formal model based
play

Formal Model Based Safety Assessment Marco Bozzano, Roberto Cavada, - PowerPoint PPT Presentation

Sep 27, 2023 •114 likes •497 views

NuSMV3: a framework for Formal Model Based Safety Assessment Marco Bozzano, Roberto Cavada, Alessandro Cimatti, Cristian Mattarei Fondazione Bruno Kessler, Trento (Italy) Roadmap Formal Model Based Safety Assessment Formal Safety

  1. NuSMV3: a framework for Formal Model Based Safety Assessment Marco Bozzano, Roberto Cavada, Alessandro Cimatti, Cristian Mattarei Fondazione Bruno Kessler, Trento (Italy)

  2. Roadmap • Formal Model Based Safety Assessment • Formal Safety Assessment – Current approach – Automated Fault Extension • NuSMV3 formal verification framework • Next challenges

  3. Model Based Safety Assessment System Verification and Requirements System Testing Integration Verification Architecture Integration and Testing Implementation 3

  4. Model Based Safety Assessment System Verification and Requirements System Testing FHA System Fault Tree System SA Analysis Integration Verification Architecture Integration and Testing Architecture FTA and Preliminary SA System SA FMEA tables Implementation 4

  5. Model Based Safety Assessment System Verification and Requirements System Testing FHA System Fault Tree System SA Analysis Integration Verification Architecture Integration and Testing Architecture FTA and Preliminary SA System SA FMEA tables Implementation 5

  6. Model Based Safety Assessment Model the system (nominal) Check if the model satisfies the Counter examples requirements Model the system (nominal and faulty) Check if the model satisfies the Fault Trees safety requirements FMEA tables 6

  7. Model Based Safety Assessment Model the system (nominal) Check if the model satisfies the Counter examples requirements Model the system (nominal and faulty) Check if the model satisfies the Fault Trees safety requirements FMEA tables 7

  8. Model Based Safety Assessment Model the system (nominal) Check if the model satisfies the Counter examples requirements Model the system (nominal and faulty) Check if the model satisfies the Fault Trees safety requirements FMEA tables 8

  9. Roadmap • Formal Model Based Safety Assessment • Formal Safety assessment – Current approach – Automated Fault Extension • NuSMV3 formal verification framework • Next challenges

  10. Fault Extension: the idea Formal model (nominal) Faulty model (extended) 10

  11. Manual Extension 11

  12. Manual Extension PROS • Highly expressive • Does not need extra tools CONS • Error prone • Not traceable process • Time consuming 12

  13. Fault Injection 13

  14. Fault Injection Nominal behavior 14

  15. Fault Injection Nominal behavior 0 1 Faulty behavior 15

  16. Fault Injection Nominal behavior 0 1 Faulty behavior Mode selector 16

  17. Fault Injection PROS • Keeps nominal and fault model disjoint • Traceable process • Automatic technique • “Once and for all” validation CONS • Needs functional modeling 17

  18. Fault Injection (FSAP) Nominal behavior 0 1 Faulty behavior Mode selector 18

  19. Fault Extension approaches Manual extension Fault Injection FSAP Library Based FI NuSMV3 19

  20. Library Based Fault Injection m' m Nominal behavior 0 m' m' 1 Faulty behavior 1 2 m' n Faulty behavior 2 … m' Faulty behavior n Mode selector 20

  21. Faults Libraries • Effects model library One effect model describes the effects on the associated nominal component when a fault occurs e.g.: stuck at a value, invert a value, a value ramps down, … • Local dynamics model library One local dynamic model describes the behavior of the fault e.g.: a permanent or transient fault, self repair after 10 seconds, … 21

  22. Library Based Fault Injection • Support for complex behavior – hybrid and discrete semantics – multiple input support – global dynamics interaction • Easily extendable library definition – effects model and local dynamics • User friendly and aided approach – human readable files definition – guided extension via GUI 22

  23. Flow of the Fault Extension Fault libraries Extension Nominal Extension info Manager model Model Extender Extended model 23

  24. Flow of the Fault Extension Nom Nom Comp Effects Model em em em Comp 1 2 n Library … Local Dynamics Library ld 1 ld 2 ld n Nominal Nom Model Comp fm n fm 1 fm 2 N Extension Info fm 1 fm 2 fm n 24

  25. Roadmap • Formal Model Based Safety Assessment • Formal Safety assessment – Current approach – Automated Fault Extension • NuSMV3 formal verification framework • Next challenges

