marq monitoring at runtime with qea
play

MarQ : Monitoring At Runtime with QEA Giles Reger in collaboration - PowerPoint PPT Presentation

Mar 03, 2023 •37 likes •1.01k views

Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ MarQ : Monitoring At Runtime with QEA Giles Reger in collaboration with Helena Cuenca Cruz, David Rydeheard at University of Manchester, UK April 17th, 2015 Runtime

  1. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ MarQ : Monitoring At Runtime with QEA Giles Reger in collaboration with Helena Cuenca Cruz, David Rydeheard at University of Manchester, UK April 17th, 2015

  2. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Outline Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ

  3. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Motivation • See lots of other talks for why we want formal guarantees about correctness of software systems • Static verification has many successes but • It can have scalability issues • It often works with abstractions of the real system • It often needs to make assumptions about the environment and input data • Runtime verification is a complementary technique that tackles these issues by ‘verifying’ a single run of the system • Additionally, if performed at runtime it can be used to stop or correct bad behaviour

  4. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Runtime Monitoring Problems Runtime Monitoring Checking whether an execution trace τ produced at runtime satisfies a given a (typically temporal) specification φ Online Runtime Monitoring Performing runtime monitoring alongside the running system. Offline Runtime Monitoring Performing runtime monitoring on a log file after running the system. Parametric Runtime Monitoring Runtime monitoring with first-order specifications i.e. ones that deal with data-carrying events

  5. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Online Runtime Monitoring Setup Instrument the system to observe a trace of relevant events property ¡ verdict ¡ monitor ¡ observe ¡ feedback ¡ instrumenta,on ¡ system ¡

  6. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Online Runtime Monitoring Setup The monitor uses the given property . . . property ¡ verdict ¡ monitor ¡ observe ¡ feedback ¡ instrumenta,on ¡ system ¡

  7. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Online Runtime Monitoring Setup . . . to process each event . . . possibly providing feedback. . . property ¡ verdict ¡ monitor ¡ observe ¡ feedback ¡ instrumenta,on ¡ system ¡

  8. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Online Runtime Monitoring Setup . . . and finally computing a verdict - did the system pass? property ¡ verdict ¡ monitor ¡ observe ¡ feedback ¡ instrumenta,on ¡ system ¡

  9. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Online Runtime Monitoring in Practice • Lots of pragmatic considerations • Instrumentation • Overhead • Interference • Commonly shown to be useful for checking usage of libraries - successful application to large open source projects • Recent industrial successes in the banking industry for monitoring reliability and correctness • Applicable to safety-critical systems i.e. aerospace, automotive, medical.

  10. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Offline Runtime Monitoring in Practice • Idea: record behaviour and check afterwards • Gives minimal/predictable overhead • Applies to more general domains/settings • Only get what is recorded • Offline RV successes at NASA’s JPL • Used on the LADEE mission to check command sequences sent to the spacecraft as part of a daily testing regime • Used daily on the MSL mission to check rules against Spacecraft telemetry logs sent from Curiosity

  11. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Parametric (or first-order) Properties • Originally runtime verification considered properties over event names i.e. using propositional LTL or automata • A parametric event consists of a name and a list of data values • Examples: • An iterator i created from a collection c should not be used after c is updated • Every start ( t ) should have a corresponding stop ( t ) • If locks l 1 and l 2 are taken in one order by a thread t then later they should not be taken in the reverse order by any thread • Introduces new challenges in terms of specification languages and monitoring algorithms

  12. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Contributions • We introduce the MarQ runtime monitoring tool • MarQ stands for Monitoring at runtime with QEA • Quantified Event Automata (QEA) is a previously introduced specification language for parametric specifications MarQ • Can be used offline and online • Supports all features of the QEA language • Is efficient • Won the Offline and Java tracks of the CRV14, the first international competition on runtime verification. • Incorporates novel indexing, redundancy elimination and structural specialisation techniques

  13. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Outline Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ

  14. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ The Slicing idea • Based on the notion of parametric trace slicing • Turns a quantified problem into a set of unquantified problems • The basic idea of QEA 1. Use a list of quantifications to define trace slices relating to separate valuations of quantified variables 2. Use an extended finite state machine to check properties over those slices 3. The quantifications define which trace slices need to be accepted by the state machine

  15. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Quantified Event Automata Definition (Event Automaton) An Event Automaton � Q , A , δ, q 0 , F � is a tuple where • Q is a set of states, • A ⊆ SymbolicEvent is a alphabet of events, • δ ⊆ ( Q × A × Guard × Assign × Q ) is a set of transitions, • q 0 is an initial state, and • F ⊆ Q is a set of final states. Definition (Quantified Event Automaton) A QEA is a pair � Λ , E � where • Λ ∈ ( {∀ , ∃}× variables (E) × Guard ) ∗ is a list of quantified variables with guards, and • E is an Event Automaton

