the uppaal model checker the uppaal model checker
play

The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza - PowerPoint PPT Presentation

Mar 14, 2023 •105 likes •804 views

The UPPAAL Model Checker The UPPAAL Model Checker Julin Proenza Systems, Robotics and Vision Group. UIB. SPAIN Julin Proenza. UIB. Oct 2008 The aim of this presentation Introduce the basic concepts of model checking from a practical

  1. The UPPAAL Model Checker The UPPAAL Model Checker Julián Proenza Systems, Robotics and Vision Group. UIB. SPAIN

  2. Julián Proenza. UIB. Oct 2008 The aim of this presentation • Introduce the basic concepts of model checking from a practical perspective • Describe the basic features of the UPPAAL model checker • Use examples to illustrate the practical use of UPPAAL for the formal verification of systems 2

  3. Julián Proenza. UIB. Oct 2008 Presentation Outline 1. The role of Model Checking in design validation 2. The UPPAAL Tool 1. Introduction 2. Modeling 3. Verification 4. A first example 5. Installation instructions 3. References 3

  4. Julián Proenza. UIB. Oct 2008 Presentation Outline 1. The role of Model Checking in design validation 2. The UPPAAL Tool 1. Introduction 2. Modeling 3. Verification 4. A first example 5. Installation instructions 3. References 4

  5. Julián Proenza. UIB. Oct 2008 The need for Design Validation • Hardware and software are widely used in applications where failure is unacceptable • Design Validation is necessary: ensuring design correctness at the earliest stage possible • Traditional Techniques (rarely get exhaustive validation): � Simulation (on an abstraction or a model of the system) � Testing (on the actual product) • Formal Methods (aimed at exhaustive validation) � Deductive Verification (costly, slow and only partially automatic) � Model Checking (for finite-state concurrent systems � automatic) 5

  6. Julián Proenza. UIB. Oct 2008 The Model Checking Technique • Use of Formal Methods has been considered for a long time a very desirable task for ensuring the correct design of a system • The complexity of these methods made them only accessible to specialists (mathematicians). � Thus they were actually only used for very critical systems • Model Checking is the first technique that is truly accessible for “normal” engineers � Enabling the use of formal verification in a wider spectrum of applications (including VHDL systems) � Applicable to (finite-state concurrent systems) sequential circuits, communication protocols, software… 6

  7. Julián Proenza. UIB. Oct 2008 The 3 Steps of Model Checking 1. Build a model for the system, typically as a set of automata 2. Formalize the properties to be verified using expressions in a logic Use the model checker (a tool ) to generate the space of all possible 3. states and to exhaustively check whether the properties hold in each and everyone of the possible DYNAMIC BEHAVIOURS of the model Formal Model Model Yes Checker or (UPPAAL) No (counterexample) Queries For each query 7

  8. Julián Proenza. UIB. Oct 2008 Presentation Outline 1. The role of Model Checking in design validation 2. The UPPAAL Tool 1. Introduction 2. Modeling 3. Verification 4. A first example 8

  9. Julián Proenza. UIB. Oct 2008 Introducing UPPAAL (v4.0.6)… • UPPAAL is a tool box for validation (via graphical simulation) and verification (via automatic model- checking) of real-time systems. • It consists of two main parts : � a Graphical User Interface (GUI) (executed on the users work station) and � a model-checker engine (by default executed on the same computer as the user interface, but can also run on a more powerful server) • It has been jointly developed by Upp sala University in Sweden and Aal borg University in Denmark 9

  10. Julián Proenza. UIB. Oct 2008 An overview of the tool Menu Icons Tabs 10

  11. Julián Proenza. UIB. Oct 2008 An overview of the tool The Editor Window 11

  12. Julián Proenza. UIB. Oct 2008 An overview of the tool The Editor Window With “undo”! 12

  13. Julián Proenza. UIB. Oct 2008 An overview of the tool The Simulator Window (1) 13

  14. Julián Proenza. UIB. Oct 2008 An overview of the tool The Simulator Window (2) 14

  15. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (1) 15

  16. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (2) 1. Click 2. Edit 16

  17. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (3) Click 17

  18. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (4) Green light 18

  19. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (5) 19

  20. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (6) Red light 20

  21. Julián Proenza. UIB. Oct 2008 An overview of the tool The Verifier Window (7) Options Diagnostic Trace Some 21

  22. Julián Proenza. UIB. Oct 2008 An overview of the tool The Stored Trace (counterexample) Replay the trace step by step 22

