Changwen Li,Joseph Sifakis,Rongjie Yan,Jian Zhang

DOI: https://doi.org/10.48550/arXiv.2405.16914

2024-05-27

Abstract:Simulation-based testing remains the main approach for validating Autonomous Driving Systems. We propose a rigorous test method based on breaking down scenarios into simple ones, taking into account the fact that autopilots make decisions according to traffic rules whose application depends on local knowledge and context. This leads us to consider the autopilot as a dynamic system receiving three different types of vistas as input, each characterizing a specific driving operation and a corresponding control policy. The test method for the considered vista types generates test cases for critical configurations that place the vehicle under test in critical situations characterized by the transition from cautious behavior to progression in order to clear an obstacle. The test cases thus generated are realistic, i.e., they determine the initial conditions from which safe control policies are possible, based on knowledge of the vehicle's dynamic characteristics. Constraint analysis identifies the most critical test cases, whose success implies the validity of less critical ones. Test coverage can therefore be greatly simplified. Critical test cases reveal major defects in Apollo, Autoware, and the Carla and LGSVL autopilots. Defects include accidents, software failures, and traffic rule violations that would be difficult to detect by random simulation, as the test cases lead to situations characterized by finely-tuned parameters of the vehicles involved, such as their relative position and speed. Our results corroborate real-life observations and confirm that autonomous driving systems still have a long way to go before offering acceptable safety guarantees.

Software Engineering

Stefan Marksteiner,Zhendong Ma

DOI: https://doi.org/10.48550/arXiv.1911.06589

2019-11-15

Cryptography and Security

Abstract:The advancing digitalization of vehicles and automotive systems bears many advantages for creating and enhancing comfort and safety-related systems ranging from drive-by-wire, inclusion of advanced displays, entertainment systems up to sophisticated driving assistance and autonomous driving. It, however, also contains the inherent risk of being used for purposes that are not intended for, raging from small non-authorized customizations to the possibility of full-scale cyberattacks that affect several vehicles to whole fleets and vital systems such as steering and engine control. To prevent such conditions and mitigate cybersecurity risks from affecting the safety of road traffic, testing cybersecurity must be adopted into automotive testing at a large scale. Currently, the manual penetration testing processes cannot uphold the increasing demand due to time and cost to test complex systems. We propose an approach for an architecture that (semi-)automates automotive cybersecurity test, allowing for more economic testing and therefore keeping up to the rising demand induced by new vehicle functions as well as the development towards connected and autonomous vehicles.

Lei Tang,Ruijie Wang,Zhanwen Liu,Yunji Liang,Yuanyuan Niu,Wei Zhu,Zongtao Duan

DOI: https://doi.org/10.1109/jiot.2024.3490598

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:The development of intelligent driving systems has drawn significant attention to enhancing the safety of autonomous vehicles and their intended functionality. Despite this, current accelerated testing approaches remain inadequate in assessing system reliability, as they fail to simulate scenarios involving collisions between vehicles and pedestrians and identify unknown risks. To address these limitations, scenario-based testing methods have been proposed, which seek to identify critical scenarios with a high frequency of exposure to safety risks. A comprehensive review of these methods is thus of paramount significance. In this paper, we provide a timely and systematic literature review of existing accelerated testing for autonomous vehicles. We propose a taxonomy of these methods, discuss each sub-field, and highlight open problems and future directions. Our objective is to provide a clear and concise overview of the state-of-the-art in this field and to offer insights into the effectiveness of scenario-based testing approaches. By doing so, we aim to facilitate the identification of critical scenarios and the assessment of risk exposure frequencies, which are essential for enhancing the safety and reliability of autonomous vehicles.

Alessia Knauss,Jan Schröder,Christian Berger,Henrik Eriksson

DOI: https://doi.org/10.48550/arXiv.1708.06988

2017-05-09

Abstract:The technology in the area of automated vehicles is gaining speed and promises many advantages. However, with the recent introduction of conditionally automated driving, we have also seen accidents. Test protocols for both, conditionally automated (e.g., on highways) and automated vehicles do not exist yet and leave researchers and practitioners with different challenges. For instance, current test procedures do not suffice for fully automated vehicles, which are supposed to be completely in charge for the driving task and have no driver as a back up. This paper presents current challenges of testing the functionality and safety of automated vehicles derived from conducting focus groups and interviews with 26 participants from five countries having a background related to testing automotive safety-related <a class="link-external link-http" href="http://topics.We" rel="external noopener nofollow">this http URL</a> provide an overview of the state-of-practice of testing active safety features as well as challenges that needs to be addressed in the future to ensure safety for automated vehicles. The major challenges identified through the interviews and focus groups, enriched by literature on this topic are related to 1) virtual testing and simulation, 2) safety, reliability, and quality, 3) sensors and sensor models, 4) required scenario complexity and amount of test cases, and 5) handover of responsibility between the driver and the vehicle.

