348 research outputs found
Causality and Temporal Dependencies in the Design of Fault Management Systems
Reasoning about causes and effects naturally arises in the engineering of
safety-critical systems. A classical example is Fault Tree Analysis, a
deductive technique used for system safety assessment, whereby an undesired
state is reduced to the set of its immediate causes. The design of fault
management systems also requires reasoning on causality relationships. In
particular, a fail-operational system needs to ensure timely detection and
identification of faults, i.e. recognize the occurrence of run-time faults
through their observable effects on the system. Even more complex scenarios
arise when multiple faults are involved and may interact in subtle ways.
In this work, we propose a formal approach to fault management for complex
systems. We first introduce the notions of fault tree and minimal cut sets. We
then present a formal framework for the specification and analysis of
diagnosability, and for the design of fault detection and identification (FDI)
components. Finally, we review recent advances in fault propagation analysis,
based on the Timed Failure Propagation Graphs (TFPG) formalism.Comment: In Proceedings CREST 2017, arXiv:1710.0277
Formal Design of Asynchronous Fault Detection and Identification Components using Temporal Epistemic Logic
Autonomous critical systems, such as satellites and space rovers, must be
able to detect the occurrence of faults in order to ensure correct operation.
This task is carried out by Fault Detection and Identification (FDI)
components, that are embedded in those systems and are in charge of detecting
faults in an automated and timely manner by reading data from sensors and
triggering predefined alarms. The design of effective FDI components is an
extremely hard problem, also due to the lack of a complete theoretical
foundation, and of precise specification and validation techniques. In this
paper, we present the first formal approach to the design of FDI components for
discrete event systems, both in a synchronous and asynchronous setting. We
propose a logical language for the specification of FDI requirements that
accounts for a wide class of practical cases, and includes novel aspects such
as maximality and trace-diagnosability. The language is equipped with a clear
semantics based on temporal epistemic logic, and is proved to enjoy suitable
properties. We discuss how to validate the requirements and how to verify that
a given FDI component satisfies them. We propose an algorithm for the synthesis
of correct-by-construction FDI components, and report on the applicability of
the design approach on an industrial case-study coming from aerospace.Comment: 33 pages, 20 figure
A Game-Theoretic approach to Fault Diagnosis of Hybrid Systems
Physical systems can fail. For this reason the problem of identifying and
reacting to faults has received a large attention in the control and computer
science communities. In this paper we study the fault diagnosis problem for
hybrid systems from a game-theoretical point of view. A hybrid system is a
system mixing continuous and discrete behaviours that cannot be faithfully
modeled neither by using a formalism with continuous dynamics only nor by a
formalism including only discrete dynamics. We use the well known framework of
hybrid automata for modeling hybrid systems, and we define a Fault Diagnosis
Game on them, using two players: the environment and the diagnoser. The
environment controls the evolution of the system and chooses whether and when a
fault occurs. The diagnoser observes the external behaviour of the system and
announces whether a fault has occurred or not. Existence of a winning strategy
for the diagnoser implies that faults can be detected correctly, while
computing such a winning strategy corresponds to implement a diagnoser for the
system. We will show how to determine the existence of a winning strategy, and
how to compute it, for some decidable classes of hybrid automata like o-minimal
hybrid automata.Comment: In Proceedings GandALF 2011, arXiv:1106.081
10451 Abstracts Collection -- Runtime Verification, Diagnosis, Planning and Control for Autonomous Systems
From November 7 to 12, 2010, the Dagstuhl Seminar 10451 ``Runtime Verification, Diagnosis, Planning and Control for Autonomous Systems\u27\u27 was held in Schloss Dagstuhl~--~Leibniz Center for Informatics.
During the seminar, 35 participants presented their current
research and discussed ongoing work and open problems.
This document puts together abstracts of the presentations given during the seminar, and provides links to extended abstracts or full papers, if available
Diagnosability Analysis of Labeled Time Petri Net Systems
In this paper, we focus on two notions of diagnosability
for labeled Time Petri net (PN) systems:
K-diagnosability implies that any fault occurrence
can be detected after at most K observations, while
Ď„-diagnosability implies that any fault occurrence can
be detected after at most Ď„ time units. A procedure to
analyze such properties isprovided.The proposedapproach
uses the Modified State Class Graph, a graph the authors
recently introduced for the marking estimation of labeled
Time PN systems,which providesan exhaustive description
of the system behavior. A preliminary diagnosabilty analysis
of the underlying logic system based on classical
approaches taken from the literature is required. Then, the
solution of some linear programming problems should
be performed to take into account the timing constraints
associated with transitions
Formal Verification and Validation of AADL Models
International audienceSafety-critical systems are increasingly difficult to com- prehend due to their rising complexity. Methodologies, tools and modeling formalisms have been developed to overcome this. Component-based design is an im- portant paradigm that is shared by many of them
- …