d ependable s oftware
play

D EPENDABLE S OFTWARE FOR E MBEDDED S YSTEMS M ONIKA H EINER BTU - PowerPoint PPT Presentation

Aug 07, 2023 •414 likes •648 views

VW PRESENTATION , W OLFSBURG embedded systems 1 / 23 D EPENDABLE S OFTWARE FOR E MBEDDED S YSTEMS M ONIKA H EINER BTU Cottbus Computer Science Institute Data Structures & Software Dependability monika.heiner(at)informatik.tu-cottbus.de

  1. VW PRESENTATION , W OLFSBURG embedded systems 1 / 23 D EPENDABLE S OFTWARE FOR E MBEDDED S YSTEMS M ONIKA H EINER BTU Cottbus Computer Science Institute Data Structures & Software Dependability monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  2. PROLOGUE embedded systems 2 / 23 ❑ my new car ! MSR ASR ABS EBV ESP USC ❑ my new BOOP ASPECT software CORE ADT OOP VDM++ TL toolkit ? SADT HOL JSD LOTOS VDM MASCOT RBD DFD CCS CSP OBJ Z FTA SA CTL/LTL NVP RBS MTBF MTTF MTTR monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  3. D EPENDABLE S OFTWARE - A LLIGATORS embedded systems 3 / 23 ❑ There is no such thing ❑ Sw systems are abstract, i.e. have no as a complete task description. physical form. -> no constraints by manufacturing processes or by materials governed by ❑ Sw systems tend to be (very) large and physical laws inherently complex systems. -> SE differs from -> mastering the complexity? other engineering disciplines But, small system’s techniques But, human skills in abstract reasoning are can not be scaled up easily. limited. ❑ Large systems must be developed by ❑ Sw does not grow old. large teams. -> no natural die out of over-aged sw -> communication / organization overhead -> sw cemetery But, many programmers tend to be lonely But, “sw mammoths” keep us busy. workers. monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  4. O VERVIEW embedded systems 4 / 23 ❑ dependability SOFTWARE DEPENDABILITY taxonomy development phase operation phase ❑ methods FAULT AVOIDANCE to improve FAULT TOLERANCE dependability fault prevention fault masking fault removal defensive diversity manuelly fault recovery computer-aided validation animation / simulation / testing context checking (static analysis) consistency checking (verification) monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  5. S TATE OF THE A RT embedded systems 5 / 23 ❑ natural fault rate of seasoned programmers - about 1-3 % of produced program lines ❑ undecidability of basic questions in sw validation • program termination ? Murphy’s law: • equivalence of programs cleanroom There is always approach • program verification still another fault. • . . . ❑ validation = testing ❑ testing portion of total sw production effort standard system: ≥ 50 % -> -> extreme availability demands: ≈ 80 % monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  6. L IMITATIONS OF T ESTING embedded systems 6 / 23 ❑ “Testing means the execution of a pro- ❑ exhaustive testing impossible gram in order to find bugs.” [Myers 79] • all valid inputs -> A test run is called successful, -> correctness, . . . if it discovers unknown bugs, • all invalid inputs else unsuccessful. -> robustness, security, reliability, . . . • state-preserving software (OS/IS): ❑ testing is an inherently destructive a (trans-) action depends on task its predecessors -> most programmers unable -> all possible state sequences to test own programs ❑ “Program testing can be used ❑ systematic testing to show the presence of bugs, of concurrent programs but never to show their absence !” is much more complicated than [Dijkstra 72] of sequential ones monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  7. T ESTING OF C ONCURRENT S OFTWARE embedded systems 7 / 23 ❑ state space explosion, worst-case: product of the sequential state spaces PROBE EFFECT ❑ • system exhibits in test mode T → T IME other (less) behavior than in standard mode PN TPN -> test means (debugger) affect timing behavior prop(pn) prop(tpn) • result: masking of certain types of bugs: ⊇ DSt (pn) -> not DSt (tpn) RG (pn) RG (tpn) live(pn) -> not live (tpn) not BND (pn) -> BND (tpn) ❑ non-deterministic behavior, -> pn: time-dependent dynamic conflicts ❑ dedicated testing techniques to guarantee reproducibility, e. g. Instant Replay monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  8. M ODEL - BASED S YSTEM V ALIDATION embedded systems 8 / 23 ❑ general modelling