Integrating automated verification into interactive systems development

Our field of research is the application of automated reasoning techniques during interactor based interactive systems development. The aim being to ensure that the developed systems embody appropriate properties and principles. In this report we identify some of the pitfalls of current approaches and propose a new way to integrate verification into interactive systems development.Fundação para a Ciência e a Tecnologia - PRAXIS XXI/BD/9562/96

Coalgebraic Methods for Object-Oriented Specification

This thesis is about coalgebraic methods in software specification and verification. It extends known techniques of coalgebraic specification to a more general level to pave the way for real world applications of software verification. There are two main contributions of the present thesis: 1. Chapter 3 proposes a generalisation of the familiar notion of coalgebra such that classes containing methods with arbitrary types (including binary methods) can be modelled with these generalised coalgebras. 2. Chapter 4 presents the specification language CCSL (short for Coalgebraic Class Specification Language), its syntax, its semantics, and a prototype compiler that translates CCSL into higher-order logic.Die Dissertation beschreibt coalgebraische Mittel und Methoden zur Softwarespezifikation und -verifikation. Die Ergebnisse dieser Dissertation vereinfachen die Anwendung coalgebraischer Spezifikations- und Verifikationstechniken und erweitern deren Anwendbarkeit. Damit werden Softwareverifikation im Allgemeinen und im Besonderen coalgebraische Methoden zur Softwareverifikation der praktischen Anwendbarkeit ein Stück nähergebracht. Diese Dissertation enthält zwei wesentliche Beiträge: 1. Im Kapitel 3 wird eine Erweiterung des klassischen Begriffs der Coalgebra vorgestellt. Diese Erweiterung erlaubt die coalgebraische Modellierung von Klassenschnittstellen mit beliebigen Methodentypen (insbesondere mit binären Methoden). 2. Im Kapitel 4 wird die coalgebraische Spezifikationssprache CCSL (Coalgebraic Class Specification Language) vorgestellt. Die Bescheibung umfasst Syntax, Semantik und einen Prototypcompiler, der CCSL Spezifikationen in Logik höherer Ordnung (passend für die Theorembeweiser PVS und Isabelle/HOL) übersetzt

FOAL 2004 Proceedings: Foundations of Aspect-Oriented Languages Workshop at AOSD 2004

Aspect-oriented programming is a paradigm in software engineering and FOAL logos courtesy of Luca Cardelli programming languages that promises better support for separation of concerns. The third Foundations of Aspect-Oriented Languages (FOAL) workshop was held at the Third International Conference on Aspect-Oriented Software Development in Lancaster, UK, on March 23, 2004. This workshop was designed to be a forum for research in formal foundations of aspect-oriented programming languages. The call for papers announced the areas of interest for FOAL as including, but not limited to: semantics of aspect-oriented languages, specification and verification for such languages, type systems, static analysis, theory of testing, theory of aspect composition, and theory of aspect translation (compilation) and rewriting. The call for papers welcomed all theoretical and foundational studies of foundations of aspect-oriented languages. The goals of this FOAL workshop were to: � Make progress on the foundations of aspect-oriented programming languages. � Exchange ideas about semantics and formal methods for aspect-oriented programming languages. � Foster interest within the programming language theory and types communities in aspect-oriented programming languages. � Foster interest within the formal methods community in aspect-oriented programming and the problems of reasoning about aspect-oriented programs. The papers at the workshop, which are included in the proceedings, were selected frompapers submitted by researchers worldwide. Due to time limitations at the workshop, not all of the submitted papers were selected for presentation. FOAL also welcomed an invited talk by James Riely (DePaul University), the abstract of which is included below. The workshop was organized by Gary T. Leavens (Iowa State University), Ralf L?ammel (CWI and Vrije Universiteit, Amsterdam), and Curtis Clifton (Iowa State University). The program committee was chaired by L?ammel and included L?ammel, Leavens, Clifton, Lodewijk Bergmans (University of Twente), John Tang Boyland (University of Wisconsin, Milwaukee), William R. Cook (University of Texas at Austin), Tzilla Elrad (Illinois Institute of Technology), Kathleen Fisher (AT&T Labs�Research), Radha Jagadeesan (DePaul University), Shmuel Katz (Technion�Israel Institute of Technology), Shriram Krishnamurthi (Brown University), Mira Mezini (Darmstadt University of Technology), Todd Millstein (University of California, Los Angeles), Benjamin C. Pierce (University of Pennsylvania), Henny Sipma (Stanford University), Mario S?udholt ( ?Ecole des Mines de Nantes), and David Walker (Princeton University). We thank the organizers of AOSD 2004 for hosting the workshop

