mo model base sed deve velopment for high assu ssurance
play

Mo Model-base sed Deve velopment for High Assu ssurance ce - PowerPoint PPT Presentation

Aug 04, 2023 •386 likes •769 views

Mo Model-base sed Deve velopment for High Assu ssurance ce Embedded Syst ystems Slang Embedded Toolchain Overview Robby John Hatcliff Jason Belt Professor University Distinguished Professor Research Associate Kansas State University

  1. Mo Model-base sed Deve velopment for High Assu ssurance ce Embedded Syst ystems Slang Embedded Toolchain Overview Robby John Hatcliff Jason Belt Professor University Distinguished Professor Research Associate Kansas State University Lucas-Rathbone Professor of Kansas State University Engineering Kansas State University This material is based on research sponsored by the Department of Homeland Security (DHS) Science and Technology Directorate, Homeland Security Advanced Research Projects Agency (HSARPA), Cyber Security Division (DHS S&T/HSARPA/CDS) BAA HSHQDC- 14-R-B0005, the Government of Israel and the National Cyber Bu- reau in the Government of Israel via contract number D16PC00057, as well as the US National Science Foundation FDA Scholar-in-Residence Program.

  2. SL SLang Emb Embedded Frame mework What is it? What can you do with it? Model the architecture (i.e., the design) The Slang Embedded Framework is an n n (both hardware and software of integrated modeling, development, embedded systems) analysis, and verification framework Specify important properties about your for component-oriented embedded n system in architecture models systems Generate templates/interfaces for your n ”Slang” stands for S ireum L anguage – n Slang code and “autoprogram” Sireum is a programming language communication between components analysis, verification, and Analyze and verify your models and code n transformation framework developed against many different types of at Kansas State University properties Slang Embedded has a special Help you simulate/debug your code n n emphasis on development of systems Interface with sensors, actuators, and n built on top of separation kernels and other hardware elements platforms (infrastructure that can be Automatically translate Slang to C and a n reused across multiple “deployable build” for a particular platform implementations) Slang Embedded --- Overview

  3. Primary y Stages s in Tool Chain System Modeling and Analysis (AADL) Analysis and verification results moved up and down abstraction layers Code Generation -- Slang + Run-Time System Abstraction AADL OSATE Source Code, Simulation, Analysis, Verification Analyses - Scheduleability - Information Flow - … Deployment on Embedded/Distributed Platforms Slang – Subset of Scala for critical systems Hypervisors / Micro-kernels Minex 3 (enhanced) • SeL4 • Xen • Lynx Secure • Code Generation, e.g., C + Platform Run-Time • C compatible with CompCERT verified compiler • Conforms to AADL Run-Time Services (informally • specifies a computational model for real-time Medical/IoT Reference Architecture threading and communication . Slang Embedded --- Overview

  4. Examp Ex mple Doma mains Medical Devices (US Dept of Homeland Security) Example applications Code deployed using Genode OS areas currently being framework using Xen Hypervisor and SeL4 addressed with microkernel Slang Embedded framework Building Controls (US Dept of Homeland Security) Code deployed using enhanced Minix micro-kernel Containment labs for critical agriculture experiments UxAS – Unmanned (AFRL, DARPA) STM32 / FreeRTOS (education) Code deployed on machine-verified micro-kernel SEL4 Unmanned Systems Autonomy Services Slang Embedded --- Overview

  5. To Toolchain Architecture SAnToS AADL Instance Model (AADL IM) to JSON SAnToS JSON AADL IM to Slang AADL IM Code Generation: Slang AADL IM Transforms AADL instance model with additional Transforms JSON AADL IM to in memory to Slang Embedded properties and AADL annex clauses to JSON Slang representation. Transforms Slang AADL IM to a representation Slang Embedded project including architecture definition, code skeletons, and Slang OSATE SIREUM contracts JSON AADL IM to AADL IM to JSON Slang Slang AADL IM AADL IM AADL Model JSON Files (AIR) + system properties Slang AST to Slang and configuration info Embedded Translator Slang Embedded Deployment Transforms Slang component code to Slang Embedded C with integration to platform-specific implementations of AADL run-time Slang AADL Runtime services. Arch definition Simulator w/ AADL properties Slang Embedded Slang Verification Deployment Slang Slang Testing and Component Fault Injection C-based C source files AADL source w/ contracts Run-time files Slang Tools in IntelliJ IDE Services Slang Embedded --- Overview

