Yong Huang,Lingdi Ping,Shanping Li,Xuezeng Pan

DOI: https://doi.org/10.4304/jsw.4.1.90-97

2009-01-01

Journal of Software

Abstract:Real-time information flow security properties such as timed noninterference provide assurances that some time dependent information flows may not become possible. However, with transitive noninterference formulation, it is difficult to deal with intransitive flow policies like channel control and secure downgrading of information with time constraints. In this paper, we introduce the notion of trust domain into Timed Secure Process Algebra (tSPA), extending intransitive noninterference to real-time systems. Based on weak timed bisimulation equivalence, some security properties for intransitive flow are reformulated in a realtime setting, in particular one property which is persistent, meaning that if a system is secure then all of its reachable states are secure too. Furthermore, we prove that such persistent intransitive timed property is compositional, which is thus possible to alleviate the state space explosion problem caused by the interleaving of all the possible executions of parallel processes. Finally, we provide one case study showing that it is possible to model and analyze the real-time system through our approach.

Matthew J. Williams,Mirco Musolesi

DOI: https://doi.org/10.1098/rsos.160196

IF: 3.5

2016-06-01

Royal Society Open Science

Abstract:Recent advances in spatial and temporal networks have enabled researchers to more-accurately describe many real-world systems such as urban transport networks. In this paper, we study the response of real-world spatio-temporal networks to random error and systematic attack, taking a unified view of their spatial and temporal performance. We propose a model of spatio-temporal paths in time-varying spatially embedded networks which captures the property that, as in many real-world systems, interaction between nodes is non-instantaneous and governed by the space in which they are embedded. Through numerical experiments on three real-world urban transport systems, we study the effect of node failure on a network's topological, temporal and spatial structure. We also demonstrate the broader applicability of this framework to three other classes of network. To identify weaknesses specific to the behaviour of a spatio-temporal system, we introduce centrality measures that evaluate the importance of a node as a structural bridge and its role in supporting spatio-temporally efficient flows through the network. This exposes the complex nature of fragility in a spatio-temporal system, showing that there is a variety of failure modes when a network is subject to systematic attacks.

multidisciplinary sciences

Bernd Finkbeiner,Manuel Gieseking,Jesko Hecking-Harbusch,Ernst-Rüdiger Olderog

DOI: https://doi.org/10.48550/arXiv.1907.11061

2019-11-14

Abstract:We present a model checking approach for the verification of data flow correctness in networks during concurrent updates of the network configuration. This verification problem is of great importance for software-defined networking (SDN), where errors can lead to packet loss, black holes, and security violations. Our approach is based on a specification of temporal properties of individual data flows, such as the requirement that the flow is free of cycles. We check whether these properties are simultaneously satisfied for all active data flows while the network configuration is updated. To represent the behavior of the concurrent network controllers and the resulting evolutions of the configurations, we introduce an extension of Petri nets with a transit relation, which characterizes the data flow caused by each transition of the Petri net. For safe Petri nets with transits, we reduce the verification of temporal flow properties to a circuit model checking problem that can be solved with effective verification techniques like IC3, interpolation, and bounded model checking. We report on encouraging experiments with a prototype implementation based on the hardware model checker ABC.

Logic in Computer Science

Fei Chen,Mayank Sewlia,Dimos V. Dimarogonas

DOI: https://doi.org/10.1016/j.arcontrol.2024.100946

IF: 9.4

2024-01-01

Annual Reviews in Control

Abstract:A current trend in research on multi-agent control systems is to consider high-level task specifications that go beyond traditional control objectives and take into account the heterogeneity of each agent in the system, i.e., the different capabilities of the agents in terms of actuation, sensing, communication and computation. This article provides an overview of our work on the problem of control of heterogeneous multi-agent systems under both spatial and temporal constraints as well as our perspective on the challenges and open problems associated with the consideration of such spatiotemporal constraints. Initially, we review a set of control strategies introduced by the authors addressing the satisfaction of cooperative tasks such as formation control as well as individual objectives such as reference tracking. The satisfaction of those objectives is ensured using prescribed performance control. Building upon these approaches we then review recent results on control under high-level spatiotemporal objectives expressed in Signal Temporal Logic, a formal language that allows to express complex spatial tasks that must be satisfied within pre-defined deadlines. Theoretical results considering multi-agent systems with various capabilities under spatiotemporal constraints are presented.