principle Petrinetz Problem model system ❑ modelling = abstraction ❑ analysis = exhaustive exploration analysis ❑ (amount of) analysis techniques depend on conclusions model type model system properties properties monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  9. M ODEL - BASED S YSTEM V ALIDATION embedded systems 9 / 23 ❑ process and tools safety controller environment requirements ❑ DFG project, functional requirements PLC’s modelling modelling library (compiler) ❑ dedicated technical language for requirement spec control environment model model ❑ error message = inconsistency between system model & temporal composition requirement spec logic ❑ verification methods set of -> toolkit system temporal model formulae errors / verification methods inconsistencies monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  10. M ODEL - BASED S YSTEM V ALIDATION embedded systems 10 / 23 ❑ objective - reuse of certified REAL components PROGRAM SAFETY DREAM REQUIREMENTS PROGRAM FUNCTIONAL REQUIREMENTS monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  11. M ODEL - BASED S YSTEM V ALIDATION embedded systems 11 / 23 ❑ model MODEL CLASSES classes ❑ analysis methods QUALITATIVE MODELS QUANTITATIVE MODELS ❑ analysis objectives NON - STOCHASTIC worst-case context checking evaluation MODELS verification by model checking performance STOCHASTIC prediction MODELS reliability prediction monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  12. S TATE S PACE E XPLOSION , P OSSIBLE A NSWERS embedded systems 12 / 23 BASE CASE TECHNIQUES ALTERNATIVES ANALYSIS METHODS ❑ compositional methods ❑ structural analysis -> simple module interfaces -> structural properties, reduction ❑ lnteger Linear Programming ❑ abstraction by ignoring some state information -> conservative approximation ❑ compressed state space representations -> symbolic model checking (OxDD) ❑ lazy state space construction -> stubborn sets, sleep sets PROOF ENGINEERING ❑ alternative state spaces (partial order representations) -> finite prefix of branching process -> concurrent automaton monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  13. C ASE S TUDY - P RODUCTION C ELL embedded systems 13 / 23 deposit belt (belt 2) arm 2 travelling crane robot press 14 sensors arm 1 34 commands feed belt (belt 1) elevating rotary table monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  14. C ASE S TUDY - D INING P HILOSOPHERS embedded systems 14 / 23 BDD A NALYSIS R ESULT , P HIL 1000: Number of places/marked places/transitions: 7000/2000/5000 Number of states: ca. 1.1 * 10e667 1137517608656205162806720354362767684058541876947800011092858232169918\\ 1599595881220313326411206909717907134074139603793701320514129462357710\\ 2442895227384242418853247239522943007188808619270527555972033293948691\\ 3344982712874090358789533181711372863591957907236895570937383074225421\\ 4932997350559348711208726085116502627818524644762991281238722816835426\\ 4390437022222227167126998740049615901200930144970216630268925118631696\\ 7921927977564308540767556777224220660450294623534355683154921949034887\\ 4138935108726115227535084646719457353408471086965332494805497753382942\\ 1717811011687720510211541690039211766279956422929032376885414750385275\\ 51248819240105363652551190474777411874 Time to compute P-Invariants: 45885.66 sec Number of P-Invariants: 3000 Time to compute compact coding: 385.59 sec Number of Variables: 4000 Time: 3285.73 sec ca. 54.75’ monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  15. S UMMARY - S OFTWARE V ALIDATION embedded systems 15 / 23 ❑ validation can only be as good as ❑ validation needs the requirement specification knowledgeable professionals -> readable <-> unambiguous -> study / job specialization -> complete <-> limited size -> profession of “software validator” ❑ validation is extremely validation is no substitute for thinking ❑ time and resource consuming -> ’external’ quality pressure ? ❑ sophisticated validation ❑ There is no such thing as is not manageable without a fault-free program ! theory & tool support -> sufficient dependability for a given user profile monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

  16. A NOTHER S UMMARY - D OUBTS embedded systems 16 / 23 monika.heiner(at)informatik.tu-cottbus.de February 2004 data structures and software dependability

