runtime enforcement of reactive systems using synchronous
play

Runtime Enforcement of Reactive Systems using Synchronous Enforcers - PowerPoint PPT Presentation

Oct 03, 2022 •261 likes •665 views

Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime Enforcement of Reactive Systems using Synchronous Enforcers Srinivas Pinisetty 1 , Partha Roop 3 , Steven Smyth

  1. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime Enforcement of Reactive Systems using Synchronous Enforcers Srinivas Pinisetty 1 , Partha Roop 3 , Steven Smyth 4 , Stavros Tripakis 1 , 2 , Reinhard von Hanxleden 4 Aalto University, Finland University of California, Berkeley University of Auckland, New Zealand Kiel University, Germany Partha Roop Synchron-2016, Bamberg 7 December 2016 1 / 32

  2. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Implantable pacemakers Heart Pacemaker ATRIAL ATRIAL H_APulse SENSING OUTPUT CIRCUIT CIRCUIT B SA node H_VPulse A VENTRICULAR T Left PACEMAKER SENSING T bundle APace CIRCUIT CONTROLLER E branch R AV node RA Y VPace VENTRICULAR RV EXTERNAL OUTPUT TIMERS CIRCUIT a Right bundle branch a Zhao and Roop, “Model Driven Design of Cardiac Pacemakers using IEC61499, CRC Press, 2015”. Partha Roop Synchron-2016, Bamberg 7 December 2016 2 / 32

  3. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Adverse events [Ref.]: Alemzadeh, H., Iyer, R.K., Kalbarczyk, Z., Raman, J., “Analysis of Safety-Critical Computer a Failures in Medical Devices”, Security and Privacy , IEEE , vol.11, no.4. pp.14,26. July-Aug, 2013. a This figure is reproduced from the reference above. Partha Roop Synchron-2016, Bamberg 7 December 2016 3 / 32

  4. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Approaches to enhance pacemaker software Two key CS related initiatives: http://cybercardia.cs.stonybrook.edu, and Marta Kwiatkowska’s group in Oxford. Model-based approach: Modeling and verification of a dual chamber implantable pacemaker, Jiang, Pajic, Moarref, Alur, Mangaram. TACAS 2012 Testing: Heart-on-a-chip: A closed-loop testing platform for implantable pacemakers Jiang, Radhakrishnan, Sampath, Sarode, Mangharam. CyPhy 2013 Requirements-Centric Closed-Loop Validation of Implantable Cardiac Devices. Weiwei Ai, Nitish Patel and Partha Roop. DATE ’16. Except the work of Ai et al., others consider a static model of the heart during closed-loop testing / model checking. Focus of the current work is on run-time enforcement , where a dynamically evolving heart model and a pacemaker can be used for run-time verification and enforcement. Partha Roop Synchron-2016, Bamberg 7 December 2016 4 / 32

  5. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime verification and enforcement Runtime verification Runtime enforcement Property ϕ Property ϕ Verification events events verdicts events Monitor Enforcer a · a · b · · · a · a · · · | = ϕ a · b · · · ? · True · · · Input: stream of events. Does σ satisfy ϕ ? Modified to satisfy the Output: stream of verdicts . property. Output: stream of events . Partha Roop Synchron-2016, Bamberg 7 December 2016 5 / 32

  6. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime enforcement (previous work) ϕ σ ∈ Σ ∗ o ∈ ϕ Event Event Enforcer Emitter Receiver Partha Roop Synchron-2016, Bamberg 7 December 2016 6 / 32

  7. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime enforcement (previous work) ϕ σ ∈ Σ ∗ o ∈ ϕ Event Event Enforcer Emitter Receiver Enforcer for ϕ operating at runtime ϕ : any regular property (defined as automaton). Partha Roop Synchron-2016, Bamberg 7 December 2016 6 / 32

