formal methods in resilient systems design using a
play

Formal Methods in Resilient Systems Design using a Flexible Contract - PowerPoint PPT Presentation

Jan 03, 2023 •34 likes •374 views

Formal Methods in Resilient Systems Design using a Flexible Contract Approach Sponsor: OUSD(R&E) | CCDC By Dr. Azad Madni 11 th Annual SERC Sponsor Research Review November 19, 2019 FHI 360 CONFERENCE CENTER 1825 Connecticut Avenue NW, 8

  1. Formal Methods in Resilient Systems Design using a Flexible Contract Approach Sponsor: OUSD(R&E) | CCDC By Dr. Azad Madni 11 th Annual SERC Sponsor Research Review November 19, 2019 FHI 360 CONFERENCE CENTER 1825 Connecticut Avenue NW, 8 th Floor Washington, DC 20009 www.sercuarc.org SSRR 2019 November 19, 2019 1

  2. Project Team • Prof. Azad Madni, Principal Investigator • Prof. Dan Erwin, Co-Investigator • Dr. Ayesha Madni, Project Manager • Edwin Ordoukhanian, RA, Hardware-Software Integration • Parisa Pouya, RA, Probabilistic System Modeling • Shatad Purohit, RA, Model Based Systems Engineering SSRR 2019 November 19, 2019 2

  3. Outline • Background • Research Objectives • Accomplishments Summary • Technical Approach • Prototype Implementation • Findings and Lessons Learned • Technology Transition SSRR 2019 November 19, 2019 3

  4. Background • 21 st century DoD systems will continue to be complex, long-lived, likely to be extended / adapted to new missions over their lifetime, and with stringent physical and cybersecurity requirements • These systems will need to be resilient when operating in dynamic, uncertain environments comprising hostile / deceptive actors • A resilient system is one that is capable of safe operation in the face of systemic faults, failures, and unexpected disruptions • Design of resilient DoD systems poses unique modeling challenges because of need to be correct, adaptable and continuously learning when operating in partially observable, dynamic environments • Developing such a model will contribute to the body of knowledge in MBSE as well as complex systems modeling and simulation SSRR 2019 November 19, 2019 4

  5. Research Objectives • Develop a formal modeling approach for designing resilient systems • Domain: Autonomous Systems and System-of-Systems SSRR 2019 November 19, 2019 5

  6. Complicating Factors • Partial observability • Noisy sensors • Failures and malfunctions • Intelligent / deceptive adversary • Changing goals or plans SSRR 2019 November 19, 2019 6

  7. Accomplishments Summary • Developed innovative closed-loop modeling construct - resilience contract enables system model verification while affording flexibility for adaptation and reinforcement learning • Developed exemplar prototype supported by rudimentary testbed - evaluated resilience techniques for multi-QC swarm operations - tested POMDP algorithms with fixed and dynamic obstacles • Experimented with POMDP algorithm - navigation in presence of fixed and dynamic obstacles - with different n-step lookahead options • Assembled a transition package comprising - installation and user guide - description of software modules and hardware specification • Transitioned prototype to The Aerospace Corporation - for use on their MBSE initiatives and complement their MBSE/DE testbed SSRR 2019 November 19, 2019 7

  8. Technical Approach SSRR 2019 November 19, 2019 8

  9. Characterizations of System Resilience • Recoverability: Ability of system to rebound and return to equilibrium (fully/partially restore previous state) • Robustness: Ability of system to absorb a disturbance within design envelope without any structural change • Dynamic Extensibility: Ability of system to extend gracefully (i.e., add capacity/resources) in response to sudden increase in demand (“adaptive capacity”) • Adaptability: Ability of system to monitor problem context and adjust continually through dynamic reorganization/reconfiguration to circumvent or respond to disruptions Not all characterizations lead to productive lines of inquiry for realizing resilient systems! Dynamic Extensibility and Adaptability do. SSRR 2019 November 19, 2019 9

  10. Modeling Requirements for Resilient Systems • Verifiability (provable correctness) • Flexibility (adapt to changing conditions) • Bidirectional reasoning support (resilient response) • Scalability and extensibility (no. of agents, interconnections) • Provide useful outputs with partial information (not “data hungry”) • Learn from new evidence (observations) SSRR 2019 November 19, 2019 10

  11. Conceptual Framework Missions Scenarios/Use Cases ▪ multi-UAV operation ▪ conditions ▪ objectives ▪ search and rescue ▪ constraints ▪ payload delivery ▪ resource requirements determine determine selection selection of of parameters for Models Dashboard ▪ deterministic ▪ context-aware visualized ▪ creation ▪ creation ▪ smart (info prefetching) ▪ probabilistic through ▪ execution ▪ use (decisions/action) ▪ hybrid update state/ update status/execution trace Testbed ▪ model library ▪ scenario library ▪ instrumentation ▪ Interfaces to simulation ▪ data collection ▪ audit trail and physical entities SSRR 2019 November 19, 2019 11

