ means φ holds except at only a “small” set of positions along the trace • Measure zero: mathematically rigorous notion of a very small set 13 / 1

  44. PdTL • How to get a measure on a trace? Map it to R σ = ( σ 0 , σ 1 , . . . , σ n ) positions (1 , 0) , . . . , (1 , r 1 ) positions (0 , 0) , . . . , (0 , r 0 ) positions ( n, 0) , . . . , ( n, r n ) . . . r 0 n − 1 n 0 1 + r 0 1 + r 0 + r 1 X X n + n + r k r k k =0 k =0 14 / 1

  45. PdTL • For σ | = � tae φ to hold: • Need φ to be satisfied at almost all positions along the trace (continuous condition) 15 / 1

  46. PdTL • For σ | = � tae φ to hold: • Need φ to be satisfied at almost all positions along the trace (continuous condition) • On discrete portions of the trace, need φ to almost hold (discrete condition) 15 / 1

  47. PdTL • For σ | = � tae φ to hold: • Need φ to be satisfied at almost all positions along the trace (continuous condition) • On discrete portions of the trace, need φ to almost hold (discrete condition) 15 / 1

  48. Compelling logical properties • Conservative extension of dL 16 / 1

  49. Compelling logical properties • Conservative extension of dL • A proof calculus that is designed to: • Remove instances of � tae when possible [? P ] � tae φ ↔ φ 16 / 1

  50. Compelling logical properties • Conservative extension of dL • A proof calculus that is designed to: • Remove instances of � tae when possible [? P ] � tae φ ↔ φ • Reduce complicated formulas to structurally simpler formulas [ α ∪ β ] � tae φ ↔ [ α ] � tae φ ∧ [ β ] � tae φ 16 / 1

Recommend

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems - Hybrid Automata

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems - Hybrid Automata

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems - Hybrid Automata Hao Zheng Department of Computer Science and Engineering University of South Florida Ref.: An Introduction to Hybrid Automata

623 views • 41 slides
Bellerophon: Tactical Theorem Proving for Hybrid Systems Nathan Fulton , Stefan Mitsch, Brandon

Bellerophon: Tactical Theorem Proving for Hybrid Systems Nathan Fulton , Stefan Mitsch, Brandon

Bellerophon: Tactical Theorem Proving for Hybrid Systems Nathan Fulton , Stefan Mitsch, Brandon Bohrer, Andr Platzer Carnegie Mellon University Cyber-Physical Systems Cyber-Physical Systems combine computation and control. Hybrid Systems

964 views • 68 slides
CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems Hao Zheng

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems Hao Zheng

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems Hao Zheng Department of Computer Science and Engineering University of South Florida H. Zheng (CSE USF) CIS 4930/6930: Principles of CPS 1 / 50 Hybrid Systems

794 views • 50 slides
CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems Hao Zheng

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems Hao Zheng

CIS 4930/6930: Principles of Cyber-Physical Systems Chapter 4: Hybrid Systems Hao Zheng Department of Computer Science and Engineering University of South Florida H. Zheng (CSE USF) CIS 4930/6930: Principles of CPS 1 / 19 Hybrid Automata

602 views • 22 slides
Deductive Verification Of Hybrid Systems Lectures on Formal Methods for Cyber-Physical Systems

Deductive Verification Of Hybrid Systems Lectures on Formal Methods for Cyber-Physical Systems

Deductive Verification Of Hybrid Systems Lectures on Formal Methods for Cyber-Physical Systems SOKENDAI, 07/29/19 Jrmy Dubut National Institute of Informatics Japanese-French Laboratory of Informatics Objectives of this lecture

986 views • 84 slides
Toward Online Hybrid Systems Model Checking of Cyber-Physical Systems Time-Bounded Short-Run

Toward Online Hybrid Systems Model Checking of Cyber-Physical Systems Time-Bounded Short-Run

Toward Online Hybrid Systems Model Checking of Cyber-Physical Systems Time-Bounded Short-Run Behavior Lei Bu*, Qixin Wang , Xin Chen*, Linzhang Wang*, Tian Zhang*, Jianhua Zhao*, and Xuandong Li* *Nanjing University, The Hong Kong

395 views • 21 slides
HRML: a hybrid relational modelling language He Jifeng + + 2 + Hybrid