automation & control systems

Sara Mohammadinejad,Jyotirmy V. Deshmukh,Laura Nenzi

DOI: https://doi.org/10.48550/arXiv.2106.08548

2021-06-16

Abstract:The Internet-of-Things, complex sensor networks, multi-agent cyber-physical systems are all examples of spatially distributed systems that continuously evolve in time. Such systems generate huge amounts of spatio-temporal data, and system designers are often interested in analyzing and discovering structure within the data. There has been considerable interest in learning causal and logical properties of temporal data using logics such as Signal Temporal Logic (STL); however, there is limited work on discovering such relations on spatio-temporal data. We propose the first set of algorithms for unsupervised learning for spatio-temporal data. Our method does automatic feature extraction from the spatio-temporal data by projecting it onto the parameter space of a parametric spatio-temporal reach and escape logic (PSTREL). We propose an agglomerative hierarchical clustering technique that guarantees that each cluster satisfies a distinct STREL formula. We show that our method generates STREL formulas of bounded description complexity using a novel decision-tree approach which generalizes previous unsupervised learning techniques for Signal Temporal Logic. We demonstrate the effectiveness of our approach on case studies from diverse domains such as urban transportation, epidemiology, green infrastructure, and air quality monitoring.

Machine Learning

Ehsan Khamespanah,Kirill Mechitov,Marjan Sirjani,Gul Agha

DOI: https://doi.org/10.1007/978-3-319-32582-8_11

2016-01-01

Abstract:Programmers often use informal worst-case analysis and debugging to ensure schedules that satisfy real-time requirements. Not only can this process be tedious and error-prone, it is inherently conservative and thus likely to lead to an inefficient use of resources. We propose to use model checking to find a schedule which optimizes the use of resources while satisfying real-time requirements. Specifically, we represent a Wireless sensor and actuator network (WSAN) as a collection of actors whose behavior is specified using a C-based actor language extended with operators for real-time scheduling and delay representation. We show how the abstraction and compositionality properties of the actor model may be used to incrementally build a model of a WSAN’s behavior from node-level and network models. We demonstrate the approach with a case study of a distributed real-time data acquisition system for high frequency sensing using Timed Rebeca modeling language and the Afra model checking tool.

Libero Nigro,Franco Cicirelli

DOI: https://doi.org/10.3390/math12060812

IF: 2.4

2024-03-11

Mathematics

Abstract:Modeling and verification of the correct behavior of embedded real-time systems with strict timing constraints is a well-known and important problem. Failing to fulfill a deadline in system operation can have severe consequences in the practical case. This paper proposes an approach to formal modeling and schedulability analysis. A novel extension of Petri Nets named Constraint Time Petri Nets (C-TPN) is developed, which enables the modeling of a collection of interdependent real-time tasks whose execution is constrained by the use of priority and shared resources like processors and memory data. A C-TPN model is reduced to a network of Timed Automata in the context of the popular Uppaal toolbox. Both functional and, most importantly, temporal properties can be assessed by exhaustive model checking and/or statistical model checking based on simulations. This paper first describes and motivates the proposed C-TPN modeling language and its formal semantics. Then, a Uppaal translation is shown. Finally, three models of embedded real-time systems are considered, and their properties are thoroughly verified.

mathematics

Francesco Tedesco,Alessandro Casavola

DOI: https://doi.org/10.1109/tac.2024.3362884

IF: 6.549

2024-01-01

IEEE Transactions on Automatic Control

Abstract:This paper presents a novel distributed constrained monitoring strategy for cyber-physical systems that focuses on enforcing point-in-time set-membership coordination constraints among the subsystem evolutions. The proposed scheme extends previous solutions by allowing the handling of time-varying dynamic interconnections, including the online addition/removal of subsystems (plug-and-play) during normal system operations. This approach ensures global coordination of the subsystems while effectively handling corresponding changes in the underlying constraint topology. The coordination is achieved by determining a distributed feasible set-point for each subsystem when the nominal set-point becomes unfeasible due to topological changes in the system, resulting in constraints violation. In order to address this challenge, the paper generalizes the distributed command governor (CG) theory to handle online requests for structural changes in the system and/or in the coordination constraints. An add-on module is provided for each local CG to process the coordination constraints and appropriately schedule the topology changes when certain formal conditions are satisfied. This ensures that the coordination constraints are satisfied even during the topological changes. Case studies are presented by evaluating the proposed strategy on the coordination of a formation of moving vehicles and a water distribution network. These simulations are used to evaluate the effectiveness and performance of the approach.

