hats
play

HATS: Highly Adaptable & Trustworthy Software Using Formal - PowerPoint PPT Presentation

Jun 24, 2023 •271 likes •563 views

Titlepage HATS: Highly Adaptable & Trustworthy Software Using Formal Models Reiner H ahnle Chalmers University of Technology, Gothenburg, Sweden Sophia-Antipolis, 23 October 2008 R. H ahnle HATS: Adaptable & Trustworthy

  1. Titlepage HATS: Highly Adaptable & Trustworthy Software Using Formal Models Reiner H¨ ahnle Chalmers University of Technology, Gothenburg, Sweden Sophia-Antipolis, 23 October 2008 R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 0 / 13

  2. Basic Facts Hats Facts HATS : Highly Adaptable & Trustworthy Software Using Formal Models Proposal Data ◮ FP7 FET focused call Forever Yours ◮ Submitted 8 April 2008 ◮ Integrated Project, academically driven ◮ 8 academic partners, 2 industrial research, 1 SME ◮ 7 countries ◮ Negotiations concluded, project start 1 February or 1 March 2009 ◮ 730 PM, EC contribution 5,27 M e over 48 months R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 1 / 13

  3. Consortium Consortium & Lead Researchers H¨ ahnle (Coord.) Chalmers Tekniska H¨ ogskola SE Johnsen, Steffen Universitetet i Oslo NO Dam, Gurov Kungliga Tekniska H¨ ogskolan SE Puebla, Barthe Universidad Polit´ ecnica de Madrid / IMDEA-Sw ES Poetzsch-Heffter University of Kaiserslautern DE Sangiorgi, Zucca Universit` a di Bologna e Genova IT De Boer Centrum voor Wiskunde en Informatica NE Østvold Norsk Regnesentral NO Diakov Fredhopper NE Muthig Fraunhofer IESE DE Clarke, Piessens Katholieke Universiteit Leuven BE R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 2 / 13

  4. Context Technological and Industrial Context of HATS Software Dynamics: Adaptability ◮ Large software systems are extremely long-lived ◮ Variability: software must work in plethora of deployment scenarios ◮ Evolvability: frequent and unanticipated changes of requirements R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 3 / 13

  5. Context Technological and Industrial Context of HATS Software Dynamics: Adaptability ◮ Large software systems are extremely long-lived ◮ Variability: software must work in plethora of deployment scenarios ◮ Evolvability: frequent and unanticipated changes of requirements Software Quality: Trustworthiness ◮ Non-functional aspects (security, resources) ever more important ◮ Challenges: product complexity, composability, concurrency ◮ Ensure and maintain intended behaviour R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 3 / 13

  6. Context Technological and Industrial Context of HATS Software Dynamics: Adaptability ◮ Large software systems are extremely long-lived ◮ Variability: software must work in plethora of deployment scenarios ◮ Evolvability: frequent and unanticipated changes of requirements Changes rest on behavioural assumptions New functionality causes security issue Software Quality: Trustworthiness ◮ Non-functional aspects (security, resources) ever more important ◮ Challenges: product complexity, composability, concurrency ◮ Ensure and maintain intended behaviour R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 3 / 13

  7. Context Technological and Industrial Context of HATS Software Dynamics: Adaptability ◮ Large software systems are extremely long-lived ◮ Variability: software must work in plethora of deployment scenarios ◮ Evolvability: frequent and unanticipated changes of requirements Changes rest on behavioural assumptions New functionality causes security issue Software Quality: Trustworthiness ◮ Non-functional aspects (security, resources) ever more important ◮ Challenges: product complexity, composability, concurrency ◮ Ensure and maintain intended behaviour Software Economics: Cost-Efficiency ◮ Automation: far-reaching tool support is essential R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 3 / 13

  8. Challenges High Adaptability + High Trustworthiness: Challenges Technology Context ◮ Distributedness ◮ Concurrency ◮ Object-Orientation ◮ Invasive composition Adaptability ◮ Many deployment scenarios ◮ Rapidly changing requirements ◮ Unanticipated requirements Trustworthiness ◮ Correctness ◮ Security ◮ Reliability ◮ Efficiency R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 4 / 13