  8. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime enforcement (previous work) ϕ σ ∈ Σ ∗ o ∈ ϕ Event Event Enforcer Emitter Receiver Enforcer for ϕ operating at runtime ϕ : any regular property (defined as automaton). An enforcer behaves as a function E : Σ ∗ → Σ ∗ . Input ( σ ∈ Σ ∗ ): any sequence of events over Σ (Event emitter is a black-box). Partha Roop Synchron-2016, Bamberg 7 December 2016 6 / 32

  9. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Runtime enforcement (previous work) ϕ σ ∈ Σ ∗ o ∈ ϕ Event Event Enforcer Emitter Receiver Enforcer for ϕ operating at runtime ϕ : any regular property (defined as automaton). An enforcer behaves as a function E : Σ ∗ → Σ ∗ . Input ( σ ∈ Σ ∗ ): any sequence of events over Σ (Event emitter is a black-box). Output ( o ∈ Σ ∗ ): a sequence of events such that o | = ϕ . Partha Roop Synchron-2016, Bamberg 7 December 2016 6 / 32

  10. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Example: EM Property ϕ a | b | c a | b | c ! l 0 l 1 l 3 Σ = { a , b , c , ! } Σ ! l 2 Σ Partha Roop Synchron-2016, Bamberg 7 December 2016 7 / 32

  11. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Example: EM Property ϕ a | b | c a | b | c ! l 0 l 1 l 3 Σ = { a , b , c , ! } Σ ! l 2 Σ INPUT MEMORY OUTPUT a �∈ ϕ a ǫ Partha Roop Synchron-2016, Bamberg 7 December 2016 7 / 32

  12. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Example: EM Property ϕ a | b | c a | b | c ! l 0 l 1 l 3 Σ = { a , b , c , ! } Σ ! l 2 Σ INPUT MEMORY OUTPUT a �∈ ϕ a ǫ a · b �∈ ϕ a · b ǫ a · b · c �∈ ϕ a · b · c ǫ Partha Roop Synchron-2016, Bamberg 7 December 2016 7 / 32

  13. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Example: EM Property ϕ a | b | c a | b | c ! l 0 l 1 l 3 Σ = { a , b , c , ! } Σ ! l 2 Σ INPUT MEMORY OUTPUT a �∈ ϕ a ǫ a · b �∈ ϕ a · b ǫ a · b · c �∈ ϕ a · b · c ǫ a · b · c · ! ∈ ϕ a · b · c · ! ǫ Partha Roop Synchron-2016, Bamberg 7 December 2016 7 / 32

  14. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Example: EM Property ϕ a | b | c a | b | c ! l 0 l 1 l 3 Σ = { a , b , c , ! } Σ ! l 2 Σ INPUT MEMORY OUTPUT a �∈ ϕ a ǫ a · b �∈ ϕ a · b ǫ a · b · c �∈ ϕ a · b · c ǫ a · b · c · ! ∈ ϕ a · b · c · ! ǫ Remarks Store events in the memory until observing input sequence that satisfies ϕ . Partha Roop Synchron-2016, Bamberg 7 December 2016 7 / 32

  15. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Shield Synthesis 1 Designed for reactive systems. Shield must “act upon erroneous outputs on the fly”, without knowledge of the future. Has multiple input streams to deal with. 1 Bloem et al., TACAS, 2015 Partha Roop Synchron-2016, Bamberg 7 December 2016 8 / 32

  16. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Synchronous Languages The reactive system operates “infinitely fast” relative to the environment. This is known as the synchrony hypothesis. All concurrent components progress in “lock-step” relative to the ticks of a logical clock. Concurrency is usually “compiled away” to produce sequential code. Partha Roop Synchron-2016, Bamberg 7 December 2016 9 / 32

  17. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Synchronous observers module BeatObserver: 1 input AS; VS 2 output beatViolation; 3 loop 4 present AS and VS then 5 emit beatViolation; 6 end; 7 pause; 8 end loop 9 end module 10 Figure: BeatObserver in Esterel Partha Roop Synchron-2016, Bamberg 7 December 2016 10 / 32

