Hybrid Cyberphysical System Verification with Simplex Using Discrete Abstractions

2010 16th IEEE Real-Time and Embedded Technology and Applications Symposium Pub Date : 2010-04-12 DOI:10.1109/RTAS.2010.27

Stanley Bak, Ashley Greer, S. Mitra

{"title":"Hybrid Cyberphysical System Verification with Simplex Using Discrete Abstractions","authors":"Stanley Bak, Ashley Greer, S. Mitra","doi":"10.1109/RTAS.2010.27","DOIUrl":null,"url":null,"abstract":"Providing integrity, efficiency, and performance guarantees is a key challenge in the development of next-generation cyberphysical systems. Rather than mandating complete system verification, the Simplex Architecture provides robust designs by incorporating a supervisory controller that takes corrective action only when the system is in danger of violating a desired invariant property such as safety. The central issue in applying this approach is designing the switching logic for the supervisory controller such that it guarantees safety and at the same time is not overly conservative.Previous research in the area relied on finding Lyapunov functions for the underlying continuous dynamical system. In contrast, in this paper, we present an automatic method for solving this design problem through discrete abstractions of the underlying hybrid system and model checking. We present a case study where, in collaboration with John Deere, we use the developed approach to create the Simplex decision module for an off-road vehicle, which is formally verified as both correct and timely.","PeriodicalId":356388,"journal":{"name":"2010 16th IEEE Real-Time and Embedded Technology and Applications Symposium","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-04-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"18","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 16th IEEE Real-Time and Embedded Technology and Applications Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/RTAS.2010.27","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 18

Abstract

Providing integrity, efficiency, and performance guarantees is a key challenge in the development of next-generation cyberphysical systems. Rather than mandating complete system verification, the Simplex Architecture provides robust designs by incorporating a supervisory controller that takes corrective action only when the system is in danger of violating a desired invariant property such as safety. The central issue in applying this approach is designing the switching logic for the supervisory controller such that it guarantees safety and at the same time is not overly conservative.Previous research in the area relied on finding Lyapunov functions for the underlying continuous dynamical system. In contrast, in this paper, we present an automatic method for solving this design problem through discrete abstractions of the underlying hybrid system and model checking. We present a case study where, in collaboration with John Deere, we use the developed approach to create the Simplex decision module for an off-road vehicle, which is formally verified as both correct and timely.

查看原文本刊更多论文

基于离散抽象的单纯形混合网络物理系统验证

提供完整性、效率和性能保证是下一代网络物理系统开发的关键挑战。Simplex架构不是强制进行完整的系统验证，而是通过整合一个监督控制器来提供健壮的设计，该控制器仅在系统处于违反期望的不变属性(如安全性)的危险时才采取纠正措施。应用这种方法的核心问题是为监控控制器设计开关逻辑，使其保证安全性，同时又不会过于保守。该领域以前的研究依赖于寻找潜在连续动力系统的李雅普诺夫函数。相反，在本文中，我们提出了一种通过对底层混合系统的离散抽象和模型检查来自动解决该设计问题的方法。我们提供了一个案例研究，在该案例中，我们与John Deere合作，使用开发的方法为越野车创建了Simplex决策模块，该模块被正式验证为既正确又及时。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2010 16th IEEE Real-Time and Embedded Technology and Applications Symposium

自引率

0.00%

发文量