Mechanical verification of concurrency control and recovery protocols

The thesis concerns the formal specification and mechanized verification of concurrency control and recovery protocols for distributed databases. Such protocols are needed for many modern application such as banking and are often used in safety-critical applications. Therefore it is very important to guarantee their correctness. One method to increase the confidence in the correctness of a protocol is its formal verification. In this thesis a number of important concurrency control and recovery protocolshave been specified in the language of the verification system PVS. The interactive theorem prover of PVS has been used to verify their correctness. In the first part of the thesis, the notions of conflict and view serializability have been formalized. A method to verify conflict serializability has been formulated in PVS and proved to be sound and complete with the proof checker of PVS. The method has been used to verify a few basic protocols. Next we present a systematic way to extend these protocols with new actions and control information. We show that if such an extension satisfies a few simple correctness conditions, the new protocol is serializable by construction. In the existing literature, the protocols for concurrency control, single-site recovery and distributed recovery are often studied in isolation, making strong assumptions about each other. The problem of combining them in a formal way is largely ignored. To study the formal verification of combined protocols, we specify in the second part of the thesis a transaction processing system, integrating strict two-phase locking, undo/redo recovery and two-phase commit. In our method, the locking and undo/redo mechanism at distributed sites is defined by state machines, whereas the interaction between sites according to the two-phase commit protocol is specified by assertions. We proved with PVS that our system satisfies atomicity, durability and serializability properties. The final part of the thesis presents the formal verification of atomic commitment protocols for distributed recovery. In particular, we consider the non-blocking protocol of Babaoglu and Toueg, combined with our own termination protocol for recovered participants. A new method to specify such protocols has been developed. In this method, timed state machines are used to specify the processes, whereas the communication mechanism between processes is defined using assertions. All safety and liveness properties, including a new improved termination property, have been proved with the interactive proof checker of PVS.We also show that the original termination protocol of Babaoglu and Toueg has an error

DEVELOPMENT OF A SIMPLIFIED, MASS PRODUCIBLE HYBRIDIZED AMBIENT, LOW FREQUENCY, LOW INTENSITY VIBRATION ENERGY SCAVENGER (HALF-LIVES)

Scavenging energy from environmental sources is an active area of research to enable remote sensing and microsystems applications. Furthermore, as energy demands soar, there is a significant need to explore new sources and curb waste. Vibration energy scavenging is one environmental source for remote applications and a candidate for recouping energy wasted by mechanical sources that can be harnessed to monitor and optimize operation of critical infrastructure (e.g. Smart Grid). Current vibration scavengers are limited by volume and ancillary requirements for operation such as control circuitry overhead and battery sources. This dissertation, for the first time, reports a mass producible hybrid energy scavenger system that employs both piezoelectric and electrostatic transduction on a common MEMS device. The piezoelectric component provides an inherent feedback signal and pre-charge source that enables electrostatic scavenging operation while the electrostatic device provides the proof mass that enables low frequency operation. The piezoelectric beam forms the spring of the resonant mass-spring transducer for converting vibration excitation into an AC electrical output. A serially poled, composite shim, piezoelectric bimorph produces the highest output rectified voltage of over 3.3V and power output of 145uW using ¼ g vibration acceleration at 120Hz. Considering solely the volume of the piezoelectric beam and tungsten proof mass, the volume is 0.054cm3, resulting in a power density of 2.68mW/cm3. Incorporation of a simple parallel plate structure that provides the proof mass for low frequency resonant operation in addition to cogeneration via electrostatic energy scavenging provides a 19.82 to 35.29 percent increase in voltage beyond the piezoelectric generated DC rails. This corresponds to approximately 2.1nW additional power from the electrostatic scavenger component and demonstrates the first instance of hybrid energy scavenging using both piezoelectric and synchronous electrostatic transduction. Furthermore, it provides a complete system architecture and development platform for additional enhancements that will enable in excess of 100uW additional power from the electrostatic scavenger

