Formal Semantics and Analysis Methods for Simulink Stateflow Models

Embedded control systems typically comprise continuous control laws combined with discrete mode logic. The Simulink graphical environment of MathWorks’ tool suite is a popular choice for modeling and designing embedded controllers. Mode logic in Simulink models is described in terms of hierarchical state machines specified in a variant of Statecharts called Stateflow. The semantics of Stateflow is quite complex and it is valuable if these designs can be formally analyzed for both early error detection and positive assurance. It is important that formal analysis should be unobtrusive and acceptable to engineering practice. We motivate a methodology called “invisible formal methods” that provides a graded sequence of formal analysis technologies ranging from extended typechecking, through approximation and abstraction, to model checking and theorem proving. As an instance of invisible formal methods, we describe the formal semantics of a fragment of Stateflow based on a modular representation calledcommunicating pushdown automata . We show how this semantics can be used to analyze simple properties of Stateflow models. Keywords—Hybrid dynamical systems, Invariant, Symbolic Simulation.

[1]  George E. Collins,et al.  Quantifier elimination for real closed fields by cylindrical algebraic decomposition , 1975 .

[2]  David Harel,et al.  Statecharts: A Visual Formalism for Complex Systems , 1987, Sci. Comput. Program..

[3]  Fred Kröger,et al.  Temporal Logic of Programs , 1987, EATCS Monographs on Theoretical Computer Science.

[4]  H. Hong An improvement of the projection operator in cylindrical algebraic decomposition , 1990, ISSAC '90.

[5]  Panos J. Antsaklis,et al.  Hybrid Systems II , 1994, Lecture Notes in Computer Science.

[6]  Rajeev Alur,et al.  A Theory of Timed Automata , 1994, Theor. Comput. Sci..

[7]  D. Lazard An Improved Projection for Cylindrical Algebraic Decomposition , 1994 .

[8]  Pravin Varaiya,et al.  Driving safely in smart cars , 1995, Proceedings of 1995 American Control Conference - ACC'95.

[9]  Pravin Varaiya,et al.  What's decidable about hybrid automata? , 1995, STOC '95.

[10]  Thomas A. Henzinger,et al.  The Algorithmic Analysis of Hybrid Systems , 1995, Theor. Comput. Sci..

[11]  Mats Jirstrand Cylindrical Algebraic Decomposition - an Introduction , 1995 .

[12]  Thomas A. Henzinger,et al.  Hybrid Systems III , 1995, Lecture Notes in Computer Science.

[13]  Amnon Naamad,et al.  The STATEMATE semantics of statecharts , 1996, TSEM.

[14]  M. Jirstrand Algebraic Methods for Modeling and Design in Control , 1996 .

[15]  Panos J. Antsaklis,et al.  Hybrid Systems IV , 1997, Lecture Notes in Computer Science.

[16]  Javier Esparza,et al.  Reachability Analysis of Pushdown Automata: Application to Model-Checking , 1997, CONCUR.

[17]  Mats Jirstrand,et al.  Nonlinear Control System Design by Quantifier Elimination , 1997, J. Symb. Comput..

[18]  J. M. Schumacher Call for papers Automatica special issue on hybrid systems , 1997, Autom..

[19]  Yassine Lakhnech,et al.  Hierarchical Automata as Model for Statecharts , 1997, ASIAN.

[20]  Thomas A. Henzinger,et al.  Hybrid Systems: Computation and Control , 1998, Lecture Notes in Computer Science.

[21]  John Lygeros,et al.  Synthesizing Controllers for Nonlinear Hybrid Systems , 1998, HSCC.

[22]  Bruce H. Krogh,et al.  Verification of Polyhedral-Invariant Hybrid Automata Using Polygonal Flow Pipe Approximations , 1999, HSCC.

[23]  John Lygeros,et al.  Controllers for reachability specifications for hybrid systems , 1999, Autom..

[24]  Josef Schicho,et al.  Quantifier Elimination for Trigonometric Polynomials by Cylindrical Trigonometric Decomposition , 2000, J. Symb. Comput..

[25]  S. Shankar Sastry,et al.  O-Minimal Hybrid Systems , 2000, Math. Control. Signals Syst..

[26]  George J. Pappas,et al.  Discrete abstractions of hybrid systems , 2000, Proceedings of the IEEE.

[27]  Alain Finkel,et al.  Computer Aided Verification: 13th International Conference, CAV 2001, Paris, France, July 18-22, 2001. Proceedings , 2001 .

[28]  Ashish Tiwari,et al.  A Technique for Invariant Generation , 2001, TACAS.

[29]  Hirokazu Anai,et al.  Reach Set Computations Using Real Quantifier Elimination , 2001, HSCC.

[30]  Rajeev Alur,et al.  Analysis of Recursive State Machines , 2001, CAV.

[31]  Gerardo Lafferriere,et al.  Symbolic Reachability Computation for Families of Linear Vector Fields , 2001, J. Symb. Comput..

[32]  Ganesh Gopalakrishnan,et al.  Formal Methods in Computer-Aided Design , 2002, Lecture Notes in Computer Science.