save orca
play

SAVE ORCA Formal Modeling, Safety Analysis, and Verification of - PowerPoint PPT Presentation

Jan 08, 2024 •117 likes •402 views

SAVE ORCA Formal Modeling, Safety Analysis, and Verification of Organic Computing Applications Hella Seebach , Florian Nafz and Wolfgang Reif Motivation and goals Software & Verification Co Design for highly reliable Organic Computing

  1. SAVE ORCA Formal Modeling, Safety Analysis, and Verification of Organic Computing Applications Hella Seebach , Florian Nafz and Wolfgang Reif

  2. Motivation and goals • Software & Verification Co ‐ Design for highly reliable Organic Computing applications – Design and construction • Top ‐ Down design methodology • Extensible generic runtime environment • Integrated Software Development Process – Methods and tools for formal analysis and verification • Correctness and behavioral guarantees despite self ‐ organization • Qualitative and quantitative analysis 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  3. Target systems: Resource ‐ Flow Systems • Applications – Production automation – Logistics • Software intensive applications that are – particularly resilient against disturbances and component failures (w.r.t. functional correctness, safety, security) – adaptive to changing requirements and modified tasks • Agent / role based systems – Each agent has several capabilities – Each task needs different processing steps – Processing steps are a given sequence of capabilities 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  4. Challenges in the software engineering part Self ‐ organization vs. correct system behavior ? How to design self ‐ organizing systems ? Scalability through local reconfiguration ? 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  5. Self ‐ organization vs. correct system behavior Challenge 1: Self ‐ organization vs. correct system behavior • Basic Idea: Restore Invariant Approach • Constraints define corridor of correct behavior Defined by Constraints Failure Working Reconfiguration Working t [SASO08] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  6. Organic Design Pattern (ODP) – system structure Challenge 2: How to design self ‐ organizing systems? t → Reconfiguration is role allocation problem → Every ODP ‐ system, that meets all constraints, CapabilityConsistency: → Correct role allocation leads to correct system behavior self.availableCapabilities → includesAll(self.allocatedRoles.capabili � esToApply → fl a � en()) guarantees a correct resource ‐ flow [CEC07] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  7. Agent behavior • Fixed dynamics (statemachines) of ODP ‐ agents • Communication protocols (sequence diagrams) e.g. resource ‐ handshake Advantages: → Dynamics defined for whole system class → Verification on system class level possible → Implementation — ODP Runtime Environment [SPPOC11b] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  8. Decentralized Observer/Controller Architecture • Constraints can be observed locally • We distinguish between Base Agents and Reconfiguration Agents Reconfiguration Agent Instantiates Controller … Self ‐ x Algorithm Result Checker T1 Reports T2 Base Agent Observer Controls Constraint Monitor Observes • Constraint solver Alloy [ATC09] • Genetic algorithm [SSCI11] Functional Part • Verified result checker [OC11] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  9. Coalition formation Challenge 3: Scalability through local reconfiguration • Form groups of agents that can reconfigure a part of the system with local knowledge only • Groups are called coalitions • Each coalition has a leader that coordinates the process of reconfiguration • Local knowledge: – No agent has knowledge about the abilities and configuration of other agents (capabilities, inputs, outputs, allocated roles, …) as long as they are not part of the same coalition – Each agent only knows those agents contained in its inputs or outputs • Make use of the underlying system structure [EASe11] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  10. VIDEO 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  11. Software Engineering Guideline • Domain model • Instance model • Selection of self ‐ x ‐ algorithm • Code generation • Domain specific adaptations SE ‐ Guideline [SASO10] ODP Runtime Environment (ORE) [SEAMS2009] Domain model Instance model 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  12. FORMAL VERIFICATION OF ORGANIC COMPUTING APPLICATIONS 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  13. Behavioral Guarantees Goal: Correctness Assurance in OC Systems • Provide a technique to be able to verify properties of systems despite self ‐ x properties – Correctness of functional system – Correctness of self ‐ x algorithms • Systematic identification of possible failures that lead to a hazard – Safety Analysis – Quantitative properties for self ‐ x systems 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  14. Verification Challenges Result of a self ‐ x phase unpredictable Systems have changing number of agents Algorithms for self ‐ organization are hard to verify 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  15. Restore ‐ Invariant ‐ Approach Challenge 4: Result of a self ‐ x phase unpredictable • Corridor specified by predicate logic formula INV( σ ) over system states • System goal is that this formula should hold on the entire system trace • Whenever INV( σ ) is violated the system tries to restore it. □ (INV  (  INV   (INV   ) ) ) working working reconfiguration t INV ¬INV INV [SPPOC11a] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  16. Seperation of Concerns Challenge 4: Result of a self ‐ x phase unpredictable Theorem: Controller Prop The expected properties Self ‐ x Algorithm Result Checker Reports hold in System as long as the Observer invariant can be restored correctly Controls Constraint Monitor by a reconfiguration mechanism. Observes Decoupling of self ‐ x Functional Part and functional behavior [SASO08] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  17. Verification of functional part Challenge 5: Systems have changing number of agents • Problem: • Number of agents not known at design time • Arbitrarily large number of agents Global view Environment System 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  18. Verification of functional part Challenge 5: Systems have changing number of agents • Solution: Compositional Reasoning Verification of parallel system is reduced to proving properties of the single agents Local view Environment 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  19. Rely/Guarantee Formalism Challenge 5: Systems have changing number of agents Each agent gives guarantees to its environment about the individual behavior • (Guarantee), if it can rely on some properties of the environment (Rely) • Typical Relies R: “environment doesn’t change the agents local • “I guarantee G , variables” if I can rely on R ” “incoming resources have valid state” • • “If O/C monitors and restores invariant correctly” • Guarantees G: • “resource is produced correctly” “outgoing resources have “valid” state” • Compositionality theorem for reasoning about global properties. [ATC10a] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  20. Correctness of Self ‐ x Algorithm Challenge 6 : Algorithms for self ‐ organization are hard to verify • Algorithms are often complex or Controller unsound Self ‐ x Algorithm Result Checker Learning techniques – Reports Neural Networks – – Genetic Algorithms Observer Controls Constraint Monitor Observes Hard or unfeasible to verify ! Functional Part • Idea: Result Checker A component within the Controller ensures that only correct configurations are forwarded to the System [OC11] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  21. Verified Result Checking Challenge 6: Algorithms for self ‐ organization are hard to verify • Ensure correctness of an algorithm (Alg) by an additional program, called result checker (RC) • RC checks – Correctness of results Alg. – Not: Correctness of algorithm • Soundness by verifying RC ✘ ? • Advantages – (Unlike testing) All inputs of Alg are checked – (Unlike verification) Verification of RC, instead of Alg RC → easier task because less complex ✔ – Alg can be exchanged, even at runtime [OC11] 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  22. Project summary • Generic verification mechanism for self ‐ organizing systems – Restore Invariant Approach • Definition of a class of systems, where all challenges were solved (Self ‐ organizing Resource ‐ Flow Systems) – Behavioral guarantees despite self ‐ organisation – Top ‐ Down Model ‐ Driven Development – ODP Runtime Environment – Steps towards scalability: coalition formation • Ongoing: – Self ‐ optimization – Further work on scalability 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