  12. Resilience Contract: Key Characteristics • Probabilistic extension of traditional contract ― Relaxes “assert - guarantee” - replaces with “belief - reward” (flexibility) ― Partially Observable Markov Decision Process (uncertainty handling) ― In-use reinforcement learning (hidden states, transitions, emissions) ― Heuristics/pattern recognition (complexity reduction) • Exhibits desired model characteristics ― Verifiability: key to safety and security ― Flexibility: key to adaptability and resilience ― Learning: key to performance improvement SSRR 2019 November 19, 2019 12

  13. Resilience Contract (RC) SSRR 2019 November 19, 2019 13

  14. Resiliency Model SSRR 2019 November 19, 2019 14

  15. Reinforcement Learning • Is key to incrementally updating an incomplete system and environment model with observations made by collection assets • Requires real-time interaction with environment (observations) • Take actions based on current knowledge of system states and real-time observations • Sources of learning: sensors, networks, people SSRR 2019 November 19, 2019 15

  16. Testbed Overview • Goal ― enable fundamental understanding of state-based modeling techniques, self-learning algorithms, and adaptation concepts ― support prototyping, evaluation and demonstration • Prototyping Platform ― fly vehicle indoors in a laboratory or outdoors in the real-world ― large enough to carry onboard computer with suite of sensors (e.g. camera) ― onboard computer runs autopilot software as well as POMDP ― support open source software • Evaluation Platform ― verify models (correctness analysis) ― explore concepts of operation (different assumptions, technologies) ― conduct simulation-based controlled experiments (e.g., probabilistic models) • Demonstration Platform ― demonstrate a prototype UAV whose actions could be controlled by a decision-making algorithm such as POMDP SSRR 2019 November 19, 2019 16

  17. Testbed Architecture • Developed concurrently with prototype system • Currently supports system modeling, model verification, system behavior simulation, threat simulation • Simulations runs on separate machines within a distributed, networked architecture SSRR 2019 November 19, 2019 17

  18. Prototype Testbed • Multiple Quadcopters (QCs) ― driven by Raspberry Pi and Navio Flight Controller ― full IMU: 3-axis accelerometers, rate gyros, magnetometer ― take inputs from laptop and/or remote controller o control values (throttle, roll-pitch-yaw) o perform autonomous flight • Current Capabilities ― run customized Python scripts to control QCs o Using dronekit framework and commands ― perform semi-autonomous flights o Able to launch, take-off, hover, and perform limited waypoint navigation ― smart dashboard to monitor status and control position of QCs o communicate with both simulated and physical vehicles SSRR 2019 November 19, 2019 18

  19. Testbed Hardware SSRR 2019 November 19, 2019 19

  20. POMDP Solution Algorithm • N-Step Look-Ahead Online Algorithm • Finds the optimal policy for the current belief state • The belief state is updated at every time step • The action that leads to the maximum long-term reward is considered the optimal policy for that belief state SSRR 2019 November 19, 2019 20

  21. N-Step Look-Ahead Visualization SSRR 2019 November 19, 2019 21

  22. N-Step Look-Ahead: Pruning Performance SSRR 2019 November 19, 2019 22

  23. Illustrative Example: Navigation Through Hostile Environment • Goal: Find safe, shortest path to pre-defined destination SSRR 2019 November 19, 2019 23

  24. Navigation with Dynamic Obstacles • Exemplar Changes in Quadcopter Belief Vector SSRR 2019 November 19, 2019 24

  25. Experimentation with Resilience Contract • Experiment 1: Performance of POMDP obstacle avoidance algorithm on testbed hardware (Raspberry Pi 3 QC flight computer) — POMDP ran on QC with no loss in performance while autopilot software was also running o POMDP guidance efficient enough - practical for real-time use on autonomous vehicles • Experiment 2: Flying QC avoiding obstacles under POMDP control — developed and integrated a custom GPS driver into the Ardupilot software — able to fly quadcopter indoors in autopilot mode — excessive motor vibration prevented stable autonomous operation for long period to run obstacle avoidance algorithm o vehicle model issue, unrelated to POMDP SSRR 2019 November 19, 2019 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why

Formal Methods Michael Collins. 18-849, Section B Spring 1999 Formal Methods Why Formalisms? Relationships Flaws Some systems Conclusions Why Formal Methods? We already can build systems. Roman Engineers built

671 views • 12 slides
Integration of Formal Methods into Design and Implementation of Aerospace Systems Kristin Yvonne

Integration of Formal Methods into Design and Implementation of Aerospace Systems Kristin Yvonne