  6. To Toolchain Architecture SAnToS AADL Instance Model (AADL IM) to JSON SAnToS JSON AADL IM to Slang AADL IM Code Generation: Slang AADL IM Transforms AADL instance model with additional Transforms JSON AADL IM to in memory to Slang Embedded properties and AADL annex clauses to JSON Slang representation. Transforms Slang AADL IM to a representation Slang Embedded project including architecture definition, code skeletons, and Slang OSATE SIREUM contracts JSON AADL IM to AADL IM to JSON Slang Slang AADL IM AADL IM AADL Model JSON Files (AIR) + system properties Slang AST to Slang and configuration info Embedded Translator Slang Embedded Deployment Transforms Slang component code to Slang Embedded C with integration to platform-specific implementations of AADL run-time Slang AADL Runtime services. Arch definition Simulator w/ AADL properties Slang Embedded Slang Verification Deployment Slang Slang Testing and Component Fault Injection C-based C source files AADL source w/ contracts Run-time files Slang Tools in IntelliJ IDE Services Slang Embedded --- Overview

  7. Op Open PCA Pump Architecture AADL Graphical View of the primary subsystems of the PCA Device Operational Subsystem Safety Subsystem Fluid Subsystem Power Subsystem Open PCA Pump pedagogical material provides a 40-min video lecture overview of the Slang Embedded --- Overview pump architecture -- http://highassurance.santoslab.org/?q=lectures

  8. Architecture provides Ar “F “Foundati tion fo for r Tru ruth th” AADL models form scaffolding and an abstraction of the system that is used to link many different types of artifacts Requirements Behavioral Interface Hazard Analysis Specification (contracts/verification) Information Flow Analysis Assurance Cases Realt-Time Schedulability Analysis Code Generation + Hardware Platform Configuration Slang Embedded --- Overview

  9. Si Simp mple Ex Examp mple Sy System Simple “Temperature Control” illustrates many core concepts of cyber- physical systems Slang Embedded --- Overview

  10. OS OSATE – AADL AADL Model (Graphical Vi View) w) Simple Temperature Control model in AADL (OSATE) Temp Sensor Temperature Controller (thermostat) Heater/Fan Actuator Model how you want the system to be decomposed into hardware elements, drivers, threads, and specify the communication between these. Then the Slang framework will autocode the communication and will generate templates for you to program the Operator Interface components. (this particular diagram emphasizes software aspects) …create/edit system architecture in OSATE/AADL Slang Embedded --- Overview

  11. OS OSATE – AADL AADL Model (Graphical Vi View) w) Simple Temperature Control model in AADL (OSATE) Temp Sensor Temperature Controller (thermostat) Heater/Fan Actuator Specify interfaces/boundaries of components in terms of input/output event/data ports. Slang will auto generate interface code and method signatures. Operator Interface (this particular diagram emphasizes software aspects) …create/edit system architecture in OSATE/AADL Slang Embedded --- Overview

  12. OSATE – AADL OS AADL Model (Graphical Vi View) w) Simple Temperature Control model in AADL (OSATE) Temperature Controller (thermostat) Heater/Fan Actuator Wire the ports together to specify the communication topology (who talks to whom). Slang generates all the code for the communication from the ”wires”/connections that you specify. Operator Interface (this particular diagram emphasizes software aspects) …create/edit system architecture in OSATE/AADL Slang Embedded --- Overview

  13. OS OSATE – AADL AADL Model (Textual Vi View) w) AADL has both a textual view and a graphical view and OSATE keeps them synchronized Slang Embedded --- Overview

  14. OS OSATE – AADL AADL Model (Textual Vi View) w) AADL has both a textual view and a graphical view and OSATE keeps them synchronized Temperature Temperature Controller Controller to Fan component connection Slang Embedded --- Overview

  15. AADL AADL Pr Properties In AADL you can attach various “properties” about the system that are used to configure the underlying platform, direct code generation, and to support model-level analysis Simple properties to configure the RTOS scheduler and auto-generated thread skeleton and to and support real-time schedulability analysis. Slang Embedded --- Overview

