Constructive model-based analysis for safety assessment

The aerospace industry still uses fault trees to perform reliability analysis. This is because fault-tree modeling and analysis (FTA) seems easier to practical engineers when compared with Markov models, even though FTA provides a weaker form of analysis. In this paper, we propose an automatic strategy for generating Markov-based models and corresponding analysis formulations, according to ARP 4761, directly from Simulink diagrams annotated with failure information. The generated Markov-based models are expressed in the formal language PRISM, and the analysis is carried out by the PRISM model checker. The strategy is compositional and based on a comprehensive set of translation rules from Simulink to PRISM. We briefly address soundness and completeness of the rules and, to illustrate the application of the strategy, we apply it to a classical avionics case study: an actuator control system.

[1]  D. Hickey Distritrack: Automated Average-Case Analysis , 2007 .

[2]  Robert K. Brayton,et al.  Verifying Continuous Time Markov Chains , 1996, CAV.

[3]  Yiannis Papadopoulos,et al.  A Method and Tool Support for Model-based Semi-automated Failure Modes and Effects Analysis of Engineering Designs , 2004, SCS.

[4]  Kirsten Winter,et al.  Probabilistic Model-Checking Support for FMEA , 2007 .

[5]  Marco Bozzano,et al.  Improving System Reliability via Model Checking: The FSAP/NuSMV-SA Safety Analysis Platform , 2003, SAFECOMP.

[6]  C. A. R. Hoare,et al.  Communicating sequential processes , 1978, CACM.

[7]  John A. McDermid,et al.  Analysis and synthesis of the behaviour of complex programmable electronic systems in conditions of failure , 2001, Reliab. Eng. Syst. Saf..

[8]  Mats Per Erik Heimdahl,et al.  Model-Based Safety Analysis of Simulink Models Using SCADE Design Verifier , 2005, SAFECOMP.

[9]  Christel Baier,et al.  ProbMela and verification of Markov decision processes , 2005, PERV.

[10]  Yiannis Papadopoulos,et al.  Model-based synthesis of fault trees from Matlab-Simulink models , 2001, 2001 International Conference on Dependable Systems and Networks.

[11]  Jens Nordahl,et al.  From CSP Models to Markov Models , 1993, IEEE Trans. Software Eng..

[12]  Thomas Peikenkamp,et al.  Model Based Importance Analysis for Minimal Cut Sets , 2008, ATVA.

[13]  Alejandro D. Domínguez-García,et al.  An integrated methodology for the dynamic performance and reliability evaluation of fault-tolerant systems , 2008, Reliab. Eng. Syst. Saf..

[14]  Marta Z. Kwiatkowska,et al.  PRISM: probabilistic model checking for performance and reliability analysis , 2009, PERV.

[15]  B. Becker,et al.  Analysis of Large Safety-Critical Systems : A quantitative Approach ? , 2006 .

[16]  Albert Benveniste,et al.  Markov nets: probabilistic models for distributed and concurrent systems , 2003, IEEE Trans. Autom. Control..

[17]  Boudewijn R. Haverkort,et al.  Markovian Models for Performance and Dependability Evaluation , 2002, European Educational Forum: School on Formal Methods and Performance Analysis.

[18]  Marta Z. Kwiatkowska,et al.  Quantitative Analysis With the Probabilistic Model Checker PRISM , 2006, QAPL.

[19]  Marta Z. Kwiatkowska,et al.  Probabilistic symbolic model checking with PRISM: a hybrid approach , 2004, International Journal on Software Tools for Technology Transfer.

[20]  Joost-Pieter Katoen,et al.  A Markov reward model checker , 2005, Second International Conference on the Quantitative Evaluation of Systems (QEST'05).

[21]  Bernd Becker,et al.  Sigref- A Symbolic Bisimulation Tool Box , 2006, ATVA.

[22]  Lars Grunske,et al.  Probabilistic Model-Checking Support for FMEA , 2007, Fourth International Conference on the Quantitative Evaluation of Systems (QEST 2007).

[23]  Alexandre Mota,et al.  Evolving a Safe System Design Iteratively , 2010, SAFECOMP.

[24]  Pierre Bieber,et al.  ISAAC, a framework for integrated safety analysis of functional, geometrical and human aspects , 2006 .

[25]  Daniel P. Siewiorek,et al.  Reliable Computer Systems: Design and Evaluation, Third Edition , 1998 .

[26]  Husain Aljazzar,et al.  Safety Analysis of an Airbag System Using Probabilistic FMEA and Probabilistic Counterexamples , 2009, 2009 Sixth International Conference on the Quantitative Evaluation of Systems.

[27]  Joost-Pieter Katoen,et al.  Safety, Dependability and Performance Analysis of Extended AADL Models , 2011, Comput. J..

[28]  David Harel,et al.  Modeling Reactive Systems With Statecharts : The Statemate Approach , 1998 .

[29]  Thomas A. Henzinger,et al.  Reactive Modules , 1996, Proceedings 11th Annual IEEE Symposium on Logic in Computer Science.

[30]  Joost-Pieter Katoen,et al.  The COMPASS Approach: Correctness, Modelling and Performability of Aerospace Systems , 2009, SAFECOMP.

[31]  Augusto Sampaio,et al.  Systematic Model-Based Safety Assessment Via Probabilistic Model Checking , 2010, ISoLA.

[32]  Christel Baier,et al.  Automated Performance and Dependability Evaluation Using Model Checking , 2002, Performance.

[33]  Shun-Zheng Yu,et al.  A Large-Scale Hidden Semi-Markov Model for Anomaly Detection on User Browsing Behaviors , 2009, IEEE/ACM Transactions on Networking.

[34]  Marta Z. Kwiatkowska,et al.  PRISM 4.0: Verification of Probabilistic Real-Time Systems , 2011, CAV.

[35]  Elena Troubitsyna,et al.  Towards Probabilistic Modelling in Event-B , 2010, IFM.

[36]  W E Vesely,et al.  Fault Tree Handbook , 1987 .

[37]  Marco Bozzano,et al.  The FSAP/NuSMV-SA Safety Analysis Platform , 2007, International Journal on Software Tools for Technology Transfer.

[38]  D. Pumfrey,et al.  Towards a Practicable Process for Automated Safety Analysis , 2006 .