Presentation is loading. Please wait.

Presentation is loading. Please wait.

8/3/011 Formal methods for CARA development Insup Lee (Univ. of Pennsylvania) Rance Cleaveland (SUNY at Stony Brook) Elsa Gunter (NJIT)

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "8/3/011 Formal methods for CARA development Insup Lee (Univ. of Pennsylvania) Rance Cleaveland (SUNY at Stony Brook) Elsa Gunter (NJIT)"— Presentation transcript:

1 8/3/011 Formal methods for CARA development Insup Lee (Univ. of Pennsylvania) Rance Cleaveland (SUNY at Stony Brook) Elsa Gunter (NJIT)

2 SDRL & RTG University of Pennsylvania 8/3/01 2 CARA Case Study Thanks –… for giving us the opportunity to study CARA –… for sharing documents and providing domain expertise Our goals: –Study applicability of state-of-the-art formal techniques for development of safety critical embedded systems –Phase I: system modeling from requirements –Phase II: formulation and checking of properties on models General properties Specific safety properties (from requirements) –Phase III: implementation validation from models What we are not trying to do: –Develop a working system –Replace other existing efforts

3 SDRL & RTG University of Pennsylvania 8/3/01 3 Properties of high-confidence embedded systems Adherence to safety-critical properties Meeting timing constraints Satisfaction of resource constraints Confinement of resource accesses Supporting fault tolerance Domain specific requirements

4 SDRL & RTG University of Pennsylvania 8/3/01 4 Hoped-for outcome of CARA study Enriched methodologies for the development of reliable and robust CARA-like systems that incorporate formal modeling and analysis Requirement capture and analyzer, model checker, equivalence checker, test generator, etc. Evaluate the effectiveness of existing tools Development of domain specific framework and methodology

5 SDRL & RTG University of Pennsylvania 8/3/01 5 Development Process Requirements capture and analysis –Informal to formal –Consistency and completeness –Assumptions and interfaces between system components –Application-specific properties Design specifications and analysis –Formal modeling notations –Abstractions –Analysis techniques (simulation, model checking, equivalence checking, testing, etc.) Implementation –Manual/automatic code generation –Validation (testing, model extraction, etc.) Requirements Design specification Implementation

6 SDRL & RTG University of Pennsylvania 8/3/01 6 Ideal Requirement Capture Process Informal requirements Formal requirements Analysis results Requirement Analyzer Restricted NL Translator

7 SDRL & RTG University of Pennsylvania 8/3/01 7 Phases of Requirements Development Identify concepts and interfaces User Requirements System Specification World Knowledge Programming Platform Capture first using English, then formal languages such as (finite) state machines, process algebra, temporal logic, higher order logic

8 SDRL & RTG University of Pennsylvania 8/3/01 8 Top Level View of System CARA resuscitation unit Saline

9 SDRL & RTG University of Pennsylvania 8/3/01 9 Identify Interface Visibility – System, Environment Control – System, Environment Examples: –Infusate contents (saline/glucose/water): Environment controlled, System hidden –Infusate impedance: Environment controlled, System visible –Alarm for infusate impedance out of range: System controlled, Environment visible EnvironmentSystem

10 SDRL & RTG University of Pennsylvania 8/3/01 10 User Requirements Expressed only in terms of concepts visible to Environment Meaningful to end user, not programmer Example: –If a bag of pure water is attached to pump, within 10 seconds the pump will stop and an alarm will be sounded (for user) –Checking impedance (for programmer)

11 SDRL & RTG University of Pennsylvania 8/3/01 11 System specification Expressed only in terms of concepts visible to both Environment and System Meaningful to programmer, not to end user Implies User Requirements, when supplemented by World Knowledge Example: –If infusate impedance goes out of range, then within 10 seconds an alarm will be rung.

12 SDRL & RTG University of Pennsylvania 8/3/01 12 World (or Domain) Knowledge Expressed only in terms of concepts visible to Environment Bridges gap between User Requirements and System Specification Can be viewed as a specification of suitable environment for system Example: –Water has an impedance outside range for acceptable infusates (saline/glucose)

13 SDRL & RTG University of Pennsylvania 8/3/01 13 CARA Resuscitation Unit - Components Pump CARA Propaq

14 SDRL & RTG University of Pennsylvania 8/3/01 14 Programming Platform, or Machine Description of components used to construct the System Expressed only in terms of concepts visible to System Individual components may be viewed as systems themselves; other components are in there environment Examples: –Blood pressure monitor – Propaq, pump, display unit, resuscitation file (?), hardware for running algorithm

15 SDRL & RTG University of Pennsylvania 8/3/01 15 How to generate design specifications? By (informal) refinement of requirements specification Constructing from scratch based on requirements By extracting models from implementation

16 SDRL & RTG University of Pennsylvania 8/3/01 16 Formalism Design Specification and Analysis abstraction System specificatio n Requirement s formalization Formal model Properties Analysis abstraction 1 TCCS formalization 1 CTL* Model checking Formalism 1 abstraction 2 formalization 2 Timed automata CTL Model checking UPPAAL ACSR Monitors State-space exploration PARAGON abstraction 3 formalization 3

