Adding Executable Context to Executable Architectures: Enabling an Executable Context Simulation Framework (ECSF)

A system that does not stand alone is represented by a complex entity of component combinations that interact with each other to execute a function. In today\u27s interconnected world, systems integrate with other systems - called a system-of-systems infrastructure: a network of interrelated systems that can often exhibit both predictable and unpredictable behavior. The current state-of-the-art evaluation process of these system-of-systems and their community of practitioners in the academic community are limited to static methods focused on defining who is doing what and where. However, to answer the questions of why and how a system operates within complex systems-of-systems interrelationships, a system\u27s architecture and context must be observed over time, its executable architecture, to discern effective predictable and unpredictable behavior. The objective of this research is to determine a method for evaluating a system\u27s executable architecture and assess the contribution and efficiency of the specified system before it is built. This research led to the development of concrete steps that synthesize the observance of the executable architecture, assessment recommendations provided by the North Atlantic Treaty Organization (NATO) Code of Best Practice for Command and Control (C2) Assessment, and the metrics for operational efficiency provided by the Military Missions and Means Framework. Based on the research herein, this synthesis is designed to evaluate and assess system-of-systems architectures in their operational context to provide quantitative results

Learning and testing stochastic discrete event

Dissertação de mestrado em Engenharia de InformáticaSistemas de eventos discretos (DES) são uma importante subclasse de sistemas (à luz da teoria dos sistemas). Estes têm sido usados, particularmente na indústria para analisar e modelar um vasto conjunto de sistemas reais, tais como, sistemas de produção, sistemas de computador, sistemas de controlo de tráfego e sistemas híbridos. O nosso trabalho explora uma extensão de DES com ênfase nos processos estocásticos, comummente chamado como sistemas de eventos discretos estocásticos (SDES). Existe assim a necessidade de estabelecer uma abstração estocástica através do uso de processos semi-Markovianos generalizados (GSMP) para SDES. Assim, o objetivo do nosso trabalho é propor uma metodologia e um conjunto de algoritmos para aprendizagem de GSMP, usar técnicas de model-checking estatístico para a verificação e propor duas novas abordagens para teste de DES e SDES (respetivamente, não estocasticamente e estocasticamente). Este trabalho também introduz uma noção de modelação, analise e verificação de sistemas contínuos e modelos de perturbação no contexto da verificação por model-checking estatístico.Discrete event systems (DES) are an important subclass of systems (in systems theory). They have been used, particularly in industry, to analyze and model a wide variety of real systems, such as production systems, computer systems, traffic systems, and hybrid systems. Our work explores an extension of DES with an emphasis on stochastic processes, commonly called stochastic discrete event systems (SDES). There was a need to establish a stochastic abstraction for SDES through generalized semi-Markov processes (GSMP). Thus, the aim of our work is to propose a methodology and a set of algorithms for GSMP learning, using model checking techniques for verification, and to propose two new approaches for testing DES and SDES (non-stochastically and stochastically). This work also introduces a notion of modeling, analysis, and verification of continuous systems and disturbance models in the context of verifiable statistical model checking

Advanced modelling and simulation of water distribution systems with discontinuous control elements

Water distribution systems are large and complex structures. Hence, their construction, management and improvements are time consuming and expensive. But nearly all the optimisation methods, whether aimed at design or operation, suffer from the need for simulation models necessary to evaluate the performance of solutions to the problem. These simulation models, however, are increasing in size and complexity, and especially for operational control purposes, where there is a need to regularly update the control strategy to account for the fluctuations in demands, the combination of a hydraulic simulation model and optimisation is likely to be computationally excessive for all but the simplest of networks. The work presented in this thesis has been motivated by the need for reduced, whilst at the same time appropriately accurate, models to replicate the complex and nonlinear nature of water distribution systems in order to optimise their operation. This thesis attempts to establish the ground rules to form an underpinning basis for the formulation and subsequent evaluation of such models. Part I of this thesis introduces some of the modelling, simulation and optimisation problems currently faced by water industry. A case study is given to emphasise one particular subject, namely reduction of water distribution system models. A systematic research resulted in development of a new methodology which encapsulate not only the system mass balance but also the system energy distribution within the model reduction process. The methodology incorporates the energy audits concepts into the model reduction algorithm allowing the preservation of the original model energy distribution by imposing new pressure constraints in the reduced model. The appropriateness of the new methodology is illustrated on the theoretical and industrial case studies. Outcomes from these studies demonstrate that the new extension to the model reduction technique can simplify the inherent complexity of water networks while preserving the completeness of original information. An underlying premise which forms a common thread running through the thesis, linking Parts I and II, is in recognition of the need for the more efficient paradigm to model and simulate water networks; effectively accounting for the discontinuous behaviour exhibited by water network components. Motivated largely by the potential of contemplating a new paradigm to water distribution system modelling and simulation, a further major research area, which forms the basis of Part II, leads to a study of the discrete event specification formalism and quantised state systems to formulate a framework within which water distribution systems can be modelled and simulated. In contrast to the classic time-slicing simulators, depending on the numerical integration algorithms, the quantisation of system states would allow accounting for the discontinuities exhibited by control elements in a more efficient manner, and thereby, offer a significant increase in speed of the simulation of water network models. The proposed approach is evaluated on a number of case studies and compared with results obtained from the Epanet2 simulator and OpenModelica. Although the current state-of-art of the simulation tools utilising the quantised state systems do not allow to fully exploit their potential, the results from comparison demonstrate that, if the second or third order quantised-based integrations are used, the quantised state systems approach can outperform the conventional water network simulation methods in terms of simulation accuracy and run-time