Software Engineering,Artificial Intelligence,Robotics

Ankit Agrawal,Philipp Zech,Michael Vierhauser

2024-04-22

Abstract:Failures in safety-critical Cyber-Physical Systems (CPS), both software and hardware-related, can lead to severe incidents impacting physical infrastructure or even harming humans. As a result, extensive simulations and field tests need to be conducted, as part of the verification and validation of system requirements, to ensure system safety. However, current simulation and field testing practices, particularly in the domain of small Unmanned Aerial Systems (sUAS), are ad-hoc and lack a thorough, structured testing process. Furthermore, there is a dearth of standard processes and methodologies to inform the design of comprehensive simulation and field tests. This gap in the testing process leads to the deployment of sUAS applications that are: (a) tested in simulation environments which do not adequately capture the real-world complexity, such as environmental factors, due to a lack of tool support; (b) not subjected to a comprehensive range of scenarios during simulation testing to validate the system requirements, due to the absence of a process defining the relationship between requirements and simulation tests; and (c) not analyzed through standard safety analysis processes, because of missing traceability between simulation testing artifacts and safety analysis artifacts. To address these issues, we have developed an initial framework for validating CPS, specifically focusing on sUAS and robotic applications. We demonstrate the suitability of our framework by applying it to an example from the sUAS domain. Our preliminary results confirm the applicability of our framework. We conclude with a research roadmap to outline our next research goals along with our current proposal.

Software Engineering

Richard Chakra

DOI: https://doi.org/10.48550/arXiv.2210.10876

2022-10-20

Abstract:In the past two decades, autonomous driving has been catalyzed into reality by the growing capabilities of machine learning. This paradigm shift possesses significant potential to transform the future of mobility and reshape our society as a whole. With the recent advances in perception, planning, and control capabilities, autonomous driving technologies are being rolled out for public trials, yet we remain far from being able to rigorously ensure the resilient operations of these systems across the long-tailed nature of the driving environment. Given the limitations of real-world testing, autonomous vehicle simulation stands as the critical component in exploring the edge of autonomous driving capabilities, developing the robust behaviors required for successful real-world operation, and enabling the extraction of hidden risks from these complex systems prior to deployment. This paper presents the current state-of-the-art simulation frameworks and methodologies used in the development of autonomous driving systems, with a focus on outlining how simulation is used to build the resiliency required for real-world operation and the methods developed to bridge the gap between simulation and reality. A synthesis of the key challenges surrounding autonomous driving simulation is presented, specifically highlighting the opportunities to further advance the ability to continuously learn in simulation and effectively transfer the learning into the real-world - enabling autonomous vehicles to exit the guardrails of simulation and deliver robust and resilient operations at scale.

Robotics,Artificial Intelligence

Cumhur Erkan Tuncali,Georgios Fainekos,Hisahiro Ito,James Kapinski

DOI: https://doi.org/10.48550/arXiv.1804.06760

2019-01-08

Abstract:Many organizations are developing autonomous driving systems, which are expected to be deployed at a large scale in the near future. Despite this, there is a lack of agreement on appropriate methods to test, debug, and certify the performance of these systems. One of the main challenges is that many autonomous driving systems have machine learning components, such as deep neural networks, for which formal properties are difficult to characterize. We present a testing framework that is compatible with test case generation and automatic falsification methods, which are used to evaluate cyber-physical systems. We demonstrate how the framework can be used to evaluate closed-loop properties of an autonomous driving system model that includes the ML components, all within a virtual environment. We demonstrate how to use test case generation methods, such as covering arrays, as well as requirement falsification methods to automatically identify problematic test scenarios. The resulting framework can be used to increase the reliability of autonomous driving systems.

Systems and Control,Artificial Intelligence,Software Engineering

Qunying Song,Emelie Engström,Per Runeson

DOI: https://doi.org/10.48550/arXiv.2103.07157

2021-03-12

Abstract:Testing of autonomous systems is extremely important as many of them are both safety-critical and security-critical. The architecture and mechanism of such systems are fundamentally different from traditional control software, which appears to operate in more structured environments and are explicitly instructed according to the system design and implementation. To gain a better understanding of autonomous systems practice and facilitate research on testing of such systems, we conducted an exploratory study by synthesizing academic literature with a focus group discussion and interviews with industry practitioners. Based on thematic analysis of the data, we provide a conceptualization of autonomous systems, classifications of challenges and current practices as well as of available techniques and approaches for testing of autonomous systems. Our findings also indicate that more research efforts are required for testing of autonomous systems to improve both the quality and safety aspects of such systems.