  18. Part-I: Introduction Preliminaries Problem Def. Functional Def. Algorithm Application to SCCharts and Results Conclusions Problem Statement Observers are usually static entities. Run-time observers may be considered as run-time verifiers but these are not enforcers. Observers are specified by the designers while monitors / enforcers are automatically synthesized from the specification of properties. Shield synthesis: this is the closest to our framework. Has two limitations. First, it performs no enforcement on the environment, which is very important for reactive systems. Second, it lacks causality and performs uni-directional enforcement. For synchronous reactive systems, enhanced bi-directional enforcement is essential. Partha Roop Synchron-2016, Bamberg 7 December 2016 11 / 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Outline Synchronous Programming Introduction of Reactive Systems The Data-Flow Language Lustre

Outline Synchronous Programming Introduction of Reactive Systems The Data-Flow Language Lustre

Outline Synchronous Programming Introduction of Reactive Systems The Data-Flow Language Lustre The Imperative Language Esterel Compilation of Synchronous Languages Nicolas Halbwachs Verification and Automatic Testing of Synchronous

371 views • 26 slides
Determinate and Timing-Predictable Concurrency in Reactive Systems The Synchronous

Determinate and Timing-Predictable Concurrency in Reactive Systems The Synchronous

Determinate and Timing-Predictable Concurrency in Reactive Systems The Synchronous Approach and the SCCharts Language A r t Reinhard von Hanxleden 1 i * f a S C o m p * l t e n N t e e c t * s T i W s In

578 views • 38 slides
Synopsis Motivation Synchronous reactive model Syntax of CRL (Core Reactive Language)

Synopsis Motivation Synchronous reactive model Syntax of CRL (Core Reactive Language)

Secure information flow for synchronous reactive programs Ilaria Castellani INRIA Sophia Antipolis OPCT Workshop Bertinoro, 18-21 June, 2014 [Based on TGC13 talk, joint work with Pejman Attar] 1 Synopsis Motivation

1.26k views • 81 slides
Reactive Runtime Systems for Heterogeneous Extreme Computations Thomas Sterling Chief Scientist,

Reactive Runtime Systems for Heterogeneous Extreme Computations Thomas Sterling Chief Scientist,

Reactive Runtime Systems for Heterogeneous Extreme Computations Thomas Sterling Chief Scientist, CREST Professor, School of Informatics and Computing Indiana University November 19, 2014 Shifting Paradigms of Computing Abacus Counting

444 views • 27 slides
Decision on reactive power requirements for non-synchronous generators Keith Johnson Manager,

Decision on reactive power requirements for non-synchronous generators Keith Johnson Manager,

Decision on reactive power requirements for non-synchronous generators Keith Johnson Manager, Infrastructure Policy Board of Governors Meeting General Session August 31, 2016 September 1, 2016 Management proposes new reactive power

341 views • 7 slides
synERJY An Object-oriented Synchronous Programming Language Synchrony - Ten Years After Reinhard

synERJY An Object-oriented Synchronous Programming Language Synchrony - Ten Years After Reinhard

synERJY An Object-oriented Synchronous Programming Language Synchrony - Ten Years After Reinhard Budde Axel Poign Karl-Heinz Sylla Overview Highlights Reactive Components Synchronous Styles Hybrid Systems

532 views • 19 slides
ARx: Reactive Programming for Synchronous Connectors Jos Proena , Guillermina Cledou

ARx: Reactive Programming for Synchronous Connectors Jos Proena , Guillermina Cledou

ARx: Reactive Programming for Synchronous Connectors Jos Proena , Guillermina Cledou Coordination @ DisCoTec 2020 Video of the presentation: https://www.youtube.com/watch?v=74RUzfYneNI&t=2s Tools: http://arcatools.org/#arx Tools:

384 views • 20 slides
Runtime systems Runtime systems Functional program are very high-level: its not obvious how to

Runtime systems Runtime systems Functional program are very high-level: its not obvious how to

Runtime systems Runtime systems Functional program are very high-level: its not obvious how to Programmation Fonctionnelle Avance implement them. http://www-lipn.univ-paris13.fr/~saiu/teaching/PFA-2010 Complex library support at run time