  9. Gap The Modelling Gap How to precisely model large, distributed systems? Specification level Modeling formalisms Design-oriented UML, FDL ? ? Implementation-oriented Spec#, Java+JML

  10. Gap The Modelling Gap How to precisely model large, distributed systems? Specification level Modeling formalisms Design-oriented UML, FDL Abstract behavioral ? HATS ABS language ? Implementation-oriented Spec#, Java+JML R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 5 / 13

  11. Solution Proposed Solution A tool-supported formal method for building highly adaptable and trustworthy software R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 6 / 13

  12. Solution Proposed Solution A tool-supported formal method for building highly adaptable and trustworthy software Ingredients Executable modeling language for adaptable software: 1 Abstract Behavioral Specification(ABS) language Integrated framework and tool architecture 2 Tool suite for analysis and development: 3 Hard feature consistency, data integrity, security, correctness, code generation Soft visualization, test case generation, specification mining, type checking R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 6 / 13

  13. Approach Formalising Software Family-Based Development Software Family models describes ABS Modeling Language variability parameter space Domain Feature model system derivation and customization spatial variability Existing Formal Methods models System SPEC#, JML, UML, System Product OCL, State Diagrams, ... Product temporal evolution R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 7 / 13

  14. Approach Scaling Formal Methods to Adaptable Systems Software Family models describes ABS Modeling Language variability parameter space Domain Feature model system derivation and customization spatial variability Existing Formal Methods models System SPEC#, JML, UML, System Product OCL, State Diagrams, ... Product temporal evolution x R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 7 / 13

  15. Methodology Methodology Advanced software validation tools need rigouros and unambigous models R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 8 / 13

  16. Methodology Methodology Advanced software validation tools need rigouros and unambigous models Abstract Behavioral Specification Language ◮ Adaptability concerns drive its design ◮ Formalises successful SWPF development method ◮ Behavioral model: concurrency, composability, modularity, deployment ◮ Abstract away from programming languages, system architecture R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 8 / 13

  17. Methodology Methodology Advanced software validation tools need rigouros and unambigous models Abstract Behavioral Specification Language ◮ Adaptability concerns drive its design ◮ Formalises successful SWPF development method ◮ Behavioral model: concurrency, composability, modularity, deployment ◮ Abstract away from programming languages, system architecture Design-oriented UML, FDL HATS ABS language Abstract behavioral Implementation-oriented Spec#, Java+JML R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 8 / 13

  18. Methodology Methodology Advanced software validation tools need rigouros and unambigous models Abstract Behavioral Specification Language ◮ Adaptability concerns drive its design ◮ Formalises successful SWPF development method ◮ Behavioral model: concurrency, composability, modularity, deployment ◮ Abstract away from programming languages, system architecture Validation/verification methods developed in tandem with ABS ◮ Verification exploits ABS language features ◮ Native support of variability ◮ Evolvability: incremental algorithms, code generation, specification mining R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 8 / 13

  19. Model vs Code System Derivation and Tool Architecture Our Approach: ABS models annotated with a policy Does the ABS model comply with the policy? 1 • security: confidentiality, application-specific policies ABS model • resource consumption limitations and policy • correctness properties Does the code comply with the ABS model, and the policy? 2 • Much stronger guarantees possible! • Hard to show for hand-written (legacy) code Our Proposal: compilation and mining Executable code ◮ Policy-preserving code generators ◮ Mining ABS specifications from legacy code ◮ Compile variability of ABS model into code-level verification heuristics R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 9 / 13

  20. Novelty Novel Aspects Adaptability as the driver and touchstone for a formal method ◮ First-class support (primitives) in the specification language ◮ Determines architecture and portfolio of verification methods R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 10 / 13

  21. Novelty Novel Aspects Adaptability as the driver and touchstone for a formal method ◮ First-class support (primitives) in the specification language ◮ Determines architecture and portfolio of verification methods Leverage successful adaptive approach to formal setting ◮ Rigorous models of software product families (SWPFs) ◮ Enable tool-supported validation for SWPF R. H¨ ahnle HATS: Adaptable & Trustworthy Software 081023 10 / 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Many Hats The Many Hats of a Major Gifts Development Officer Introduction Why fundraising?