  23. Julián Proenza. UIB. Oct 2008 Presentation Outline 1. The role of Model Checking in design validation 2. The UPPAAL Tool 1. Introduction 2. Modeling 3. Verification 4. A first example 5. Installation instructions 3. References 23

  24. Julián Proenza. UIB. Oct 2008 Modeling with UPPAAL • In UPPAAL, systems are modeled using timed- automata , which are finite state machines with clocks . � Clocks are variables which can evaluate to a real number and which can be defined in each automaton in order to measure the time progress. � All clocks evolve at the same pace in order to represent the global progress of time. � The actual value of a clock can be either tested or reset ( not assigned ). • Given that UPPAAL is specially designed for the verification of real-time systems , clocks are a fundamental modeling and verification feature. 24

  25. Julián Proenza. UIB. Oct 2008 Structure of an UPPAAL Model • An UPPAAL model is built as a set of concurrent processes . • Each process is graphically designed as a timed- automaton . • Since instantiations of the same automaton are frequently needed templates are used • A timed-automaton is represented as a graph which has locations as nodes and edges as arcs between locations. start end 25

  26. Julián Proenza. UIB. Oct 2008 Structure of an UPPAAL Model • An UPPAAL model is built as a set of concurrent processes . • Each process is graphically designed as a timed- automaton . • Since instantiations of the same automaton are frequently needed templates are used • A timed-automaton is represented as a graph which has locations as nodes and edges as arcs between locations. edge start end location location 26

  27. Julián Proenza. UIB. Oct 2008 Labels in Edges • Edges are annotated with guards , updates , synchronisations and selections 27

  28. Julián Proenza. UIB. Oct 2008 Labels in Edges Guards • Edges are annotated with guards , updates , synchronisations and selections • A guard is an expression which uses the variables and clocks of the model in order to indicate when the transition is enabled, i.e. may be fired. � Note that several edges may be enabled at an specific time but only one of them will be fired � leading to different potential interleavings start end a==1 28

  29. Julián Proenza. UIB. Oct 2008 Labels in Edges Updates • An update is an expression that is evaluated as soon as the corresponding edge is fired. This evaluation changes the state of the system. start end a==1 b=0 29

  30. Julián Proenza. UIB. Oct 2008 Labels in Edges Synchronisations • The synchronization is the basic mechanism used to coordinate the action of two or more processes. Models for instance the effect of messages • It causes two (or more) processes to take a transition at the same time. A channel ( c ) is declared, then one process will have an edged annotated with c! and the other(s) process(es) another edge annotated with c? • Three different kinds of synchronizations : � Regular channel (leading to Binary Synchronization) � Urgent channel � Broadcast channel 30

  31. Julián Proenza. UIB. Oct 2008 Labels in Edges Synchronisations: Regular Channel • A regular channel is declared as, e.g., chan c . � When a process is in a location from which there is a transition labelled with c! the only way for the transition to be enabled is that another process is in a location from which there is a transition labelled with c? and vice versa. � If at a specific instant there are several possible ways to have a pair c! and c?, one of them is non-deterministically chosen during model checking. c! c? start end start end a==1 a==1 b=0 b=0 � The update expression on an edge synchronizing on c! is executed before the update expression on an edge synchronizing on c? 31

  32. Julián Proenza. UIB. Oct 2008 Labels in Edges Synchronisations: Urgent Channel • An urgent channel is declared as urgent chan c . � Urgent channels are similar to regular channels, except that it is not possible to delay in the source state if it is possible to trigger a synchronisation over an urgent channel. � This means no time can pass but they can interleave with other transitions that require no time to pass. � Graphically they look like regular channels c! c? start end start end a==1 a==1 b=0 b=0 � Notice that clock guards are not allowed on edges synchronising over urgent channels 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Model Checking of Timed Systems A UPPAAL Tutorial Wang Yi Uppsala University, Sweden SFM 2010,