automation & control systems,engineering, electrical & electronic

Ehsan Khamespanah,Marjan Sirjani,Kirill Mechitov,Gul Agha

DOI: https://doi.org/10.1007/s10009-017-0480-3

2017-11-20

International Journal on Software Tools for Technology Transfer

Abstract:Programmers often use informal worst-case analysis and debugging to ensure that schedulers satisfy real-time requirements. Not only can this process be tedious and error-prone, it is inherently conservative and thus likely to lead to an inefficient use of resources. We propose to use model checking to find a schedule which optimizes the use of resources while satisfying real-time requirements. Specifically, we represent a Wireless sensor and actuator network (WSAN) as a collection of actors whose behaviors are specified using a Java-based actor language extended with operators for real-time scheduling and delay representation. We show how the abstraction mechanism and the compositionality of actors in the actor model may be used to incrementally build a model of a WSAN’s behavior from node-level and network models. We demonstrate the approach with a case study of a distributed real-time data acquisition system for high-frequency sensing using Timed Rebeca modeling language and the Afra model checking tool.

computer science, software engineering

Zhilin Qian,Huiqun Yu

DOI: https://doi.org/10.1109/ICISA.2013.6579475

2013-01-01

Abstract:Cyber-physical system is a combination of computation, control and communication. Existing modeling approaches are not suitable for the implementation of its complicated behaviors especially the mixing of discrete and continuous parts. Due to this feature, we propose a time-constrained aspect-oriented Petri net (TAOPN) approach to model cyber-physical system. This approach extends Petri net with time constraints based on aspect-oriented method. Common physical processes are extracted out and modeled as continuous Petri net in an aspect and then woven into the basic discrete Petri net according to the weaving mechanism. Those physical processes presented in an aspect net can be reused and analyzed by continuous analysis tools without interfering with the discrete model. The whole system can still be analyzed and verified using formal methods. A general scheduling analysis method is presented. This method decomposes the model into four types of modules and analyzes their schedulability separately. Then composes these results into a whole schedulable sequence. A case study demonstrates this modeling approach is feasible and the schedulability analysis is applicable.

Zhaocong Liu,Junyao Hou,Xiang Yin,Shaoyuan Li

DOI: https://doi.org/10.1109/cdc45484.2021.9683430

2021-01-01

Abstract:In this paper, we propose a novel framework for modeling and analysis of networked discrete-event systems (DES). We assume that the plant is controlled by a feedback supervisor whose control decisions are subject to communication delays and losses. Furthermore, we consider a general setting where the supervisor sends control decisions to different actuators via different communication channels whose dynamic are independent. We provide a system theoretic approach by identifying the state-space of overall networked system and investigating the dynamic of the entire state-space. Our approach precisely specify the roles of the supervisor, the communication channels and the actuators. Also, we compare the proposed networked DES model with the existing one and show that the proposed networked model can capture physical situations of a networked system more precisely.

Mirko Viroli,Giorgio Audrito,Jacob Beal,Ferruccio Damiani,Danilo Pianini

DOI: https://doi.org/10.48550/arXiv.1711.08297

2017-11-22

Abstract:Collective adaptive systems are an emerging class of networked computational systems, particularly suited in application domains such as smart cities, complex sensor networks, and the Internet of Things. These systems tend to feature large scale, heterogeneity of communication model (including opportunistic peer-to-peer wireless interaction), and require inherent self-adaptiveness properties to address unforeseen changes in operating conditions. In this context, it is extremely difficult (if not seemingly intractable) to engineer reusable pieces of distributed behaviour so as to make them provably correct and smoothly composable. Building on the field calculus, a computational model (and associated toolchain) capturing the notion of aggregate network-level computation, we address this problem with an engineering methodology coupling formal theory and computer simulation. On the one hand, functional properties are addressed by identifying the largest-to-date field calculus fragment generating self-stabilising behaviour, guaranteed to eventually attain a correct and stable final state despite any transient perturbation in state or topology, and including highly reusable building blocks for information spreading, aggregation, and time evolution. On the other hand, dynamical properties are addressed by simulation, empirically evaluating the different performances that can be obtained by switching between implementations of building blocks with provably equivalent functional properties. Overall, our methodology sheds light on how to identify core building blocks of collective behaviour, and how to select implementations that improve system performance while leaving overall system function and resiliency properties unchanged.

