Model-based ased Ve Veri rific icatio ation, Optim imiz - - PowerPoint PPT Presentation
Model-based ased Ve Veri rific icatio ation, Optim imiz ization ation, Sy Synthesi hesis s and Perform ormanc ance e Evalu luation tion of Real-Time ime Sy Systems tems Al Alexandr xandre e Dav avid d Ki Kim m G. .
Model-based ased
Ve
Veri rific icatio ation, Optim imiz ization ation, Sy Synthesi hesis s and Perform
ance e Evalu luation tion
ime Sy Systems tems
Al Alexandr xandre e Dav avid d Ki Kim m G. . La Lars rsen Aa Aalborg
versity rsity, , DENMAR NMARK
.. .. and Price
ices, s, Games, mes, Probabilities
Al Alexandr xandre e Dav avid d Ki Kim m G. . La Lars rsen Aa Aalborg
versity rsity, , DENMAR NMARK
Aalborg lborg
ICTAC AC School, l, Shanghai ai 2013
Aalborg University leading Danish ICT University in terms of public investments (33%)
Aalborg Aarhus Copenhagen Jomfru Ane Gade
Kim Larse sen [3]
CIS ISS S - Center
r For Embe bedded dded Softwar tware e Systems ems
ICTAC AC School, l, Shanghai ai 2013
Regio gional al ICT T Center enter (2003 003- )
20 Employed
25 Associated
20 PhD Students
50 Industrial projects
10 Elite-students
65 MDKK
Kim Larse sen [4]
for r CPS
IDEA4C A4CPS S Meeting ng Aalbo borg rg, June 11, 2013, Kim Larse sen [5]
I D E A
Beijing, China Technical University of Denmark, Lyngby, Denmark East China Normal University, Shanghai, China Aalborg University, Denmark
(2011 011-2014 014) ) + ( (2014 14-2017) 2017)
ES are Pervasive vasive
ICTAC AC School, l, Shanghai ai 2013
Characte cteri ristica stica:
: Energy : Bandwidth : Memory : …
iming g con
straints
Kim Larse sen [6]
ES are of
ten Safet fety Critical itical
ICTAC AC School, l, Shanghai ai 2013
300 horse power 100 processors
How to achieve ES that are:
..
Model-Based Based Develop lopment ment
Kim Larse sen [7]
Mo Model el Che hecki king ng TOOL
System Description Requirement Yes Prototypes Executable Code Test sequences No! Debugging Information
A( req ) A} grant) A( req ) A}t<30s grant) A( req ) A}t<30s , p>0.90 grant) A( req ) A}t<30s,c<5$ grant)
ICTAC Sch chool
, Shanghai 2013
Time Cost Probability
Kim Larse sen [8]
TOOL
System Description Requirement Yes Control Strategy No! Debugging Information
A( req ) A} grant) A( req ) A}t<30s grant) A( req ) A}t<30s,c<5$ grant)
Synt nthesis hesis
ICTAC Sch chool
, Shanghai 2013
Time Cost Probability
?
A( req ) A}t<30s , p>0.90 grant)
Kim Larse sen [9]
Ov Overview view
med Automata & UPPAAL
mboli
UPPAAL Engine, Options
iced Timed Automata and Timed Game ames
chastic Timed Automata Statist tistical ical Model Checking (Lecture+Exercise)4
ICTAC School,
anghai i 2013 2013
TRON
CLASSIC
TIGA
CORA
ECDAR SMC
Kim Larse sen [10 10]
www.cs.aa ww.cs.aau.dk/~kgl/Sh u.dk/~kgl/Shan anghai ghai2013 2013
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [11 11]
www.up w.uppaa aal.o l.org rg
UPPAAL AAL (1995 995- )
@UPPsal sala
@AALbor
ALborg
ICTAC AC School, l, Shanghai ai 2013 2013 y = 3,4322x2 - 28,247x + 749,99
5000 10000 15000 20000 25000 30000 35000 40000 Total Downloads YYMM
UPPAAL Downloads
@Elsewhere
Emmanuel Fleury, Didier Lime, Johan Bengtsson, Fredrik Larsson, Kåre J Kristoffersen, Tobias Amnell, Thomas Hune, Oliver Möller, Elena Fersman, Carsten Weise, David Griffioen, Ansgar Fehnker, Jan Tretmans, Frits Vandraager, Theo Ruys, Pedro D’Argenio, J-P Katoen,, Judi Romijn, Ed Brinksma, Martijn Hendriks, Klaus Havelund, Franck Cassez, Magnus Lindahl, Francois Laroussinie, Patricia Bouyer, Augusto Burgueno, H. Bowmann, D. Latella, M. Massink, G. Faconti, Kristina Lundqvist, Lars Asplund, Justin Pearson.....
