论文信息 - Utilizing Static Analysis for Programmable Logic Controllers

Utilizing Static Analysis for Programmable Logic Controllers

Programmable logic controllers (PLCs) occupy a big share in automation control. However, hardly any validation tools for their software are available. In this work we present a lightweight verification technique for PLC programs. In particular, static analysis is applied to programs written in Instruction List, a standardized language commonly used for PLC programming. We illustrate how these programs are annotated automatically by an abstract interpretation algorithm which is guaranteed to terminate and is applicable to large-scale programs. The resulting annotations allow static checking for possible run-time errors and provide information about the program structure, like existence of dead code or infinite loops, which in combination contributes to more reliable PLC systems.

[1] Patrick Cousot,et al. Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints , 1977, POPL.

[2] Ralf Huuck,et al. Verification of Sequential Function Charts Using SMV , 2000, PDPTA.

[3] Kenneth L. McMillan,et al. The SMV System , 1993 .

[4] R. W. Lewis,et al. Programming Industrial Control Systems Using IEC 1131-3 , 1995 .

[5] A. Prasad Sistla,et al. Automatic verification of finite state concurrent system using temporal logic specifications: a practical approach , 1983, POPL '83.

[6] Patrick Cousot,et al. Static determination of dynamic properties of programs , 1976 .

[7] Sérgio Vale Aguiar Campos,et al. Symbolic Model Checking , 1993, CAV.

[8] Joseph Sifakis,et al. Specification and verification of concurrent systems in CESAR , 1982, Symposium on Programming.