HRML: a hybrid relational modelling language He Jifeng + + 2 + Hybrid

1 + HRML: a hybrid relational modelling language He Jifeng + + 2 + Hybrid Systems Systems are composed by continuous physical component and discrete control component The system state evoles over time

968 views • 51 slides
Hybrid System Falsification and Reinforcement Learning Formal Method for Cyber-Physical Systems

Hybrid System Falsification and Reinforcement Learning Formal Method for Cyber-Physical Systems

Hybrid System Falsification and Reinforcement Learning Formal Method for Cyber-Physical Systems Clovis Eberhart David Sprunger National Institute of Technology, Japan SOKENDAI lesson, July 1, 8, and 22 1 / 50 Lecture structure Lectures

1.01k views • 83 slides
Modeling and Verification of Real-time/Hybrid/Cyber-Physical Systems via Concurrent Co-inductive

Modeling and Verification of Real-time/Hybrid/Cyber-Physical Systems via Concurrent Co-inductive

Motivation Background Contribution Summary Modeling and Verification of Real-time/Hybrid/Cyber-Physical Systems via Concurrent Co-inductive Constraint Logic Programming Neda Saeedloei Department of Computer Science University of Texas at

929 views • 77 slides
Hybrid System Falsification and Reinforcement Learning Formal Method for Cyber-Physical Systems

Hybrid System Falsification and Reinforcement Learning Formal Method for Cyber-Physical Systems

Hybrid System Falsification and Reinforcement Learning Formal Method for Cyber-Physical Systems Clovis Eberhart David Sprunger National Institute of Technology, Japan SOKENDAI lesson, July 1, 8, and 22 1 / 31 Quick reminder Falsification:

405 views • 36 slides
MODELS AND M MODELS AND METHODS ETHODS FOR FOR CYBER-PHY CYBER PHYSICAL SICAL SY SYSTEMS

MODELS AND M MODELS AND METHODS ETHODS FOR FOR CYBER-PHY CYBER PHYSICAL SICAL SY SYSTEMS

DISCRETE DISCRETE EVENT AN EVENT AND HYBRID SY HYBRID SYSTEM STEM MODELS AND M MODELS AND METHODS ETHODS FOR FOR CYBER-PHY CYBER PHYSICAL SICAL SY SYSTEMS STEMS C. G . G. Cassand . Cassandras as Division of Systems Engineering

1.34k views • 118 slides
Weak Singular Hybrid Automata Formal Modeling and Verification for Cyber-Physical Systems Krishna

Weak Singular Hybrid Automata Formal Modeling and Verification for Cyber-Physical Systems Krishna

Weak Singular Hybrid Automata Formal Modeling and Verification for Cyber-Physical Systems Krishna S. Umang Mathur Ashutosh Trivedi Department of Computer Science and Engineering IIT Bombay, Mumbai, India January 18, 2014 Krishna S., Umang

929 views • 58 slides
Algorithmic Verification of Stability of Hybrid Systems Pavithra Prabhakar Kansas State

Algorithmic Verification of Stability of Hybrid Systems Pavithra Prabhakar Kansas State

Algorithmic Verification of Stability of Hybrid Systems Pavithra Prabhakar Kansas State University Mysore Park Workshop Joint work with Miriam Garcia Soto (IMDEA Software Institute, Madrid) February 4, 2016 1 Cyber-Physical Systems (CPS)

1.17k views • 57 slides
22: Axioms & Uniform Substitutions 15-424: Foundations of Cyber-Physical Systems Andr e

22: Axioms & Uniform Substitutions 15-424: Foundations of Cyber-Physical Systems Andr e

22: Axioms & Uniform Substitutions 15-424: Foundations of Cyber-Physical Systems Andr e Platzer aplatzer@cs.cmu.edu Computer Science Department Carnegie Mellon University, Pittsburgh, PA The Secret for Simpler Sound Hybrid Systems

1.99k views • 181 slides
1/31/2007 Massachusetts Institute of Technology Context Hybrid Systems Hybrid

1/31/2007 Massachusetts Institute of Technology Context Hybrid Systems Hybrid

1/31/2007 Massachusetts Institute of Technology Context Hybrid Systems Hybrid discrete-continuous models are convenient for many systems Active Estimation for Switching Failure-prone components (Funiak03, Dearden02) Piloted

418 views • 7 slides
Comparing Hybrid Peer-to-Peer Hybrid peer-to-peer systems Systems Beverly Yang and Hector

Comparing Hybrid Peer-to-Peer Hybrid peer-to-peer systems Systems Beverly Yang and Hector

Comparing Hybrid Peer-to-Peer Hybrid peer-to-peer systems Systems Beverly Yang and Hector Garcia-Molina Pure peer-to-peer systems are hard to scale Gnutella Look at hybrids between p2p and server-client Presented by Marco Barreno Servers

282 views • 6 slides
MODELING OF MODELING OF HYBRID SYSTEMS HYBRID SYSTEMS C. G. Cassandras C. G. Cassandras Dept.

