Presentation is loading. Please wait.

Presentation is loading. Please wait.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Published byKatrina Kathlyn Hunt Modified over 9 years ago

Similar presentations

Presentation on theme: "Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen."— Presentation transcript:

1 Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen

2 Verification Methods Formal verification – determining whether given properties are true for a given model of a dynamic system Theorem proving – inferring/contradicting a specification using logical proof systems Not restricted to finite-state systems Model checking – using the state-transition relation in iterative computations to arrive at the set of states for which the specification is true Algorithmic technique

3 Model Checking Requires the construction of a finite-state approximation of the continuous dynamics Verification of properties for the finite-state approximation may be inconclusive! E.g. if a state is reachable in the finite-state approximation, that doesn’t imply it is reachable in the underlying hybrid system Tools can refine the approximation, but refinement will not necessarily terminate

4 Example: Batch Reactor System Exothermic reaction: 2A + B  D Discrete controller: v A, v B, v C, v O Variables: T R, V R, t R, c A

5 Operation Procedure Formal verification: Are the forbidden states (z 5, z 6 ) reachable?

6 Hybrid Model of System

7 Model Checking Tools UPPAAL HYTECH d/dt CheckMate VERDICT

8 UPPAAL Systems are represented as networks of timed automata (TA) Can analyze simple liveness properties and reachability properties Uses clock difference diagrams to represent TA in a compact format User must manually translate the process behavior into a set of concurrent TA

9 UPPAAL operation procedure reactor behavior Desired states: S2, S5, S9 Result: S10 is reachable!

10 HYTECH Specifications are given as temporal logic expressions Uses symbolic model checking in the continuous state space Can only model flows with form (linear hybrid automata)

11 HYTECH Three approaches to verify systems of higher complexity than LHA: Clock transition models – continuous state variables are replaced by clock variables (pure integrators with different rates) Constraints identify regions for which given rates are valid Rate translation – Retains original state variables, but approximates continuous behavior with piecewise- constant bounds on first derivatives Linear phase-portrait approximation – Derivatives of state variables can be constrained in linear combinations Gives a better approximation to original state equations

12 Rate Translation

13 d/dt Performs reachability analysis for hybrid systems with linear continuous dynamics Face-lifting – computing collections of orthogonal polyhedra to represent reachable sets Allows models with uncertainty in the input in the dynamics equations E.g. User must linearize system dynamics around the operating point of interest

14 Face Lifting Each face is moved by an amount that bounds all possible trajectories starting on the face

15 CheckMate MATLAB-based tool, handles systems with arbitrary nonlinear continuous dynamics Allows any Simulink/StateFlow blocks for simulation Verification: Logical operators (AND, OR, XOR, etc.) MUX/DEMUX Switched Continuous System Block (SCSB) Polyhedral Threshold Block (PTHB) Finite State Machine Block (FSMB)

16 CheckMate Computes finite-state approximation using general polyhedral over-approximation to sets of reachable states for continuous dynamics Can refine current approximation and attempt verification again if result is inconclusive Searches for states that led to failure, splits them, recomputes reachable states, evaluates logic expression again

17 CheckMate Controller (FSMB) PHTBs

18 CheckMate within 1 hour?

19 VERDICT Modular modelling/verification of timed/hybrid systems Structure of system is built in a modular manner Behavior of each module is described by a discrete, timed, or hybrid transition system Translates the model into the input languages of different model checkers for discrete/timed automata HYTECH, KRONOS, SMV, UPPAAL

20 VERDICT controller hybrid behavior

21 Comparisons Two key issues: Computation takes hours – only very small systems can be verified! Modularity: break systems down into smaller pieces Interpretation of results – cause of failure is not clear

22 Making Tools Useful for Industry Connecting with Existing Models Model-building process is time-consuming, could introduce errors Tools for Exploring Models and Results Useful results are obtained only when the user is directing the verification process Tools for Building Verification Specifications & Interpreting Results Difficult to translate requirement specifications into formal specifications to be verified

Download ppt "Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen."

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

1 Verification by Model Checking. 2 Part 1 : Motivation.
Copyright 2000 Cadence Design Systems. Permission is granted to reproduce without modification. Introduction An overview of formal methods for hardware.

Copyright 2000 Cadence Design Systems. Permission is granted to reproduce without modification. Introduction An overview of formal methods for hardware.
Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.

Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.
Robustness Analysis and Tuning of Synthetic Gene Networks Grégory Batt Center for Information and Systems Engineering and Center for BioDynamics Boston.

Robustness Analysis and Tuning of Synthetic Gene Networks Grégory Batt Center for Information and Systems Engineering and Center for BioDynamics Boston.
Introducing Formal Methods, Module 1, Version 1.1, Oct., 1998 1 Formal Specification and Analytical Verification L 5.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.
Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:

Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:
Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.

Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.
UPPAAL Introduction Chien-Liang Chen.

UPPAAL Introduction Chien-Liang Chen.
Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.

Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.
Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?

Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?
Timed Automata.

Timed Automata.
Model Checking Genetic Regulatory Networks with Parameter Uncertainty Grégory Batt, Calin Belta, Ron Weiss HSCC 2007 Presented by Spring Berman ESE 680-003:

Model Checking Genetic Regulatory Networks with Parameter Uncertainty Grégory Batt, Calin Belta, Ron Weiss HSCC 2007 Presented by Spring Berman ESE :
Zonotopes Techniques for Reachability Analysis Antoine Girard Workshop “Topics in Computation and Control” March 27 th 2006, Santa Barbara, CA, USA

Zonotopes Techniques for Reachability Analysis Antoine Girard Workshop “Topics in Computation and Control” March 27 th 2006, Santa Barbara, CA, USA
Combining Symbolic Simulation and Interval Arithmetic for the Verification of AMS Designs Mohamed Zaki, Ghiath Al Sammane, Sofiene Tahar, Guy Bois FMCAD'07.

Combining Symbolic Simulation and Interval Arithmetic for the Verification of AMS Designs Mohamed Zaki, Ghiath Al Sammane, Sofiene Tahar, Guy Bois FMCAD'07.
Hybrid Approach to Model-Checking of Timed Automata DAT4 Project Proposal Supervisor: Alexandre David.

Hybrid Approach to Model-Checking of Timed Automata DAT4 Project Proposal Supervisor: Alexandre David.
Semantic Translation of Simulink/Stateflow Models to Hybrid Automata using Graph Transformations A. Agarwal, Gy. Simon, G. Karsai ISIS, Vanderbilt University.

Semantic Translation of Simulink/Stateflow Models to Hybrid Automata using Graph Transformations A. Agarwal, Gy. Simon, G. Karsai ISIS, Vanderbilt University.
1 Verification and Synthesis of Hybrid Systems Thao Dang October 10, 2000.

1 Verification and Synthesis of Hybrid Systems Thao Dang October 10, 2000.
Discrete Abstractions of Hybrid Systems Rajeev Alur, Thomas A. Henzinger, Gerardo Lafferriere and George J. Pappas.

Discrete Abstractions of Hybrid Systems Rajeev Alur, Thomas A. Henzinger, Gerardo Lafferriere and George J. Pappas.
EECE 396-1 Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.

EECE Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.
Abstractions. Outline Informal intuition Why do we need abstraction? What is an abstraction and what is not an abstraction A framework for abstractions.

Abstractions. Outline Informal intuition Why do we need abstraction? What is an abstraction and what is not an abstraction A framework for abstractions.

Similar presentations

Ads by Google