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

C DI, S eam &amp; R E S TE as y You havent seen RES T yet! Dan Allen S enior S oftware

C DI, S eam &amp; R E S TE as y You havent seen RES T yet! Dan Allen S enior S oftware

C DI, S eam &amp; R E S TE as y You havent seen RES T yet! Dan Allen S enior S oftware Engineer JBoss, by Red Hat Ag enda R E S T princ iples JAX -R S S eam R E S TE as y integ ration JAX -R S enhanc ed w ith C DI Demo Abus ing H TTP

807 views • 51 slides
Regression Testing S oftware is constantly modified Bug fixes Addition of

Regression Testing S oftware is constantly modified Bug fixes Addition of

Time - Aware Test Suite Prioritization Kristen R. Walcott, Gregory M. Kapfhammer, Mary Lou S offa Robert S . Roos University of Virginia Allegheny College International S ymposium on S oftware Testing and Analysis Portland, Maine July

573 views • 26 slides
Need representative, end-to-end applications 3. Cluster management 3. Cluster management built

Need representative, end-to-end applications 3. Cluster management 3. Cluster management built

A N O PEN -S OURCE OURCE B ENC HMARK S UI OR M IC NCHMARK UITE TE FOR ICRO ROSERVICES SERVICES AND ND T HEIR IR H ARDWARE RDWARE -S OFTWARE OFTWARE I MPLICA OR C LOU ICATIONS TIONS FOR OUD AND E DGE S YSTE STEMS MS Yu Gan, Yanqi Zhang,

622 views • 35 slides
NVIDIA GPUS Mark Kilgard Principal S ystem S oftware Engineer, NVIDIA Piers Daniell S enior

NVIDIA GPUS Mark Kilgard Principal S ystem S oftware Engineer, NVIDIA Piers Daniell S enior

SG4121: OPENGL 4.5 UPDATE FOR NVIDIA GPUS Mark Kilgard Principal S ystem S oftware Engineer, NVIDIA Piers Daniell S enior Graphics S oftware Engineer, NVIDIA Mark Kilgard Principal S ystem S oftware Engineer OpenGL driver and API

982 views • 81 slides
MI MIRA RAT NOVEL EL INDU DUCTIVE CTIVE REA EASONING SONING SOF OFTWARE ARE PVT LTD

MI MIRA RAT NOVEL EL INDU DUCTIVE CTIVE REA EASONING SONING SOF OFTWARE ARE PVT LTD

MI MIRA RAT NOVEL EL INDU DUCTIVE CTIVE REA EASONING SONING SOF OFTWARE ARE PVT LTD MIRAT is an End-to-End IT management solution applicable to small, medium and large companies aiming to reduce the number of integrations &amp;

976 views • 18 slides
Multi-core Design Virendra Singh Associate Professor C omputer A rchitecture and D ependable S

Multi-core Design Virendra Singh Associate Professor C omputer A rchitecture and D ependable S

Multi-core Design Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L ab Department of Electrical Engineering Indian Institute of Technology Bombay http://www.ee.iitb.ac.in/~viren/ E-mail: viren@ee.iitb.ac.in

607 views • 34 slides
Delay Test Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L

Delay Test Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L

Delay Test Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L ab Department of Electrical Engineering Indian Institute of Technology Bombay http://www.ee.iitb.ac.in/~viren/ E-mail: viren@ee.iitb.ac.in

922 views • 12 slides
Delay Test Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L

Delay Test Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L

Delay Test Virendra Singh Associate Professor C omputer A rchitecture and D ependable S ystems L ab Department of Electrical Engineering Indian Institute of Technology Bombay http://www.ee.iitb.ac.in/~viren/ E-mail: viren@ee.iitb.ac.in

463 views • 18 slides
S OFTWARE S ECURITY AND R ANDOMIZATION THROUGH P ROGRAM P ARTITIONING AND C IRCUIT V ARIATION M

S OFTWARE S ECURITY AND R ANDOMIZATION THROUGH P ROGRAM P ARTITIONING AND C IRCUIT V ARIATION M

S OFTWARE S ECURITY AND R ANDOMIZATION THROUGH P ROGRAM P ARTITIONING AND C IRCUIT V ARIATION M OVING T ARGET D EFENSE (MTD) 14 3 N OV 2014 Todd Andel Lindsey Whitehurst Todd McDonald School of Computing University of South Alabama Work