  26. Flow of Formal MBSA Fault Extension Formal Verification Fault Temporal libraries Extended property model Extension Nominal Extension Manager model info Model Extender Counter Fault Tree FMEA table example 26

  27. NuSMV3: Architecture Altarica Matlab Simulink AADL Altarica2HyDI MatlabSL2HyDI AADL2SMV NuSMV3 Addons Safety Model Extender HyDI … Assessment NuSMV 2 MathSAT5 CUDD MiniSAT 27

  28. Adder Example 28

  29. Adder example: Nominal Model random1 bit1 adder random2 bit2 29

  30. Adder example: components may fail random1 bit1 adder random2 bit2 Components Effect Model Local Dynamics bit1, bit2 StuckAt(0) Permanent bit1, bit2 StuckAt(1) Permanent bit1, bit2 Inverted Transient 30

  31. Adder example: components may fail random1 bit1 adder random2 bit2 Components Effect Model Local Dynamics bit1, bit2 StuckAt(0) Permanent bit1, bit2 StuckAt(1) Permanent bit1, bit2 Inverted Transient adder StuckAt(0) Permanent adder StuckAt(1) Permanent 31

  32. Example: bits fault model composition StuckAt(0) StuckAt(1) Inverted Permanent Permanent Transient fm 1 fm 2 fm 3 N fm 1 fm 2 fm 3 global dynamics 32

  33. Analysis Results 33

  34. Example: Fault Tree Analysis Top Level Event : random1 = 0 & random2 = 0 & adder.output != 0 (check when 0 + 0 != 0) 34

  35. Example: FMEA tables FMEA TABLE ORDER 1 Id.Nr. Failure Mode Failure Effects 1 bit1.output inverted ((random1=0 & random2 = 0) & adder.output !=0) 2 bit1.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 3 bit2.output inverted ((random1=0 & random2 = 0) & adder.output !=0) 4 bit2.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 5 adder.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) FMEA TABLE ORDER 2 Id.Nr. Failure Mode Failure Effects 1 bit1.output inverted ((random1=0 & random2 = 0) & adder.output !=0) 2 bit1.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 3 bit2.output inverted ((random1=0 & random2 = 0) & adder.output !=0) 4 bit2.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 5 adder.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 6 bit1.output inverted & bit1.output stuck_at_0 ((random1=0 & random2 = 0) & adder.output !=0) 7 bit1.output inverted & bit1.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 8 bit1.output inverted & bit2.output inverted ((random1=0 & random2 = 0) & adder.output !=0) 9 bit1.output inverted & bit2.output stuck_at_0 ((random1=0 & random2 = 0) & adder.output !=0) 10 bit1.output inverted & bit2.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 11 bit1.output inverted & adder.output stuck_at_1 ((random1=0 & random2 = 0) & adder.output !=0) 12 … 35

  36. Conclusion Library based fault extension • Highly Expressive • Automated technique • Time saving • Traceable process Next challenges • Extension of expressiveness for library based fault injection • Integration with industrial design tools 36

  37. Thank you! Cristian Mattarei FBK ES-Group mattarei@fbk.eu

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on slides developed by Natasha Sharygina 15-413: Introduction to Software Engineering Fall 2005 3 Formal Verification by Model Checking Domain:

289 views • 24 slides
Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on slides developed by Natasha Sharygina 17-654/17-754: Analysis of Software Artifacts Spring 2006 1 Formal Verification by Model Checking Domain:

380 views • 13 slides
Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on

Formal Verification by Model Checking Jonathan Aldrich Carnegie Mellon University Based on slides developed by Natasha Sharygina 17-654/17-754: Analysis of Software Artifacts Spring 2006 1 CTL Model Checking AG (Start AF Heat)

307 views • 20 slides
SMT-based model checking techniques for formal software verification of synchronous dataflow

SMT-based model checking techniques for formal software verification of synchronous dataflow

An insight into SMT-based model checking techniques for formal software verification of synchronous dataflow programs Jonathan Laurent Ecole Normale Sup erieure, National Institute of Aerospace, NASA Langley Research Center August 11 th ,

1.01k views • 67 slides
Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for

Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for

Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for Analyzing Computing Systems Shilpi Goel shilpi@centtech.com Formal Verification Engineer Centaur Technology, Inc. Software and Reliability Can we rely