A Framework for Executable Systems Modeling

Systems Modeling Language (SysML), like its parent language, the Unified Modeling Language (UML), consists of a number of independently derived model languages (i.e. state charts, activity models etc.) which have been co-opted into a single modeling framework. This, together with the lack of an overarching meta-model that supports uniform semantics across the various diagram types, has resulted in a large unwieldy and informal language schema. Additionally, SysML does not offer a built in framework for managing time and the scheduling of time based events in a simulation. In response to these challenges, a number of auxiliary standards have been offered by the Object Management Group (OMG); most pertinent here are the foundational UML subset (fUML), Action language for fUML (Alf), and the UML profile for Modeling and Analysis of Real Time and Embedded Systems (MARTE). However, there remains a lack of a similar treatment of SysML tailored towards precise and formal modeling in the systems engineering domain. This work addresses this gap by offering refined semantics for SysML akin to fUML and MARTE standards, aimed at primarily supporting the development of time based simulation models typically applied for model verification and validation in systems engineering. The result of this work offers an Executable Systems Modeling Language (ESysML) and a prototype modeling tool that serves as an implementation test bed for the ESysML language. Additionally a model development process is offered to guide user appropriation of the provided framework for model building

A framework to study the resilience of organizations: a case study of a nuclear emergency plan

El desarrollo de la resiliencia es un campo de investigación importante en ámbitos como el Management, la Ingeniería, la Psicología o la Ecología. La importancia del estudio de la resiliencia se ha visto desarrollada por el aumento tanto de desastres naturales como antropogénicos, así como por el desarrollo de conciencia acerca de sus efectos. Estas razones de peso han influido en que los Gobiernos estén invirtiendo recursos en la mejora de la resiliencia de organizaciones, infraestructuras, ciudades, individuos, etc. Sin embargo, a pesar de su importancia, el número de trabajos de investigación que se centran en el desarrollo de metodologías específicas para el diseño de organizaciones resilientes es reducido. El principal objetivo de esta investigación es mejorar este aspecto introduciendo un marco para el diseño de organizaciones resilientes. Para alcanzar este objetivo, se explica cómo emplear el Modelo de Sistemas Viables para el diseño de estas organizaciones. Nos hemos centrado en uno de los aspectos clave de la resiliencia: las comunicaciones. Para ello, se ha usado el caso de estudio del plan de emergencia de una central nuclear en España. Las comunicaciones en una organización pueden modelarse como un proceso de difusión en redes multiplex. Buscamos arquitecturas aplicables a nuestro caso de estudio. Sin embargo, no se ha encontrado ninguna que cumpliera con los requisitos que se necesitaban. Este hecho, nos ha llevado a proponer una nueva arquitectura, que además de permitir estudiar la difusión de información en una organización, permite estudiar otros procesos de difusión en redes multiplex.Departamento de Organización de Empresas y Comercialización e Investigación de MercadosDoctorado en Ingeniería Industria

Testability of a swarm robot using a system of systems approach and discrete event simulation

A simulation framework using discrete event system specification (DEVS) and data encoded with Extensible Markup Language (XML) is presented to support agent-in-the-loop (AIL) simulations for large, complex, and distributed systems. A System of Systems (SoS) approach organizes the complex systems hierarchically. AIL simulations provide a necessary step in maintaining model continuity methods to achieve a greater degree of accuracy in systems analysis. The proposed SoS approach enables the simulation and analysis of these independent and cooperative systems by concentrating on the data transferred among systems to achieve interoperability instead of requiring the software modeling of global state spaces. The information exchanged is wrapped in XML to facilitate system integration and interoperability. A Groundscout is deployed as a real agent working cooperatively with virtual agents to form a robotic swarm in an example threat detection scenario. This scenario demonstrates the AIL framework\u27s ability to successfully test a swarm robot for individual performance and swarm behavior. Results of the testing process show an increase of robot team size increases the rate of successfully investigating a threat while critical violations of the algorithm remained low despite packet loss

Remote software upload techniques in future vehicles and their performance analysis

