verified switched control system design using real time
play

Verified Switched Control System Design using Real- Time Hybrid - PowerPoint PPT Presentation

Dec 22, 2023 •369 likes •778 views

Verified Switched Control System Design using Real- Time Hybrid Systems Reachability Stanley Bak, Taylor Johnson, Marco Caccamo, Lui Sha Air Force Research Lab Information Directorate Rome, NY DISTRIBUTION A. Approved for public

  1. Verified Switched Control System Design using Real- Time Hybrid Systems Reachability Stanley Bak, Taylor Johnson, Marco Caccamo, Lui Sha Air Force Research Lab – Information Directorate – Rome, NY DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 1

  2. Cyber-Physical Systems • Include computational components interacting with the physical-world • Mistakes can have real-world consequences! • Ideally we would verify the system, but it may be too complicated for direct verification Fault-Tolerant Autonomous Cars Air Traffic Control Power Distribution DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 2 2

  3. Outline • Run-Time Assurance (RTA) Design • RTA using Real-Time Reachability DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 3 3

  4. Outline • Run-Time Assurance (RTA) Design • RTA using Real-Time Reachability DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 4 4

  5. Run-time Assurance (RTA) Design • Sandbox untrusted controllers • Lots of variants • Key challenge is decision module DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 5 5

  6. Run-time Assurance (RTA) Design • Safe design is easy! • The challenge is conservatism . The ‘best’ switching logic: – Predicts next state using the current command – Checks if the safety controller recovers DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 6 6

  7. Offline Simulation Design • Using simulations, we can grid the state space, then check which states are recoverable* Unrecoverable in simulation Recoverable in simulation * M. Aiello, J. Berryman, J. Grohs, and J. Schierman, “Run-time assurance for advanced flight-critical control systems,” in Proceedings of the American Institute of Aeronautics and Astronautics Guidance, Navigation, and Control Conference, ser. AIAA ’10, 2010. DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 7 7

  8. Challenges with Simulation Design • When do we stop the simulation? • What if the real state is between simulation points? • How accurate are the simulations? • Most problematic: How well does this scale? DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 8 8

  9. Scaling with Simulation Design Most problematic: How does this scale? • 100 partitions per dimension, 11 dimensions = 100^11 =10^22 points, 1 μ s per simulation = 317 million years • Large online storage required – Lookup table? – Linear bounds * ? * S. Bak, “Industrial application of the System-Level Simplex Architecture for real-time embedded system safety,” Master’s Thesis, University of Illinois at Urbana-Champaign, 2009. DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 9 9

  10. Simulation Scalability How many partitions per dimension if we want the runtime to be: 1 hour – ~7 partitions (~51 degrees) 1 day – ~ 10 partitions (~36 degrees) 1 year - ~ 17 partitions (~20 degrees) DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 10 10

  11. Verified Design based on Reachability • Instead of simulation, we can use more formal reasoning based on hybrid-systems reachability computation • This reasons about sets of states, accounting for method inaccuracies by over-approximation DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 11 11

  12. Reachability for RTA • The ‘best’ switching logic can be defined in terms of reachability: -or- • Drawbacks: – Achievable Accuracy – Online Representation DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 12 12

  13. Representation Drawbacks • Flow* is a tool which computes reachability for systems with nonlinear dynamics – Uses Taylor Models for representation • Example: 9 dimensional biological model* – Order: 5, Step size: 0.001, Steps: 10 – Output: 3 MB, ~300 KB per step * “Constructing Flowpipes for Continuous and Hybrid Systems: Case-Studies” http://systems.cs.colorado.edu/research/cyberphysical/taylormodels/casestudies/ DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 13 13

  14. Verified Design based on LMI • For linear (and linearized) systems, you can find the largest ellipsoid inside the recoverable region by solving a linear matrix inequality (LMI)* Linear Time-Invariant Control System: x’ = Ax + Bu • Input: Matrices A, B, linear system constraints • Output: Gain matrix K, Potential matrix P, where if you use u=Kx then x T Px is decreasing and all constraints are satisfied if x T Px < 1 * D. Seto and L. Sha, “A case study on analytical analysis of the inverted pendulum real-time control system,” CMU/ SEI, Tech. Rep., 1999. DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 14 14

  15. LMI-design for RTA DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 15 15

  16. LMI-design for RTA (2) Unrecoverable in simulation Recoverable in simulation x T Px < 1 DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 16 16