Kim Larse sen [13 13]
Real al Time me Systems tems
ICTAC AC School, l, Shanghai ai 2013 2013
Plant
Continuous
Controller Program
Discrete
Eg.: Realtime Protocols
Pump Control Air Bags Robots Cruise Control ABS CD Players Production Lines
Real Time System A system where correctness not only depends on the logical order of events but also on their timing!!
sensors actuators
Kim Larse sen [14 14]
A A Dum umb Ligh ght t Con
troller
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [15 15]
Timed med Aut utom
ata
ICTAC AC School, l, Shanghai ai 2013
AD ADD a clock x
Synchronizing action Clock Guard Conjunctions of x~n x: real-valued clock Reset
[Alur & Dill’89]
Kim Larse sen [16 16]
A A Timed med Aut utom
ata (Semantics)
ICTAC AC School, l, Shanghai ai 2013 2013
States: ( location , x=v) where v2R Transitions: ( Off , x=0 ) delay 4.32 ( Off , x=4.32 ) press? ( Light , x=0 ) delay 2.51 ( Light , x=2.51 ) press? ( Bright , x=2.51 )
Kim Larse sen [17 17]
In Inte tellige lligent nt Ligh ght t Con
troller
ICTAC AC School, l, Shanghai ai 2013 2013
Invariant (Henzinger)
Kim Larse sen [18 18]
In Inte tellige lligent nt Ligh ght t Con
troller
ICTAC AC School, l, Shanghai ai 2013
Transitions: ( Off , x=0 ) delay 4.32 ( Off , x=4.32 ) press? ( Light , x=0 ) delay 4.51 ( Light , x=4.51 ) press? ( Light , x=0 ) delay 100 ( Light , x=100)
( Off , x=0) Note: ( Light , x=0 ) delay 103
X
Invariants ensures progress
Kim Larse sen [19 19]
Timed med Aut utom
ata (formally)
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [20 20]
Timed med Aut utom
ata (formally)
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [21 21]
Timed med Aut utom
ata (formally)
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [22 22]
Timed med Aut utom
ata (formally)
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [23 23]
Timed med Aut utom
ata: Example mple
guard rd reset synchro chroni nizati ation
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [24 24]
Timed med Aut utom
ata: Example mple
guard rd invariant riant
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [25 25]
Example ample
ICTAC AC School, l, Shanghai ai 2013
a b c
Is L1 reachable ?
Kim Larse sen [26 26]
Example ample
ICTAC AC School, l, Shanghai ai 2013
x y
a b c
Kim Larse sen [27 27]
Example ample
ICTAC AC School, l, Shanghai ai 2013
x y
a b c
Kim Larse sen [28 28]
Example ample
ICTAC AC School, l, Shanghai ai 2013
x y a
a b c
Kim Larse sen [29 29]
Example ample
ICTAC AC School, l, Shanghai ai 2013
x y a a
a b c
Kim Larse sen [30 30]
Ne Networks tworks Lig
ight Controller ller & Us User
Off Light Bright
press? press? press? x:=0 x·3 x>3
x·100
x=100 x:=0
x·100
x=100 x:=0 x:=0 press? x:=0
Rest Busy
y¸10
y:=0
y·10
press! press! y:=0
Transition ( Off, Rest, x=0, y=0 ) delay 20 ( Off, Rest, x=20, y=20 ) press?! ( Light, Busy, x=0, y=0 ) delay 2 ( Light, Busy, x=2, y=2) press?! ( Bright, Rest, x=0, y=0) Synchronization
x:=0
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [31 31]
Ne Network twork Semantics mantics
A X ) s s , , S S ( T T
2 1 2 1 2 1
X
X
X
X 2 1 2 1 1 1 1
s ´ s s s ´ s s
X
X
´ s s s s ´ s s
2 1 2 1 2 2 2
X
X
´ s ´ s s s ´ s s ´ s s
a a 2 1 2 1 2 2 2 1 1 1
X
X
´ s ´ s s s ´ s s ´ s s
) d ( e ) d ( e ) d ( e 2 1 2 1 2 2 2 1 1 1
! ?