  16. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ UnsafeMapIterator Example Property : UnsafeMapIterator An iterator created from a collection created from a map should not be used after the map is updated. ¬∃ m , ∃ c , ∃ i create (m,c) iterator (c,i) update (m) use (i) 1 2 3 4 5

  17. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Demonstrating slicing create ( M , C 1) . iterator ( C 1 , I 1) . use ( I 1) . update ( M ) . create ( M , C 2) . iterator ( C 2 , I 2) . iterator ( C 2 , I 3) . use ( I 3) . update ( M ) . use ( I 2) There are six possible bindings ¬∃ m , ∃ c , ∃ i create (m,c) iterator (c,i) update (m) use (i) 1 2 3 4 5

  18. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Demonstrating slicing create ( M , C 1) . iterator ( C 1 , I 1) . use ( I 1) . update ( M ) . create ( M , C 2) . iterator ( C 2 , I 2) . iterator ( C 2 , I 3) . use ( I 3) . update ( M ) . use ( I 2) For m = M , c = C 1, i = I 1 ¬∃ m , ∃ c , ∃ i create (m,c) iterator (c,i) update (m) use (i) 1 2 3 4 5

  19. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Demonstrating slicing create ( M , C 1) . iterator ( C 1 , I 1) . use ( I 1) . update ( M ) . create ( M , C 2) . iterator ( C 2 , I 2) . iterator ( C 2 , I 3) . use ( I 3) . update ( M ) . use ( I 2) For m = M , c = C 2, i = I 2 ¬∃ m , ∃ c , ∃ i create (m,c) iterator (c,i) update (m) use (i) 1 2 3 4 5

  20. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Demonstrating slicing create ( M , C 1) . iterator ( C 1 , I 1) . use ( I 1) . update ( M ) . create ( M , C 2) . iterator ( C 2 , I 2) . iterator ( C 2 , I 3) . use ( I 3) . update ( M ) . use ( I 2) For m = M , c = C 2, i = I 3 ¬∃ m , ∃ c , ∃ i create (m,c) iterator (c,i) update (m) use (i) 1 2 3 4 5

  21. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Demonstrating slicing create ( M , C 1) . iterator ( C 1 , I 1) . use ( I 1) . update ( M ) . create ( M , C 2) . iterator ( C 2 , I 2) . iterator ( C 2 , I 3) . use ( I 3) . update ( M ) . use ( I 2) There exists a slice that reaches a final state. The quantifications mean that the trace violates the property. ¬∃ m , ∃ c , ∃ i create (m,c) iterator (c,i) update (m) use (i) 1 2 3 4 5

  22. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Free Variables • Some variables in the Event Automaton may not be quantified • These are called free variables • Free variables are (re)bound as the trace is processed • Allowing us to capture changing data values

  23. Runtime Monitoring Quantified Event Automata Efficient monitoring Using MarQ Auction Bidding Example Property : Auction Bidding Amounts bid for an item should be strictly increasing. ∀ item 3 bid ( item , new ) new ≤ max bid ( item , max ) bid ( item , new ) new > max 1 2 max := new

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Using AOP for Detailed Runtime Monitoring Instrumentation Jonathan E Cook, joncook@nmsu.edu

Using AOP for Detailed Runtime Monitoring Instrumentation Jonathan E Cook, joncook@nmsu.edu

Using AOP for Detailed Runtime Monitoring Instrumentation Jonathan E Cook, joncook@nmsu.edu Amjad Nusayr, anusayr@cs.nmsu.edu The 2009 Workshop on Dynamic Analysis New Mexico State University Runtime Monitoring The act of observing an

590 views • 23 slides
Combining Static Analysis and Runtime Monitoring to Counter SQL-Injection Attacks William

Combining Static Analysis and Runtime Monitoring to Counter SQL-Injection Attacks William

Combining Static Analysis and Runtime Monitoring to Counter SQL-Injection Attacks William Halfond & Alessandro Orso Georgia Institute of Technology This work was supported in part by NSF awards CCR-0306372, CCR-0205422, and CCR-0209322 to

187 views • 17 slides
Verified Runtime Monitoring: From Foundations to Practice Presenter: Brandon Bohrer 1 , based on

Verified Runtime Monitoring: From Foundations to Practice Presenter: Brandon Bohrer 1 , based on

Verified Runtime Monitoring: From Foundations to Practice Presenter: Brandon Bohrer 1 , based on works with: Yong Kiam Tan 1 , Stefan Mitsch 1 , Andrew Sogokon 1 , Edward Ahn 1 , David Held 1 , John Dolan 1 , Aman Khurana 1 , Magnus O. Myreen 2 ,