220 views • 8 slides
Runtime Enforcement of Timed Properties Srinivas Pinisetty 1 ,Yli` es Falcone 2 , Thierry J eron

Runtime Enforcement of Timed Properties Srinivas Pinisetty 1 ,Yli` es Falcone 2 , Thierry J eron

Introduction Enforcement of timed properties Enforcement of safety properties Conclusion Runtime Enforcement of Timed Properties Srinivas Pinisetty 1 ,Yli` es Falcone 2 , Thierry J eron 1 , Herv e Marchand 1 , Antoine Rollet 3 and Omer

1.34k views • 39 slides
Runtime Enforcement of Regular Timed Properties es Falcone 2 , Thierry J eron 1 , Herv e

Runtime Enforcement of Regular Timed Properties es Falcone 2 , Thierry J eron 1 , Herv e

Introduction Specifying Timed Properties Runtime Enforcement of Regular Timed Properties Conclusions and FW Runtime Enforcement of Regular Timed Properties es Falcone 2 , Thierry J eron 1 , Herv e Marchand 1 Srinivas Pinisetty, Yli` INRIA

1.22k views • 100 slides
Predictive Runtime Enforcement Srinivas Pinisetty 1 , Viorel Preoteasa 1 , Stavros Tripakis 1 , 2 ,

Predictive Runtime Enforcement Srinivas Pinisetty 1 , Viorel Preoteasa 1 , Stavros Tripakis 1 , 2 ,

Introduction Formal Problem Definition Automatic Enforcer Synthesis Conclusion Predictive Runtime Enforcement Srinivas Pinisetty 1 , Viorel Preoteasa 1 , Stavros Tripakis 1 , 2 , Thierry J eron 3 , es Falcone 4 , Herv e Marchand 3 Yli`

674 views • 43 slides
CLIENT-SIDE RUNTIME ANALYSIS AND ENFORCEMENT Ben Livshits, Microsoft Research Overview of

CLIENT-SIDE RUNTIME ANALYSIS AND ENFORCEMENT Ben Livshits, Microsoft Research Overview of

CLIENT-SIDE RUNTIME ANALYSIS AND ENFORCEMENT Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Background (rehash) Better runtimes CSP HTML5 Sandbox Language restrictions AdSafe FBJS Tradeoffs of

998 views • 48 slides
Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics)

Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics)

Introduction Preliminaries Semantics of Runtime Control Semantics of Synthesis of Controlling Programs Expressiveness of Controlling Runtime Monitoring, Verification, Enforcement and Control of C Programs (From Tool to Semantics) Zhe Chen

558 views • 55 slides
Runtime systems Programmation Fonctionnelle Avance

Runtime systems Programmation Fonctionnelle Avance

Introduction and hardware architecture reminders Object representation and runtime typing Automatic memory management Runtime systems Programmation Fonctionnelle Avance http://www-lipn.univ-paris13.fr/~saiu/teaching/PFA-2010 Luca Saiu

1.26k views • 82 slides
Programming Reactive Systems in Scala: Principles and Abstractions Philipp Haller KTH Royal

Programming Reactive Systems in Scala: Principles and Abstractions Philipp Haller KTH Royal

Programming Reactive Systems in Scala: Principles and Abstractions Philipp Haller KTH Royal Institute of Technology Stockholm, Sweden Entwicklertag Frankfurt, Germany, 21 February, 2018 What are reactive systems? Multiple definitions proposed

893 views • 54 slides
Synchronous and Asynchronous Interaction in Distributed Systems Ursula Goltz, Uwe Nestmann,

Synchronous and Asynchronous Interaction in Distributed Systems Ursula Goltz, Uwe Nestmann,

Introduction and Basic Notions Distributed Systems 1 / 38 Synchronous Interaction and Distribution Structural Conflict Nets Synchronous and Asynchronous Interaction in Distributed Systems Ursula Goltz, Uwe Nestmann, Kirstin Peters, and

537 views • 40 slides
HPC simula+ons of cardiac electrophysiology using pa+ent-specific models of the human heart

HPC simula+ons of cardiac electrophysiology using pa+ent-specific models of the human heart