  17. LMI-drawbacks 1. Ellipsoid guarantees input will not saturate, which is pessimistic 2. Ellipsoid may trim out recoverable states because of its shape restriction Scalability of Ball Representation 1200 1000 800 Volume Ball 600 Box 400 200 0 1 2 3 4 5 6 7 8 9 10 Number of Dimensions # Dims 1 2 3 4 5 6 7 8 9 10 Ball Volume 2 3.141 4.189 4.935 5.264 5.168 4.725 4.059 3.299 2.55 Box Volume 2 4 8 16 32 64 128 256 512 1024 DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 17 17

  18. LMI-drawbacks (2) • From before: The ‘best’ switching logic: – Predicts next state using the current command – Checks if the safety controller recovers • For the offline LMI approach, you consider all possible commands and how much state space can be covered in one control iteration, and then create a ‘buffer’ DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 18 18

  19. LMI Image DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 19 19

  20. Outline • Run-Time Assurance (RTA) Design • RTA using Real-Time Reachability DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 20 20

  21. RTA using Real-Time Reachability • Don’t determine the switching set offline, do it online! – No large enumeration – Not limited to ellipsoid shape – No complex state representation • How do we do it? – Use aspects of both LMI-based and reachability-based Simplex design DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 21 21

  22. Unified Design • We use the forward-time definition of a switching set • However, we don’t need infinite time reachability; we only need to get back into the LMI ellipsoid because DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 22 22

  23. Unified Design (2) • Key Idea : allow the system to leave the safe ellipsoid, as long as we can guarantee (1) no constraints are violated when this happens, and (2) the state is guaranteed to go back into the ellipsoid DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 23 23

  24. Unified Design (3) • This requires reachability at runtime – Tools aren’t meant for this… • Let’s make one! – Based on mixed-face lifting – Quick computation is more important than long-term error control – Assumes piecewise dynamics, with bounded derivatives, and a user-provided DerivativeBounds function DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 24 24

  25. DerivativeBounds Function • For our algorithm, the user must provide a function that bounds the derivative for each direction in an arbitrary box Minimum X derivative? DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 25 25

  26. Real-Time Reachability Algorithm Tracked States DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 26 26

  27. Real-Time Reachability Algorithm Tracked States DISTRIBUTION A. Approved for public release; Distribution unlimited. (Approval AFRL PA #88ABW-2014-2661, 02 JUNE 2014) 27 27

Recommend

Verified Cruise Control on RC Vehicle Shashank Ojha and Yufei Wang 1/17 Objective Implement a

Verified Cruise Control on RC Vehicle Shashank Ojha and Yufei Wang 1/17 Objective Implement a

Verified Cruise Control on RC Vehicle Shashank Ojha and Yufei Wang 1/17 Objective Implement a verified model (static POV system) on real hardware Fill the gap between theory &amp; practice 2/17 Motivation Cruise Control system is

209 views • 17 slides
Real Time Operating Systems from Fundamentals of Real Time Systems Mukul Shirvaikar &amp;

Real Time Operating Systems from Fundamentals of Real Time Systems Mukul Shirvaikar &amp;

Real Time Operating Systems from Fundamentals of Real Time Systems Mukul Shirvaikar &amp; Theodore Elbert Chapter 4 1 Real Time Systems Design Various design approaches implemented by system designers to meet real-time requirements

718 views • 36 slides
Real Time Operating Systems Shirvaikar Chapter 4 REAL TIME SYSTEMS SHIRVAIKAR 1 Real Time

Real Time Operating Systems Shirvaikar Chapter 4 REAL TIME SYSTEMS SHIRVAIKAR 1 Real Time

Real Time Operating Systems Shirvaikar Chapter 4 REAL TIME SYSTEMS SHIRVAIKAR 1 Real Time Systems Design Various design approaches implemented by system designers to meet real-time requirements Three general approaches to task

557 views • 37 slides
Real Real- -Time Systems Time Systems Designing a real- Designing a real -time system time

Real Real- -Time Systems Time Systems Designing a real- Designing a real -time system time

EDA222/DIT160 Real-Time Systems, Chalmers/GU, 2008/2009 Lecture #10 Updated 2009-02-15 Real Real- -Time Systems Time Systems Designing a real- Designing a real -time system time system Logical function What should be done &amp;

500 views • 8 slides
Operational Perspective Michael Burke Power System Control EirGrid Real Time Power System

Operational Perspective Michael Burke Power System Control EirGrid Real Time Power System

Operational Perspective Michael Burke Power System Control EirGrid Real Time Power System Operation 50 Hz: Safe, Secure and Economic Operation of Power System Generation = Demand Control Centres: NCC &amp; CHCC Bulk Transfer of Power on

