formal methods for embedded software systems two problems
play

Formal methods for embedded software systems: Two problems - PowerPoint PPT Presentation

Oct 01, 2023 •287 likes •797 views

Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Formal methods for embedded software systems: Two problems Meenakshi DSouza IIIT-Bangalore. 24th January 2019. Embedded control S/W Program Analysis for

  1. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Formal methods for embedded software systems: Two problems Meenakshi D’Souza IIIT-Bangalore. 24th January 2019.

  2. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Embedded Control Software Figure: Robotics Figure: Avionics Figure: IoT Figure: Simulink: Embedded Control Design

  3. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Embedded control software: Characteristics Runs on a proprietary real-time platform. Software tightly coupled with its environment. Distributed, real-time. Typically safety critical— subject to certification and regulatory requirements. Not feasible to shut down a malfunctioning system to restore safety or functionality. One of the areas where formal methods is used by the industry.

  4. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Software for Control Automation

  5. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Software for automation engineering systems Software is used in automation systems to monitor and control various operations like batch processing, arc welding etc. Such software is implemented using domain-specific languages, most are proprietary in nature. Usually safety critical in nature, certification standards demand use of formal methods techniques.

  6. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Program analysis tools for automation software Standard program analysis tools (Coverity for C, PolySpace for C/C++/Ada, Klocwork etc.) are not known to work for such languages. Complex data types, task-based asynchronous/parallel execution, real-time system interrupts. Tools do not port well across various development environments. Many tools deploy pattern based matching to detect code violations, not known to scale for industrial automation tools.

  7. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Industry automation languages We work with three programming languages used in industry automation: Rapid, a domain-specific language for programming industrial robot arms. IEC 61131-3 for PLC programming. Electronic Device Description Language (EDDL) used for configuration of field devices.

  8. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid: A robotics programming language ABB robots are multi-axes industrial robots/robot manipulators. Typical actions done include welding, painting, picking, placing etc. Rapid is ABB proprietary language to program their robots. Robot instructions can be programmed using a teach pendant that generates Rapid code or directly using a textual interface.

  9. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid in a nutshell: Data types Many standard datatypes are included in Rapid: num, string, bool, array etc. In addition, complex datatypes support co-ordinates in 3-D space, target positions for the robot arm etc. VAR pos := [500, 0, 940]; : Position in 3-D space. VAR robtarget p15 := [[600, 500, 225.3], [1, 0, 0, 0], [1, 1, 0, 0], [11, 12.3, 9E9, 9E9, 9E9, 9E9]]; : Position of a robot. First tuple: position in 3-D space, Last three tuples specify orientation of the tool, axis-configuration of the robot and the position of external axes respectively.

  10. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid in a nutshell: Instructions WaitTime 200; : Instructs the robot to wait for 200 seconds before doing any assigned work. IDelete intr; : Disables the interrupt variable intr . MoveL p1,v500,z10,tool1; : Moves the position of the robotic tool tool1 linearly to the position p1 , with velocity v500 and zone data z10 . This internally calculates the torque that needs to be applied to each axis (motor) to move linearly to the position p1 .

  11. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid in a nutshell: Program control flow Program flow: Written using standard imperative language constructs including relational and logical expressions, IF-THEN-ELSE statements and FOR and WHILE loops. Procedure calls are available, makes execution semantics complex. System generated interrupts and exceptions and their handling can alter the control flow of a program.

  12. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid: An example

  13. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols IEC 61131-3 IEC 61131 is an open international standard for Programmable Logic Controllers (PLC). IEC 61131-1 deals with architecture and programming languages of the control program within PLC. Several standard data types, user defined data types including a kind of strongly typed pointer, I/O variables amongst others, program organization units that structure the code in a modular way.

  14. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols IEC 61131-3: An example

  15. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols EDDL EDDL (Electronic Device Description Language), an IEC standard, is a language for describing the service and configuration of field devices for process and factory automation. EEDL has data, communication (e.g. addressing information), user interfaces and operations (e.g., calibration).