HPC simula+ons of cardiac electrophysiology using pa+ent-specific models of the human heart CompBioMed & VPH Ins2tute webinar Francesc Levrero-Florencio & Ana Minchol Computa(onal Cardiovascular Science Group Department of Computer

630 views • 47 slides
Research Project 2: Forensic Challenge Axel Puppe & Joeri Blokhuis June 30, 2010 Axel Puppe

Research Project 2: Forensic Challenge Axel Puppe & Joeri Blokhuis June 30, 2010 Axel Puppe

Outline Introduction Method FAT Walker Xarver Investigation Conclusion Research Project 2: Forensic Challenge Axel Puppe & Joeri Blokhuis June 30, 2010 Axel Puppe & Joeri Blokhuis Research Project 2: Forensic Challenge Outline

413 views • 17 slides
Calumet County Medical Examiner County Board Update June 2014 Who are we?? Medical Examiner

Calumet County Medical Examiner County Board Update June 2014 Who are we?? Medical Examiner

Calumet County Medical Examiner County Board Update June 2014 Who are we?? Medical Examiner appointed January 1, 1999 Three deputies PPP Committee Kent Katalinick Kevin Johnson Regina Behnke Personnel Michael Klaeser 1985

518 views • 20 slides
Travis County Medical Examiner's Office eee eee e Presentation to the ee ee Will iamson Cou nty

Travis County Medical Examiner's Office eee eee e Presentation to the ee ee Will iamson Cou nty

Travis County Medical Examiner's Office eee eee e Presentation to the ee ee Will iamson Cou nty e ee ee e Com missioners C ourt e May 28, 2013 1 .. " OBJECTIVES

375 views • 10 slides
Professor Patrick J Doherty Clinical specialist in CR Chair of Rehabilitation AF and Exercise:

Professor Patrick J Doherty Clinical specialist in CR Chair of Rehabilitation AF and Exercise:

1 Professor Patrick J Doherty Clinical specialist in CR Chair of Rehabilitation AF and Exercise: Aims of the session: Understand the context of AF Why is physical activity & exercise important? What is the likelihood of cardiac

673 views • 28 slides
Case 2 DR IRENE SCHEIMBERG, CONSULTANT PAEDIATRIC & PERINATAL PATHOLOGIST THE ROYAL LONDON

Case 2 DR IRENE SCHEIMBERG, CONSULTANT PAEDIATRIC & PERINATAL PATHOLOGIST THE ROYAL LONDON

Case 2 DR IRENE SCHEIMBERG, CONSULTANT PAEDIATRIC & PERINATAL PATHOLOGIST THE ROYAL LONDON HOSPITAL, BARTS HEALTH NHS TRUST, LONDON, UK Clinical history Mother primigravida, high BMI Normal antenatal scans Reduced fetal movements

799 views • 26 slides
INSIDE NVIDIA'S AI INFRASTRUCTURE FOR SELF-DRIVING CARS (HINT: ITS ALL ABOUT THE DATA)

INSIDE NVIDIA'S AI INFRASTRUCTURE FOR SELF-DRIVING CARS (HINT: ITS ALL ABOUT THE DATA)

INSIDE NVIDIA'S AI INFRASTRUCTURE FOR SELF-DRIVING CARS (HINT: ITS ALL ABOUT THE DATA) CLEMENT FARABET | | San Jose 2019 1 Self-driving cars requires tremendously large datasets for training and testing 2 NVIDIA DRIVE: SOFTWARE-DEFINED

829 views • 44 slides
Cardiovascular Considerations during Bone Marrow Transplantation Daniel J Lenihan, MD Professor,

Cardiovascular Considerations during Bone Marrow Transplantation Daniel J Lenihan, MD Professor,

2/4/2015 Cardiovascular Considerations during Bone Marrow Transplantation Daniel J Lenihan, MD Professor, Division of Cardiovascular Medicine Director, Cardiology Clinical Research Cardio-Oncology Program Vanderbilt University Presenter

158 views • 14 slides

More recommend