637 views • 44 slides
Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics)

Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics)

Introduction Preliminaries Semantics of Runtime Control Semantics of Synthesis of Controlling Programs Expressiveness of Controlling Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics) Zhe Chen

558 views • 55 slides
Making Runtime Monitoring of Parametric Properties Practical - PhD Thesis Defense - Dongyun Jin

Making Runtime Monitoring of Parametric Properties Practical - PhD Thesis Defense - Dongyun Jin

Making Runtime Monitoring of Parametric Properties Practical - PhD Thesis Defense - Dongyun Jin Department of Computer Science University of Illinois at Urbana-Champaign Thesis Advisor Grigore Rosu Committee Members Klaus Havelund Gul Agha

662 views • 49 slides
Runtime Monitoring and Dynamic Reconfiguration for Intrusion Detection Systems Martin Rehak 1,2 ,

Runtime Monitoring and Dynamic Reconfiguration for Intrusion Detection Systems Martin Rehak 1,2 ,

Runtime Monitoring and Dynamic Reconfiguration for Intrusion Detection Systems Martin Rehak 1,2 , Eugen Staab 3 , Volker Fusenig 3 , Michal Pechoucek 1,2 , Martin Grill 1 , Jan Stiborek 1 , and Karel Bartos 1 ( 1 ) Czech Technical University in

419 views • 24 slides
Towards software architecture runtime models for continuous adaptive monitoring Thomas Brand,

Towards software architecture runtime models for continuous adaptive monitoring Thomas Brand,

13th International Workshop on Models@run.time Towards software architecture runtime models for continuous adaptive monitoring Thomas Brand, Holger Giese 14.10.2018 Agenda Show why it is relevant to investigate and support: Continuous

421 views • 29 slides
Runtime Monitoring of Object Invariants with Guarantees Sriram Rajamani, MSR India (joint work

Runtime Monitoring of Object Invariants with Guarantees Sriram Rajamani, MSR India (joint work

Runtime Monitoring of Object Invariants with Guarantees Sriram Rajamani, MSR India (joint work with Madhu Gopinathan, Indian Institute of Science) Object invariants interface Key{ //this < k? boolean Less(Key k); } class Node { Key

637 views • 31 slides
Timed Runtime Monitoring for Multiparty Conversations Rumyana Neykova, Laura Bocchi, Nobuko

Timed Runtime Monitoring for Multiparty Conversations Rumyana Neykova, Laura Bocchi, Nobuko

Timed Runtime Monitoring for Multiparty Conversations Rumyana Neykova, Laura Bocchi, Nobuko Yoshida On the importance of time On the importance of time } Web services (timeouts): } Twitter Streaming API: Reconnect no more than twice

521 views • 50 slides
Runtime monitoring of time-critical tasks in multi-core systems Claire Pagetti ONERA, France

Runtime monitoring of time-critical tasks in multi-core systems Claire Pagetti ONERA, France

Runtime monitoring of time-critical tasks in multi-core systems Claire Pagetti ONERA, France Christine Rochange, Univ. of Toulouse, France Motivation Static analysis provides safe but pessimistic WCET estimates safe WCET estimation

257 views • 10 slides
Performance Profiling with EndoScope, an Acquisitional Software Monitoring Framework Alvin

Performance Profiling with EndoScope, an Acquisitional Software Monitoring Framework Alvin

Performance Profiling with EndoScope, an Acquisitional Software Monitoring Framework Alvin Cheung Sam Madden MIT CSAIL August 25, 2008 Collecting System Runtime Data Many uses Real-time system monitoring Detect security breaches

357 views • 25 slides
Runtime Considerations Were moving towards actually producing target code. This means we need

Runtime Considerations Were moving towards actually producing target code. This means we need

10/29/2012 Runtime Considerations Were moving towards actually producing target code. This means we need to consider the runtime actions of the program. CS 1622: Runtime support: Functions and local variable storage Activation

160 views • 4 slides
Runtime systems Runtime systems Functional program are very high-level: its not obvious how to

Runtime systems Runtime systems Functional program are very high-level: its not obvious how to

Runtime systems Runtime systems Functional program are very high-level: its not obvious how to Programmation Fonctionnelle Avance implement them. http://www-lipn.univ-paris13.fr/~saiu/teaching/PFA-2010 Complex library support at run time

220 views • 8 slides
Another approach to runtime checking Typical runtime checking is by duplicating entire CPU

Another approach to runtime checking Typical runtime checking is by duplicating entire CPU

Another approach to runtime checking Typical runtime checking is by duplicating entire CPU Expensive in power, area No protection from design errors Does not survive permanent faults Last time we saw an approach that leveraged