Efficient computer-aided verification of parallel and distributed software systems

The society is becoming increasingly dependent on applications of distributed software systems, such as controller systems and wireless telecommunications. It is very difficult to guarantee the correct operation of this kind of systems with traditional software quality assurance methods, such as code reviews and testing. Formal methods, which are based on mathematical theories, have been suggested as a solution. Unfortunately, the vast complexity of the systems and the lack of competent personnel have prevented the adoption of sophisticated methods, such as theorem proving. Computerised tools for verifying finite state asynchronous systems exist, and they been successful on locating errors in relatively small software systems. However, a direct translation of software to low-level formal models may lead to unmanageably large models or complex behaviour. Abstract models and algorithms that operate on compact high-level designs are needed to analyse larger systems. This work introduces modelling formalisms and verification methods of distributed systems, presents efficient algorithms for verifying high-level models of large software systems, including an automated method for abstracting unneeded details from systems consisting of loosely connected components, and shows how the methods can be applied in the software development industry.reviewe

Optimisation, Optimal Control and Nonlinear Dynamics in Electrical Power, Energy Storage and Renewable Energy Systems

The electrical power system is undergoing a revolution enabled by advances in telecommunications, computer hardware and software, measurement, metering systems, IoT, and power electronics. Furthermore, the increasing integration of intermittent renewable energy sources, energy storage devices, and electric vehicles and the drive for energy efficiency have pushed power systems to modernise and adopt new technologies. The resulting smart grid is characterised, in part, by a bi-directional flow of energy and information. The evolution of the power grid, as well as its interconnection with energy storage systems and renewable energy sources, has created new opportunities for optimising not only their techno-economic aspects at the planning stages but also their control and operation. However, new challenges emerge in the optimization of these systems due to their complexity and nonlinear dynamic behaviour as well as the uncertainties involved.This volume is a selection of 20 papers carefully made by the editors from the MDPI topic “Optimisation, Optimal Control and Nonlinear Dynamics in Electrical Power, Energy Storage and Renewable Energy Systems”, which was closed in April 2022. The selected papers address the above challenges and exemplify the significant benefits that optimisation and nonlinear control techniques can bring to modern power and energy systems

Power Quality

Electrical power is becoming one of the most dominant factors in our society. Power generation, transmission, distribution and usage are undergoing signifi cant changes that will aff ect the electrical quality and performance needs of our 21st century industry. One major aspect of electrical power is its quality and stability – or so called Power Quality. The view on Power Quality did change over the past few years. It seems that Power Quality is becoming a more important term in the academic world dealing with electrical power, and it is becoming more visible in all areas of commerce and industry, because of the ever increasing industry automation using sensitive electrical equipment on one hand and due to the dramatic change of our global electrical infrastructure on the other. For the past century, grid stability was maintained with a limited amount of major generators that have a large amount of rotational inertia. And the rate of change of phase angle is slow. Unfortunately, this does not work anymore with renewable energy sources adding their share to the grid like wind turbines or PV modules. Although the basic idea to use renewable energies is great and will be our path into the next century, it comes with a curse for the power grid as power fl ow stability will suff er. It is not only the source side that is about to change. We have also seen signifi cant changes on the load side as well. Industry is using machines and electrical products such as AC drives or PLCs that are sensitive to the slightest change of power quality, and we at home use more and more electrical products with switching power supplies or starting to plug in our electric cars to charge batt eries. In addition, many of us have begun installing our own distributed generation systems on our rooft ops using the latest solar panels. So we did look for a way to address this severe impact on our distribution network. To match supply and demand, we are about to create a new, intelligent and self-healing electric power infrastructure. The Smart Grid. The basic idea is to maintain the necessary balance between generators and loads on a grid. In other words, to make sure we have a good grid balance at all times. But the key question that you should ask yourself is: Does it also improve Power Quality? Probably not! Further on, the way how Power Quality is measured is going to be changed. Traditionally, each country had its own Power Quality standards and defi ned its own power quality instrument requirements. But more and more international harmonization efforts can be seen. Such as IEC 61000-4-30, which is an excellent standard that ensures that all compliant power quality instruments, regardless of manufacturer, will produce of measurement instruments so that they can also be used in volume applications and even directly embedded into sensitive loads. But work still has to be done. We still use Power Quality standards that have been writt en decades ago and don’t match today’s technology any more, such as fl icker standards that use parameters that have been defi ned by the behavior of 60-watt incandescent light bulbs, which are becoming extinct. Almost all experts are in agreement - although we will see an improvement in metering and control of the power fl ow, Power Quality will suff er. This book will give an overview of how power quality might impact our lives today and tomorrow, introduce new ways to monitor power quality and inform us about interesting possibilities to mitigate power quality problems. Regardless of any enhancements of the power grid, “Power Quality is just compatibility” like my good old friend and teacher Alex McEachern used to say. Power Quality will always remain an economic compromise between supply and load. The power available on the grid must be suffi ciently clean for the loads to operate correctly, and the loads must be suffi ciently strong to tolerate normal disturbances on the grid