Software Engineering

Daniel J. Fremont,Edward Kim,Yash Vardhan Pant,Sanjit A. Seshia,Atul Acharya,Xantha Bruso,Paul Wells,Steve Lemke,Qiang Lu,Shalin Mehta

DOI: https://doi.org/10.48550/arXiv.2003.07739

2020-07-12

Abstract:We present a new approach to automated scenario-based testing of the safety of autonomous vehicles, especially those using advanced artificial intelligence-based components, spanning both simulation-based evaluation as well as testing in the real world. Our approach is based on formal methods, combining formal specification of scenarios and safety properties, algorithmic test case generation using formal simulation, test case selection for track testing, executing test cases on the track, and analyzing the resulting data. Experiments with a real autonomous vehicle at an industrial testing facility support our hypotheses that (i) formal simulation can be effective at identifying test cases to run on the track, and (ii) the gap between simulated and real worlds can be systematically evaluated and bridged.

Systems and Control,Machine Learning,Logic in Computer Science,Software Engineering

Guannan Lou,Yao Deng,Xi Zheng,Mengshi Zhang,Tianyi Zhang

DOI: https://doi.org/10.48550/arXiv.2106.12233

2022-09-23

Abstract:Autonomous driving has shown great potential to reform modern transportation. Yet its reliability and safety have drawn a lot of attention and concerns. Compared with traditional software systems, autonomous driving systems (ADSs) often use deep neural networks in tandem with logic-based modules. This new paradigm poses unique challenges for software testing. Despite the recent development of new ADS testing techniques, it is not clear to what extent those techniques have addressed the needs of ADS practitioners. To fill this gap, we present the first comprehensive study to identify the current practices and needs of ADS testing. We conducted semi-structured interviews with developers from 10 autonomous driving companies and surveyed 100 developers who have worked on autonomous driving systems. A systematic analysis of the interview and survey data revealed 7 common practices and 4 emerging needs of autonomous driving testing. Through a comprehensive literature review, we developed a taxonomy of existing ADS testing techniques and analyzed the gap between ADS research and practitioners' needs. Finally, we proposed several future directions for SE researchers, such as developing test reduction techniques to accelerate simulation-based ADS testing.

Software Engineering

Ziyuan Zhong,Yun Tang,Yuan Zhou,Vania de Oliveira Neves,Yang Liu,Baishakhi Ray

DOI: https://doi.org/10.48550/arXiv.2112.00964

2021-12-02

Software Engineering

Abstract:Automated Driving Systems (ADSs) have seen rapid progress in recent years. To ensure the safety and reliability of these systems, extensive testings are being conducted before their future mass deployment. Testing the system on the road is the closest to real-world and desirable approach, but it is incredibly costly. Also, it is infeasible to cover rare corner cases using such real-world testing. Thus, a popular alternative is to evaluate an ADS's performance in some well-designed challenging scenarios, a.k.a. scenario-based testing. High-fidelity simulators have been widely used in this setting to maximize flexibility and convenience in testing what-if scenarios. Although many works have been proposed offering diverse frameworks/methods for testing specific systems, the comparisons and connections among these works are still missing. To bridge this gap, in this work, we provide a generic formulation of scenario-based testing in high-fidelity simulation and conduct a literature review on the existing works. We further compare them and present the open challenges as well as potential future research directions.

Xiaokun Zheng,Huawei Liang,Biao Yu,Bichun Li,Shaobo Wang,Zhilei Chen

DOI: https://doi.org/10.1109/icma49215.2020.9233535

2020-01-01

Abstract:As the development of the autonomous vehicles, the test and evaluation of the autonomy of autonomous vehicles has receiving considerable attentions from both academic and industrial research fields recently. How to rapid identify the performance boundaries of autonomous vehicles and then to accelerate the testing has been considered as one of the most important problems. Simulation test and challenging scenarios are considered as two effective ways to solve above problems. In this research, a framework of rapid generation of challenging simulation scenarios based on adversarial test was proposed. An optimization model based on newly developed indicators, i.e., safety, smoothness, sharpness and smartness, was proposed to assess the autonomy of autonomous vehicles. Due to the high dimensionality of the configuration space and computation complexity of the optimization problem, a quantum genetic algorithm was employed to solve the optimization problem owing to its high search ability and lower population size required. A simulation system based on Prescan, Carsim and Simulink was built to validate the effectiveness of the proposed method. Comparative experiments also were conducted to illustrate the efficiency of the proposed optimization algorithm.