338 views • 22 slides
Providing mathematical Web services with S ymbolic C omputation S oftware C omposability P rotocol

Providing mathematical Web services with S ymbolic C omputation S oftware C omposability P rotocol

The project Software composability Examples in GAP Final remarks Providing mathematical Web services with S ymbolic C omputation S oftware C omposability P rotocol Alexander Konovalov (joint work with Steve Linton and SCIEnce partners)

424 views • 28 slides
C OMPARATIVE A NALYSIS O F S OFTWARE L IBRARIES F OR P UBLIC K EY C RYPTOGRAPHY Ashraf Abusharekh

C OMPARATIVE A NALYSIS O F S OFTWARE L IBRARIES F OR P UBLIC K EY C RYPTOGRAPHY Ashraf Abusharekh

C OMPARATIVE A NALYSIS O F S OFTWARE L IBRARIES F OR P UBLIC K EY C RYPTOGRAPHY Ashraf Abusharekh Kris Gaj Department of Electrical &amp; Computer Engineering George Mason University 1 O BJECTIVE Evaluation of Multi-precision Arithmetic

558 views • 32 slides
S ECURITY AND R ISK M ANAGEMENT IN A GILE S OFTWARE D EVELOPMENT SATURN 2012 Conference

S ECURITY AND R ISK M ANAGEMENT IN A GILE S OFTWARE D EVELOPMENT SATURN 2012 Conference

S ECURITY AND R ISK M ANAGEMENT IN A GILE S OFTWARE D EVELOPMENT SATURN 2012 Conference (#SATURN2012) Srini Penchikala (@srinip) 05.10.12 # WHOAMI Security Architect @ Financial Services Organization Location: Austin, TX Certified

505 views • 33 slides
FG4 Friday, June 6, 2003 10:30 AM S OFTWARE D EVELOPMENT ON I NTERNET T IME -F ASTER , C HEAPER ,

FG4 Friday, June 6, 2003 10:30 AM S OFTWARE D EVELOPMENT ON I NTERNET T IME -F ASTER , C HEAPER ,

BIO PRESENTATION FG4 Friday, June 6, 2003 10:30 AM S OFTWARE D EVELOPMENT ON I NTERNET T IME -F ASTER , C HEAPER , W ORSE ? Girish Seshagiri Advanced Information Services International Conference On Software Management &amp; Applications of

570 views • 40 slides
T IME T RAVELING H ARDWARE AND S OFTWARE S YSTEMS Xiangyao Yu, Srini Devadas CSAIL, MIT F OR F

T IME T RAVELING H ARDWARE AND S OFTWARE S YSTEMS Xiangyao Yu, Srini Devadas CSAIL, MIT F OR F

T IME T RAVELING H ARDWARE AND S OFTWARE S YSTEMS Xiangyao Yu, Srini Devadas CSAIL, MIT F OR F IFTY YEARS , WE HAVE RIDDEN M OORE S L AW Moores Law and the scaling of clock frequency = printing press for the currency of performance T

948 views • 61 slides
U.S . Air Force S oftware Engineering Efficiency and Productivity for Information Operations

U.S . Air Force S oftware Engineering Efficiency and Productivity for Information Operations

U.S . Air Force S oftware Engineering Efficiency and Productivity for Information Operations Paul Braden U.S . Air Force CLAS S IFICATION: UNCLAS S IFIED 13 May 2016 1 Agenda Introduction U.S . Air Force AFS C Way

527 views • 24 slides
C OMPUTERS . S OFTWARE . N ETWORKS . Andrew Cross, Ph.D. President and CTO IP VIDEO IS THE FUTURE

C OMPUTERS . S OFTWARE . N ETWORKS . Andrew Cross, Ph.D. President and CTO IP VIDEO IS THE FUTURE