Multi-objective optimal power resources planning of microgrids with high penetration of intermittent nature generation and modern storage systems

Microgrids are self-controlled entities at the distribution voltage level that interconnect distributed energy resources (DERs) with loads and can be operated in either grid-connected or islanded mode. This type of active distribution network has evolved as a powerful concept to guarantee a reliable, efficient and sustainable electricity delivery as part of the power systems of the future. However, benefits of microgrids, such as the ancillary services (AS) provision, are not possible to be properly exploited before traditional planning methodologies are updated. Therefore, in this doctoral thesis, a named Probabilistic Multi-objective Microgrid Planning methodology with two versions, POMMP and POMMP2, is proposed for effective decision-making on the optimal allocation of DERs and topology definition under the paradigm of microgrids with capacity for providing AS to the main power grid. The methodologies are defined to consider a mixed generation matrix with dispatchable and non-dispatchable technologies, as well as, distributed energy storage systems and both conventional and power-electronic-based operation configurations. The planning methodologies are formulated based on a so-called true-multi-objective optimization problem with a configurable set of three objective functions. Accordingly, the capacity to supply AS is optimally enhanced with the maximization of the available active residual power in grid-connected operation mode; the capital, maintenance, and operation costs of microgrid are minimized, while the revenues from the services provision and participation on liberalized markets are maximized in a cost function; and the active power losses in microgrid´s operation are minimized. Furthermore, a probabilistic technique based on the simulation of parameters from their probabilistic density function and Monte Carlo Simulation is adopted to model the stochastic behavior of the non-dispatchable renewable generation resources and load demand as the main sources of uncertainties in the planning of microgrids. Additionally, POMMP2 methodology particularly enhances the proposal in POMMP by modifying the methodology and optimization model to consider the optimal planning of microgrid's topology with the allocation of DERs simultaneously. In this case, the concept of networked microgrid is contemplated, and a novel holistic approach is proposed to include a multilevel graph-partitioning technique and subsequent iterative heuristic optimization for the optimal formation of clusters in the topology planning and DERs allocation process. This microgrid planning problem leads to a complex non-convex mixed-integer nonlinear optimization problem with multiple contradictory objective functions, decision variables, and diverse constraint conditions. Accordingly, the optimization problem in the proposed POMMP/POMMP2 methodologies is conceived to be solved using multi-objective population-based metaheuristics, which gives rise to the adaptation and performance assessment of two existing optimization algorithms, the well-known Non-dominated Sorting Genetic Algorithm II (NSGAII) and the Multi-objective Evolutionary Algorithm Based on Decomposition (MOEA/D). Furthermore, the analytic hierarchy process (AHP) is tested and proposed for the multi-criteria decision-making in the last step of the planning methodologies. The POMMP and POMMP2 methodologies are tested in a 69-bus and 37-bus medium voltage distribution network, respectively. Results show the benefits of an a posteriori decision making with the true-multi-objective approach as well as a time-dependent planning methodology. Furthermore, the results from a more comprehensive planning strategy in POMMP2 revealed the benefits of a holistic planning methodology, where different planning tasks are optimally and simultaneously addressed to offer better planning results.Las microrredes son entes autocontrolados que operan en media o baja tensión, interconectan REDs con las cargas y pueden ser operadas ya sea en modo conectado a la