Model Checking of Timed Systems A UPPAAL Tutorial Wang Yi Uppsala University, Sweden SFM 2010,

This is simple, simple, simple Model Checking of Timed Systems A UPPAAL Tutorial Wang Yi Uppsala University, Sweden SFM 2010, Bertinoro LESLIE LAMPORT 1 2 UPPAAL A model checker for real-time systems Main Authors/Contributors of

449 views • 29 slides
UPPAAL tutorial Modeling Verification 1 2 Architecture of UPPAAL Whats inside UPPAAL

UPPAAL tutorial Modeling Verification 1 2 Architecture of UPPAAL Whats inside UPPAAL

UPPAAL Tool Simulation UPPAAL tutorial Modeling Verification 1 2 Architecture of UPPAAL Whats inside UPPAAL Linux, Windows, Solaris, MacOS 3 4 All Operations on Zones Inside the UPPAAL tool (needed for verification)

468 views • 13 slides
UC UCb b 1 2 methods a b c 3 4 & Tools b c 3 4 UPPAAL Model 2 DISC Summer

UC UCb b 1 2 methods a b c 3 4 & Tools b c 3 4 UPPAAL Model 2 DISC Summer

UCb Validation & Verification Timed Automata Construction of UPPAAL models & Controller Program Plant Model Checking Discrete Continuous Using UPPAALx : x {1,2,3,4} sensors Task Task Task Task Model actuators of tasks

486 views • 11 slides
Lecture 3: Model-checker NuSMV B. Srivathsan Chennai Mathematical Institute NPTEL-course July -

Lecture 3: Model-checker NuSMV B. Srivathsan Chennai Mathematical Institute NPTEL-course July -

Lecture 3: Model-checker NuSMV B. Srivathsan Chennai Mathematical Institute NPTEL-course July - November 2015 1 / 31 Model-checker Specify the model of the system Specify the requirements Model-checker will automatically check if system

1.72k views • 112 slides
UPPAAL Tutorial UPPAAL Tutorial UPPAAL Tutorial Introduction Introduction Alexandre David

UPPAAL Tutorial UPPAAL Tutorial UPPAAL Tutorial Introduction Introduction Alexandre David

UPPAAL Tutorial UPPAAL Tutorial UPPAAL Tutorial Introduction Introduction Alexandre David Paul Pettersson RTSS05 Collaborators @UPPsala @AALborg Wang Yi Kim G Larsen Paul Pettersson Gerd Behrman John Hkansson

926 views • 36 slides
Towards Model Checking of Voting Protocols in Uppaal Wojciech Jamroga, Peter Y. A. Ryan, Damian

Towards Model Checking of Voting Protocols in Uppaal Wojciech Jamroga, Peter Y. A. Ryan, Damian

Introduction Uppaal Pr et ` a Voter Demo Towards Model Checking of Voting Protocols in Uppaal Wojciech Jamroga, Peter Y. A. Ryan, Damian Kurpiewski, Yan Kim October 1, 2020 W.Jamroga, P.Y.A.Ryan, D.Kurpierwski, Y.Kim Towards Model

232 views • 22 slides
Real Tim e Kim G Larsen Model Checking using UPPAAL Collaborators @ AALborg @UPPsala

Real Tim e Kim G Larsen Model Checking using UPPAAL Collaborators @ AALborg @UPPsala

Real Tim e Kim G Larsen Model Checking using UPPAAL Collaborators @ AALborg @UPPsala Kim G Larsen Wang Yi Informationsteknologi Gerd Behrman Paul Pettersson Arne Skou John Hkansson Brian Nielsen

979 views • 72 slides
Implementation of a Coalgebraic Model Checker Aaron Strahlberger 16.07.2019 Parity Game based

Implementation of a Coalgebraic Model Checker Aaron Strahlberger 16.07.2019 Parity Game based

