Presentation is loading. Please wait.

Presentation is loading. Please wait.

Beyond HyTech Presented by: Ben Horowitz and Rupak Majumdar Joint work with Tom Henzinger and Howard Wong-Toi.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Beyond HyTech Presented by: Ben Horowitz and Rupak Majumdar Joint work with Tom Henzinger and Howard Wong-Toi."— Presentation transcript:

1 Beyond HyTech Presented by: Ben Horowitz and Rupak Majumdar {bhorowit,rupak}@eecs.berkeley.edu Joint work with Tom Henzinger and Howard Wong-Toi.

2 Structure of this talk n Hybrid automata n Symbolic model checking n HyTech n Interval numerics n HyTech’s algorithm n Extending HyTech’s dynamics n Thermostat example

3 Hybrid automata n (V, E, X, pre, post, init, flow, jump, inv, Σ)

4 Symbolic model checking n State space of a hybrid automaton is infinite. n Thus, verification algorithms must be symbolic. n To have a symbolic algorithm, we need: u finite representation of infinite state sets; u Pre, Boolean operations as primitives on state sets.

5 HyTech n Symbolic model checker for hybrid automata. n Automata must be polyhedral: u flow conditions are polyhedra; u invariants, pre, post, etc. are also polyhedra; u state sets are unions of convex polyhedra; u Pre implemented as polyhedral manipulation.

6 HyTech cont. n HyTech has been used to verify several realistic examples: u audio control protocol, u steam boiler, u auto engine in cutoff controller mode, u...

7 Shortcomings of HyTech n HyTech allows only restrictive dynamics: u polyhedral automata n For example, in the cutoff control study: u dynamics required extensive manual approximation before HyTech could be applied.

8 Current ways to avoid shortcomings n For a large system, one may: u Simulate via numerical integration: F not appropriate for verification: may miss events, round-off errors; u Massage into HyTech-acceptable form: F messy, F time-consuming.

9 Avoiding shortcomings, cont. n Massaging input with rate translation: u Replace nonlinear x with linear x. u Bound (d/dt)x by upper & lower constants. u Split location v into several locations to yield better approximation.

10 Massaging input, cont. Thermostat becomes: State explosion!

11 Our objective n Our aim is to provide both a more direct and a more accurate analysis of hybrid systems. u More direct: dynamics may be modeled directly. u More accurate: bounds obtained are tighter. n We have implemented a prototype.

12 Interval numerical methods n Arithmetic operators on intervals instead of reals. u [2.7818, 3.1416] n Numerical ODE solvers available. n ODE solutions lie within validated intervals. n In worst case, solution is unacceptably wide. u But solution is never false.

13 HyTech’s algorithm n Maintain two sets of regions: u R : already-explored regions, u R’ : to-be-explored regions. n Initially, R =  and R’ is the initial region. n while (R’   ): u remove region r from R’, u compute r’s event and time successors S, u add non-visited successors to R’, u R := R  { r }.

14 n Maintain two sets of regions: u R : already-explored region, u R’ : to-be-explored region. n Initially, R =  and R’ is the initial region. n while (R’  ): u remove region r from R’, u compute r’s event and time successors S, u add non-visited successors to R’, u R := R  { r }. Our algorithm

15 r Computing time successors n Start with: u exit region e, u initial rectangle r. n Use interval numerical integration to compute time successors of r. n Stop when we hit e. e

16 Example: thermostat

17 Tighter bounds for thermostat n Using HyTech, it was shown that 0  x  4. n Using a 20-state approximation, HyTech obtains the bounds.28  x  3.76. n Using interval numerical methods, the new HyTech shows that.367  x  3.64.

18 Nuclear reactor n Example from [ACHH]. n HyTech with old algorithm gives t = 2 for controllability. n New Algorithm gives t = 1.55. n Other (small) examples in the HyTech example suite also work.

19 Future work n Try larger examples, e.g. cutoff control. n Investigate whether interval numerical methods can be used on polyhedra or ellipsoids. n Redesign HyTech’s input language and implementation.

Download ppt "Beyond HyTech Presented by: Ben Horowitz and Rupak Majumdar Joint work with Tom Henzinger and Howard Wong-Toi."