  23. SAVE ORCA* • 2 Ph.D. Theses • 23 reviewed publications • 2 technical reports • 13 Diploma ‐ , Master ‐ , Bachelor ‐ Theses *2005 ‐ 2011: one sponsored research position 15.09.2011 SAVE ORCA ‐ Nürnberg 2011

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SAVE ORCA Formal Modeling, Safety Analysis, and Verification of Organic Computing Applications

SAVE ORCA Formal Modeling, Safety Analysis, and Verification of Organic Computing Applications

SAVE ORCA Formal Modeling, Safety Analysis, and Verification of Organic Computing Applications Hella Seebach , Florian Nafz and Wolfgang Reif What has happend in the last months? Software Engineering Guideline for Resource-Flow Systems

828 views • 29 slides
Hope for Orcas Ken Balcomb & Jim Waddell Jim Waddell, Jim Fetter & EPA Region 10 Credit:

Hope for Orcas Ken Balcomb & Jim Waddell Jim Waddell, Jim Fetter & EPA Region 10 Credit:

Hope for Orcas Ken Balcomb & Jim Waddell Jim Waddell, Jim Fetter & EPA Region 10 Credit: Center for Whale Research, Ken Balcomb Save Salmon, Save Money, Save Orca Jim Waddell, Retired Corps of Engineers Salmon and the 4 Lower Snake

539 views • 31 slides
Cards and Transit Education Provide $10 ORCA Youth State funded Cards Joint effort

Cards and Transit Education Provide $10 ORCA Youth State funded Cards Joint effort

ORCA Youth Cards and Transit Education Provide $10 ORCA Youth State funded Cards Joint effort with the Regional Partners Coordinated marketing campaign To King County Teens Goals Increase long-term ORCA usage in teens by

488 views • 31 slides
appearance with KM3NeT/ORCA T. Eberl, S. Hallmann*, J. Hofestdt for the KM3NeT

appearance with KM3NeT/ORCA T. Eberl, S. Hallmann*, J. Hofestdt for the KM3NeT

appearance with KM3NeT/ORCA T. Eberl, S. Hallmann*, J. Hofestdt for the KM3NeT Collaboration 35 th ICRC, Busan, South Korea, 15/07/2017 *speaker KM3NeT/ORCA A detector to study oscillations of the atmospheric neutrino flux ( e ,