Distributed, Parallel, and Cluster Computing,Multiagent Systems

Gonzalo Mateos,Ketan Rajawat

DOI: https://doi.org/10.1109/MSP.2012.2232355

2012-11-29

Abstract:Communication networks have evolved from specialized, research and tactical transmission systems to large-scale and highly complex interconnections of intelligent devices, increasingly becoming more commercial, consumer-oriented, and heterogeneous. Propelled by emergent social networking services and high-definition streaming platforms, network traffic has grown explosively thanks to the advances in processing speed and storage capacity of state-of-the-art communication technologies. As "netizens" demand a seamless networking experience that entails not only higher speeds, but also resilience and robustness to failures and malicious cyber-attacks, ample opportunities for signal processing (SP) research arise. The vision is for ubiquitous smart network devices to enable data-driven statistical learning algorithms for distributed, robust, and online network operation and management, adaptable to the dynamically-evolving network landscape with minimal need for human intervention. The present paper aims at delineating the analytical background and the relevance of SP tools to dynamic network monitoring, introducing the SP readership to the concept of dynamic network cartography -- a framework to construct maps of the dynamic network state in an efficient and scalable manner tailored to large-scale heterogeneous networks.

Networking and Internet Architecture,Information Theory,Multiagent Systems,Machine Learning

Liu Zhaocong,Yin Xiang,Li Shaoyuan

2020-01-01

Abstract: In this paper, we propose a novel framework for modeling and analysis of networked discrete-event systems (DES). We assume that the plant is controlled by a feedback supervisor whose control decisions are subject to communication delays and losses. Furthermore, we consider a general setting where the supervisor sends control decisions to different actuators via different communication channels whose dynamics are independent. We provide a system theoretic approach by identifying the state-space of overall networked system and investigating the dynamic of the entire state-space. Our approach precisely specifies the roles of the supervisor, the communication channels and the actuators. Also, we compare the proposed networked DES model with the existing one and show that the proposed networked model captures physical situations of networked systems more precisely.

Suhail Alsalehi,Noushin Mehdipour,Ezio Bartocci,Calin Belta

DOI: https://doi.org/10.1109/CDC45484.2021.9682921

2021-04-07

Abstract:We propose a framework for solving control synthesis problems for multi-agent networked systems required to satisfy spatio-temporal specifications. We use Spatio-Temporal Reach and Escape Logic (STREL) as a specification language. For this logic, we define smooth quantitative semantics, which captures the degree of satisfaction of a formula by a multi-agent team. We use the novel quantitative semantics to map control synthesis problems with STREL specifications to optimization problems and propose a combination of heuristic and gradient-based methods to solve such problems. As this method might not meet the requirements of a real-time implementation, we develop a machine learning technique that uses the results of the off-line optimizations to train a neural network that gives the control inputs at current states. We illustrate the effectiveness of the proposed framework by applying it to a model of a robotic team required to satisfy a spatial-temporal specification under communication constraints.

Systems and Control,Artificial Intelligence,Formal Languages and Automata Theory

Christos Tsigkanos,Nianyu Li,Zhi Jin,Zhenjiang Hu,Carlo Ghezzi

DOI: https://doi.org/10.1145/3196478.3196485

2018-01-01

Abstract:Cyber-physical space systems are becoming increasingly important. Such systems have to satisfy requirements that are heavily affected by the physical space they operate in and by the active entities inhabiting the space, whose dynamic behaviors generate continuous topological changes. Reasoning about requirements in the early design phases is extremely challenging. High-level design can be facilitated by systematic application of separation of concerns throughout modeling, analysis, and early requirements validation. We outline an approach that identifies key recurrent concerns arising in cyber-physical space systems, supports systematic and semi-automatic modeling of separate concerns, and a formally defined composition of the separately developed models. Early requirements validation is then supported by leveraging statistical model checking techniques. We illustrate our approach through an example disaster scenario in a smart city.

Chao Liu,Kin Gwn Lore,Zhanhong Jiang,Soumik Sarkar

DOI: https://doi.org/10.1016/j.knosys.2020.106527

2021-01-01

Abstract:Performance monitoring, anomaly detection, and root-cause analysis in complex cyber–physical systems (CPSs) are often highly intractable due to widely diverse operational modes, disparate data types, and complex fault propagation mechanisms. This paper presents a new data-driven framework for root-cause analysis, based on a spatiotemporal graphical modeling approach built on the concept of symbolic dynamics for discovering and representing causal interactions among sub-systems of complex CPSs. We formulate the root-cause analysis problem as a minimization problem via the proposed inference based metric and present two approximate approaches for root-cause analysis, namely the sequential state switching (S3, based on free energy concept of a restricted Boltzmann machine, RBM) and artificial anomaly association (A3, a classification framework using deep neural networks, DNN). Synthetic data from cases with failed pattern(s) and anomalous node(s) are simulated to validate the proposed approaches. Real dataset based on Tennessee Eastman process (TEP) is also used for comparison with other approaches. The results show that: (1) S3 and A3 approaches can obtain high accuracy in root-cause analysis under both pattern-based and node-based fault scenarios, in addition to successfully handling multiple nominal operating modes, (2) the proposed tool-chain is shown to be scalable while maintaining high accuracy, and (3) the proposed framework is robust and adaptive in different fault conditions and performs better in comparison with the state-of-the-art methods.