  16. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols EEDL: An example

  17. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Common characteristics All three languages, although from disparate domains, characterize domain-specific languages for automation engineering. All of them support Task based execution and use a modular structure for code organization. Execution can change based on interrupts. Code is used to monitor and control various devices and controllers. Interrupts come from the platform. Variables can be primitive as well as structured data types. Other languages like PLCopen, KRL, etc. support similar programming structures, and can be analyzed as well.

  18. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Program analysis framework: Key contributions Generic datatype to represent the parsed information for the three languages. Flexible Data Flow Analysis (DFA) engine to encode data flow rules as needed by varying the domain. Flexible rule engine to process data for further analysis.

  19. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid: Program analysis framework

  20. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Generic analysis engine Abstract-Syntax Tree (AST) and Control Flow Graph (CFG) are generated the usual way. Inter-procedural CFG needs one or more executions as input if procedure calls are not clear from the code. CFG and inter-procedural CFG are annotated with data flow results. Data Flow Analysis (DFA) uses abstract interpretation based on interval domain abstraction to define transfer functions that support all standard arithmetic, logical and relational operations. Interval domain semantics defined for all special datatypes. Several standard syntactic errors can be detected using AST and CFG.

  21. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rapid code: Annotated inter-procedural CFG

  22. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Rules: Classification Generic Programming rules: Depend solely on the analysis framework, generic across all languages. Division by zero, array out of bounds. Language specific rules: Based on a specific language, may not exist for all languages. Boundary violation check for a robot arm (Rapid), variable re-definition rule (EDDL). User specified rules. Rules defined by the user based on a specific project or application. Nesting levels of code, based on quality requirements. Conformance to NORSOK standards for oil and gas applications.

  23. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Distribution of rules Rules Language Generic errors Language based User specific Pattern-based IEC 61131-3 11 5 2 EDDL 4 12 1 RAPID 11 7 0 Total 34 24 3 Semantic IEC 61131-3 0 0 0 EDDL 0 1 0 RAPID 5 0 0 Total 5 1 0 DFA IEC 61131-3 5 1 1 EDDL 4 2 0 RAPID 1 4 1 Total 10 7 2

  24. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Errors and rules: IEC 61131-3 Rule name Category Error Warning Incorrect Attribute language specific 10 0 Uninitialized variable generic 0 76 Datatype mismatch language specific 0 9 Divide-by-zero generic 0 7 Duplicate identifier generic 0 1

  25. Embedded control S/W Program Analysis for Control Automation Verifying IoT protocols Errors and rules: EDDL Rule name Category Error Warning Divide-by-zero generic 0 5 Missing Mandatory Menus language specific 0 23 Unused variables generic 0 24 Assignment for comparison generic 3 0

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing.

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing.

Software Engineering for Embedded Systems Software Engineering for Embedded Systems Dr.-Ing. Mohammad. Abdullah Al Faruque Dipl.-Inform. Sebastian Kobbe CES - C hair for E mbedded S ystems (Prof. Dr. Jrg Henkel) Department of Computer Science

847 views • 72 slides
Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why Formalisms? Relationships Flaws Some systems Conclusions Why Formal Methods? We already can build systems. Roman Engineers built

671 views • 12 slides
1 How are embedded systems different Timing and Concurrency than traditional software? Fire

1 How are embedded systems different Timing and Concurrency than traditional software? Fire

What is an Embedded System? Definition of an embedded computer system: Embedded Systems is a digital system. Introduction uses a microprocessor (usually). runs software for some or all of its functions. frequently used as a

158 views • 3 slides
FUNDAMENTALS OF SESSION TYPES Vasco T. Vasconcelos University of Lisbon Formal Methods for

FUNDAMENTALS OF SESSION TYPES Vasco T. Vasconcelos University of Lisbon Formal Methods for

FUNDAMENTALS OF SESSION TYPES Vasco T. Vasconcelos University of Lisbon Formal Methods for the Design of Computer, Communication and Software Systems Bertinoro, June 4, 2009 1 CHALLENGE Among the many problems faced in developing

