adaptive contracts
play

Adaptive Contracts For the Internet of Things Antonio Iannopollo - PowerPoint PPT Presentation

Jun 16, 2023 •344 likes •673 views

Adaptive Contracts For the Internet of Things Antonio Iannopollo Advised by Prof. Sangiovanni-Vincentelli Marten Lohstroh Advised by Prof. Lee University of California, Berkeley CPS V&V I&F Workshop, CMU, Pittsburgh May 6, 2016

  1. Adaptive Contracts For the Internet of Things Antonio Iannopollo Advised by Prof. Sangiovanni-Vincentelli Marten Lohstroh Advised by Prof. Lee University of California, Berkeley CPS V&V I&F Workshop, CMU, Pittsburgh May 6, 2016 TerraSwarm Research Center 05/06/16

  2. Introduction Motivation The Internet of Things (IoT) poses unprecedented challenges to designers: ● Vast heterogeneity ; ● Variable utility ; ● “Perishable” environment assumptions . Goal: Adaptive Contracts ● Integrate dynamic re-configuration and re-purposing in the design process; ● Extend Contract Algebra , by defining an approximation relation . Means: Accessors, Platform-based Design, Contracts TerraSwarm Research Center 05/06/16

  3. Diverse Requirements TerraSwarm Research Center 05/06/16

  4. Unanticipated Use + = ? BROKEN IF SEALED! TerraSwarm Research Center 05/06/16

  5. Fluid Environments ? + = ? ● Mobility ● Evolving Infrastructure TerraSwarm Research Center 05/06/16

  6. A Tower of Babel? Pieter Bruegel (1563) TerraSwarm Research Center 05/06/16

  7. Standardization? TerraSwarm Research Center 05/06/16

  8. Accessors to tame the IoT Accessors provide access to any resource that is reachable through an arbitrary protocol and exposes some interface . Accessors • Wrap an existing thing or service • Export an actor interface • Are composable with other actors TerraSwarm Research Center 05/06/16

  9. Platform-Based Design (PBD) The application space includes the specification for the current mapping process. A specification can be provided Specs Application space by the designer or be the result of another PBD iteration Refinement The mapping process consists in the selection of a specific architectural Mapping and instance, evaluating costs and optimization functional/architectural constraints Abstraction The architectural space includes platform components (libraries) abstracted from Architectural space lower levels, connection rules and other properties such as component cost and C1 timing properties Cn TerraSwarm Research Center 05/06/16

  10. Platform-Based Design (PBD) Specs Application space Refinement Contracts to formally reason about horizontal and vertical Mapping and relations defined by PBD! optimization Abstraction Architectural space C1 Cn TerraSwarm Research Center 05/06/16

  11. Accessors: Semantic Adapters Accessor Discrete Events Horizontal Vertical Accessor Runtime (JavaScript) The accessor bridges two semantic domains : Discrete Events (DE) and the accessor runtime (AR). Each domain has its own rules. Most importantly, the AR uses the asynchronous atomic callback (AAC) pattern due to its implementation in JavaScript, in DE a component may only react when it is fired . “An Interface Theory for the Internet of Things”, Lohstroh and Lee (SEFM’15) TerraSwarm Research Center 05/06/16

  12. Beyond Interface Automata Other useful properties... ● For example, have responses from a Web server appear at the accessor’s output port in the same order as the corresponding requests arrived at its input port (in LTL): TerraSwarm Research Center 05/06/16

  13. Assume-Guarantee Contracts Albert Benveniste, Benoit Caillaud, Dejan Nickovic, Roberto Passerone, Jean-Baptiste Raclet, et al.. Contracts for System Design. ] RR-8147, INRIA. 2012 A contract C=(A, G) is characterized by: ● A set of variables, or ports Contract ● A set A of assumptions ● A set G of guarantees A and G represent sets of environment defines and system behaviors For a component M (also defined as a set of Component behaviors) we have that M ⊨ C iff A ∩ M ⊆ G A contract is saturated if in the form: Ω Ω Ω G G G C = (A, G ∪ ¬A) A A A M M M TerraSwarm Research Center 05/06/16

  14. Assume-Guarantee Contracts A/G Contract Theory specifies a number of operations to operate on contracts. We can recall a few of them: A G C1 C2 TerraSwarm Research Center 05/06/16