  16. AADL AADL Pr Properties In AADL you can attach various “properties” about the system that are used to configure the underlying platform, direct code generation, and to support model-level analysis Properties capturing communication latencies. Slang Embedded --- Overview

  17. An Analysis Multiple forms of analysis can be carried out with AADL/OSATE plug-ins KSU’s AWAS Information Flow and dependency analyis. Slang Embedded --- Overview

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

High Assu ssurance ce Modeling and Rapid En Engineering (HAM HAMR) R) for Embedded Syst

High Assu ssurance ce Modeling and Rapid En Engineering (HAM HAMR) R) for Embedded Syst

High Assu ssurance ce Modeling and Rapid En Engineering (HAM HAMR) R) for Embedded Syst ystems s AADL Tool Expo October 28, 2019 Robby Jason Belt, John Hatcliff Hariharan Thiagarajan Professor University Distinguished Professor

714 views • 27 slides
Develop opm ent al Disabilit ies Medicaid Waiver er S Ser ervices es Qualit y Assu ssurance

Develop opm ent al Disabilit ies Medicaid Waiver er S Ser ervices es Qualit y Assu ssurance

Develop opm ent al Disabilit ies Medicaid Waiver er S Ser ervices es Qualit y Assu ssurance ce 14 th Annual Family Caf Conference June 14-16, 2012 1 Welcom e and I nt r t roduct i t ions Charmaine Pillay Delmarva Medical

441 views • 17 slides
SUS USTAIN AINABLE ABLE DE DEVE VELOPMENT OPMENT By Assoc.Prof.Patcharin Sirasoonthorn,

SUS USTAIN AINABLE ABLE DE DEVE VELOPMENT OPMENT By Assoc.Prof.Patcharin Sirasoonthorn,

SOC OCIAL IAL EN ENTE TERP RPRIS RISES ES AN AND SUS USTAIN AINABLE ABLE DE DEVE VELOPMENT OPMENT By Assoc.Prof.Patcharin Sirasoonthorn, Ph.D Faculty of Social Sciences Naresuan University, Phitsanulok Thailand Business and model

298 views • 15 slides
RIV RIVERFR ERFRONT ONT DE DEVE VELOPMENT OPMENT DREAM PLACE OF JAIN AINUL UL ABE

RIV RIVERFR ERFRONT ONT DE DEVE VELOPMENT OPMENT DREAM PLACE OF JAIN AINUL UL ABE

PROJECT 02 BRAHMAPUTRA NOD RIV RIVERFR ERFRONT ONT DE DEVE VELOPMENT OPMENT DREAM PLACE OF JAIN AINUL UL ABE ABEDI DIN BRAH AHMA MAPU PUTRA TRA NO NOD ORIGIN : ANGSI GLACIER, NORTH SIDE OF HIMALAYA. IN BANGLADESH,

733 views • 29 slides
The Loss ss of KDM6A Accelerates s the Deve velopment of Multiple Mye yeloma Daphn

The Loss ss of KDM6A Accelerates s the Deve velopment of Multiple Mye yeloma Daphn

The Loss ss of KDM6A Accelerates s the Deve velopment of Multiple Mye yeloma Daphn Dupr-Richer Licht Lab The University of Florida The University of Florida Epigenetic Regulator Gene Anomalies in MM Function Gene Diag Mut (%)

267 views • 24 slides
Quality a y assu suran ance ce enhan anci cing conf onfidence i in n wor work-base sed

Quality a y assu suran ance ce enhan anci cing conf onfidence i in n wor work-base sed

Quality a y assu suran ance ce enhan anci cing conf onfidence i in n wor work-base sed learni ning ng (QA QA-WB WBL) pro project pro proposal Eva Fernndez de Labastida Unibasq QA-WBL project proposal Erasmus+ Call:

217 views • 9 slides
Admin inis isterin ing t the he 3-12 12 Io Iowa-Engli glish L h Language ge Deve

Admin inis isterin ing t the he 3-12 12 Io Iowa-Engli glish L h Language ge Deve

Admin inis isterin ing t the he 3-12 12 Io Iowa-Engli glish L h Language ge Deve velopment A Assessment Spring 20 2013 13 1 Overview Background and FAQs Purpose and nature of Iowa-ELDA Assessment considerations

1.44k views • 123 slides
Deve veloping Products t s to Improve ve the Su Survi vival val an and/or Q Qual ality o