Updating software in vehicle Electronic Control Units (ECUs) will become a mandatory requirement for a variety of reasons, for examples, to update/fix functionality of an existing system, add new functionality, remove software bugs and to cope up with ITS infrastructure. Software modules of advanced vehicles can be updated using Remote Software Upload (RSU) technique. The RSU employs infrastructure-based wireless communication technique where the software supplier sends the software to the targeted vehicle via a roadside Base Station (BS). However, security is critically important in RSU to avoid any disasters due to malfunctions of the vehicle or to protect the proprietary algorithms from hackers, competitors or people with malicious intent. In this thesis, a mechanism of secure software upload in advanced vehicles is presented which employs mutual authentication of the software provider and the vehicle using a pre-shared authentication key before sending the software. The software packets are sent encrypted with a secret key along with the Message Digest (MD). In order to increase the security level, it is proposed the vehicle to receive more than one copy of the software along with the MD in each copy. The vehicle will install the new software only when it receives more than one identical copies of the software. In order to validate the proposition, analytical expressions of average number of packet transmissions for successful software update is determined. Different cases are investigated depending on the vehicle\u27s buffer size and verification methods. The analytical and simulation results show that it is sufficient to send two copies of the software to the vehicle to thwart any security attack while uploading the software. The above mentioned unicast method for RSU is suitable when software needs to be uploaded to a single vehicle. Since multicasting is the most efficient method of group communication, updating software in an ECU of a large number of vehicles could benefit from it. However, like the unicast RSU, the security requirements of multicast communication, i.e., authenticity, confidentiality and integrity of the software transmitted and access control of the group members is challenging. In this thesis, an infrastructure-based mobile multicasting for RSU in vehicle ECUs is proposed where an ECU receives the software from a remote software distribution center using the road side BSs as gateways. The Vehicular Software Distribution Network (VSDN) is divided into small regions administered by a Regional Group Manager (RGM). Two multicast Group Key Management (GKM) techniques are proposed based on the degree of trust on the BSs named Fully-trusted (FT) and Semi-trusted (ST) systems. Analytical models are developed to find the multicast session establishment latency and handover latency for these two protocols. The average latency to perform mutual authentication of the software vendor and a vehicle, and to send the multicast session key by the software provider during multicast session initialization, and the handoff latency during multicast session is calculated. Analytical and simulation results show that the link establishment latency per vehicle of our proposed schemes is in the range of few seconds and the ST system requires few ms higher time than the FT system. The handoff latency is also in the range of few seconds and in some cases ST system requires less handoff time than the FT system. Thus, it is possible to build an efficient GKM protocol without putting too much trust on the BSs

Foundations of Multi-Paradigm Modelling for Cyber-Physical Systems

This open access book coherently gathers well-founded information on the fundamentals of and formalisms for modelling cyber-physical systems (CPS). Highlighting the cross-disciplinary nature of CPS modelling, it also serves as a bridge for anyone entering CPS from related areas of computer science or engineering. Truly complex, engineered systems—known as cyber-physical systems—that integrate physical, software, and network aspects are now on the rise. However, there is no unifying theory nor systematic design methods, techniques or tools for these systems. Individual (mechanical, electrical, network or software) engineering disciplines only offer partial solutions. A technique known as Multi-Paradigm Modelling has recently emerged suggesting to model every part and aspect of a system explicitly, at the most appropriate level(s) of abstraction, using the most appropriate modelling formalism(s), and then weaving the results together to form a representation of the system. If properly applied, it enables, among other global aspects, performance analysis, exhaustive simulation, and verification. This book is the first systematic attempt to bring together these formalisms for anyone starting in the field of CPS who seeks solid modelling foundations and a comprehensive introduction to the distinct existing techniques that are multi-paradigmatic. Though chiefly intended for master and post-graduate level students in computer science and engineering, it can also be used as a reference text for practitioners

ASAS: An Approach to Support Simulation of Smart Systems

Smart systems, such as smart cities, smart buildings, and autonomous cars, have recently gained increasing popularity. Each such system is essentially a System-of-Systems (SoS). SoS are dynamically established as alliances among independent and heterogeneous software systems to offer complex functionalities as a result of constituents interoperability. An SoS often supports critical application domains, and, as such, must be reliable. Many SoS have been specified and evaluated for their correct operation using static models. However, speciï¬cation languages have not supported to capture their inherent dynamic nature nor enabled to monitor their operation. The main contribution of this paper is to present ASAS, an approach to Automatically generate Simulation models for smArt Systems (ASAS) in order to support evaluation of their operation. In particular, our approach makes it possible to transform formal models of the SoS architecture (expressed in SoSADL) into simulation models (expressed in DEVS). We evaluated our approach by conducting two case studies using a flood monitoring system that is intended to be part of a smart city. Results indicate that ASAS can successfully generate functional simulations for the SoS operation, which in turn can enable to reason and monitor an SoS operation, taking into account its dynamic nature