  15. LTL Assume-Guarantee Contracts Concrete representation of contracts using Linear Temporal Logic formulas ● Assumptions and guarantees of a contract represented by a pair of LTL formulas Given contracts ● Composition is ● Refinement is A G C 1 C 2 TerraSwarm Research Center 05/06/16

  16. Contracts in IoT systems Contracts are well suited for traditional systems design, but they can be problematic in more dynamic contexts... Example: security camera with remote analysis of the footage Contract C describes one aspect of the controller for the camera. cloud C Inputs: x (network bandwidth) Outputs: y (alarm notification delay) A: x ≥ 1 Mbps G: y < 10 sec In saturated form, guarantees are x < 1 Mbps ∨ y < 10 sec If the network is too slow, then the component is allowed to expose any behavior! TerraSwarm Research Center 05/06/16

  17. Adaptive Behavior (intuitively) Gradually degrade performance , according to current environment conditions Example: security camera with remote analysis of the footage If the network cannot satisfy the assumptions, then the component should guarantee lower performance C Inputs: x (network bandwidth) cloud Outputs: y (alarm notification delay) A: x ≥ 1 Mbps G: y < 10 sec 512Kbps C* Inputs: x (network bandwidth) Outputs: y (alarm notification delay) A: x ≥ 512 Kbps G: y < 20 sec C* represents an approximation of the original contract C TerraSwarm Research Center 05/06/16

  18. Adaptive Behavior (formally) We introduce the notion of Contract Approximation : ● This relation allows for the definition of a partial order on reliability levels of systems. ● A system implementing an approximate contract will be able to work with a wider set of assumptions at a cost of degraded guarantees. TerraSwarm Research Center 05/06/16

  19. Example Charging Station for Electric Cars A charging station for electric cars is able to optimize power delivery to connected cars. Knowing how many cars are charging, the controller delivers a certain amount of power to every car to optimize charging time ... A typical requirement for this scenario could be: ● ... ● If a single car is connected to the charging station, its charging time cannot exceed 3h. ● ... TerraSwarm Research Center 05/06/16 With Jun Jie Ng and Lucas Servén

  20. Example Charging Station for Electric Cars A charging station for electric cars is able to optimize power delivery to connected cars. Knowing how many cars are charging, the controller delivers a certain amount of power to every car to optimize charging time ... Spec: C2: Battery module C1: Charging module Input : n: # of cars (unitless) Input : n: # of cars (unitless) Input : p: charging power (W) Output : t: charging time (hours) Output : t: charging time (hours) Output : p: charging power (W) Assume : n = 1 Assume : 1000W ≤ p ≤ 5000W Assume : 0 ≤ n ≤ 2 Guarantee : 0 ≤ t ≤ 3h Guarantee : 0 ≤ t ≤ 2h Guarantee : 1500W ≤ p ≤ 5000W n p Vertical C1 Contract Relation t C2 Horizontal Contract Composition C1 ⊗ C2 TerraSwarm Research Center 05/06/16 With Jun Jie Ng and Lucas Servén

  21. Horizontal Composition: C1 ⊗ C2 Is C1 ⊗ C2 compatible ? Is C1 ⊗ C2 consistent ? C1 ⊗ C2 Assumptions: C1 ⊗ C2 Guarantees: (0 ≤ n ≤ 2 ∧ 1000W ≤ p ≤ 5000W) ∨ ¬ [1500W ≤ p ≤ 5000W ∨ ¬(0 ≤ n ≤ 2)] ∧ { [1500W ≤ p ≤ 5000W ∨ ¬(0 ≤ n ≤ 2)] ∧ [(0 ≤ t ≤ 2h) ∨ ¬(1000W ≤ p ≤ 5000W)] [(0 ≤ t ≤ 2h) ∨ ¬(1000W ≤ p ≤ 5000W)] } ✓ Compatible ✓ Consistent TerraSwarm Research Center 05/06/16

