Collaborative Verification-Driven Engineering of Hybrid Systems

Hybrid systems with both discrete and continuous dynamics are an important model for real-world cyber-physical systems. The key challenge is to ensure their correct functioning w.r.t. safety requirements. Promising techniques to ensure safety seem to be model-driven engineering to develop hybrid systems in a well-defined and traceable manner, and formal verification to prove their correctness. Their combination forms the vision of verification-driven engineering. Often, hybrid systems are rather complex in that they require expertise from many domains (e. g., robotics, control systems, computer science, software engineering, and mechanical engineering). Moreover, despite the remarkable progress in automating formal verification of hybrid systems, the construction of proofs of complex systems often requires nontrivial human guidance, since hybrid systems verification tools solve undecidable problems. It is, thus, not uncommon for development and verification teams to consist of many players with diverse expertise. This paper introduces a verification-driven engineering toolset that extends our previous work on hybrid and arithmetic verification with tools for (1) graphical (UML) and textual modeling of hybrid systems, (2) exchanging and comparing models and proofs, and (3) managing verification tasks. This toolset makes it easier to tackle large-scale verification tasks.

[1]  T. Gowers,et al.  Massively collaborative mathematics , 2009, Nature.

[2]  Dan Craigen,et al.  Formal Methods Reality Check: Industrial Usage , 1993, FME.

[3]  André Platzer,et al.  KeYmaera: A Hybrid Theorem Prover for Hybrid Systems (System Description) , 2008, IJCAR.

[4]  Wpmh Maurice Heemels,et al.  Survey of modeling, analysis, and control of hybrid systems , 2009 .

[5]  André Platzer,et al.  Formal verification of distributed aircraft controllers , 2013, HSCC '13.

[6]  Colin F. Snook,et al.  Comprehensibility of UML-based formal model: a series of controlled experiments , 2007, WEASELTech '07.

[7]  André Platzer,et al.  The Complete Proof Theory of Hybrid Systems , 2012, 2012 27th Annual IEEE Symposium on Logic in Computer Science.

[8]  Francis Thom,et al.  An Integrated MDA Approach with SysML and UML , 2008, 13th IEEE International Conference on Engineering of Complex Computer Systems (iceccs 2008).

[9]  André Platzer,et al.  Adaptive Cruise Control: Hybrid, Distributed, and Now Formally Verified , 2011, FM.

[10]  André Platzer,et al.  European Train Control System: A Case Study in Formal Verification , 2009, ICFEM.

[11]  Grant Olney Passmore,et al.  Combined decision procedures for nonlinear arithmetics, real and complex , 2011 .

[12]  Adam Pease,et al.  Towards a standard upper ontology , 2001, FOIS.

[13]  Wilhelm Schäfer,et al.  Model-Driven Development with Mechatronic UML , 2010, Graph Transformations and Model-Driven Engineering.

[14]  Richard F. Paige,et al.  Different models for model matching: An analysis of approaches to support model differencing , 2009, 2009 ICSE Workshop on Comparison and Versioning of Software Models.

[15]  André Platzer,et al.  Refactoring, Refinement, and Reasoning - A Logical Characterization for Hybrid Systems , 2014, FM.

[16]  Mieczyslaw M. Kokar,et al.  Ontology-based situation awareness , 2009, Inf. Fusion.

[17]  Jan Peleska,et al.  The HybridUML profile for UML 2.0 , 2005, International Journal on Software Tools for Technology Transfer.

[18]  Siddharth Sridhar,et al.  Cyber–Physical System Security for the Electric Power Grid , 2012, Proceedings of the IEEE.

[19]  Alberto Griggio,et al.  The MathSAT5 SMT Solver , 2013, TACAS.

[20]  Edward A. Lee,et al.  Modeling Cyber–Physical Systems , 2012, Proceedings of the IEEE.

[21]  André Platzer,et al.  Towards Formal Verification of Freeway Traffic Control , 2012, 2012 IEEE/ACM Third International Conference on Cyber-Physical Systems.

[22]  Clark W. Barrett,et al.  The SMT-LIB Standard Version 2.0 , 2010 .

[23]  André Platzer,et al.  Logics of Dynamical Systems , 2012, 2012 27th Annual IEEE Symposium on Logic in Computer Science.

[24]  Tobias Nipkow,et al.  A Revision of the Proof of the Kepler Conjecture , 2009, Discret. Comput. Geom..

[25]  Alexander Ferrein,et al.  Towards Benchmarking Cyber-Physical Systems in Factory Automation Scenarios , 2013, KI.

[26]  Nikolaj Bjørner,et al.  Z3: An Efficient SMT Solver , 2008, TACAS.

[27]  Judith Masthoff,et al.  SAsSy—scrutable autonomous systems , 2013 .

[28]  Peter Kazanzides,et al.  Certifying the safe design of a virtual fixture control algorithm for a surgical robot , 2013, HSCC '13.

[29]  Wojciech Mostowski The KeY Syntax , 2007, The KeY Approach.

[30]  Antoine Girard,et al.  SpaceEx: Scalable Verification of Hybrid Systems , 2011, CAV.

[31]  Alex M. Andrew,et al.  Knowledge in Action: Logical Foundations for Specifying and Implementing Dynamical Systems , 2002 .

[32]  Michael Norrish,et al.  seL4: formal verification of an OS kernel , 2009, SOSP '09.

[33]  Martin Lukasiewycz,et al.  Challenges in automotive cyber-physical systems design , 2012, 2012 International Conference on Embedded Computer Systems (SAMOS).

