Passel : A Verification Tool for Parameterized Networks of Hybrid Automata

The Passel verification tool for parameterized networks of hybrid automata is presented in this paper. Passel automatically proves safety properties of networks of arbitrarily many interacting copies of a template hybrid automaton with rectangular dynamics by using a combination of invariant synthesis and inductive invariant proving. The invariant synthesis method generates quantified inductive invariants by transforming the set of reachable states of finite instantiations of the network. This is an extension to hybrid automata of the project-and-generalize method used in the invisible invariants method for synthesizing inductive invariants for parameterized networks of discrete automata. We use this extended method in a fixed-point iteration that is complete in the sense that it is ensured to generate an inductive invariants of a certain class of assertions for the parameterized network of hybrid automata. We present some of the engineering and design choices made in developing Passel, and present promising experimental results where the invariant synthesis procedure has been useful in automatically proving safety properties of examples like Fischer’s mutual exclusion protocol (with rectangular dynamics instead of clocks), a conceptual air-traffic control protocol, and others.

[1]  Marco Caccamo,et al.  A step towards verification and synthesis from simulink/stateflow models , 2011, HSCC '11.

[2]  Kenneth M. Jones,et al.  Small Aircraft Transportation System, Higher Volume Operations Concept: Normal Operations , 2013 .

[3]  Kenneth L. McMillan,et al.  Invisible Invariants and Abstract Interpretation , 2011, SAS.

[4]  Kedar S. Namjoshi,et al.  Symmetry and Completeness in the Analysis of Parameterized Systems , 2007, VMCAI.

[5]  Roberto Bruttomesso,et al.  Automated Analysis of Parametric Timing-Based Mutual Exclusion Algorithms , 2012, NASA Formal Methods.

[6]  Amir Pnueli,et al.  IIV: An Invisible Invariant Verifier , 2005, CAV.

[7]  Thomas A. Henzinger,et al.  Hybrid Automata: An Algorithmic Approach to the Specification and Verification of Hybrid Systems , 1992, Hybrid Systems.

[8]  André Platzer,et al.  Quantified differential invariants , 2011, HSCC '11.

[9]  Martin Leucker,et al.  Network Invariants for Real-Time Systems , 2003, INFINITY.

[10]  Amir Pnueli,et al.  A Platform for Combining Deductive with Algorithmic Verification , 1996, CAV.

[11]  André Platzer,et al.  Quantified Differential Dynamic Logic for Distributed Hybrid Systems , 2010, CSL.

[12]  Amir Pnueli,et al.  Parameterized Verification with Automatically Computed Inductive Assertions , 2001, CAV.

[13]  Nikolaj Bjørner,et al.  Z3: An Efficient SMT Solver , 2008, TACAS.

[14]  Nancy A. Lynch,et al.  Hybrid I/O automata , 1995, Inf. Comput..

[15]  Wang Yi,et al.  UPPAAL - a Tool Suite for Automatic Verification of Real-Time Systems , 1996, Hybrid Systems.

[16]  Johann Deneux,et al.  Multi-clock timed networks , 2004, LICS 2004.

[17]  Taylor T. Johnson,et al.  A Small Model Theorem for Rectangular Hybrid Automata Networks , 2012, FMOODS/FORTE.

[18]  Victor Carreño,et al.  Formal Analysis of the Operational Concept for the Small Aircraft Transportation System , 2006, RODIN Book.

[19]  Taylor T. Johnson,et al.  Parametrized Verification of Distributed Cyber-Physical Systems: An Aircraft Landing Protocol Case Study , 2012, 2012 IEEE/ACM Third International Conference on Cyber-Physical Systems.

[20]  Goran Frehse PHAVer: Algorithmic Verification of Hybrid Systems Past HyTech , 2005, HSCC.

[21]  Alessandro Carioni,et al.  MCMT in the Land of Parameterized Timed Automata , 2010 .

[22]  Amir Pnueli,et al.  Automatic Deductive Verification with Invisible Invariants , 2001, TACAS.

[23]  Thomas A. Henzinger,et al.  HYTECH: a model checker for hybrid systems , 1997, International Journal on Software Tools for Technology Transfer.

[24]  Amir Pnueli,et al.  Invisible Safety of Distributed Protocols , 2006, ICALP.

[25]  Parosh Aziz Abdulla,et al.  Model checking of systems with many identical timed processes , 2003, Theor. Comput. Sci..

[26]  Parosh Aziz Abdulla,et al.  On the Verification of Timed Ad Hoc Networks , 2011, FORMATS.