red o modo isla. Este tipo de red activa de distribución ha evolucionado como un concepto poderoso para garantizar un suministro de electricidad fiable, eficiente y sostenible como parte de los sistemas de energía del futuro. Sin embargo, para explotar los beneficios potenciales de las microrredes, tales como la prestación de servicios auxiliares (AS), primero es necesario formular apropiadas metodologías de planificación. En este sentido, en esta tesis doctoral, una metodología probabilística de planificación de microrredes con dos versiones, POMMP y POMMP2, es propuesta para la toma de decisiones efectiva en la asignación óptima de DERs y la definición de la topología de microrredes bajo el paradigma de una microrred con capacidad para proporcionar AS a la red principal. Las metodologías se definen para considerar una matriz de generación mixta con tecnologías despachables y no despachables, así como sistemas distribuidos para el almacenamiento de energía y la interconnección de recursos con o sin una interfaz basada en dispositivos de electrónica de potencia. Las metodologías de planificación se formulan sobre la base de un problema de optimización multiobjetivo verdadero con un conjunto configurable de tres funciones objetivo. Con estos se pretende optimizar la capacidad de suministro de AS con la maximización de la potencia activa residual disponible en modo conectado a la red; la minimización de los costos de capital, mantenimiento y funcionamiento de la microrred al tiempo que se maximizan los ingresos procedentes de la prestación de servicios y la participación en los mercados liberalizados; y la minimización de las pérdidas de energía activa en el funcionamiento de la microrred. Además, se adopta una técnica probabilística basada en la simulación de parámetros a partir de la función de densidad de probabilidad y el método de Monte Carlo para modelar el comportamiento estocástico de los recursos de generación renovable no despachables. Adicionalmente,la POMMP2 mejora la propuesta de POMMP modificando la metodología y el modelo de optimización para considerar simultáneamente la planificación óptima de la topología de la microrred con la asignación de DERs. Así pues, se considera el concepto de microrredes interconectadas en red y se propone un novedoso enfoque holístico que incluye una técnica de partición de gráficos multinivel y optimización iterativa heurística para la formación óptima de clusters para el planeamiento de la topología y asignación de DERs. Este problema de planificación de microrredes da lugar a un complejo problema de optimización mixto, no lineal, no convexos y con múltiples funciones objetivo contradictorias, variables de decisión y diversas condiciones de restricción. Por consiguiente, el problema de optimización en las metodologías POMMP/POMMP2 se concibe para ser resuelto utilizando técnicas multiobjetivo de optimización metaheurísticas basadas en población, lo cual da lugar a la adaptación y evaluación del rendimiento de dos algoritmos de optimización existentes, el conocido Non-dominated Sorting Genetic Algorithm II (NSGAII) y el Evolutionary Algorithm Based on Decomposition (MOEA/D). Además, se ha probado y propuesto el uso de la técnica de proceso analítico jerárquico (AHP) para la toma de decisiones multicriterio en el último paso de las metodologías de planificación. Las metodologías POMMP/POMMP2 son probadas en una red de distribución de media tensión de 69 y 37 buses, respectivamente. Los resultados muestran los beneficios de la toma de decisiones a posteriori con el enfoque de optimización multiobjetivo verdadero, así como una metodología de planificación dependiente del tiempo. Además, los resultados de la estrategia de planificación con POMMP2 revelan los beneficios de una metodología de planificación holística, en la que las diferentes tareas de planificación se abordan de manera óptima y simultánea para ofrecer mejores resultados de planificación.Línea de investigación: Planificación de redes inteligentes We thank to the Administrative Department of Science, Technology and Innovation - Colciencias, Colombia, for the granted National Doctoral funding program - 647Doctorad