C OMPUTERS . S OFTWARE . N ETWORKS . Andrew Cross, Ph.D. President and CTO IP VIDEO IS THE FUTURE LETS TAKE A STEP BACK REPLACE SDI DISTRIBUTION WITH IP VIDEO ON PACKET SWITCHED NETWORK EVERYTHING CAN SEE ANYTHING THE REASON WHY IS ECONOMICS

570 views • 32 slides
Models of Neutrino Masses in View of the Large 13 Discovery Mu-Chun Chen, University of

Models of Neutrino Masses in View of the Large 13 Discovery Mu-Chun Chen, University of

Models of Neutrino Masses in View of the Large 13 Discovery Mu-Chun Chen, University of California at Irvine Flavor Physics and CP Violation (FPCP2013), Bzios, Brazil, May 19-24, 2013 Where Do We Stand? Exciting Time in Physics:

735 views • 51 slides
Vehicle Specifications 101 Webinar July 26, 2018, 2:00 PM ET U.S. Department of Transportation

Vehicle Specifications 101 Webinar July 26, 2018, 2:00 PM ET U.S. Department of Transportation

Vehicle Specifications 101 Webinar July 26, 2018, 2:00 PM ET U.S. Department of Transportation Federal Transit Administration Presenters Bobby Westbrook Transit Operations and Safety Administrator Florida Department of Transportation Erin

438 views • 39 slides
Logic as a Tool Chapter 1: Understanding Propositional Logic 1.3 Logical equivalence Negation

Logic as a Tool Chapter 1: Understanding Propositional Logic 1.3 Logical equivalence Negation

Logic as a Tool Chapter 1: Understanding Propositional Logic 1.3 Logical equivalence Negation normal form of propositional formulae Valentin Goranko Stockholm University September 2016 Goranko Logical equivalence of propositional formulae

336 views • 7 slides
Algorithms for Big Data (VIII) Chihao Zhang Shanghai Jiao Tong University Nov. 8, 2019

Algorithms for Big Data (VIII) Chihao Zhang Shanghai Jiao Tong University Nov. 8, 2019

Algorithms for Big Data (VIII) Chihao Zhang Shanghai Jiao Tong University Nov. 8, 2019 Algorithms for Big Data (VIII) 1/14 Recall that we have the following simple algorithm for counting triangles. Review Last week, we learnt a few graph

1.29k views • 62 slides
Orientation For SBF Members 21 September 2020 SBF Membership Whats In It For Your Company?

Orientation For SBF Members 21 September 2020 SBF Membership Whats In It For Your Company?

Orientation For SBF Members 21 September 2020 SBF Membership Whats In It For Your Company? 21 September 2020 Agenda Our History The SBF Act In 1998, then-Prime Minister Mr Goh Chok Tong urged the Singapore Federation Of Chambers

1.02k views • 83 slides
Automation Industrielle Dependability - Overview Dr. Jean-Charles Tournier CERN, Geneva,

Automation Industrielle Dependability - Overview Dr. Jean-Charles Tournier CERN, Geneva,

Industrial Automation Automation Industrielle Dependability - Overview Dr. Jean-Charles Tournier CERN, Geneva, Switzerland 2015 - JCT The material of this course has been initially created by Prof. Dr. H. Kirrmann and adapted by Dr. Y-A.

927 views • 50 slides
A Formal (proved) Approach to Discrete System Development Modeling J-R. Abrial September 2004

A Formal (proved) Approach to Discrete System Development Modeling J-R. Abrial September 2004

A Formal (proved) Approach to Discrete System Development Modeling J-R. Abrial September 2004 Purpose of the Course - Giving some insights about Formal Methods - Showing that Formal Methods can be made practical - Illustrating Formal Methods

1.25k views • 112 slides
Optimizing FFT-based Polynomial Arithmetic for Data Locality and Parallelism Marc Moreno Maza

Optimizing FFT-based Polynomial Arithmetic for Data Locality and Parallelism Marc Moreno Maza

Optimizing FFT-based Polynomial Arithmetic for Data Locality and Parallelism Marc Moreno Maza University of Western Ontario, Canada MaGiX@LIX Workshop September 20, 2011 Introduction: code optimization Optimizing for data locality Computer

938 views • 65 slides

More recommend