Dynamic Fault Trees Analysis using an Integration of Theorem Proving and Model Checking

Dynamic fault trees (DFTs) have emerged as an important tool for capturing the dynamic behavior of system failure. These DFTs are then analyzed qualitatively and quantitatively using stochastic or algebraic methods to judge the failure characteristics of the given system in terms of the failures of its sub-components. Model checking has been recently proposed to conduct the failure analysis of systems using DFTs with the motivation to provide a rigorous failure analysis of safety-critical systems. However, model checking has not been used for the DFT qualitative analysis and the reduction algorithms used in model checking are usually not formally verified. Moreover, the analysis time grows exponentially with the increase of the number of states. These issues limit the usefulness of model checking for analyzing complex systems used in safety-critical domains, where the accuracy and completeness of analysis matters the most. To overcome these limitations, we propose a comprehensive methodology to perform the qualitative and quantitative analysis of DFTs using an integration of theorem proving and model checking based approaches. For this purpose, we formalized all the basic dynamic fault tree gates using higher-order logic based on the algebraic approach and formally verified some of the simplification properties. This formalization allows us to formally verify the equivalence between the original and reduced DFTs using a theorem prover, and conduct the qualitative analysis. We then use model checking to perform the quantitative analysis of the formally verified reduced DFT. We applied our methodology to five benchmarks and the results show that the formally verified reduced DFT was analyzed using model checking with up to six times less states and up to 133000 times faster.

[1]  Jean-Jacques Lesage,et al.  Probabilistic Algebraic Analysis of Fault Trees With Priority Dynamic Gates and Repeated Events , 2010, IEEE Transactions on Reliability.

[2]  Osman Hasan,et al.  Formalization of Fault Trees in Higher-Order Logic: A Deep Embedding Approach , 2016, SETTA.

[3]  Matthias Kuntz,et al.  Model-Based Safety Analysis for Vehicle Guidance Systems , 2017, SAFECOMP.

[4]  Mariëlle Stoelinga,et al.  A Compositional Semantics for Dynamic Fault Trees in Terms of Interactive Markov Chains , 2007, ATVA.

[5]  Kishor S. Trivedi,et al.  Dependability modeling using Petri-nets , 1995 .

[6]  Sebastian Junges,et al.  A Storm is Coming: A Modern Probabilistic Model Checker , 2017, CAV.

[7]  Guillaume Merle,et al.  Algebraic modelling of Dynamic Fault Trees, contribution to qualitative and quantitative analysis , 2010 .

[8]  Sebastian Junges,et al.  Fast Dynamic Fault Tree Analysis by Model Checking Techniques , 2018, IEEE Transactions on Industrial Informatics.

[9]  Laura L. Pullum,et al.  Fault tree models for the analysis of complex computer-based systems , 1996, Proceedings of 1996 Annual Reliability and Maintainability Symposium.

[10]  Mariëlle Stoelinga,et al.  Fault tree analysis: A survey of the state-of-the-art in modeling, analysis and tools , 2014, Comput. Sci. Rev..

[11]  Mariëlle Stoelinga,et al.  DFTCalc: a tool for efficient fault tree analysis (extended version) , 2013 .

[12]  H. Boudali,et al.  A new Bayesian network approach to solve dynamic fault trees , 2005, Annual Reliability and Maintainability Symposium, 2005. Proceedings..

[13]  Osman Hasan,et al.  Towards Formal Fault Tree Analysis Using Theorem Proving , 2015, CICM.