Nico Weber,Christoph Thiem,Ulrich Konigorski

DOI: https://doi.org/10.48550/arXiv.2109.03648

2021-09-08

Abstract:While there was great progress regarding the technology and its implementation for vehicles equipped with automated driving systems (ADS), the problem of how to proof their safety as a necessary precondition prior to market launch remains unsolved. One promising solution are scenario-based test approaches; however, there is no commonly accepted way of how to systematically generate and extract the set of relevant scenarios to be tested to sufficiently capture the real-world traffic dynamics, especially for urban operational design domains. Within the scope of this paper, the overall concept of a novel simulation-based toolchain for the development and testing of ADS-equipped vehicles in urban environments is presented. Based on previous work regarding highway environments, the developed novel enhancements aim at empowering the toolchain to be able to deal with the increased complexity due to the more complex road networks with multi-modal interactions of various traffic participants. Based on derived requirements, a thorough explanation of different modules constituting the toolchain is given, showing first results and identified research gaps, respectively. A closer look is taken on two use cases: First, it is investigated whether the toolchain is capable to serve as synthetic data source within the development phase of ADS-equipped vehicles to enrich a scenario database in terms of extent, complexity and impacts of different what-if-scenarios for future mixed traffic. Second, it is analyzed how to combine the individual advantages of real recorded data and an agent-based simulation within a so-called adaptive replay-to-sim approach to support the testing phase of an ADS-equipped vehicle. The developed toolchain contributes to the overarching goal of a commonly accepted methodology for the validation and safety proof of ADS-equipped vehicles, especially in urban environments.

Software Engineering

Kesav Viswanadha,Francis Indaheng,Justin Wong,Edward Kim,Ellen Kalvan,Yash Pant,Daniel J. Fremont,Sanjit A. Seshia

DOI: https://doi.org/10.48550/arXiv.2108.13796

2021-08-20

Software Engineering

Abstract:This paper summarizes our formal approach to testing autonomous vehicles (AVs) in simulation for the IEEE AV Test Challenge. We demonstrate a systematic testing framework leveraging our previous work on formally-driven simulation for intelligent cyber-physical systems. First, to model and generate interactive scenarios involving multiple agents, we used Scenic, a probabilistic programming language for specifying scenarios. A Scenic program defines an abstract scenario as a distribution over configurations of physical objects and their behaviors over time. Sampling from an abstract scenario yields many different concrete scenarios which can be run as test cases for the AV. Starting from a Scenic program encoding an abstract driving scenario, we can use the VerifAI toolkit to search within the scenario for failure cases with respect to multiple AV evaluation metrics. We demonstrate the effectiveness of our testing framework by identifying concrete failure scenarios for an open-source autopilot, Apollo, starting from a variety of realistic traffic scenarios.

Rupak Majumdar,Aman Mathur,Marcus Pirron,Laura Stegner,Damien Zufferey

DOI: https://doi.org/10.1007/978-3-030-71500-7_9

2021-01-01

Abstract:Abstract Systematic testing of autonomous vehicles operating in complex real-world scenarios is a difficult and expensive problem. We present Paracosm , a framework for writing systematic test scenarios for autonomous driving simulations. Paracosm allows users to programmatically describe complex driving situations with specific features, e.g., road layouts and environmental conditions, as well as reactive temporal behaviors of other cars and pedestrians. A systematic exploration of the state space, both for visual features and for reactive interactions with the environment is made possible. We define a notion of test coverage for parameter configurations based on combinatorial testing and low dispersion sequences. Using fuzzing on parameter configurations, our automatic test generator can maximize coverage of various behaviors and find problematic cases. Through empirical evaluations, we demonstrate the capabilities of Paracosm in programmatically modeling parameterized test environments, and in finding problematic scenarios.