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

1 Verification by Model Checking. 2 Part 1 : Motivation.
Hybrid BDD and All-SAT Method for Model Checking Orna Grumberg Joint work with Assaf Schuster and Avi Yadgar Technion – Israel Institute of Technology.

Hybrid BDD and All-SAT Method for Model Checking Orna Grumberg Joint work with Assaf Schuster and Avi Yadgar Technion – Israel Institute of Technology.
Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.

Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.
Model Checking for an Executable Subset of UML Fei Xie 1, Vladimir Levin 2, and James C. Browne 1 1 Dept. of Computer Sciences, UT at Austin 2 Bell Laboratories,

Model Checking for an Executable Subset of UML Fei Xie 1, Vladimir Levin 2, and James C. Browne 1 1 Dept. of Computer Sciences, UT at Austin 2 Bell Laboratories,
1 of 13 STABILIZING a SWITCHED LINEAR SYSTEM by SAMPLED - DATA QUANTIZED FEEDBACK 50 th CDC-ECC, Orlando, FL, Dec 2011, last talk in the program! Daniel.

1 of 13 STABILIZING a SWITCHED LINEAR SYSTEM by SAMPLED - DATA QUANTIZED FEEDBACK 50 th CDC-ECC, Orlando, FL, Dec 2011, last talk in the program! Daniel.
1 of 14 LIMITED - INFORMATION CONTROL of SWITCHED and HYBRID SYSTEMS via PROPAGATION of REACHABLE SETS HSCC, Philadelphia, April 2013 Daniel Liberzon Coordinated.

1 of 14 LIMITED - INFORMATION CONTROL of SWITCHED and HYBRID SYSTEMS via PROPAGATION of REACHABLE SETS HSCC, Philadelphia, April 2013 Daniel Liberzon Coordinated.
A Survey of Runtime Verification Jonathan Amir 2004.

A Survey of Runtime Verification Jonathan Amir 2004.
Chapter 16 : KRONOS (Model Checking of Real-time Systems)

Chapter 16 : KRONOS (Model Checking of Real-time Systems)
Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:

Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:
50.530: Software Engineering Sun Jun SUTD. Week 10: Invariant Generation.

50.530: Software Engineering Sun Jun SUTD. Week 10: Invariant Generation.
UPPAAL Introduction Chien-Liang Chen.

UPPAAL Introduction Chien-Liang Chen.
Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.

Hybrid System Verification Synchronous Workshop 2003 A New Verification Algorithm for Planar Differential Inclusions Gordon Pace University of Malta December.
Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?

Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?
Timed Automata.

Timed Automata.
Zonotopes Techniques for Reachability Analysis Antoine Girard Workshop “Topics in Computation and Control” March 27 th 2006, Santa Barbara, CA, USA

Zonotopes Techniques for Reachability Analysis Antoine Girard Workshop “Topics in Computation and Control” March 27 th 2006, Santa Barbara, CA, USA
Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.

Verification of Hybrid Systems An Assessment of Current Techniques Holly Bowen.
Combining Symbolic Simulation and Interval Arithmetic for the Verification of AMS Designs Mohamed Zaki, Ghiath Al Sammane, Sofiene Tahar, Guy Bois FMCAD'07.

Combining Symbolic Simulation and Interval Arithmetic for the Verification of AMS Designs Mohamed Zaki, Ghiath Al Sammane, Sofiene Tahar, Guy Bois FMCAD'07.
Succinct Approximations of Distributed Hybrid Behaviors P.S. Thiagarajan School of Computing, National University of Singapore Joint Work with: Yang Shaofa.

Succinct Approximations of Distributed Hybrid Behaviors P.S. Thiagarajan School of Computing, National University of Singapore Joint Work with: Yang Shaofa.
1 Verification and Synthesis of Hybrid Systems Thao Dang October 10, 2000.

1 Verification and Synthesis of Hybrid Systems Thao Dang October 10, 2000.
Discrete Abstractions of Hybrid Systems Rajeev Alur, Thomas A. Henzinger, Gerardo Lafferriere and George J. Pappas.

Discrete Abstractions of Hybrid Systems Rajeev Alur, Thomas A. Henzinger, Gerardo Lafferriere and George J. Pappas.

Similar presentations

Ads by Google