1,040 research outputs found
Multilevel Contracts for Trusted Components
This article contributes to the design and the verification of trusted
components and services. The contracts are declined at several levels to cover
then different facets, such as component consistency, compatibility or
correctness. The article introduces multilevel contracts and a
design+verification process for handling and analysing these contracts in
component models. The approach is implemented with the COSTO platform that
supports the Kmelia component model. A case study illustrates the overall
approach.Comment: In Proceedings WCSI 2010, arXiv:1010.233
Symbolic Algorithms for Graphs and Markov Decision Processes with Fairness Objectives
Given a model and a specification, the fundamental model-checking problem
asks for algorithmic verification of whether the model satisfies the
specification. We consider graphs and Markov decision processes (MDPs), which
are fundamental models for reactive systems. One of the very basic
specifications that arise in verification of reactive systems is the strong
fairness (aka Streett) objective. Given different types of requests and
corresponding grants, the objective requires that for each type, if the request
event happens infinitely often, then the corresponding grant event must also
happen infinitely often. All -regular objectives can be expressed as
Streett objectives and hence they are canonical in verification. To handle the
state-space explosion, symbolic algorithms are required that operate on a
succinct implicit representation of the system rather than explicitly accessing
the system. While explicit algorithms for graphs and MDPs with Streett
objectives have been widely studied, there has been no improvement of the basic
symbolic algorithms. The worst-case numbers of symbolic steps required for the
basic symbolic algorithms are as follows: quadratic for graphs and cubic for
MDPs. In this work we present the first sub-quadratic symbolic algorithm for
graphs with Streett objectives, and our algorithm is sub-quadratic even for
MDPs. Based on our algorithmic insights we present an implementation of the new
symbolic approach and show that it improves the existing approach on several
academic benchmark examples.Comment: Full version of the paper. To appear in CAV 201
Debugging of Web Applications with Web-TLR
Web-TLR is a Web verification engine that is based on the well-established
Rewriting Logic--Maude/LTLR tandem for Web system specification and
model-checking. In Web-TLR, Web applications are expressed as rewrite theories
that can be formally verified by using the Maude built-in LTLR model-checker.
Whenever a property is refuted, a counterexample trace is delivered that
reveals an undesired, erroneous navigation sequence. Unfortunately, the
analysis (or even the simple inspection) of such counterexamples may be
unfeasible because of the size and complexity of the traces under examination.
In this paper, we endow Web-TLR with a new Web debugging facility that supports
the efficient manipulation of counterexample traces. This facility is based on
a backward trace-slicing technique for rewriting logic theories that allows the
pieces of information that we are interested to be traced back through inverse
rewrite sequences. The slicing process drastically simplifies the computation
trace by dropping useless data that do not influence the final result. By using
this facility, the Web engineer can focus on the relevant fragments of the
failing application, which greatly reduces the manual debugging effort and also
decreases the number of iterative verifications.Comment: In Proceedings WWV 2011, arXiv:1108.208
Lazy Probabilistic Model Checking without Determinisation
The bottleneck in the quantitative analysis of Markov chains and Markov
decision processes against specifications given in LTL or as some form of
nondeterministic B\"uchi automata is the inclusion of a determinisation step of
the automaton under consideration. In this paper, we show that full
determinisation can be avoided: subset and breakpoint constructions suffice. We
have implemented our approach---both explicit and symbolic versions---in a
prototype tool. Our experiments show that our prototype can compete with mature
tools like PRISM.Comment: 38 pages. Updated version for introducing the following changes: -
general improvement on paper presentation; - extension of the approach to
avoid full determinisation; - added proofs for such an extension; - added
case studies; - updated old case studies to reflect the added extensio
Symbolic Model Checking and Safety Assessment of Altarica models
Altarica is a language used to describe critical systems. In this paper we present a novel approach to the analysis of Altarica models, based on a translation into an extended version of NuSMV. This approach opens up the possibility to carry out functional verification and safety assessment with symbolic techniques. An experimental evaluation on a set of industrial case studies demonstrates the advantages of the approach over currently available tools.
Value Iteration for Long-run Average Reward in Markov Decision Processes
Markov decision processes (MDPs) are standard models for probabilistic
systems with non-deterministic behaviours. Long-run average rewards provide a
mathematically elegant formalism for expressing long term performance. Value
iteration (VI) is one of the simplest and most efficient algorithmic approaches
to MDPs with other properties, such as reachability objectives. Unfortunately,
a naive extension of VI does not work for MDPs with long-run average rewards,
as there is no known stopping criterion. In this work our contributions are
threefold. (1) We refute a conjecture related to stopping criteria for MDPs
with long-run average rewards. (2) We present two practical algorithms for MDPs
with long-run average rewards based on VI. First, we show that a combination of
applying VI locally for each maximal end-component (MEC) and VI for
reachability objectives can provide approximation guarantees. Second, extending
the above approach with a simulation-guided on-demand variant of VI, we present
an anytime algorithm that is able to deal with very large models. (3) Finally,
we present experimental results showing that our methods significantly
outperform the standard approaches on several benchmarks
SPaCIFY: a Formal Model-Driven Engineering for Spacecraft On-Board Software
International audienceThe aim of this article is to present a model- driven approach proposed by the SPaCIFY project for spacecraft on-board software development. This ap- proach is based on a formal globally asynchronous lo- cally synchronous language called Synoptic, and on a set of transformations allowing code generation and model verification
Model Checking for Decision Making System of Long Endurance Unmanned Surface Vehicle
This work aims to develop a model checking method to verify the decision
making system of Unmanned Surface Vehicle (USV) in a long range surveillance
mission. The scenario in this work was captured from a long endurance USV
surveillance mission using C-Enduro, an USV manufactured by ASV Ltd. The
C-Enduro USV may encounter multiple non-deterministic and concurrent problems
including lost communication signals, collision risk and malfunction. The
vehicle is designed to utilise multiple energy sources from solar panel, wind
turbine and diesel generator. The energy state can be affected by the solar
irradiance condition, wind condition, states of the diesel generator, sea
current condition and states of the USV. In this research, the states and the
interactive relations between environmental uncertainties, sensors, USV energy
system, USV and Ground Control Station (GCS) decision making systems are
abstracted and modelled successfully using Kripke models. The desirable
properties to be verified are expressed using temporal logic statement and
finally the safety properties and the long endurance properties are verified
using the model checker MCMAS, a model checker for multi-agent systems. The
verification results are analyzed and show the feasibility of applying model
checking method to retrospect the desirable property of the USV decision making
system. This method could assist researcher to identify potential design error
of decision making system in advance
- …