[34]  James H. Davenport,et al.  Real Quantifier Elimination is Doubly Exponential , 1988, J. Symb. Comput..

[35]  Fabrice Kordon,et al.  From Model Driven Engineering to Verification Driven Engineering , 2008, SEUS.

[36]  Goran Frehse,et al.  PHAVer: algorithmic verification of hybrid systems past HyTech , 2005, International Journal on Software Tools for Technology Transfer.

[37]  André Platzer,et al.  A Vision of Collaborative Verification-Driven Engineering of Hybrid Systems , 2013 .

[38]  André Platzer,et al.  Logical Analysis of Hybrid Systems - Proving Theorems for Complex Dynamics , 2010 .

[39]  Lawrence C. Paulson,et al.  MetiTarski: An Automatic Theorem Prover for Real-Valued Special Functions , 2010, Journal of Automated Reasoning.

[40]  Orna Kupferman,et al.  Modular Model Checking , 1997, COMPOS.

[41]  Insup Lee,et al.  Challenges and Research Directions in Medical Cyber–Physical Systems , 2012, Proceedings of the IEEE.

[42]  André Platzer,et al.  On Provably Safe Obstacle Avoidance for Autonomous Robotic Ground Vehicles , 2013, Robotics: Science and Systems.

[43]  Wolfram Burgard,et al.  Robotics: Science and Systems XV , 2010 .

[44]  André Platzer,et al.  Differential Dynamic Logic for Hybrid Systems , 2008, Journal of Automated Reasoning.

[45]  Zuohua Ding,et al.  Hybrid MARTE statecharts , 2012, Frontiers of Computer Science.

[46]  Bente Anda,et al.  Experiences from introducing UML-based development in a large safety-critical project , 2006, Empirical Software Engineering.

[47]  Aniruddha S. Gokhale,et al.  Model driven middleware: A new paradigm for developing distributed real-time and embedded systems , 2008, Sci. Comput. Program..

[48]  Peter Müller,et al.  Collaborative Verification and Testing with Explicit Assumptions , 2012, FM.

[49]  Pravin Varaiya,et al.  SHIFT: A Formalism and a Programming Language for Dynamic Networks of Hybrid Automata , 1996, Hybrid Systems.

[50]  Edmund M. Clarke,et al.  Computing Differential Invariants of Hybrid Systems as Fixedpoints , 2008, CAV.

[51]  J. Lygeros,et al.  Computability of finite-time reachable sets for hybrid systems , 2005, Proceedings of the 44th IEEE Conference on Decision and Control.

[52]  Thomas A. Henzinger,et al.  The Algorithmic Analysis of Hybrid Systems , 1995, Theor. Comput. Sci..

[53]  Jean Bézivin,et al.  ATL: A model transformation tool , 2008, Sci. Comput. Program..

[54]  Colin F. Snook,et al.  UML-B: Formal modeling and design aided by UML , 2006, TSEM.

[55]  Alex Groce,et al.  VeriAgent: an Approach to Integrating UML and Formal Verification Tools , 2004, WMF.

[56]  Manas Bajaj,et al.  Maestro – A model‐based systems engineering environment for complex electronic systems , 2012 .

[57]  Hybrid Systems: Computation and Control (part of CPS Week 2012), HSCC'12, Beijing, China, April 17-19, 2012 , 2012, HSCC.

[58]  Luigi Lavazza,et al.  Combining UML and formal notations for modelling real-time systems , 2001, ESEC/FSE-9.

[59]  Edmund M. Clarke,et al.  Formal Verification of Curved Flight Collision Avoidance Maneuvers: A Case Study , 2009, FM.

[60]  André Platzer,et al.  Differential-algebraic Dynamic Logic for Differential-algebraic Programs , 2010, J. Log. Comput..

[61]  Zohar Manna,et al.  Verification : theory and practice : essays dedicated to Zohar Manna on the occasion of his 64th birthday , 2004 .

[62]  Edmund M. Clarke,et al.  Computing differential invariants of hybrid systems as fixedpoints , 2008, Formal Methods Syst. Des..

[63]  Ernst-Rüdiger Olderog,et al.  Syspect - Modelling, Specifying, and Verifying Real-Time Systems with Rich Data , 2011, Int. J. Softw. Informatics.

[64]  Werner Retschitzegger,et al.  A tour of BeAware - A situation awareness framework for control centers , 2014, Inf. Fusion.

[65]  Lawrence C. Paulson,et al.  Real Algebraic Strategies for MetiTarski Proofs , 2012, AISC/MKM/Calculemus.

[66]  Robert de Simone,et al.  MARTE: a profile for RT/E systems modeling, analysis-and simulation? , 2008, SimuTools.

[67]  S. Shankar Sastry,et al.  Conflict resolution for air traffic management: a study in multiagent hybrid systems , 1998, IEEE Trans. Autom. Control..

[68]  Douglas C. Schmidt,et al.  Guest Editor's Introduction: Model-Driven Engineering , 2006, Computer.

[69]  Rajeev Alur,et al.  Formal verification of hybrid systems , 2011, 2011 Proceedings of the Ninth ACM International Conference on Embedded Software (EMSOFT).

[70]  Thomas A. Henzinger,et al.  Extreme Model Checking , 2003, Verification: Theory and Practice.

[71]  Cesare Tinelli,et al.  The SMT-LIB Standard: Version 1.2 , 2005 .

[72]  André Platzer,et al.  Safe intersections: At the crossing of hybrid systems and verification , 2011, 2011 14th International IEEE Conference on Intelligent Transportation Systems (ITSC).