Successes Bottlenecks Need for a New Direction Future Challenges Integration of Formal Methods into Design and Implementation of Aerospace Systems Kristin Yvonne Rozier Rice University December 11, 2014 Kristin Yvonne Rozier Integration

590 views • 30 slides
Presentation for 4th International Workshop on Formal Methods for Interactive Systems: FMIS 2011,

Presentation for 4th International Workshop on Formal Methods for Interactive Systems: FMIS 2011,

Presentation for 4th International Workshop on Formal Methods for Interactive Systems: FMIS 2011, Limerick, Ireland, 21 June 2011 Formal Modeling and Analysis For Interactive Hybrid Systems Ellen J. Bass Systems and Information Engineering,

280 views • 26 slides
Pragmatic integration of model driven engineering and formal methods for safety critical systems

Pragmatic integration of model driven engineering and formal methods for safety critical systems

Pragmatic integration of model driven engineering and formal methods for safety critical systems design Marc Pantel and many others IRIT - ACADIE ENSEEIHT - INPT - Universit de Toulouse Institute of Cybernetics Institute Tallinn

1.58k views • 110 slides
Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical

Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical

Formal Methods and Cryptography Lecture 24 1 Formal Methods 2 Formal Methods Logical foundations of computer science 2 Formal Methods Logical foundations of computer science A language that machines can understand 2 Formal Methods

1.22k views • 121 slides
Formal Methods Chapter 21 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide

Formal Methods Chapter 21 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide

Formal Methods Chapter 21 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 21-1 Outline Formal verification techniques Design verification languages Bell-LaPadula and SPECIAL Current verification systems

911 views • 63 slides
H 2 O Systems Formal Design Review Paulo Jacob Jennifer Liang Jonathan Tejada Ami Yamamoto

H 2 O Systems Formal Design Review Paulo Jacob Jennifer Liang Jonathan Tejada Ami Yamamoto

H 2 O Systems Formal Design Review Paulo Jacob Jennifer Liang Jonathan Tejada Ami Yamamoto Joy Yuan March 2, 2006 Background Current Water Disinfection Methods Chemical Treatment: Chlorine and Ozone Problem: Formation of

589 views • 20 slides
1Initial Ideas on Formal Methods UIT2206: The Importance of Being Formal Martin Henz January

1Initial Ideas on Formal Methods UIT2206: The Importance of Being Formal Martin Henz January

Preliminaries Hallmarks of a Formal Approach Formal Systems in Information Technology 1Initial Ideas on Formal Methods UIT2206: The Importance of Being Formal Martin Henz January 15, 2014 Generated on Wednesday 15 th January, 2014, 09:54

517 views • 49 slides
Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3. Course syllabus 4. Course objectives Introductory Lecture 5. Course organization 1. Lecturer 2. Formal Methods Name: Dilian Gurov Formal

56 views • 3 slides
Formal Methods Research at SICS and KTH - An Overview - Mads Dam SICS and KTH/IMIT FMICS'03

Formal Methods Research at SICS and KTH - An Overview - Mads Dam SICS and KTH/IMIT FMICS'03

FORMAL DESIGN TECHNIQUES Formal Methods Research at SICS and KTH - An Overview - Mads Dam SICS and KTH/IMIT FMICS'03 Rros,Norway, June 2003 1 FORMAL DESIGN TECHNIQUES Executive Summary Group of researchers from SICS and IMIT, KTH

401 views • 9 slides
Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

3BA31 Formal Methods 1 3BA31: Formal Methods Andrew Butterfield Foundations & Methods Group, Software Systems Laboratory Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember This? A Stock

1.75k views • 151 slides
Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember

3BA31 Formal Methods 1 3BA31: Formal Methods Andrew Butterfield Foundations & Methods Group, Software Systems Laboratory Andrew.Butterfield@cs.tcd.ie Room F.13, OReilly Institute 3BA31 Formal Methods 2 Remember This? A Stock

631 views • 33 slides
Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations

Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations

Formal Methods and Cryptography Lecture 25 Formal Methods Formal Methods Logical foundations of computer science Formal Methods Logical foundations of computer science A language that machines can understand Formal Methods Logical

1.67k views • 123 slides
FUNDAMENTALS OF SESSION TYPES Vasco T. Vasconcelos University of Lisbon Formal Methods for

FUNDAMENTALS OF SESSION TYPES Vasco T. Vasconcelos University of Lisbon Formal Methods for

FUNDAMENTALS OF SESSION TYPES Vasco T. Vasconcelos University of Lisbon Formal Methods for the Design of Computer, Communication and Software Systems Bertinoro, June 4, 2009 1 CHALLENGE Among the many problems faced in developing

2.45k views • 200 slides
Where Are We? How to model systems CISC422/853: Formal Methods Theoretically : FSAs in