Many Hats The Many Hats of a Major Gifts Development Officer Introduction Why fundraising?

Many Hats The Many Hats of a Major Gifts Development Officer Introduction Why fundraising? "For small creatures such as we the vastness is bearable only through love." -Carl Sagan The Big Gift The Big Gift 2 year, 8 month

610 views • 28 slides
HATS Project Overview and Introduction Reiner Hhnle Technische Universitt Darmstadt HATS

HATS Project Overview and Introduction Reiner Hhnle Technische Universitt Darmstadt HATS

HATS Project Overview and Introduction Reiner Hhnle Technische Universitt Darmstadt HATS Annual Review Meeting 2012 http://www.hats-project.eu Reiner Hhnle HATS Project Overview and Introduction Annual Review Meeting 2012 1 / 26 HATS

540 views • 33 slides
HATs off to DAWN? Simon Rudge. VTE Nurse. Hospital Acquired Thrombosis (HAT) The process ~650

HATs off to DAWN? Simon Rudge. VTE Nurse. Hospital Acquired Thrombosis (HAT) The process ~650

HATs off to DAWN? Simon Rudge. VTE Nurse. Hospital Acquired Thrombosis (HAT) The process ~650 scans ~130 positive ~30 HATs X ref 64 fields. 37 manual data entry. DVT Clinic Surgery aug 14 #POP THR 7/52 Yes The RCA Additional

478 views • 8 slides
Modeling Spatial and Temporal Variability with the HATS Abstract Behavioral Modeling Language Ina

Modeling Spatial and Temporal Variability with the HATS Abstract Behavioral Modeling Language Ina

Modeling Spatial and Temporal Variability with the HATS Abstract Behavioral Modeling Language Ina Schaefer Technische Universit at Braunschweig, Germany 18 June 2011 http://www.hats-project.eu I. Schaefer SFM-11:CONNECT 0 / 60

942 views • 82 slides
WHA HATS I IN N A WORD RD? Explicit Vocabulary Instruction in the ABE, ASE, and CTE

WHA HATS I IN N A WORD RD? Explicit Vocabulary Instruction in the ABE, ASE, and CTE

WHA HATS I IN N A WORD RD? Explicit Vocabulary Instruction in the ABE, ASE, and CTE Classrooms TODA DAYS A AGENDA DA Welcomes + Poll Objectives for T odays Session Vocabulary, Comprehension, and Learning

765 views • 39 slides
Of Hats and Islandora T h e T u q u e S t o r y 1 Who is this guy? Jonathan Green Chief

Of Hats and Islandora T h e T u q u e S t o r y 1 Who is this guy? Jonathan Green Chief

Of Hats and Islandora T h e T u q u e S t o r y 1 Who is this guy? Jonathan Green Chief Technology Officer at jonathan@discoverygarden.ca twitter: @jonawesomegreen slides: http://bit.ly/1atrzte 2 3 Overview 4 Links

344 views • 22 slides
WHA HATS T THE HE DE DEAL W AL WITH TH FOOD WAS ASTE TE? A third of all food produced

WHA HATS T THE HE DE DEAL W AL WITH TH FOOD WAS ASTE TE? A third of all food produced

WHA HATS T THE HE DE DEAL W AL WITH TH FOOD WAS ASTE TE? A third of all food produced for human consumption is wasted. In the UK alone more than 10 million tonnes of food, worth over 20 billion, is wasted throughout the supply chain

644 views • 9 slides
DISCUSSION TOPICS Wha hats s t the he R Risk? k? Understanding what it means