Deve veloping Products t s to Improve ve the Su Survi vival val an and/or Q Qual ality o

Deve veloping Products t s to Improve ve the Su Survi vival val an and/or Q Qual ality o of Life for r Patien ents W Who ho H Have e a High gh U Unmet et Medi edical Need eed Dav David id Yo Youn ung, P Phar arm.D., P

291 views • 28 slides
Deve veloping P Produ ducts t to Impr Improve Su Survival an and/ d/or Qu Qual ality o

Deve veloping P Produ ducts t to Impr Improve Su Survival an and/ d/or Qu Qual ality o

Deve veloping P Produ ducts t to Impr Improve Su Survival an and/ d/or Qu Qual ality o of f Li Life fe fo for Pat atients W Who ho Have ave a a High U h Unme met M Medi dical N Need Davi vid Yo Young, Ph , Pharm.D., Ph

562 views • 26 slides
CATIE: CONTRIBUTIONS TO CLIMATE SMART AGRICULTURE Hugo Li Pun, Ph.D 8th GRA Council Meeting

CATIE: CONTRIBUTIONS TO CLIMATE SMART AGRICULTURE Hugo Li Pun, Ph.D 8th GRA Council Meeting

CATIE: CONTRIBUTIONS TO CLIMATE SMART AGRICULTURE Hugo Li Pun, Ph.D 8th GRA Council Meeting 10-11 September 2018 | Berlin, Germany . CATIE CATIE Higher gher educ ucation ation, , rese searc rch and d deve velopment lopment suppor

326 views • 9 slides
OF T OF TEN ENNIS PLA NIS PLAYERS YERS CNOSF September 24, 2019 Patrice BHAGUE THE HE

OF T OF TEN ENNIS PLA NIS PLAYERS YERS CNOSF September 24, 2019 Patrice BHAGUE THE HE

LONG LONG TE TERM RM DE DEVE VELOPMENT OPMENT OF T OF TEN ENNIS PLA NIS PLAYERS YERS CNOSF September 24, 2019 Patrice BHAGUE THE HE PROJECT OJECT 2 Erasmus + Sport 2018 call for projects January 2019 December 2020

329 views • 8 slides
satellite-based remote sensing technology from Japan Tsugit ito Nagano ano Deputy ty Manag

satellite-based remote sensing technology from Japan Tsugit ito Nagano ano Deputy ty Manag

Information services using satellite-based remote sensing technology from Japan Tsugit ito Nagano ano Deputy ty Manag ager / B Business s Deve velopment lopment Division ision / Solution tion Servic vice Departm tment nt Remote

742 views • 25 slides
Towards a Spatial Vision for South Africa Philip Harrison & Khulekani Mathe National

Towards a Spatial Vision for South Africa Philip Harrison & Khulekani Mathe National

Towards a Spatial Vision for South Africa Philip Harrison & Khulekani Mathe National Planning Commission Deve velopment Bank of Southern rn Africa, Midrand 20 October r 2010 A new opportunity for national spatial visioning The NPC

616 views • 39 slides
High precision measurement of the antiproton g-factor Toya Tanaka,U-Tokyo for the BASE

High precision measurement of the antiproton g-factor Toya Tanaka,U-Tokyo for the BASE

High precision measurement of the antiproton g-factor Toya Tanaka,U-Tokyo for the BASE collaboration 2/3/2016 ICEPP winter school Outline Motivation penning trap and Measurements BASE apparatus and current situation Ground

599 views • 21 slides
650 50 MH MHz Sol olid id Stat ate e RF F Pow ower er development velopment at t RRCA

650 50 MH MHz Sol olid id Stat ate e RF F Pow ower er development velopment at t RRCA

650 50 MH MHz Sol olid id Stat ate e RF F Pow ower er development velopment at t RRCA CAT Indian Institutions and Fermi lab Interaction Meeting P. R. Hannurkar, Akhilesh Jain, M. R. Lad RF Systems Division RRCAT, Indore Solid lid

457 views • 7 slides
F1 5/20/2005 10:00 AM L EGAL C OMPLIANCE IN Q UALITY A SSURANCE Elle Ringham Fidelity National

F1 5/20/2005 10:00 AM L EGAL C OMPLIANCE IN Q UALITY A SSURANCE Elle Ringham Fidelity National