where
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [32 32]
Ne Network twork Semantics mantics
(URGE GENT NT synchr nchroniza
tion)
A X ) s s , , S S ( T T
2 1 2 1 2 1
X
X
X
X 2 1 2 1 1 1 1
s ´ s s s ´ s s
X
X
´ s s s s ´ s s
2 1 2 1 2 2 2
X
X
´ s ´ s s s ´ s s ´ s s
a a 2 1 2 1 2 2 2 1 1 1
X
X
´ s ´ s s s ´ s s ´ s s
) d ( e ) d ( e ) d ( e 2 1 2 1 2 2 2 1 1 1
! ?
where
d’ < d, u UAct:
e(d’) u! e(d’) u?
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [33 33]
Light Control Interface
Informationsteknologi
Light Control Interface
Control Program User Interface Light endhold! touch! starthold! press? release? press? d release? touch! 0.5·d· 1 press? 1 starthold! press? d release? endhold! d >1 press? 0.2 release? … press? 0.7 release? … press? 1.0 2.4 release? …
Ø touch! starthold! endhold!
ICTAC School, Shanghai 2013 35
Informationsteknologi
Light Control Interface
Control Program User endhold! touch! starthold! press? release?
ICTAC School, Shanghai 2013 36
Informationsteknologi
Control Program
Light Control Network
endhold! touch! starthold! press? release?
ICTAC School, Shanghai 2013 37
Informationsteknologi
Full Light Controller
ICTAC School, Shanghai 2013
Dim Dim
38
Train ain Crossing
River Crossing Gate Stopable Area [10,20] [7,15] [3,5] list
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [40 40]
Train ain Crossing
River Crossing Gate Stopable Area [10,20] [7,15] list [3,5]
appr stop leave go
enqueue() dequeue() front()
id-”parameter”
Communication via channels!
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [41 41]
Declar clarations ations
ICTAC AC School, l, Shanghai ai 2013 2013
Constants Bounded integers Channels Clocks Arrays Types Functions Templates Processes Systems
Kim Larse sen [42 42]
UPPAAL AAL He Help
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [43 43]
Log
cal Specification cifications
E<> <> P
A[] P
E[] P
A<> <> P
P Q
The expressions P and Q must be type safe, side effect free, and evaluate to a boolean. Only references to integer variables, constants, clocks, and locations are allowed (and arrays of these).
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [44 44]
Case se Stu tudies: dies: Con
trollers
and Uppaal, 2006
ignin ing, , Model delli ling and d Verify fying ing a Con
tain iner Termi rminal al System em Using ing UPPAAL AL, , 200 008
industrial case study, 2008
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [45 45/54] 4]
Case se Stu tudies: dies: Prot
local addresses using Uppaal, 2006
2007
Uppaal, 2007
lysi sis s of the Zerocon
tocol using ng UP UPPAAL, , 2009 2009
Networks, 2009
king the FlexRay Ray Physi sical al Layer er Protoc tocol
, 2010 2010
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [46 46/54] 4]
Using ng UPPA PAAL AL as Back ck-end nd
2004
Systems, 2000
mponent ent-Base Based d Desi sign gn and An Analysis lysis of Embedded dded Sy Systems tems with th UPPAAL AAL PORT, T, 2008 08
Model Transformation, 2008
AMOC: Modul ular ar WCET CET An Analysis alysis Using ing UPPAA AAL, L, 2010 10.
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [47 47/54] 4]
ww www. w.uppaa uppaal.org l.org
ICTAC AC School, l, Shanghai ai 2013 2013 Kim Larse sen [48 48]
www.cs.aau.dk/~kgl/Shanghai2013/exercises Excercise 19 (Train Crossing) Exercise 2 (Coffee Machine) Exercise 28 (Jobshop Scheduling) Exercise 14 (Gossiping Girls)
ICTAC AC School, l, Shanghai ai 2013 Kim Larse sen [49 49]