Correctness of vehicle control systems-a case study

Several example vehicle deceleration manoeuvres arising in automated transportation systems are specified, and their correctness verified, using the hybrid I/O automaton model of (Lynch et al., 1995). All system components are formalized using hybrid I/O automata, and their combination described using automaton composition. The proofs use invariant assertions, simulation mappings, and differential calculus.

[1]  Nancy A. Lynch,et al.  Using mappings to prove timing properties , 1990, PODC '90.

[2]  Fred B. Schneider,et al.  Derivation of sequential, real-time, process-control programs , 1991 .

[3]  John Lygeros,et al.  An interface between continuous and discrete-event controllers for vehicle automation , 1994, Proceedings of 1994 American Control Conference - ACC '94.

[4]  Thomas A. Henzinger,et al.  Timed Transition Systems , 1991, REX Workshop.

[5]  Nancy A. Lynch A THREE-LEVEL ANALYSIS OF A SIMPLE ACCELERATION MANEUVER, WITH UNCERTAINTIES , 1996 .

[6]  Nancy A. Lynch,et al.  Action Transducers and Timed Automata , 1992, CONCUR.

[7]  Nancy A. Lynch,et al.  Liveness in Timed and Untimed Systems , 1994, Inf. Comput..

[8]  Nancy A. Lynch,et al.  Hybrid I/O automata , 1995, Inf. Comput..

[9]  Nancy A. Lynch,et al.  Forward and Backward Simulations: I. Untimed Systems , 1995, Inf. Comput..

[10]  John Lygeros,et al.  Hierarchical Hybrid Control: A Case Study , 1994, Hybrid Systems.

[11]  Michael Merritt,et al.  Time-Constrained Automata (Extended Abstract) , 1991, CONCUR.

[12]  John Lygeros,et al.  An interface between continuous and discrete-event controllers for vehicle automation , 1994 .

[13]  Zohar Manna,et al.  From Timed to Hybrid Systems , 1991, REX Workshop.

[14]  Nancy A. Lynch,et al.  Forward and Backward Simulations, II: Timing-Based Systems , 1996, Inf. Comput..

[15]  John Lygeros,et al.  Longitudinal control of the lead car of a platoon , 1993 .

[16]  Nancy A. Lynch,et al.  Hierarchical correctness proofs for distributed algorithms , 1987, PODC '87.

[17]  Nancy A. Lynch,et al.  Forward and backward simulations, part II: timing-based systems , 1993 .

[18]  Jonathan Frankel ROBUST PLATOON MANEUVERS FOR AVHS , 1994 .

[19]  Thomas A. Henzinger,et al.  The Algorithmic Analysis of Hybrid Systems , 1995, Theor. Comput. Sci..

[20]  Nancy A. Lynch,et al.  Verification of Automated Vehicle Protection Systems , 1995, Hybrid Systems.

[21]  Leslie Lamport,et al.  The temporal logic of actions , 1994, TOPL.

[22]  John Lygeros,et al.  Hierarchical hybrid control: an IVHS case study , 1994, Proceedings of 1994 33rd IEEE Conference on Decision and Control.

[23]  Thomas A. Henzinger,et al.  Hybrid systems III : verification and control , 1996 .

[24]  Nancy A. Lynch,et al.  An introduction to input/output automata , 1989 .

[25]  Nancy A. Lynch,et al.  Proving Safety Properties of the Steam Boiler Controller , 1995, Formal Methods for Industrial Applications.

[26]  Grzegorz Rozenberg,et al.  Real-Time: Theory in Practice: Rex Workshop, Mook, the Netherlands, June 3-7, 1991: Proceedings , 1992 .

[27]  Victor Luchangco,et al.  Using simulation techniques to prove timing properties , 1995 .

[28]  Nancy A. Lynch,et al.  The generalized railroad crossing: a case study in formal verification of real-time systems , 1994, 1994 Proceedings Real-Time Systems Symposium.

[29]  Simin Nadjm-Tehrani,et al.  Modelling and Formal Analysis of an Aircraft Landing Gear System , 1995 .

[30]  F. Vaandrager Forward and Backward Simulations Part I : Untimed Systems , 1993 .

[31]  Nancy A. Lynch,et al.  Forward and Backward Simulations, II: Timing-Based Systems , 1991, Inf. Comput..

[32]  Nancy A. Lynch Modelling and Verification of Automated Transit Systems, Using Timed Automata, Invariants and Simulations , 1995, Hybrid Systems.