Where Are We? How to model systems CISC422/853: Formal Methods Theoretically : FSAs in

Where Are We? How to model systems CISC422/853: Formal Methods Theoretically : FSAs in Software Engineering: Practically : BIR, PROMELA How to express properties Computer-Aided Verification Assertions, invariants

196 views • 9 slides
Deductive Verification Of Hybrid Systems Lectures on Formal Methods for Cyber-Physical Systems

Deductive Verification Of Hybrid Systems Lectures on Formal Methods for Cyber-Physical Systems

Deductive Verification Of Hybrid Systems Lectures on Formal Methods for Cyber-Physical Systems SOKENDAI, 07/29/19 Jrmy Dubut National Institute of Informatics Japanese-French Laboratory of Informatics Objectives of this lecture

986 views • 84 slides
Minimum Staff Complement S afety in Numbers S. Dolecki & H. McRobbie Human and

Minimum Staff Complement S afety in Numbers S. Dolecki & H. McRobbie Human and

Minimum Staff Complement S afety in Numbers S. Dolecki & H. McRobbie Human and Organizational Performance Division Directorate of S afety Management Canadian Nuclear S ociety Conference Niagara Falls, Ontario June 7, 2011 Outline

413 views • 24 slides
Advanced Computing Systems & Services: Adapting to the Rapid Evolution of Science and

Advanced Computing Systems & Services: Adapting to the Rapid Evolution of Science and

Advanced Computing Systems & Services: Adapting to the Rapid Evolution of Science and Engineering Research (NSF 19-534) Webinar: December 6, 2018 Manish Parashar, Director Robert Chadduck, Edward Walker, Alejandro Suarez Office of

1.2k views • 17 slides
CASE STUDY: SOUTH AFRICAN CARBON TAX POLICY PROPOSALS PMR: Vietnam Carbon Pricing Workshop

CASE STUDY: SOUTH AFRICAN CARBON TAX POLICY PROPOSALS PMR: Vietnam Carbon Pricing Workshop

CASE STUDY: SOUTH AFRICAN CARBON TAX POLICY PROPOSALS PMR: Vietnam Carbon Pricing Workshop Sharlin Hemraj, National Treasury , 29 th September 2015 Outline 1. Introduction 2. Policy context Environmental Fiscal Reform National

968 views • 50 slides
TRANSITIONING STATE-OF- THE-ART NUTRIENT SENSING TECHNOLOGY TO DEVELOP AN OPERATIONAL NUTRIENT

TRANSITIONING STATE-OF- THE-ART NUTRIENT SENSING TECHNOLOGY TO DEVELOP AN OPERATIONAL NUTRIENT

TRANSITIONING STATE-OF- THE-ART NUTRIENT SENSING TECHNOLOGY TO DEVELOP AN OPERATIONAL NUTRIENT OBSERVATORY FOR NERACOOS Goal: To develop an integrated nutrient observatory within NERACOOS capable of resolving nutrient dynamics at temporal

211 views • 19 slides
Fall Presentation 2019 Agenda Overview of TJHSST The Admissions Process Part I:

Fall Presentation 2019 Agenda Overview of TJHSST The Admissions Process Part I:

Fall Presentation 2019 Agenda Overview of TJHSST The Admissions Process Part I: Steps for Application Part II: Testing Process Part III: Selection Process Getting Ready Questions TJHSST Mission

556 views • 33 slides
The Commission Proposal for a The Commission Proposal for a Council Directive Council Directive

The Commission Proposal for a The Commission Proposal for a Council Directive Council Directive

European Commission Taxation and Customs Union The Commission Proposal for a The Commission Proposal for a Council Directive Council Directive on a common system of FTT on a common system of FTT COM(2011) 594 COM(2011) 594 of of 28

369 views • 18 slides
REFORM OF THE UN ECONOMIC AND SOCIAL COUNCIL Gert Rosenthal, Permanent Representative of Guatemala

REFORM OF THE UN ECONOMIC AND SOCIAL COUNCIL Gert Rosenthal, Permanent Representative of Guatemala

REFORM OF THE UN ECONOMIC AND SOCIAL COUNCIL Gert Rosenthal, Permanent Representative of Guatemala to the UN (Panel, 7 May 2004) I would like to thank the organizers for inviting me as a panelist, and I would also like to acknowledge the

308 views • 3 slides
The Georgia Milestones has replaced the CRCT will be given in grades 3-12 in these subject

The Georgia Milestones has replaced the CRCT will be given in grades 3-12 in these subject

G eorgia GMAS M ilestones A ssessment S ystem What is the Milestones and what happened to the CRCT? The Georgia Milestones has replaced the CRCT will be given in grades 3-12 in these subject areas: English/Language Arts

328 views • 11 slides

More recommend