2.45k views • 200 slides
When Embedded Systems Attack Embedded systems can fail for a variety of reasons

When Embedded Systems Attack Embedded systems can fail for a variety of reasons

22.1 22.2 When Embedded Systems Attack Embedded systems can fail for a variety of reasons Electrical problems Unit 22 Mechanical problems Errors in the programming Incorrectly specified Errors caused by users Embedded

201 views • 5 slides
F Formal Modeling and Verification of l M d li d V ifi ti f Safety-Critical Software

F Formal Modeling and Verification of l M d li d V ifi ti f Safety-Critical Software

Submitted to IEEE Software 2009 - Special issue on Software Development for Embedded Systems F Formal Modeling and Verification of l M d li d V ifi ti f Safety-Critical Software implemented in PLC JUNBEOM YOO JUNBEOM YOO KONKUK

882 views • 32 slides
Where Are We? How to model systems CISC422/853: Formal Methods Theoretically : FSAs in

Where Are We? How to model systems CISC422/853: Formal Methods Theoretically : FSAs in

Where Are We? How to model systems CISC422/853: Formal Methods Theoretically : FSAs in Software Engineering: Practically : BIR, PROMELA How to express properties Computer-Aided Verification Assertions, invariants

196 views • 9 slides
When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons

When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons

1 2 When Embedded Systems Attack Therac-25 Embedded systems can fail for a variety of reasons The Therac-25 was a medical radiation therapy machine developed in the mid-1980s. Electrical problems Mechanical problems

65 views • 3 slides
Software for Embedded Systems Galyna Tabunshchyk Prof. Software Tools Department ZNTU, Ukraine

Software for Embedded Systems Galyna Tabunshchyk Prof. Software Tools Department ZNTU, Ukraine

Development of Embedded System Courses with implementation of Innovative Virtual approaches for integration of Research, Education and Production in UA, GE, AM Pilot Teaching Implementation Software for Embedded Systems Galyna Tabunshchyk

397 views • 14 slides
Embedded systems and the role of programmable logic devices in embedded systems Embedded system :

Embedded systems and the role of programmable logic devices in embedded systems Embedded system :

Embedded systems and the role of programmable logic devices in embedded systems Embedded system : a combination of computer hardware and software, and perhaps additional mechanical or other parts, designed to perform a dedicated function. In some

414 views • 20 slides
Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

3BA31 Formal Methods 1 3BA31: Formal Methods Andrew Butterfield Foundations & Methods Group, Software Systems Laboratory Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember This? A Stock

1.75k views • 151 slides
Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

3BA31 Formal Methods 1 3BA31: Formal Methods Andrew Butterfield Foundations & Methods Group, Software Systems Laboratory Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember This? A Stock

631 views • 33 slides
Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby

Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby

Software Verification/Validation Methods and Tools . . . or Practical Formal Methods John Rushby Computer Science Laboratory SRI International Menlo Park, CA John Rushby, SR I Practical Formal Methods: 1 Need: Growing Importance and Cost of

278 views • 12 slides
Formal software engineering for computational modelling Formal software engineering Focus on

Formal software engineering for computational modelling Formal software engineering Focus on

Formal software engineering for computational modelling Formal software engineering Focus on the formal, mathematical side of software Ex. Algebra Three problems What are the concepts that have to be used for the construction of

110 views • 7 slides
Core Claim Formal Methods in Software Development Computer programs/systems are subject to exact

Core Claim Formal Methods in Software Development Computer programs/systems are subject to exact

Core Claim Formal Methods in Software Development Computer programs/systems are subject to exact reasoning. Computer programming is an exact science in that all the properties Wolfgang Schreiner of a program and all the consequences of

399 views • 5 slides
Energy consumption in embedded systems; abstractions for software models, programming languages

Energy consumption in embedded systems; abstractions for software models, programming languages

Energy consumption in embedded systems; abstractions for software models, programming languages and verification methods Florence Maraninchi orcid.org/0000-0003-0783-9178 thanks to M. Moy, L. Mounier, L. Maillet-Contoz, D. Barthel, J.

