Decentralized Runtime Synthesis of Shields for Multi-Agent Systems

A shield is attached to a system to guarantee safety by correcting the system's behavior at runtime. Existing methods that employ design-time synthesis of shields do not scale to multi-agent systems. Moreover, such shields are typically implemented in a centralized manner, requiring global information on the state of all agents in the system. We address these limitations through a new approach where the shields are synthesized at runtime and do not require global information. There is a shield onboard every agent, which can only modify the behavior of the corresponding agent. In this approach, which is fundamentally decentralized, the shield on every agent has two components: a pathfinder that corrects the behavior of the agent and an ordering mechanism that dynamically modifies the priority of the agent. The current priority determines if the shield uses the pathfinder to modify behavior of the agent. We derive an upper bound on the maximum deviation for any agent from its original behavior. We prove that the worst-case synthesis time is quadratic in the number of agents at runtime as opposed to exponential at design-time for existing methods. We test the performance of the decentralized, runtime shield synthesis approach on a collision-avoidance problem. For 50 agents in a 50x50 grid, the synthesis at runtime requires a few seconds per agent whenever a potential collision is detected. In contrast, the centralized design-time synthesis of shields for a similar setting is intractable beyond 4 agents in a 5x5 grid.

[1]  Fred B. Schneider,et al.  Enforceable security policies , 2000, Foundations of Intrusion Tolerant Systems, 2003 [Organically Assured and Survivable Information Systems].

[2]  Carlos Guestrin,et al.  Multiagent Planning with Factored MDPs , 2001, NIPS.

[3]  Yliès Falcone,et al.  You Should Better Enforce Than Verify , 2010, RV.

[4]  David Silver,et al.  Cooperative Pathfinding , 2005, AIIDE.

[5]  Ufuk Topcu,et al.  Shield synthesis , 2017, Formal Methods Syst. Des..

[6]  E. J.,et al.  ON THE COMPLEXITY OF MOTION PLANNING FOR MULTIPLE INDEPENDENT OBJECTS ; PSPACE HARDNESS OF THE " WAREHOUSEMAN ' S PROBLEM " . * * ) , 2022 .

[7]  Amir Pnueli,et al.  The temporal logic of programs , 1977, 18th Annual Symposium on Foundations of Computer Science (sfcs 1977).

[8]  Nikos A. Vlassis,et al.  Multi-robot decision making using coordination graphs , 2003 .

[9]  Ufuk Topcu,et al.  Traffic Management for Urban Air Mobility , 2019, NFM.

[10]  Trevor Scott Standley Finding Optimal Solutions to Cooperative Pathfinding Problems , 2010, AAAI.

[11]  Ufuk Topcu,et al.  Formal Synthesis of Embedded Control Software: Application to Vehicle Management Systems , 2011 .

[12]  Ezio Bartocci,et al.  Lectures on Runtime Verification: Introductory and Advanced Topics , 2018 .

[13]  Richard E. Korf,et al.  Complete Algorithms for Cooperative Pathfinding Problems , 2011, IJCAI.

[14]  Abraham Silberschatz,et al.  Operating System Concepts , 1983 .

[15]  D. Ghose,et al.  Multi-UAV Task Allocation using Team Theory , 2005, Proceedings of the 44th IEEE Conference on Decision and Control.

[16]  Yliès Falcone,et al.  Synthesizing Enforcement Monitors wrt. the Safety-Progress Classification of Properties , 2008, ICISS.

[17]  Sven Schewe,et al.  Synthesis of Distributed Systems , 2018 .

[18]  Jin Hock Ong,et al.  Multi-UAV System for Inventory Automation , 2007, 2007 1st Annual RFID Eurasia.

[19]  Martin Leucker,et al.  Runtime Verification for LTL and TLTL , 2011, TSEM.

[20]  Derek Kingston,et al.  A Brief Introduction to Unmanned Systems Autonomy Services (UxAS) , 2018, 2018 International Conference on Unmanned Aircraft Systems (ICUAS).

[21]  Yu Zhang,et al.  DisCoF: Cooperative Pathfinding in Distributed Systems with Limited Sensing and Communication Range , 2014, DARS.