computer science, artificial intelligence

Jan Reich,Daniel Schneider,Ioannis Sorokos,Yiannis Papadopoulos,Tim Kelly,Ran Wei,Eric Armengaud,Cem Kaypmaz

DOI: https://doi.org/10.1007/978-3-030-54549-9_1

2020-01-01

Abstract:Cyber-Physical Systems (CPS) harbor the enormous potential for societal improvement in terms of safety, comfort and economic efficiency. However, these benefits will only be unlocked if the safety of these systems can be assured with a sufficient level of confidence. Traditional safety engineering and assurance approaches alone cannot address the CPS-inherent uncertainties and unknowns induced by openness and adaptivity. Runtime safety assurance approaches such as Conditional Safety Certificates (ConSerts) represent novel means to cope with CPS assurance challenges by introducing modular and formalized safety arguments with variant support, thereby shifting the final safety certification step to runtime. However, the systematic engineering of ConSerts at design-time is a complex task which, up to now, has not been sufficiently addressed. Without systematic safety assurance at both design-time and runtime, CPS will hardly be assurable with acceptable confidence given the uncertainties and unknowns. In this paper, we present an engineering method for synthesizing ConSerts based on Digital Dependability Identities (DDI). The approach is demonstrated for a cooperative vehicle platooning function (CACC) from an industrial case study.

Yuan Zhang,Yuanqing Xia,Long Wang

DOI: https://doi.org/10.1016/j.automatica.2024.111741

IF: 6.4

2024-01-01

Automatica

Abstract:Temporal networks are a class of time-varying networks whose topology evolves through a time-ordered sequence of static networks (known as subsystems), which find wide-ranging applications in modeling complex systems such as social networks, epidemic spreading, and brain dynamics. This paper investigates the reachability and controllability of temporal continuous-time linear networks from a generic viewpoint, where only the zero-nonzero patterns of subsystem matrices are known. It is demonstrated that the reachability and controllability of temporal networks on a single temporal sequence are generic properties with respect to the parameters of subsystem matrices and the time durations of subsystems. Explicit expressions are then given for the minimal subspace that contains the reachable set across all possible temporal sequences (called overall reachable set). It is found that verifying the structural reachability/controllability and structural overall reachability is at least as difficult as the structural target controllability verification problem of a single system, implying that finding verifiable conditions for them is hard. Graph-theoretic lower and upper bounds are provided for the generic dimensions of the reachable subspace on a single temporal sequence, and of the minimal subspace that contains the overall reachable set. These bounds extend classical concepts in structured system theory, including dynamic graph and cactus, to temporal networks, and can be calculated using graph-theoretic algorithms. Finally, applications of these results to the structural controllability of switched linear systems are discussed.

André Matos Pedro,Tomás Silva,Tiago Sequeira,João Lourenço,João Costa Seco,Carla Ferreira

DOI: https://doi.org/10.1007/s10009-024-00740-7

2024-02-23

International Journal on Software Tools for Technology Transfer

Abstract:The automotive industry is increasingly dependent on computing systems with different critical requirements. The verification and validation methods for these systems are now leveraging complex AI methods, for which the decision algorithms introduce non-determinism, especially in autonomous driving. This paper presents a runtime verification technique agnostic to the target system, which focuses on monitoring spatio-temporal properties that abstract the evolution of objects' behavior in their spatial and temporal flow. First, a formalization of three known traffic rules (from the Vienna convention on road traffic) is presented, where a spatio-temporal logic fragment is used. Then, these logical expressions are translated to a monitoring model written in first-order logic, where they are processed by a non-linear satisfiability solver. Finally, the translation allows the solver to check the validity of the encoded properties according to an instance of a specific traffic scenario (a trace). The results obtained from our tool, which automatically generates a monitor from a formula, show that our approach is feasible for online monitoring in a real-world environment.

computer science, software engineering