Implementation of a Coalgebraic Model Checker Aaron Strahlberger 16.07.2019 Parity Game based Model Checker Game-Based Local Model Checking for the Coalgebraic -Calculus by Daniel Hausmann and Lutz Schrder [1] (CONCUR 2019)

474 views • 31 slides
Verification of a Dynamic Channel Model using the SPIN Model Checker Rune M. Friborg and Brian

Verification of a Dynamic Channel Model using the SPIN Model Checker Rune M. Friborg and Brian

Verification of a Dynamic Channel Model using the SPIN Model Checker Rune M. Friborg and Brian Vinter eScience center, University of Copenhagen Dias 1 Introduction to PyCSP 2007 - PyCSP is presented. The synchronization model for channel

574 views • 20 slides
A Model Checker Collection for the Model Checking Contest @ Petri Nets Didier Buchs Stefan

A Model Checker Collection for the Model Checking Contest @ Petri Nets Didier Buchs Stefan

A Model Checker Collection for the Model Checking Contest @ Petri Nets Didier Buchs Stefan Klikovits Alban Linard Romain Mencattini Dimitri Racordon 28 June 2018 1/11 1/11 Examination Result GreatSPN ITSTools LoLA LTSMin Marcie

613 views • 20 slides
Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan

Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan

Schedulability Analysis of Timed CSP Models Using the PAT Model Checker O uzcan O UZ Jan F. BROENINK Angelika MADER Robotics and Mechatronics, University of Twente, The Netherlands Contents Problem Statement & Approach

516 views • 24 slides
The Low-Level Bounded Model Checker LLBMC A Precise Memory Model for LLBMC Florian Merz | October

The Low-Level Bounded Model Checker LLBMC A Precise Memory Model for LLBMC Florian Merz | October

The Low-Level Bounded Model Checker LLBMC A Precise Memory Model for LLBMC Florian Merz | October 7, 2010 Carsten Sinz Stephan Falke V ERIFICATION MEETS A LGORITHM E NGINEERING www.kit.edu KIT University of the State of Baden-Wuerttemberg

415 views • 19 slides
Can a Model Checker Generate Tests for Non-Deterministic Systems? Sergiy Boroday, Alexandre

Can a Model Checker Generate Tests for Non-Deterministic Systems? Sergiy Boroday, Alexandre

Can a Model Checker Generate Tests for Non-Deterministic Systems? Sergiy Boroday, Alexandre Petrenko CRIM, Montreal, Canada Roland Groz INPG, France MBT 2007 Outline Motivation Weak and Strong Tests Test Generation Model

802 views • 22 slides
The Software Model Checker BLAST: Applications to Software Engineering Dirk Beyer, Thomas A.

The Software Model Checker BLAST: Applications to Software Engineering Dirk Beyer, Thomas A.

The Software Model Checker BLAST: Applications to Software Engineering Dirk Beyer, Thomas A. Henzinger, Ranjit Jhala, Rupak Majumdar Int. Journal on Software Tools for Technology Transfer, 2007 Stefan Buchholz March 17, 2009 1 Model

456 views • 12 slides
OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A UPPAAL Tutorial & Verification Problems Data stuctures & central algorithms UPPAAL input languages 1 2 Timed Automata: Syntax

408 views • 11 slides
Towards a model-checker for counter systems S. Demri 1 A. Finkel 1 V. Goranko 2 G. van Drimmelen 2

Towards a model-checker for counter systems S. Demri 1 A. Finkel 1 V. Goranko 2 G. van Drimmelen 2

Towards a model-checker for counter systems S. Demri 1 A. Finkel 1 V. Goranko 2 G. van Drimmelen 2 1 LSV, CNRS & ENS Cachan & INRIA Futurs 2 University of Witwatersrand, Johannesburg ATVA, October 2006, Beijing Motivations Presburger

679 views • 37 slides
Network and Load-Aware Resource Manager for MPI Programs Ashish Kumar Naman Jain Preeti Malakar

Network and Load-Aware Resource Manager for MPI Programs Ashish Kumar Naman Jain Preeti Malakar