1.14k views • 78 slides
Formal verification of complex systems: model-based and data-driven methods Alessandro Abate

Formal verification of complex systems: model-based and data-driven methods Alessandro Abate

Formal verification of complex systems: model-based and data-driven methods Alessandro Abate Department of Computer Science, University of Oxford Alan Turing Institute - Jan 12, 2018 Alessandro Abate, CS, Oxford Model-based and data-driven

772 views • 61 slides
HGABAC: Towards a Formal Model of Hierarchical Attribute-Based Access Control Sylvia L. Osborn

HGABAC: Towards a Formal Model of Hierarchical Attribute-Based Access Control Sylvia L. Osborn

HGABAC: Towards a Formal Model of Hierarchical Attribute-Based Access Control Sylvia L. Osborn Daniel Servos sylvia@csd.uwo.ca dservos5@uwo.ca Department of Computer Science The 7th International Symposium on Foundations & Practice of

1.05k views • 49 slides
The Omega IST project Model based development and use of formal methods in the context of

The Omega IST project Model based development and use of formal methods in the context of

OMEGA IST-2001-33522 OMEGA (2002-2004) IST-2001-33522 The Omega IST project Model based development and use of formal methods in the context of real-time software http://www-omega.imag.fr/ SVERTS workshop at UML 2003 1 San Francisco,

448 views • 10 slides
The banking correspondent business model Extending access to the formal financial system*

The banking correspondent business model Extending access to the formal financial system*

The banking correspondent business model Extending access to the formal financial system* Financial Inclusion Unit April 2015 *This presentation is based on Cmara, Tuesta & Urbiola (2015). Extending access to the formal financial

455 views • 20 slides
Tutorial Intro. to Modern Formal Methods: Mechanized Formal Analysis Using Model Checking,

Tutorial Intro. to Modern Formal Methods: Mechanized Formal Analysis Using Model Checking,

Tutorial Intro. to Modern Formal Methods: Mechanized Formal Analysis Using Model Checking, Theorem Proving SMT Solving, Abstraction, and Static Analysis With SAL, PVS, and Yices, and more John Rushby Computer Science Laboratory SRI

1.89k views • 161 slides
Model-Checking Acknowledgment Formal Verification Formal verification means to apply

Model-Checking Acknowledgment Formal Verification Formal verification means to apply

Model-Checking Acknowledgment Formal Verification Formal verification means to apply mathematical arguments to prove the correctness of systems Systems have bugs Formal verification aims to find and correct such bugs Why? Computer systems

1.42k views • 122 slides
A Formal Approach to Embedding First-Principles Planning in BDI Agent Systems Mengwei Xu, Kim

A Formal Approach to Embedding First-Principles Planning in BDI Agent Systems Mengwei Xu, Kim

A Formal Approach to Embedding First-Principles Planning in BDI Agent Systems Mengwei Xu, Kim Bauters, Kevin McAreavey , Weiru Liu Agent Frameworks Programming-Based Model-Based Belief-Desire-Intention (BDI) Hierarchical Task Networks (HTN)

568 views • 20 slides
Formal Definition of Computation Formal Definition of Computation p.1/28 Computation

Formal Definition of Computation Formal Definition of Computation p.1/28 Computation

Formal Definition of Computation Formal Definition of Computation p.1/28 Computation model The model of computation considered so far is the work performed by a finite automaton Formal Definition of Computation p.2/28

1.27k views • 69 slides
Lecture A Motivation The model, informally The formal model Other thoughts February

Lecture A Motivation The model, informally The formal model Other thoughts February

Lecture A Motivation The model, informally The formal model Other thoughts February 6, 2009 ECS 235B Winter Quarter 2009 Slide #A-1 Matt Bishop, UC Davis Overview What is recordation? Why do it electronically? Models

946 views • 47 slides
Testing/Simulation Formal Analysis Real System Formal Model Partial coverage Complete coverage

Testing/Simulation Formal Analysis Real System Formal Model Partial coverage Complete coverage

Formal Methods Assurance for TTP John Rushby Computer Science Laboratory SRI International Menlo Park CA USA John Rushby, SR I Formal Methods Assurance for TTP: 1 Formal Methods for Analysis and Assurance: The Idea Testing/Simulation Formal

200 views • 6 slides
Towards a Formal Model for View Maintenance in Data Warehouses D. Agrawal , A. El Abbadi , A.