  22. Does C1 ⊗ C2 refine Spec? Refinement Check: Assumptions C1 ⊗ C2 Assumptions: (0 ≤ n ≤ 2 ∧ 1000W ≤ p ≤ 5000W) ∨ ¬ { [1500W ≤ p ≤ 5000W ∨ ¬(0 ≤ n ≤ 2)] ∧ [(0 ≤ t ≤ 2h) ∨ ¬(1000W ≤ p ≤ 5000W)] } ⊇ Spec Assumptions: n = 1 TerraSwarm Research Center 05/06/16

  23. Does C1 ⊗ C2 refine Spec? Refinement Check: Guarantees C1 ⊗ C2 Guarantees: [1500W ≤ p ≤ 5000W ∨ ¬(0 ≤ n ≤ 2)] ∧ [(0 ≤ t ≤ 2h) ∨ ¬(1000W ≤ p ≤ 5000W)] ⊇ Spec Guarantees: 0 ≤ t ≤ 3h ∨ ¬ (n = 1) ✓ Yes, C1 ⊗ C2 ≼ Spec TerraSwarm Research Center 05/06/16

  24. The System is Repurposed What happens if a charging station needs to charge more cars? (i.e. the requirement requires a guarantee for 3 cars) We need to approximate C1 and degrade system performance. Spec: C2: Battery module C1: Charging module Input : n: # of cars (unitless) Input : n: # of cars (unitless) Input : p: charging power (W) Output : t: charging time (hours) Output : t: charging time (hours) Output : p: charging power (W) Assume : n = 3 Assume : 1000W ≤ p ≤ 5000W Assume : 0 ≤ n ≤ 2 Guarantee : 0 ≤ t ≤ 3h Guarantee : 0 ≤ t ≤ 2h Guarantee : 1500W ≤ p ≤ 5000W n p C1 t C2 C1 ⊗ C2 TerraSwarm Research Center 05/06/16

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

3. Contracts 3.1 Meaning of Contract Law Terms 3.2 Formation of Contracts 3.3 Legal

3. Contracts 3.1 Meaning of Contract Law Terms 3.2 Formation of Contracts 3.3 Legal

3. Contracts 3.1 Meaning of Contract Law Terms 3.2 Formation of Contracts 3.3 Legal Incapacity to Enter Contracts 3.4 Third-Party Beneficiary Contracts 3.5 Assignment and Delegation of Contract Rights and Duties 3.6 Statute of Frauds

1.16k views • 97 slides
Relation with Other Contractual ADR Construction Work Contracts Procurement of Materials

Relation with Other Contractual ADR Construction Work Contracts Procurement of Materials

Compulsory Adjudication Effects, Procedure &amp; Inter- Relation with Other Contractual ADR Construction Work Contracts Procurement of Materials and Labour Contracts Construction Consultancy Contracts Contracts Carried Out

535 views • 34 slides
From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov

From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov

From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov convinced me that direct adaptive control can be robust Dimitri Peaucelle FRontiers of ADaptive and nonlinear CONtrol (FRADCON 2018) ECC Workshop,

628 views • 19 slides
Contracts 1 Contracts IC 6-1.1-4-17 Subject to the approval of the DLGF, a county

Contracts 1 Contracts IC 6-1.1-4-17 Subject to the approval of the DLGF, a county

Assessment and Software Contracts 1 Contracts IC 6-1.1-4-17 Subject to the approval of the DLGF, a county assessor may employ professional appraisers as technical advisors for assessments in all townships in the county. The DLGF may

266 views • 9 slides
Contracts Hot Topics - Compliant Contracts at the Speed of War Presented By: Ms. Marie Greening

Contracts Hot Topics - Compliant Contracts at the Speed of War Presented By: Ms. Marie Greening

One team, one voice delivering global acquisition insight that matters . Contracts Hot Topics - Compliant Contracts at the Speed of War Presented By: Ms. Marie Greening Chief Operations Officer 26 April 2017 Unclassified Agenda DCMA

240 views • 11 slides
SCE-Proposed QF PPA for Firm Power Contracts (Qualifying Facilities with Expiring Contracts)

SCE-Proposed QF PPA for Firm Power Contracts (Qualifying Facilities with Expiring Contracts)

SCE-Proposed QF PPA for Firm Power Contracts (Qualifying Facilities with Expiring Contracts) CPUC Workshop November 15, 2007 Introduction This presentation provides a summary level overview of key contract attributes contained in SCEs