Network and Load-Aware Resource Manager for MPI Programs Ashish Kumar Naman Jain Preeti Malakar Indian Institite of Technology, Kanpur SRMPDS, International Conference on Parallel Processing 2020 Ashish Kumar, Naman Jain, Preeti Malakar

613 views • 57 slides
Perioperative Management of Patients with Cardiac Implantable Electronic Devices Rachel Heise,

Perioperative Management of Patients with Cardiac Implantable Electronic Devices Rachel Heise,

Perioperative Management of Patients with Cardiac Implantable Electronic Devices Rachel Heise, BSN, RN, CCRN, SRNA Melissa Maxwell, BSN, RN, SRNA Rosalind Franklin University We have no conflicts of interest to declare and will not be

535 views • 34 slides
Network models Why model? simple representation of complex network can derive

Network models Why model? simple representation of complex network can derive

Random Graphs CS224W Network models Why model? simple representation of complex network can derive properties mathematically predict properties and outcomes Also: to have a strawman In what ways is your

846 views • 66 slides
1 9/14/2019 Selective His Bundle Pacing Histological 90 90 40 40 S V H V HBP Correa de

1 9/14/2019 Selective His Bundle Pacing Histological 90 90 40 40 S V H V HBP Correa de

9/14/2019 Disclosures When and How to Perform Consultant - Abbott His-Purkinje Conduction System Pacing Advisory board - Boston Scientific Advisory board - Eaglepoint LLC Speaker, Consultant, Research - Medtronic Fellowship support

577 views • 16 slides
VER ND NDN N USI MMUNI NICATION OVE SING NG S ERV CE E DGE GE R OUTE RVICE UTERS Sy Syed

VER ND NDN N USI MMUNI NICATION OVE SING NG S ERV CE E DGE GE R OUTE RVICE UTERS Sy Syed

S CALABLE BLE R EAL - TIME ME C OLLABO BORA RATIVE C OMM VER ND NDN N USI MMUNI NICATION OVE SING NG S ERV CE E DGE GE R OUTE RVICE UTERS Sy Syed d Obai baid d Amin, Hai Haitao tao Zh Zhang* g*, Asit C Chakrab akraborti ti, A

459 views • 14 slides
DELTAPATH: PRECISE AND SCALABLE CALLING CONTEXT ENCODING Qiang Zeng*, Junghwan Rhee , Hui Zhang,

DELTAPATH: PRECISE AND SCALABLE CALLING CONTEXT ENCODING Qiang Zeng*, Junghwan Rhee , Hui Zhang,

DELTAPATH: PRECISE AND SCALABLE CALLING CONTEXT ENCODING Qiang Zeng*, Junghwan Rhee , Hui Zhang, Nipun Arora, Guofei Jiang, Peng Liu* NEC Laboratories America *Penn State University www.nec-labs.com Calling Context Calling Context is a

317 views • 21 slides
Supraventricular Arrhythmias Bread And Butter Or Toast And Jam Derek V Exner , MD, MPH, FRCPC,

Supraventricular Arrhythmias Bread And Butter Or Toast And Jam Derek V Exner , MD, MPH, FRCPC,

Supraventricular Arrhythmias Bread And Butter Or Toast And Jam Derek V Exner , MD, MPH, FRCPC, FACC, FHRS Professor, Libin Cardiovascular Institute of Alberta ACC Rockies 2012 Overview Back to the basics Unraveling the lexicon Bread and

513 views • 34 slides
Arithmetic Circuits of the Noisy-Or Models Jirka Vomlel and Petr Savick y Academy of Sciences

Arithmetic Circuits of the Noisy-Or Models Jirka Vomlel and Petr Savick y Academy of Sciences

Arithmetic Circuits of the Noisy-Or Models Jirka Vomlel and Petr Savick y Academy of Sciences of the Czech Republic PGM08, Hirtshals, Denmark y (AV J. Vomlel and P. Savick CR) ACs of BN2O PGM08, Hirtshals, Denmark 1 / 21

1.21k views • 65 slides

More recommend