MODELING OF MODELING OF HYBRID SYSTEMS HYBRID SYSTEMS C. G. Cassandras C. G. Cassandras Dept.

MODELING OF MODELING OF HYBRID SYSTEMS HYBRID SYSTEMS C. G. Cassandras C. G. Cassandras Dept. of Manufacturing Engineering and Center for Information and Systems Engineering (CISE) Boston University cgc@bu.edu http://vita.bu.edu/cgc CODES

448 views • 25 slides
Modeling Analysis and Design of Hybrid Control Systems Part I Zeno/Chatter-free Systems

Modeling Analysis and Design of Hybrid Control Systems Part I Zeno/Chatter-free Systems

Modeling Analysis and Design of Hybrid Control Systems Part I Zeno/Chatter-free Systems Joo P. Hespanha University of California at Santa Barbara Outline 1. Deterministic hybrid systems 2. Stochastic hybrid systems 3. Switched

617 views • 43 slides
Facilitating Concurrency in Hybrid Programs D E C E M E C E M B E R E R 1 0 , 2 0 1 9

Facilitating Concurrency in Hybrid Programs D E C E M E C E M B E R E R 1 0 , 2 0 1 9

Facilitating Concurrency in Hybrid Programs D E C E M E C E M B E R E R 1 0 , 2 0 1 9 15-824: Logical Foundations of Cyber-Physical Systems (Fall 2019) Haithem Turki Long Pham Languages shape our thinking Shaden enfreu eude - Malicious

518 views • 22 slides
Identification of Hybrid Systems Identification of Hybrid Systems Therefore, a model must be

Identification of Hybrid Systems Identification of Hybrid Systems Therefore, a model must be

Goal Goal Sometimes a hybrid model of the process (or of a part of it) cannot be derived manually from available knowledge. Identification of Hybrid Systems Identification of Hybrid Systems Therefore, a model must be either

151 views • 12 slides
A CEGAR Approach for Stability Verification of Linear Hybrid Systems Miriam Garca Soto

A CEGAR Approach for Stability Verification of Linear Hybrid Systems Miriam Garca Soto

A CEGAR Approach for Stability Verification of Linear Hybrid Systems Miriam Garca Soto Co-authored work with Pavithra Prabhakar DARS 2017 1 Cyber-Physical Systems (CPSs) Systems in which software "cyber" interacts with the

529 views • 42 slides
A Refinement Based Approach to Hybrid Systems: Basics Richard Banach School of Computer Science,

A Refinement Based Approach to Hybrid Systems: Basics Richard Banach School of Computer Science,

A Refinement Based Approach to Hybrid Systems: Basics Richard Banach School of Computer Science, University of Manchester, UK Contents 1. System Development via Model Based Refinement 2. Physical Systems in General, Control Systems in

332 views • 14 slides
Modeling and Analysis of Hybrid Systems Introduction Prof. Dr. Erika brahm Informatik 2 -

Modeling and Analysis of Hybrid Systems Introduction Prof. Dr. Erika brahm Informatik 2 -

Modeling and Analysis of Hybrid Systems Introduction Prof. Dr. Erika brahm Informatik 2 - Theory of Hybrid Systems RWTH Aachen University SS 2013 brahm - Hybrid Systems 1 / 28 Organizational Lecture: Tuesday 13:15-14:15 in 5056

1.36k views • 68 slides
Logical Foundations of Cyber-Physical Systems Andr Platzer Andr Platzer (CMU) LFCPS/14:

Logical Foundations of Cyber-Physical Systems Andr Platzer Andr Platzer (CMU) LFCPS/14:

14: Hybrid Systems & Games Logical Foundations of Cyber-Physical Systems Andr Platzer Logical Foundations of Cyber-Physical Systems Andr Platzer Andr Platzer (CMU) LFCPS/14: Hybrid Systems & Games LFCPS/14 1 / 24 Outline

1.07k views • 102 slides

More recommend