159 views • 13 slides
ORCA: Ownership and Reference Counting based Garbage Collection in the Actor World

ORCA: Ownership and Reference Counting based Garbage Collection in the Actor World

ORCA: Ownership and Reference Counting based Garbage Collection in the Actor World Sylvan Clebsch, Sebastian Blessing, Juliana Franco, Sophia Drossopoulou Motivation Motivation - 2 ORCA - idea The actor which created an

633 views • 34 slides
T w o W e e k S p r i n g S a l e ! SAVE EVEN MORE SAVE EVEN MORE O N O N T

T w o W e e k S p r i n g S a l e ! SAVE EVEN MORE SAVE EVEN MORE O N O N T

Prices Good 3-29 thru 4-11-20 www.captainliquor.com T w o W e e k S p r i n g S a l e ! SAVE EVEN MORE SAVE EVEN MORE O N O N T E T E E B A E B A N - R N - R L - I L - I M A I M A I 4 2 $ 2 $

211 views • 8 slides
T w o W e e k W i n t e r S a l e ! SAVE EVEN MORE SAVE EVEN MORE N E O O N

T w o W e e k W i n t e r S a l e ! SAVE EVEN MORE SAVE EVEN MORE N E O O N

Prices Good 12-2 thru 12-15-20 www.captainliquor.com T w o W e e k W i n t e r S a l e ! SAVE EVEN MORE SAVE EVEN MORE N E O O N B A T T E R E B A I N - - R E A I L - - I N M A I L $ 1 2 8 M

542 views • 8 slides
Octant Sensitivity with KM3NeT-ORCA N. R. Khan Chowdhury 1 14 Jan. 2020 | N. R. Khan Chowdhury |

Octant Sensitivity with KM3NeT-ORCA N. R. Khan Chowdhury 1 14 Jan. 2020 | N. R. Khan Chowdhury |

Octant Sensitivity with KM3NeT-ORCA N. R. Khan Chowdhury 1 14 Jan. 2020 | N. R. Khan Chowdhury | ORCA Phone Call | What is octant degeneracy? The ambiguity in the determination of 23 can be from two sources, 1) Inherent octant degeneracy:

366 views • 12 slides
Development of a Mul/disciplinary Team Protocol for ORCA

Development of a Mul/disciplinary Team Protocol for ORCA

Development of a Mul/disciplinary Team Protocol for ORCA Childrens Advocacy Centre Serena Bedwal, Project Assistant/Researcher Fred Ford, Board Chair/Ac/ng Project

902 views • 24 slides
Evi vidence-Based Pla lanning an and De Development with Com ommunities in in Cor orca Dh

Evi vidence-Based Pla lanning an and De Development with Com ommunities in in Cor orca Dh

Evi vidence-Based Pla lanning an and De Development with Com ommunities in in Cor orca Dh Dhuib ibhne Pleanil agus Forbairt i gCorca Dhuibhne n mbun anos agus bunaithe ar fhianaise Progress report, January 2020 Breandn

410 views • 26 slides
iGENI Presentation for ORCA Cluster Meeting, GEC 10 Presented By iGENI Consortium:

iGENI Presentation for ORCA Cluster Meeting, GEC 10 Presented By iGENI Consortium:

iGENI Presentation for ORCA Cluster Meeting, GEC 10 Presented By iGENI Consortium: International Center for Advanced Internet Research, Northwestern University et al GENI Engineering Conference 10 (GEC 10) March 15-17, 2011 San Juan, Puerto

385 views • 4 slides
SPECIFYING SECURITY POLICY: ORCA Ken Birman CS6410 Context As we roll out increasingly

SPECIFYING SECURITY POLICY: ORCA Ken Birman CS6410 Context As we roll out increasingly

SPECIFYING SECURITY POLICY: ORCA Ken Birman CS6410 Context As we roll out increasingly ambitious distributed platforms, and share them among demanding users who have its all mine mentalities, we get really challenging resource

761 views • 40 slides
ORCA/BEN and Cluster D Demo GEC7 Jeff Chase Duke

ORCA/BEN and Cluster D Demo GEC7 Jeff Chase Duke

D D u k e S y s t t e m s ORCA/BEN and Cluster D Demo GEC7 Jeff Chase Duke University and GENI Cluster D Broker Experiments Federation or Etc. Coalition Open

585 views • 29 slides
ORCA LANGUAGE ABSTRACT Microprocessor based shared-memory multiprocessors are becoming widely

ORCA LANGUAGE ABSTRACT Microprocessor based shared-memory multiprocessors are becoming widely