DISCUSSION TOPICS Wha hats s t the he R Risk? k? Understanding what it means

DISCUSSION TOPICS Wha hats s t the he R Risk? k? Understanding what it means for your LCO to engage in fixed anchor replacement High level overview of a potential claim against an LCO Volunteers conducting fixed anchor

328 views • 14 slides
Guardianship; Turning 18 w hats next? Making the decision; Understanding the process Learning

Guardianship; Turning 18 w hats next? Making the decision; Understanding the process Learning

Supporting Arizona families of children with disabilities or special health needs Guardianship; Turning 18 w hats next? Making the decision; Understanding the process Learning Objectives Participants will learn: Guardianship,

720 views • 41 slides
NEW NFPA STANDARDS EXPLAINED Hot & Cold Aisle Containment Wha hats di s di fff er

NEW NFPA STANDARDS EXPLAINED Hot & Cold Aisle Containment Wha hats di s di fff er

Cary Frame, President NEW NFPA STANDARDS EXPLAINED Hot & Cold Aisle Containment Wha hats di s di fff er erent: r ent: rooms within a r ooms within a room oom Sources of Confusion NFP NFPA A 2013 NFPA 75 Covers Aisle

512 views • 12 slides
Three Days Living In The Digital First World Beyond the Bio Many different hats in 25 years

Three Days Living In The Digital First World Beyond the Bio Many different hats in 25 years

Three Days Living In The Digital First World Beyond the Bio Many different hats in 25 years in newspapers Sports Writer District Sales Manager Zone Manager Home Delivery Manager Assistant Circulation Director Director

484 views • 32 slides
Verifying Transformation Rules of the HATS High-Assurance Transformation System: An Approach

Verifying Transformation Rules of the HATS High-Assurance Transformation System: An Approach

Verifying Transformation Rules of the HATS High-Assurance Transformation System: An Approach Steve Roach Fares Fraij Department of Computer Science The University of Texas at El Paso Fifth International Workshop on the ACL2 Theorem

299 views • 17 slides
Ansible and OpenShift: Red Hats Celebrity Marriage Til Death Do We Part Joshua jag

Ansible and OpenShift: Red Hats Celebrity Marriage Til Death Do We Part Joshua jag

Ansible and OpenShift: Red Hats Celebrity Marriage Til Death Do We Part Joshua jag Ginsberg - jag@redhat.com @j00bar (those are zeroes) Chief Architect - Management Platform Engineering 2 (graphic by Leigh Ann Ivey) (graphic by

1.01k views • 32 slides
The Beauty and the Beast Vulnerabilities in Red Hats Packages Stephan Neuhaus

The Beauty and the Beast Vulnerabilities in Red Hats Packages Stephan Neuhaus

The Beauty and the Beast Vulnerabilities in Red Hats Packages Stephan Neuhaus <Stephan.Neuhaus@disi.unitn.it> Thomas Zimmermann <tzimmer@microsoft.com> Vulnerabilities are important because fixing them costs a lot of money (2005

1.9k views • 73 slides
Workshop J Is Safety One of Your Many Hats? Keys for Safety Success Tuesday, March 21, 2017

Workshop J Is Safety One of Your Many Hats? Keys for Safety Success Tuesday, March 21, 2017

Workshop J Is Safety One of Your Many Hats? Keys for Safety Success Tuesday, March 21, 2017 11:15 a.m. to 12:30 p.m. Biographical Information Randy Miller, Sr. EHS Specialist AECOM, 1300 East 9 th St., Cleveland, OH 44114 216-523-3320

487 views • 24 slides
Six Thinking Hats Emotions, feeling, hunches, intuition, likes RED HAT and dislikes How do I

Six Thinking Hats Emotions, feeling, hunches, intuition, likes RED HAT and dislikes How do I

Six Thinking Hats Emotions, feeling, hunches, intuition, likes RED HAT and dislikes How do I feel about Think of: this? Fire and warmth What do I like about the idea? Questions to ask: What dont I like 1. What do you like about about

557 views • 9 slides
Quantifying Natural Selection in Coding Sequences. Sergei L Kosakovsky Pond Professor,