489 views • 45 slides
Deep Learning and its Applications in Vision and Robotics

Deep Learning and its Applications in Vision and Robotics

#dlvr Deep Learning and its Applications in Vision and Robotics http://juxi.net/workshop/deeplearning-applications-vision-robotics-2015/ Deep Learning and its Applications in Vision and Robotics #dlvr Programme 09:15-09:30 Welcome by Juxi,

388 views • 6 slides
AI in Robot(ic)s Applied artificial intelligence (EDA132) Lecture 12 2017-02-24 Elin A. Topp

AI in Robot(ic)s Applied artificial intelligence (EDA132) Lecture 12 2017-02-24 Elin A. Topp

AI in Robot(ic)s Applied artificial intelligence (EDA132) Lecture 12 2017-02-24 Elin A. Topp Course book (chapter 25), images & movies from various sources, and original material (Some images and all movies removed for the uploaded PDF)

600 views • 39 slides
Industrial Transfer Learning Introduction to Industrial Transfer Learning Industrial Transfer

Industrial Transfer Learning Introduction to Industrial Transfer Learning Industrial Transfer

Industrial Transfer Learning Introduction to Industrial Transfer Learning Industrial Transfer Learning Motivation Machine Learning in Manufacturing Decision Support Automation Process Control Self-Optimization Predictive Quality Predictive

742 views • 24 slides
IEEE: Robotics and automation Society (RAS) Ontologies for Robotics and Automation Study group

IEEE: Robotics and automation Society (RAS) Ontologies for Robotics and Automation Study group

IEEE: Robotics and automation Society (RAS) Ontologies for Robotics and Automation Study group Craig Schlenoff National Institute of Standards and Technology Need A robot can only achieve tasks and perform missions based on what it knows,

355 views • 19 slides
Robotics in Healthcare Dr Marcelo H Ang Jr mpeangh@nus.edu.sg Advanced Robotics Centre National

Robotics in Healthcare Dr Marcelo H Ang Jr mpeangh@nus.edu.sg Advanced Robotics Centre National

14 Aug 2018 SHM 2018 Robotics in Healthcare Dr Marcelo H Ang Jr mpeangh@nus.edu.sg Advanced Robotics Centre National University of Singapore Moment of Great Opportunities 2000s 1980s, 1990s 2 Toward Everyday Robotics Structured

680 views • 36 slides
Intervention robots in constrained environments CIGRE 2012 Study Committee B2 Working Group 52

Intervention robots in constrained environments CIGRE 2012 Study Committee B2 Working Group 52

Intervention robots in constrained environments CIGRE 2012 Study Committee B2 Working Group 52 Vincent Padois, UPMC ISIR, vincent.padois@upmc.fr RTE correspondent: Sylvie Saumont, CNER-DL, sylvie.saumont@rte-france.fr Universit Pierre et

594 views • 11 slides
The Mountaintop Guru of Mathematics New Directions in Boij-S oderberg Theory The cone of Betti

The Mountaintop Guru of Mathematics New Directions in Boij-S oderberg Theory The cone of Betti

The Mountaintop Guru of Mathematics New Directions in Boij-S oderberg Theory The cone of Betti diagrams over a hypersurface ring of low embedding dimension Courtney Gibbons University of NebraskaLincoln joint with C. Berkesch Duke

861 views • 40 slides
CS 730/830: Intro AI First-Order Inference Semantics FOL Odds and Ends Spock had a big, big

CS 730/830: Intro AI First-Order Inference Semantics FOL Odds and Ends Spock had a big, big

CS 730/830: Intro AI First-Order Inference Semantics FOL Odds and Ends Spock had a big, big effect on me. I am so much more Spock-like today than when I first played the part in 1965 that you wouldnt recognize me. Im not talking

504 views • 16 slides

More recommend