349 views • 14 slides
Contracts 7 January 2019 OSU CSE 1 Contract Details Contracts in the APIs for OSU CSE

Contracts 7 January 2019 OSU CSE 1 Contract Details Contracts in the APIs for OSU CSE

Contracts 7 January 2019 OSU CSE 1 Contract Details Contracts in the APIs for OSU CSE components include these important features: Parameter modes Two stipulations: Parameter names in requires and ensures clauses always

408 views • 25 slides
10/2/2017 Types of Contracts Transactional Contracts versus Relational Contracts More

10/2/2017 Types of Contracts Transactional Contracts versus Relational Contracts More

10/2/2017 N EGOTIATING P ROFESSIONAL A GREEMENTS F ROM A C ONSULTANT S P ERSPECTIVE Van Collins, JD Nancie Boccio, MBA, JD President/CEO Senior Consultant, American Council of Parametrix Engineering Companies (ACEC) N OVEMBER 2017 S ETTING THE

593 views • 20 slides
Bilateral contracts Bilateral contracts are for a direct exchange of energy between a buyer and a

Bilateral contracts Bilateral contracts are for a direct exchange of energy between a buyer and a

Bilateral contracts Bilateral contracts are for a direct exchange of energy between a buyer and a seller, in a decentralized fashion They may both be producers and/or consumers Most likely a broker is involved... Eventually, the system operator

279 views • 12 slides
Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all

Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all

Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all about what smart contracts are... ...but what does a real smart contract look like? Lets talk about writing actual Smart Contracts with code

809 views • 50 slides
Group Sequential and Adaptive Designs Part II: Adaptive Designs May 2, 2015 Cyrus Mehta, Ph.D.

Group Sequential and Adaptive Designs Part II: Adaptive Designs May 2, 2015 Cyrus Mehta, Ph.D.

Group Sequential and Adaptive Designs Part II: Adaptive Designs May 2, 2015 Cyrus Mehta, Ph.D. Cytel Inc. Adaptive Designs Adaptive designs are defined as: changes in design or analyses guided by examination of the accumulated

1.11k views • 64 slides
Specification and Analysis of Contracts Lecture 2 Components, Services and Contracts Gerardo

Specification and Analysis of Contracts Lecture 2 Components, Services and Contracts Gerardo

Specification and Analysis of Contracts Lecture 2 Components, Services and Contracts Gerardo Schneider gerardo@ifi.uio.no http://folk.uio.no/gerardo/ Department of Informatics, University of Oslo SEFM School, Oct. 27 - Nov. 7, 2008 Cape

632 views • 45 slides
Specification and Analysis of Contracts Lecture 7 Specification of Deontic Contracts Using

Specification and Analysis of Contracts Lecture 7 Specification of Deontic Contracts Using

Specification and Analysis of Contracts Lecture 7 Specification of Deontic Contracts Using CL Gerardo Schneider gerardo@ifi.uio.no http://folk.uio.no/gerardo/ Department of Informatics, University of Oslo SEFM School, Oct. 27 - Nov. 7,

873 views • 54 slides
Neural Nets for Adaptive Filter and Adaptive Neural Nets as Adaptive Filters Pattern Recognition

Neural Nets for Adaptive Filter and Adaptive Neural Nets as Adaptive Filters Pattern Recognition

Neural Nets for Adaptive Filter and Adaptive Pattern Recognition Brian Young Article Context Neural Nets for Adaptive Filter and Adaptive Neural Nets as Adaptive Filters Pattern Recognition Adaptive Filters Min. Disturb. and LMS

976 views • 23 slides
Contracts 101 April 2014 619.359.6600 | partnersdocs.com PPO Scorecard 34 Contracts Multiplan

Contracts 101 April 2014 619.359.6600 | partnersdocs.com PPO Scorecard 34 Contracts Multiplan

Contracts 101 April 2014 619.359.6600 | partnersdocs.com PPO Scorecard 34 Contracts Multiplan (Workers Comp) AETNA Health Aetna Medicare Advantage PPO National Provider Network/ Affiliated Health Funds Medavant Pacific Foundation for

506 views • 17 slides
Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive

Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive

Beyond Adaptive Submodularity: Approximation Guarantees of Greedy Policy with Adaptive Submodularity Ratio Kaito Fujii (UTokyo) &amp; Shinsaku Sakaue (NTT) The 36th I nternational Conference on Machine Learning Jun. 12, 2019 Application: I n fl