1.12k views • 32 slides
1 Challenge 4: Adaptive QoS Control Certification Develop software feedback control in

1 Challenge 4: Adaptive QoS Control Certification Develop software feedback control in

Challenges for Real-Time Systems Adaptive QoS Control Classical real-time scheduling theory relies on accurate knowledge about workload and platform. in Distributed Real-Time Middleware New challenges under uncertainties Maintain robust

342 views • 8 slides
Real-Time Operating system (RTOS) Real-time Embedded systems often have real-time computing

Real-Time Operating system (RTOS) Real-time Embedded systems often have real-time computing

Real-Time Operating system (RTOS) Real-time Embedded systems often have real-time computing constraints (Temporal) Determinism Correctness of system depends not only on the logical result of the computation, but also on the time at which

531 views • 13 slides
Switched linear discrete time systems EECI Graduate School on Control 2009 Jamal Daafouz March

Switched linear discrete time systems EECI Graduate School on Control 2009 Jamal Daafouz March

Switched linear discrete time systems EECI Graduate School on Control 2009 Jamal Daafouz March 2009 Outline Switched Linear Discrete Time Systems Stability Structural Properties : Invertibility, Flatness Applications Digital

424 views • 41 slides
Programming for Performance 1 Textbook Definition of Real-time A Real-time System responds

Programming for Performance 1 Textbook Definition of Real-time A Real-time System responds

Programming for Performance 1 Textbook Definition of Real-time A Real-time System responds in a (timely) predictable way to unpredictable external stimuli arrivals. A system is a real-time system when it can support the execution of

852 views • 49 slides
ADESBA Real Time Control Silja Mendes SEGNO Industrie Automation GmbH In a nutshell Fully

ADESBA Real Time Control Silja Mendes SEGNO Industrie Automation GmbH In a nutshell Fully

ADESBA Real Time Control Silja Mendes SEGNO Industrie Automation GmbH In a nutshell Fully automated real time control system Minimizes combined sewer overflow Using accurate communication between single CSO facilities

387 views • 13 slides
ASTEROID AN ANALYZABLE, RESILIENT, EMBEDDED REAL-TIME OPERATING SYSTEM DESIGN Bj orn D

ASTEROID AN ANALYZABLE, RESILIENT, EMBEDDED REAL-TIME OPERATING SYSTEM DESIGN Bj orn D

ASTEROID AN ANALYZABLE, RESILIENT, EMBEDDED REAL-TIME OPERATING SYSTEM DESIGN Bj orn D obel, Hermann H artig (TU Dresden) Philip Axer, Rolf Ernst (TU Braunschweig) B oblingen, 07 .02.2013 The Many Faces of Hardware Faults

911 views • 52 slides
Lab 2: Real-Time Automotive Suspension system Simulator TA: Aws Abu-Khudhair

Lab 2: Real-Time Automotive Suspension system Simulator TA: Aws Abu-Khudhair

ENGG* 4420 Real Time System Design Lab 2: Real-Time Automotive Suspension system Simulator TA: Aws Abu-Khudhair (aabukhud@uoguelph.ca) Due: Week of Oct. 12th Aws Abu-Khudhair ENGG* 4420 1 Todays Activities Lab 2 Introduction.

430 views • 26 slides
A Real-Time Multicast Routing Scheme for Multi-Hop Switched Fieldbuses Lixiong Chen*, Xue Liu

A Real-Time Multicast Routing Scheme for Multi-Hop Switched Fieldbuses Lixiong Chen*, Xue Liu

A Real-Time Multicast Routing Scheme for Multi-Hop Switched Fieldbuses Lixiong Chen*, Xue Liu , Qixin Wang , Yufei Wang *Dept. of ECE, School of CS, McGill Univ. Dept. of Computing, The Hong Kong Polytechnic Univ. March 30,

1.58k views • 88 slides
Design and calibration of System-on-Chip switched capacitor array based waveform digitizers for

Design and calibration of System-on-Chip switched capacitor array based waveform digitizers for

Design and calibration of System-on-Chip switched capacitor array based waveform digitizers for particle tracking Isar Mostafanezhad, Ph.D. Founder and CEO, Nalu Scientific, LLC Sep 14, 2018 2800 Woodlawn Dr. Ste #240 Honolulu, HI 96822 On

500 views • 21 slides
Design of PID controller for real-time position control of Fast Reciprocating Probe Assembly to

Design of PID controller for real-time position control of Fast Reciprocating Probe Assembly to