Quantifying Natural Selection in Coding Sequences. Sergei L Kosakovsky Pond Professor,

http://bit.ly/veme-selection-2016 Quantifying Natural Selection in Coding Sequences. Sergei L Kosakovsky Pond Professor, Department of Biology Institute for Genomics and Evolutionary Medicine (iGEM) Temple University spond@temple.edu

1.26k views • 115 slides
DRAFT COMMUNITY ENGAGEMENT PLAN SPECIAL MEETING OF THE SPRINGFIELD PLANNING COMMISSION April

DRAFT COMMUNITY ENGAGEMENT PLAN SPECIAL MEETING OF THE SPRINGFIELD PLANNING COMMISSION April

WETLAND & RIPARIAN INVENTORIES FOR UGB EXPANSION AREAS DRAFT COMMUNITY ENGAGEMENT PLAN SPECIAL MEETING OF THE SPRINGFIELD PLANNING COMMISSION April 21, 2020 AS THE SPRINGFIELD COMMITTEE FOR CITIZEN INVOLVEMENT TOPICS TO COVER

318 views • 20 slides
LANGUAGE AND DATA PROCESSING AS FIRST-CLASS CITIZENS ON

LANGUAGE AND DATA PROCESSING AS FIRST-CLASS CITIZENS ON

Co-funded by the Horizon 2020 Framework Programme of the European Union Grant Agreement Number 644771 LANGUAGE AND DATA PROCESSING AS FIRST-CLASS

108 views • 8 slides
Modular Adaptable Ship Design Implementation ASNE Day 2013 February 21-22, 2013 Norbert Doerry

Modular Adaptable Ship Design Implementation ASNE Day 2013 February 21-22, 2013 Norbert Doerry

Modular Adaptable Ship Design Implementation ASNE Day 2013 February 21-22, 2013 Norbert Doerry Technical Director, Technology Group (SEA 05TD) Naval Sea Systems Command Norbert.doerry@navy.mil Feb 2013 Approved for Public Release 1 Doerry

358 views • 10 slides
Human-Robot Mutual Adaptation Waleed Mustafa University of Hamburg Faculty of Mathematics,

Human-Robot Mutual Adaptation Waleed Mustafa University of Hamburg Faculty of Mathematics,

MIN Faculty Department of Informatics University of Hamburg Human-Robot Mutual Adaptation Human-Robot Mutual Adaptation Waleed Mustafa University of Hamburg Faculty of Mathematics, Informatics and Natural Sciences Department of Informatics

623 views • 23 slides
Bloom Filters, Count Sketches and Adaptive Sketches Rice University Anshumali Shrivastava

Bloom Filters, Count Sketches and Adaptive Sketches Rice University Anshumali Shrivastava

Bloom Filters, Count Sketches and Adaptive Sketches Rice University Anshumali Shrivastava anshumali@rice.edu 29th August 2016 Anshumali Shrivastava (COMP 640) Sketching 29th August 2016 1 / 22 Basics: Universal Hashing Basic tool for

542 views • 33 slides
A Measurement Study on Multi-path TCP with Multiple Cellular Carriers on High Speed Rails ,

A Measurement Study on Multi-path TCP with Multiple Cellular Carriers on High Speed Rails ,

ACM SIGCOMM 18, Budapest, Hungary A Measurement Study on Multi-path TCP with Multiple Cellular Carriers on High Speed Rails , Kai Zheng , Chunyi Peng , Li Li * , Ke Xu * , Tong Li Dan Wang , Xiangxiang Wang * , Meng Shen

696 views • 23 slides
Formal Specification and Analysis of Robust Adaptive Distributed Cyber-Physical Systems Carolyn

Formal Specification and Analysis of Robust Adaptive Distributed Cyber-Physical Systems Carolyn

Formal Specification and Analysis of Robust Adaptive Distributed Cyber-Physical Systems Carolyn Talcott (and the Soft Agents Team) SFM Quantitative Evaluation of Collective Adaptive Systems June 2016 1 Vision Multiple agents with

1.11k views • 92 slides

More recommend