955 views • 30 slides
Approximation schemes for machine scheduling with resource (in-)dependent processing times Klaus

Approximation schemes for machine scheduling with resource (in-)dependent processing times Klaus

Approximation schemes for machine scheduling with resource (in-)dependent processing times Klaus Jansen, Marten Maack, Malin Rau April 4, 2016 Scheduling parallel Tasks procesing time processors Scheduling parallel Tasks procesing time 6 7

831 views • 49 slides
WWW.FORSVARSMAKTEN.SE WWW.FORSVARSMAKTEN.SE The future of Swedish military diving LtCdr Mrten

WWW.FORSVARSMAKTEN.SE WWW.FORSVARSMAKTEN.SE The future of Swedish military diving LtCdr Mrten

WWW.FORSVARSMAKTEN.SE WWW.FORSVARSMAKTEN.SE The future of Swedish military diving LtCdr Mrten Silvanius, M.Sc WWW.FORSVARSMAKTEN.SE Agenda WWW.FORSVARSMAKTEN.SE WWW.FORSVARSMAKTEN.SE Historical review The faith of Vasa

638 views • 36 slides
2017 WiLS Annual Membership Meeting Tell us about your favorite community partnership! Submit

2017 WiLS Annual Membership Meeting Tell us about your favorite community partnership! Submit

2017 WiLS Annual Membership Meeting Tell us about your favorite community partnership! Submit your response here: https://pollev.com/surveys/4ldJosLM4/web Welcome! Heather L. Winter, Chair, Milwaukee Art Museum Peg Billing, Chair-Elect,

555 views • 51 slides
A Big Data Arsenal for the 21 st Century Matt Asay VP, Marketing &amp; Business Development,

A Big Data Arsenal for the 21 st Century Matt Asay VP, Marketing &amp; Business Development,

A Big Data Arsenal for the 21 st Century Matt Asay VP, Marketing &amp; Business Development, MongoDB MongoDB Inc. Proprietary and Confidential 7 million downloads 150,000 online education registrations 1,000 active subscribers 20,000

409 views • 38 slides
Living with Continual Failure Ronald L. Rivest Viterbi Professor of EECS MIT, Cambridge, MA

Living with Continual Failure Ronald L. Rivest Viterbi Professor of EECS MIT, Cambridge, MA

Living with Continual Failure Ronald L. Rivest Viterbi Professor of EECS MIT, Cambridge, MA Michael Rabin Celebration 2011-08-29 1 Living with Continual Failure Ronald L. Rivest Viterbi Professor of EECS MIT, Cambridge, MA Michael Rabin

1.46k views • 122 slides
Necessary, but not Sufficient IT Risk &amp; Assurance Mrten Trolin, PhD, CISA 6 December, 2010

Necessary, but not Sufficient IT Risk &amp; Assurance Mrten Trolin, PhD, CISA 6 December, 2010

Why Good Technology is Necessary, but not Sufficient IT Risk &amp; Assurance Mrten Trolin, PhD, CISA 6 December, 2010 Contents 1 Who we are 2 IT Security in practice - How to build insecure systems from good components 3 Some real-life

569 views • 24 slides
Exact Algorithms for Finding Well-Connected 2-Clubs in Sparse Real-World Graphs: Theory and

Exact Algorithms for Finding Well-Connected 2-Clubs in Sparse Real-World Graphs: Theory and

Exact Algorithms for Finding Well-Connected 2-Clubs in Sparse Real-World Graphs: Theory and Experiments Andr e Nichterlein Algorithmics and Computational Complexity, Faculty IV, TU Berlin Shonan Meeting 144, March 5th Based on joint work

581 views • 16 slides
Machine Learning and Society Why Autonomous Warfare is a Bad Idea Noel Sharkey University of

Machine Learning and Society Why Autonomous Warfare is a Bad Idea Noel Sharkey University of

Machine Learning and Society Why Autonomous Warfare is a Bad Idea Noel Sharkey University of Sheffield International Committee for Robot Arms Control Foundation for Responsible Robotics direct human control of weapons autonomous weapons

537 views • 24 slides

More recommend