Towards a Formal Model for View Maintenance in Data Warehouses D. Agrawal , A. El Abbadi , A.

Towards a Formal Model for View Maintenance in Data Warehouses D. Agrawal , A. El Abbadi , A. Most efaoui , M. Raynal and M. Roy Univ. Santa Barbara, California IRISA, Rennes, France Towards a Formal

578 views • 34 slides
Partons and jets in a strongly coupled plasma from AdS/CFT Edmond Iancu IPhT Saclay & CNRS

Partons and jets in a strongly coupled plasma from AdS/CFT Edmond Iancu IPhT Saclay & CNRS

Partons and jets in a strongly coupled plasma from AdS/CFT Edmond Iancu IPhT Saclay & CNRS Collaboration with Yoshitaka Hatta and Al Mueller (lecture notes arXiv:0812.0500) Laboratoire de Physique Corpusculaire de Clermont-Ferrand, 20 mars

751 views • 56 slides
Recursion COM1022 Functional Programming Techniques Professor Steve Schneider University of

Recursion COM1022 Functional Programming Techniques Professor Steve Schneider University of

Recursion COM1022 Functional Programming Techniques Professor Steve Schneider University of Surrey Autumn 2009 Week 10 Professor Steve Schneider Recursion Autumn 2009 Week 10 1 / 35 This session After this session, you should understand

628 views • 35 slides
Extended Kalman Filter Nonlinear State Space Model Derivation Consider the nonlinear

Extended Kalman Filter Nonlinear State Space Model Derivation Consider the nonlinear

Extended Kalman Filter Nonlinear State Space Model Derivation Consider the nonlinear state-space model of a random process Example application: frequency tracking x n +1 = f n ( x n ) + g n ( x n ) u n y n = h n ( x n ) + v n where

306 views • 11 slides
Kinetic terms in warped compactifications Gonzalo Torroba Department of Physics, NHETC, Rutgers

Kinetic terms in warped compactifications Gonzalo Torroba Department of Physics, NHETC, Rutgers

Warp effects in EFT Formulating the problem Hamiltonian approach Application to warped compactifications Khler metric in the deformed conifold Kinetic terms in warped compactifications Gonzalo Torroba Department of Physics, NHETC, Rutgers

279 views • 23 slides
Linear dilaton for asymptotically Lifshitz-like spacetimes Anastasia Golubtsova 1 based on a

Linear dilaton for asymptotically Lifshitz-like spacetimes Anastasia Golubtsova 1 based on a

Linear dilaton for asymptotically Lifshitz-like spacetimes Anastasia Golubtsova 1 based on a collabotation with Irina Ia. Arefeva and Eric Gourgoulhon JHEP 1504 (2015) (011),arXiv:1410.4595, 1511.XXXXX 1 BLTP JINR LUTh, Meudon, 2015

769 views • 52 slides
Manifestly Supersymmetric Effective Actions on Walls and on Vortices Keisuke Ohashi with M.Eto,

Manifestly Supersymmetric Effective Actions on Walls and on Vortices Keisuke Ohashi with M.Eto,

Manifestly Supersymmetric Effective Actions on Walls and on Vortices Keisuke Ohashi with M.Eto, Y.Isozumi, M.Nitta, N.Sakai Tokyo Institute of Technology based on hep-th/0502***, hep-th/0405194, hep-th/0404198 1. Introduction & Motivation

559 views • 20 slides
ACQUISITION OF FIRST NATIONAL BANK & TRUST (FNBT) September 27 06 FORWARD-LOOKING

ACQUISITION OF FIRST NATIONAL BANK & TRUST (FNBT) September 27 06 FORWARD-LOOKING

ACQUISITION OF FIRST NATIONAL BANK & TRUST (FNBT) September 27 06 FORWARD-LOOKING STATEMENTS CAUTION REGARDING FORWARD-LOOKING STATEMENTS Bank of Montreals public communications often include written or oral forward-looking

180 views • 4 slides
Natural Language Processing with Deep Learning CS224N/Ling284 Matthew Lamm Lecture

Natural Language Processing with Deep Learning CS224N/Ling284 Matthew Lamm Lecture

Natural Language Processing with Deep Learning CS224N/Ling284 Matthew Lamm Lecture 3: Word Window Classification, Neural Networks, and PyTorch 1. Course plan: coming up Week 2: We learn neural net fundamentals We

564 views • 34 slides

More recommend