KSTAR Conference 2014 Mayhills resort, Gangwon-do, Korea, February 24-26, 2014 Design of PID controller for real-time position control of Fast Reciprocating Probe Assembly to plasma Last Closed Flux Surface in KSTAR Gi Wook Shin a , S.H. Hahn a,b ,

329 views • 12 slides
VS-3000E Sensor System Real-time infrared instrument for process control Measure Dissolved

VS-3000E Sensor System Real-time infrared instrument for process control Measure Dissolved

VS-3000E Sensor System Real-time infrared instrument for process control Measure Dissolved Organic Acids, Alcohol and Sugars inline Measuring Method VS-3000 is a Mid-Infrared Spectrometer using Attenuated Total Reflective Index and Beer-

683 views • 19 slides
Network Control Modelling and Analysis circuit-switched networks Control in datagram networks

Network Control Modelling and Analysis circuit-switched networks Control in datagram networks

1/37 Game Theory Bruno Tuffin Introduction: goals and methods Control in Network Control Modelling and Analysis circuit-switched networks Control in datagram networks Bruno Tuffin Control in virtual circuit switched networks INRIA

953 views • 37 slides
A Cyber-Physical System for Distributed Real-Time Control of Urban Drainage Networks in Smart

A Cyber-Physical System for Distributed Real-Time Control of Urban Drainage Networks in Smart

A Cyber-Physical System for Distributed Real-Time Control of Urban Drainage Networks in Smart Cities Andrea Giordano, Giandomenico Spezzano, Andrea Vinci ICAR - CNR Rende (CS), Italy Giuseppina Garofalo, Patrizia Piro Dipartimento Ingegneria

1.23k views • 20 slides
HEPSYCODE-RTMC: a Real-Time and Mixed Criticality Extensions for a System-Level HWSW Co-Design

HEPSYCODE-RTMC: a Real-Time and Mixed Criticality Extensions for a System-Level HWSW Co-Design

2st Italian Workshop on Embedded Systems (IWES 2017) HEPSYCODE-RTMC: a Real-Time and Mixed Criticality Extensions for a System-Level HWSW Co-Design Methodology Author: Vittoriano Muttillo , Vincenzo Stoico, Daniele Ciambrone, Giacomo Valente,

1.1k views • 52 slides
Guaranteed Control of Switched Control Systems Using Model Order Reduction and Bisection ent 1 ,

Guaranteed Control of Switched Control Systems Using Model Order Reduction and Bisection ent 1 ,

Guaranteed Control of Switched Control Systems Using Model Order Reduction and Bisection ent 1 , Florian De Vuyst 1 , Christian Rey 2 , Adrien Le Co Ludovic Chamoin 2 , Laurent Fribourg 3 April 11, 2015 1 CMLA Centre de Math ematiques et de

1.69k views • 135 slides
Feedback Control for Real-Time Systems Chenyang Lu Cyber-Physical Systems Laboratory Department

Feedback Control for Real-Time Systems Chenyang Lu Cyber-Physical Systems Laboratory Department

Feedback Control for Real-Time Systems Chenyang Lu Cyber-Physical Systems Laboratory Department of Computer Science and Engineering CPS Week 2013 Outline q CPU UClizaCon Control for Distributed Real-Time Systems q Model PredicCve Control q

691 views • 37 slides
Columbus Collection and Treatment System Real Time Wet Weather Management Presenters Gary

Columbus Collection and Treatment System Real Time Wet Weather Management Presenters Gary

Columbus Collection and Treatment System Real Time Wet Weather Management Presenters Gary Hickman, JPWWTP Plant Manager Ed Heyob, CDM Smith Automation Engineer Collection System Control Locations on Trunk Sewers Rhodes Park Alum Creek WST

391 views • 18 slides
Optimized Control- and Communication- Architecture for highest Performance TwinCAT The eXtreme

Optimized Control- and Communication- Architecture for highest Performance TwinCAT The eXtreme

Optimized Control- and Communication- Architecture for highest Performance TwinCAT The eXtreme Fast Real-time Control Software real-time with MS Windows -&gt; cycle times up to 50s standard IEC61131 programming in XFC real-time tasks

289 views • 12 slides
Real-Time Java for Latency Critical Banking Applications Real-Time Bertrand Delsart System

Real-Time Java for Latency Critical Banking Applications Real-Time Bertrand Delsart System

Real-Time Java for Latency Critical Banking Applications Real-Time Bertrand Delsart System JavaRTS Technical Leader Author of Sun's RTGC technology Agenda Background Benefits of a Real-Time Java Virtual Machine Benefits of

554 views • 36 slides

More recommend