BIO PRESENTATION PAPER F1 5/20/2005 10:00 AM L EGAL C OMPLIANCE IN Q UALITY A SSURANCE Elle Ringham Fidelity National Financial International Conference On Software Testing Analysis & Review May 16-20, 2005 Orlando, FL USA Elle

547 views • 23 slides
Deploying Azure-Based Windows 10 Desktops in Days How Bioverativ Empowers Employees and Partners

Deploying Azure-Based Windows 10 Desktops in Days How Bioverativ Empowers Employees and Partners

Deploying Azure-Based Windows 10 Desktops in Days How Bioverativ Empowers Employees and Partners P R E S E N T E D I N PA R T N E R S H I P Meet Todays Presenters Bob Dyer Dan Bergeron Jennifer Piniaha Associate Director, IT Senior

601 views • 31 slides
Technical Concepts PAS IND Controls for FAIR GSI Helmholtzzentrum fr Schwerionenforschung GmbH

Technical Concepts PAS IND Controls for FAIR GSI Helmholtzzentrum fr Schwerionenforschung GmbH

GSI Helmholtzzentrum fr Schwerionenforschung GmbH Technical Concepts PAS IND Controls for FAIR GSI Helmholtzzentrum fr Schwerionenforschung GmbH Einleitung / Inhalt Part 1: PAS in Relation to FAIR Personnel Safety Part 2: PAS System

738 views • 38 slides
Welcome to CS110: Principles of Computer Systems I'm Jerry Cain ( jerry@cs.stanford.edu )

Welcome to CS110: Principles of Computer Systems I'm Jerry Cain ( jerry@cs.stanford.edu )

Welcome to CS110: Principles of Computer Systems I'm Jerry Cain ( jerry@cs.stanford.edu ) Chemistry undergrad MIT, originally Ph.D. student in chemistry here, defected to CS Senior Lecturer in CS, teaching CS106AX, CS106X, CS107,

145 views • 13 slides
Conflicts Indications for Use of Endocardial and Epicardial Approaches Biosense-webster:

Conflicts Indications for Use of Endocardial and Epicardial Approaches Biosense-webster:

9/29/16 Ablation of Ventricular Tachycardia: Conflicts Indications for Use of Endocardial and Epicardial Approaches Biosense-webster: research grant, honoraria Medtronic: research grant, honoraria St Jude Medical: research grant,

545 views • 15 slides
Hyperparameter Optimization Albert-Ludwigs-Universitt Freiburg Holger Hoos Katharina

Hyperparameter Optimization Albert-Ludwigs-Universitt Freiburg Holger Hoos Katharina

Surrogate Benchmarks for Hyperparameter Optimization Albert-Ludwigs-Universitt Freiburg Holger Hoos Katharina Eggensperger Kevin Leyton-Brown Frank Hutter University of British Columbia University of Freiburg {hoos,kevinlb}@cs.ubc.ca

396 views • 37 slides
Azure Active Directory Provider The Azure Provider can be used to congure infrastructure in

Azure Active Directory Provider The Azure Provider can be used to congure infrastructure in

Azure Active Directory Provider The Azure Provider can be used to congure infrastructure in Azure Active Directory (https://azure.microsoft.com/en- us/services/active-directory/) using the Azure Resource Manager API's. Documentation regarding

925 views • 46 slides
CS356 Unit 4 Intro to x86 Instruction Set 4.2 Why Learn Assembly To understand something of

CS356 Unit 4 Intro to x86 Instruction Set 4.2 Why Learn Assembly To understand something of

4.1 CS356 Unit 4 Intro to x86 Instruction Set 4.2 Why Learn Assembly To understand something of the limitation of the HW we are running on Helpful to understand performance To utilize certain HW options that high-level languages

954 views • 81 slides
Decidable and Undecidable Fragments of Halpern and Shohams Interval Temporal Logic: Towards a

Decidable and Undecidable Fragments of Halpern and Shohams Interval Temporal Logic: Towards a

Decidable and Undecidable Fragments of Halpern and Shohams Interval Temporal Logic: Towards a Complete Classification LPAR - 2008 Davide Bresolin, University of Verona (Italy) Dario Della Monica , University of Udine (Italy) Angelo Montanari,

807 views • 58 slides

More recommend