17 SDRL & RTG University of Pennsylvania 8/3/01 17 Implementation Validation Requirements Test generator Specifications Test suite Implementation Test results Test executor

18 SDRL & RTG University of Pennsylvania 8/3/01 18 Other issues Maintenance Documentation Traceability Dealing non-functional aspects such as resource constraints Code generation …

Download ppt "8/3/011 Formal methods for CARA development Insup Lee (Univ. of Pennsylvania) Rance Cleaveland (SUNY at Stony Brook) Elsa Gunter (NJIT)"

Similar presentations

Introducing Formal Methods, Module 1, Version 1.1, Oct., 1998 1 Formal Specification and Analytical Verification L 5.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.
Bernd Bruegge & Allen Dutoit Object-Oriented Software Engineering: Conquering Complex and Changing Systems 1 Software Engineering September 12, 2001 Capturing.

Bernd Bruegge & Allen Dutoit Object-Oriented Software Engineering: Conquering Complex and Changing Systems 1 Software Engineering September 12, 2001 Capturing.
Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.
Alternate Software Development Methodologies

Alternate Software Development Methodologies
ISBN 0-321-33025-0 Chapter 3 Describing Syntax and Semantics.

ISBN Chapter 3 Describing Syntax and Semantics.
Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.

Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.
6/22/011 Case Study: Computer Assisted Resuscitation Algorithm (CARA) System Insup Lee Department of Computer and Information Science University of Pennsylvania.

6/22/011 Case Study: Computer Assisted Resuscitation Algorithm (CARA) System Insup Lee Department of Computer and Information Science University of Pennsylvania.
Infusion Pump Controller Requirements Definition A Decision-Table Approach by Richard Riehle.

Infusion Pump Controller Requirements Definition A Decision-Table Approach by Richard Riehle.
Course Summary. © Katz, 2003 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.

Course Summary. © Katz, 2003 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.
VERTAF: An Application Framework for Design and Verification of Embedded Real-Time Software Pao-Ann Hsiung, Shang-Wei Lin, Chih-Hao Tseng, Trong-Yen Lee,

VERTAF: An Application Framework for Design and Verification of Embedded Real-Time Software Pao-Ann Hsiung, Shang-Wei Lin, Chih-Hao Tseng, Trong-Yen Lee,
Chapter 6 Methodology Conceptual Databases Design Transparencies © Pearson Education Limited 1995, 2005.

Chapter 6 Methodology Conceptual Databases Design Transparencies © Pearson Education Limited 1995, 2005.
Analysis Stage (Phase I) The goal: understanding the customer's requirements for a software system. n involves technical staff working with customers n.

Analysis Stage (Phase I) The goal: understanding the customer's requirements for a software system. n involves technical staff working with customers n.
Property-Based Test Generation Li Tan, Oleg Sokolsky, and Insup Lee University of Pennsylvania.

Property-Based Test Generation Li Tan, Oleg Sokolsky, and Insup Lee University of Pennsylvania.
UML CASE Tool. ABSTRACT Domain analysis enables identifying families of applications and capturing their terminology in order to assist and guide system.

UML CASE Tool. ABSTRACT Domain analysis enables identifying families of applications and capturing their terminology in order to assist and guide system.
CIS 700-3: Selected Topics in Embedded Systems Insup Lee University of Pennsylvania June 24, 2015 Introduction.

CIS 700-3: Selected Topics in Embedded Systems Insup Lee University of Pennsylvania June 24, 2015 Introduction.
SDRL & RTG University of Pennsylvania 8/3/2001 Formalization of CARA system requirements Oleg Sokolsky Department of Computer and Information Science University.

SDRL & RTG University of Pennsylvania 8/3/2001 Formalization of CARA system requirements Oleg Sokolsky Department of Computer and Information Science University.
Course Summary. © Katz, 2007 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.

Course Summary. © Katz, 2007 Formal Specifications of Complex Systems-- Real-time 2 Topics (1) Families of specification methods, evaluation criteria.
© 2006 Pearson Addison-Wesley. All rights reserved2-1 Chapter 2 Principles of Programming & Software Engineering.

© 2006 Pearson Addison-Wesley. All rights reserved2-1 Chapter 2 Principles of Programming & Software Engineering.
End-to-End Design of Embedded Real-Time Systems Kang G. Shin Real-Time Computing Laboratory EECS Department The University of Michigan Ann Arbor, MI 48019-2122.

End-to-End Design of Embedded Real-Time Systems Kang G. Shin Real-Time Computing Laboratory EECS Department The University of Michigan Ann Arbor, MI
5/24/011 Advanced Tool Integration for Embedded Systems Assurance Insup Lee Department of Computer and Information Science University of Pennsylvania.

5/24/011 Advanced Tool Integration for Embedded Systems Assurance Insup Lee Department of Computer and Information Science University of Pennsylvania.

Similar presentations

Ads by Google