246 views • 7 slides
Horizon Runtime Efficient Event Scheduling in Runtime Efficient Event Scheduling in

Horizon Runtime Efficient Event Scheduling in Runtime Efficient Event Scheduling in

Horizon Runtime Efficient Event Scheduling in Runtime Efficient Event Scheduling in Multi-threaded Network Simulation Georg Kunz, Mirko Stoffers, James Gross, Klaus Wehrle Geo g u , o Sto e s, Ja es G oss, aus e e

937 views • 58 slides
CO444H Ben Livshits 1 Basic Instrumentation Insert additional code into the program This

CO444H Ben Livshits 1 Basic Instrumentation Insert additional code into the program This

Runtime monitoring CO444H Ben Livshits 1 Basic Instrumentation Insert additional code into the program This code is designed to record important events as they occur at runtime Some examples A particular function is being hit or

688 views • 29 slides
D4 project https://www.d4-project.org/ 2019/05/22 TEAM CIRCL P roblem statement CSIRTs (or

D4 project https://www.d4-project.org/ 2019/05/22 TEAM CIRCL P roblem statement CSIRTs (or

D4 Project Open and collaborative network monitoring Team CIRCL D4 project https://www.d4-project.org/ 2019/05/22 TEAM CIRCL P roblem statement CSIRTs (or private organisations) build their own honeypot, honeynet or blackhole monitoring

844 views • 38 slides
EASY Meta-Programming with Rascal Leveraging the Extract-Analyze-SYnthesize Paradigm Paul Klint

EASY Meta-Programming with Rascal Leveraging the Extract-Analyze-SYnthesize Paradigm Paul Klint

EASY Meta-Programming with Rascal Leveraging the Extract-Analyze-SYnthesize Paradigm Paul Klint & Jurgen Vinju Joint work with (amongst others): Bas Basten, Mark Hills, Anastasia Izmaylova, Davy Landman, Arnold Lankamp, Bert Lisser, Atze

646 views • 50 slides
Memory Management vanilladb.org Outline Overview Buffering User Data Caching Logs

Memory Management vanilladb.org Outline Overview Buffering User Data Caching Logs

Memory Management vanilladb.org Outline Overview Buffering User Data Caching Logs Log Manager in VanillaCore Buffer Manager in VanillaCore 2 Outline Overview Buffering User Data Caching Logs Log Manager in

1.25k views • 103 slides
Approaches for Guideline Versioning Using GLIF Mor Peleg, Ph.D. 1 , Rami Kantor, M.D. 2 1 Stanford

Approaches for Guideline Versioning Using GLIF Mor Peleg, Ph.D. 1 , Rami Kantor, M.D. 2 1 Stanford

Approaches for Guideline Versioning Using GLIF Mor Peleg, Ph.D. 1 , Rami Kantor, M.D. 2 1 Stanford Medical Informatics and 2 Division of Infectious Diseases and Center for AIDS Research, Stanford University School of Medicine, Stanford, CA

233 views • 5 slides
Next Generation ACO Model Open Door Forum: Next Generation ACO Application Overview March 14,

Next Generation ACO Model Open Door Forum: Next Generation ACO Application Overview March 14,

Next Generation ACO Model Open Door Forum: Next Generation ACO Application Overview March 14, 2017 Agenda Model Overview Application and Selection Timeline Letter of Intent Application Overview 2 Next Generation ACO Model

1.04k views • 67 slides
UK DIGITAL REPORTING FORUM Moving towards the Digital Annual Report and Accounts 6 th December

UK DIGITAL REPORTING FORUM Moving towards the Digital Annual Report and Accounts 6 th December

Hosted by UK DIGITAL REPORTING FORUM Moving towards the Digital Annual Report and Accounts 6 th December 2018, 9:30 12:00 Agenda/Timetable 9:30 9:40 = Introduction and welcome 9:40 10:00 = Structured data basics/XBRL 101

646 views • 30 slides
Ontology Lexicalisation and Localisation for the Multilingual Semantic Web Paul Buitelaar -

Ontology Lexicalisation and Localisation for the Multilingual Semantic Web Paul Buitelaar -

Ontology Lexicalisation and Localisation for the Multilingual Semantic Web Paul Buitelaar - Monnet Coordinator Digital Enterprise Research Institute (DERI) National University of Ireland, Galway Monnet is supported by the European Union

327 views • 11 slides
About the Presentation Contents What is XBRL? Legal Mandate Current Challenges The

About the Presentation Contents What is XBRL? Legal Mandate Current Challenges The

11/30/2017 About the Presentation Contents What is XBRL? Legal Mandate Current Challenges The Programme at a Glance o Vision o Strategy & Requirements o Change Management & Communication o Technology How will the

340 views • 10 slides

More recommend