Nico Schick

2023-06-03

Abstract:This scientific publication focuses on the efficient application of boundary value analysis in the testing of corner cases for kinematic-based safety-critical driving scenarios within the domain of autonomous driving. Corner cases, which represent infrequent and crucial situations, present notable obstacles to the reliability and safety of autonomous driving systems. This paper emphasizes the significance of employing boundary value analysis, a systematic technique for identifying critical boundaries and values, to achieve comprehensive testing coverage. By identifying and testing extreme and boundary conditions, such as minimum distances, this publication aims to improve the performance and robustness of autonomous driving systems in safety-critical scenarios. The insights and methodologies presented in this paper can serve as a guide for researchers, developers, and regulators in effectively addressing the challenges posed by corner cases and ensuring the reliability and safety of autonomous driving systems under real-world driving conditions.

Robotics

Dhanoop Karunakaran,Julie Stephany Berrio Perez,Stewart Worrall

DOI: https://doi.org/10.3390/s24010108

2023-12-25

Abstract:In the past decade, automotive companies have invested significantly in autonomous vehicles (AV), but achieving widespread deployment remains a challenge in part due to the complexities of safety evaluation. Traditional distance-based testing has been shown to be expensive and time-consuming. To address this, experts have proposed scenario-based testing (SBT), which simulates detailed real-world driving scenarios to assess vehicle responses efficiently. This paper introduces a method that builds a parametric representation of a driving scenario using collected driving data. By adopting a data-driven approach, we are then able to generate realistic, concrete scenarios that correspond to high-risk situations. A reinforcement learning technique is used to identify the combination of parameter values that result in the failure of a system under test (SUT). The proposed method generates novel, simulated high-risk scenarios, thereby offering a meaningful and focused assessment of AV systems.

Linghao Zhang,Hui Sun,Xiaoxing Ma,Chang Xu,Jian Lu

DOI: https://doi.org/10.1145/2532443.2532450

2013-01-01

Abstract:Cyber-physical systems are systems that integrate the digital computational world with the real physical world, often using sensors and actuators as interfaces. There exist many application domains of cyber-physical systems such as autonomous systems, process control systems, robotic systems, and context-aware systems. The physical world is a complex and continuous world that changes in real-time while the computational world is a simplified and discrete world that often stores a delayed, likely inaccurate image of the physical world using sensory data. The mismatch between these two worlds poses unique challenges of developing software for cyber-physical systems. In this paper, we mainly (1) illustrate this mismatch problem by presenting difficulties that we faced during two projects of developing software for cyber-physical systems: the self-adaptive robot car project and iSpace project; (2) systematically analyse the reason for the mismatch problem based on our first-hand experiences; (3) summarize a general methodology on how to partly bridge the gap between the two mismatched worlds to better develop software for cyber-physical systems based on the knowledge learned from the two projects. We expect that these experiences can help others in better design and develop cyber-physical systems and can be used to explore new techniques (such as new testing techniques) to improve the quality of cyber-physical systems.

Mithila Sivakumar,Alvine B. Belle,Kimya Khakzad Shahandashti,Oluwafemi Odu,Hadi Hemmati,Segla Kpodjedo,Song Wang,Opeyemi O. Adesina

2024-01-30

Abstract:The execution failure of cyber-physical systems (e.g., autonomous driving systems, unmanned aerial systems, and robotic systems) could result in the loss of life, severe injuries, large-scale environmental damage, property destruction, and major economic loss. Hence, such systems usually require a strong justification that they will effectively support critical requirements (e.g., safety, security, and reliability) for which they were designed. Thus, it is often mandatory to develop compelling assurance cases to support that justification and allow regulatory bodies to certify such systems. In such contexts, detecting assurance deficits, relying on patterns to improve the structure of assurance cases, improving existing assurance case notations, and (semi-)automating the generation of assurance cases are key to develop compelling assurance cases and foster consumer acceptance. We therefore explore challenges related to such assurance enablers and outline some potential directions that could be explored to tackle them.

Software Engineering,Artificial Intelligence

Ferdinand Mütsch,Helen Gremmelmaier,Nicolas Becker,Daniel Bogdoll,Marc René Zofka,J. Marius Zöllner

DOI: https://doi.org/10.48550/arXiv.2305.13960

2023-05-23

Computer Vision and Pattern Recognition

Abstract:Simulation is an integral part in the process of developing autonomous vehicles and advantageous for training, validation, and verification of driving functions. Even though simulations come with a series of benefits compared to real-world experiments, various challenges still prevent virtual testing from entirely replacing physical test-drives. Our work provides an overview of these challenges with regard to different aspects and types of simulation and subsumes current trends to overcome them. We cover aspects around perception-, behavior- and content-realism as well as general hurdles in the domain of simulation. Among others, we observe a trend of data-driven, generative approaches and high-fidelity data synthesis to increasingly replace model-based simulation.