CS5314 RESEARCH PAPER ON PROGRAMMING LANGUAGES FACULTY: Dr. James D. Arthur SUBMITTED BY: Aditya Varanasi Siddharth Anbalahan ORCA LANGUAGE ABSTRACT Microprocessor based shared-memory multiprocessors are becoming widely available and promise

313 views • 9 slides
KM3NeT/ORCA: measuring neutrino oscillations and the Mass Hierarchy in the Mediterranean Simon

KM3NeT/ORCA: measuring neutrino oscillations and the Mass Hierarchy in the Mediterranean Simon

KM3NeT/ORCA: measuring neutrino oscillations and the Mass Hierarchy in the Mediterranean Simon Bourret Laboratoire APC, CNRS & Universit Paris-Diderot on behalf of the KM3NeT Collaboration XXVI International Workshop on Weak Interactions

465 views • 17 slides
EARTH OBSERVATION USING AIRLINER FLEETS ORCA INTRODUCTION USING CIVIL AIRCRAFT FOR EARTH

EARTH OBSERVATION USING AIRLINER FLEETS ORCA INTRODUCTION USING CIVIL AIRCRAFT FOR EARTH

EARTH OBSERVATION USING AIRLINER FLEETS ORCA INTRODUCTION USING CIVIL AIRCRAFT FOR EARTH OBSERVATION AND TELECOMMUNICATION Reference SFX-00-02-181004-IAC Issue 1 4 OCT 2018 Date PROPRIETARY MATERIAL BELONGING TO ESA AND SKYFLOX MAY 2019

540 views • 16 slides
Lyee Structure The Institute of Computer Based Software Methodology and Technology Top Tense

Lyee Structure The Institute of Computer Based Software Methodology and Technology Top Tense

Lyee Structure The Institute of Computer Based Software Methodology and Technology Top Tense Control Function ( ) Pre Processing Initial Processing (Lyee domains) Is the next p specified? Activated p Next p Current p

604 views • 18 slides
Business Market Availability and Disparity Study SHELBY COUNTY SCHOOLS Report Presentation

Business Market Availability and Disparity Study SHELBY COUNTY SCHOOLS Report Presentation

Business Market Availability and Disparity Study SHELBY COUNTY SCHOOLS Report Presentation November 28, 2017 Agenda Introductions What is a Disparity Study? Background Study Framework Quantitative Results

513 views • 19 slides
Subjects Predicates Every complete sentence has two parts: subject and predicate The

Subjects Predicates Every complete sentence has two parts: subject and predicate The

Subjects Predicates Every complete sentence has two parts: subject and predicate The subject is the who (or what) the sentence is about. The predicate tells what the subject does. EXAMPLE: Judy and her dog run on the beach every

166 views • 15 slides
Drafting Legal Opinions for Article 9 Security Interests: Navigating the Complexities and

Drafting Legal Opinions for Article 9 Security Interests: Navigating the Complexities and

Drafting Legal Opinions for Article 9 Security Interests: Navigating the Complexities and Avoiding Liability Erik W. Hepler, Kirkland & Ellis James C. Schulwolf, Shipman & Goodwin Overview Opinions are typical in financing transactions

962 views • 67 slides
t s s

t s s

t s s rst ss ts r r s

462 views • 27 slides
Making Java code terse terse Java Java Heavy lifting Heavy lifting EJB EJB POJO POJO Get

Making Java code terse terse Java Java Heavy lifting Heavy lifting EJB EJB POJO POJO Get

Making Java code terse terse Java Java Heavy lifting Heavy lifting EJB EJB POJO POJO Get Get Set Set Constructors Constructors Equals Equals Dont forget the hashcode the hashcode To String To String 111 for 5 111 for 5

864 views • 49 slides
Shipboard Electrical Power Quality of Service Quality of Service CAPT Norbert Doerry Technical

Shipboard Electrical Power Quality of Service Quality of Service CAPT Norbert Doerry Technical

Shipboard Electrical Power Quality of Service Quality of Service CAPT Norbert Doerry Technical Director, Future Concepts and Surface Ship Design Naval Sea Systems Command SEA 05DB (202) 781-2520 norbert.doerry@navy.mil David H Clayton

285 views • 26 slides
Technologies Bill Chvala, Anne Wagner, Ben Ford, Emily Wendel Pacific Northwest National

Technologies Bill Chvala, Anne Wagner, Ben Ford, Emily Wendel Pacific Northwest National

Mission Resilience & Sustainability Training New and Emerging Technologies Bill Chvala, Anne Wagner, Ben Ford, Emily Wendel Pacific Northwest National Laboratory UNCLASSIFIED Leadership, Energy, and Execution 7 NOV 2017 1 Speakers Bill

631 views • 35 slides

More recommend