Jingyi Wang,Jun Sun,Qixia Yuan,Jun Pang

DOI: https://doi.org/10.1007/s10009-018-0492-7

2018-01-01

International Journal on Software Tools for Technology Transfer

Abstract:Many automated system analysis techniques (e.g., model checking, model-based testing) rely on first obtaining a model of the system under analysis. System modeling is often done manually, which is often considered as a hindrance to adopt model-based system analysis and development techniques. To overcome this problem, researchers have proposed to automatically “learn” models based on sample system executions and shown that the learned models can be useful sometimes. There are however many questions to be answered. For instance, how much shall we generalize from the observed samples and how fast would learning converge? Or, would the analysis result based on the learned model be more accurate than the estimation we could have obtained by sampling many system executions within the same amount of time? Moreover, how well does learning scale to real-world applications? If the answer is negative, what are the potential methods to improve the efficiency of learning? In this work, we first investigate existing algorithms for learning probabilistic models for model checking and propose an evolution-based approach for better controlling the degree of generalization. Then, we present existing approaches to learn abstract models to improve the efficiency of learning for scalability reasons. Lastly, we conduct an empirical study in order to answer the above questions. Our findings include that the effectiveness of learning may sometimes be limited and it is worth investigating how abstraction should be done properly in order to learn abstract models.

Yu Zhou,Jidong Ge,Pengcheng Zhang,Weigang Wu

DOI: https://doi.org/10.1007/s11432-015-5332-8

2016-01-01

Science China Information Sciences

Abstract:Dynamic evolution is highly desirable for service oriented systems in open environments. For the evolution to be trusted, it is crucial to keep the process consistent with the specification. In this paper, we study two kinds of evolution scenarios and propose a novel verification approach based on hierarchical timed automata to model check the underlying consistency with the specification. It examines the procedures before, during and after the evolution process, respectively and can support the direct modeling of temporal aspects, as well as the hierarchical decomposition of software structures. Probabilities are introduced to model the uncertainty characterized in open environments and thus can support the verification of parameter-level evolution. We present a flattening algorithm to facilitate automated verification using the mainstream timed automata based model checker –UPPAAL(integrated with UPPAAL-SMC). We also provide a motivating example with performance evaluation that complements the discussion and demonstrates the feasibility of our approach.

Ting Wang,Songzheng Song,Jun Sun,Yang Liu,Jin Song Dong,Xinyu Wang,Shanping Li

DOI: https://doi.org/10.1007/978-3-642-34281-3_26

2012-01-01

Abstract:Refinement checking plays an important role in system verification. It establishes properties of an implementation by showing a refinement relationship between the implementation and a specification. Recently, it has been shown that anti-chain based approaches increase the efficiency of trace refinement checking significantly. In this work, we study the problem of adopting anti-chain for stable failures refinement checking, failures-divergence refinement checking and probabilistic refine checking (i.e., a probabilistic implementation against a non-probabilistic specification). We show that the first two problems can be significantly improved, because the state space of the product model may be reduced dramatically. Though applying anti-chain for probabilistic refinement checking is more complicated, we manage to show improvements in some cases. We have integrated these techniques into the PAT model checking framework. Experiments are conducted to demonstrate the efficiency of our approach.

Jingyi Wang,Jun Sun,Shengchao Qin,Cyrille Jegourel

DOI: https://doi.org/10.1109/tse.2018.2886898

IF: 7.4

2018-01-01

IEEE Transactions on Software Engineering

Abstract:Precisely modeling complex systems like cyber-physical systems is challenging, which often renders model-based system verification techniques like model checking infeasible. To overcome this challenge, we propose a method called LAR to automatically ‘verify’ such complex systems through a combination of learning, abstraction and refinement from a set of system log traces. We assume that log traces and sampling frequency are adequate to capture ‘enough’ behaviour of the system. Given a safety property and the concrete system log traces as input, LAR automatically learns and refines system models, and produces two kinds of outputs. One is a counterexample with a bounded probability of being spurious. The other is a probabilistic model based on which the given property is ‘verified’. The model can be viewed as a proof obligation, i.e., the property is verified if the model is correct. It can also be used for subsequent system analysis activities like runtime monitoring or model-based testing. Our method has been implemented as a self-contained software toolkit. The evaluation on multiple benchmark systems as well as a real-world water treatment system shows promising results.

Lin Gui,Jun Sun,Yang Liu,Yuanjie Si,Jin Song Dong,Xinyu Wang

DOI: https://doi.org/10.1145/2483760.2483779

2013-01-01

Abstract:Testing provides a probabilistic assurance of system correctness. In general, testing relies on the assumptions that the system under test is deterministic so that test cases can be sampled. However, a challenge arises when a system under test behaves non-deterministiclly in a dynamic operating environment because it will be unknown how to sample test cases. In this work, we propose a method combining hypothesis testing and probabilistic model checking so as to provide the ``assurance" and quantify the error bounds. The idea is to apply hypothesis testing to deterministic system components and use probabilistic model checking techniques to lift the results through non-determinism. Furthermore, if a requirement on the level of ``assurance" is given, we apply probabilistic model checking techniques to push down the requirement through non-determinism to individual components so that they can be verified using hypothesis testing. We motivate and demonstrate our method through an application of system reliability prediction and distribution. Our approach has been realized in a toolkit named RaPiD, which has been applied to investigate two real-world systems.

Yu Zhou,Jidong Ge,Pengcheng Zhang

DOI: https://doi.org/10.1145/2600821.2600838

2014-01-01

Abstract: The paper proposes a novel approach based on the hierarchical timed automata to verify the consistency of dynamic evolution process. Different from traditional approaches, it investigates the problem from the behavioral perspective and examines the procedures before, during and after the evolution process. Furthermore, our approach can support the direct modeling of temporal aspects, as well as the hierarchical structures. A flattening algorithm is presented to facilitate the automated verification using the mainstream timed automata based model checker --UPPAAL. A motivating example is discussed and demonstrates the feasibility of our approach.

Yuhong Zhao,Franz J. Rammig

DOI: https://doi.org/10.1109/isorc.2012.28

2012-01-01

Abstract:This paper presents a lightweight verification technique, which is applicable to dependable real-time systems, provided that the (abstract) model and the (concrete) implementation of the system under test are given in advance. In addition to the usual quality assurance techniques at design time (e.g., formal verification) and at implementation time (e.g., testing), we provide a special form of model checking at run time. That is, we check the correctness of an actual system execution by means of exploring a partial model space covering the current execution trace. In doing so, concrete state information is observed from time to time while the system to be checked is running. This runtime information is used to guide model checking to reduce the model space to be explored. In this sense, we call this method online model checking. Since we do not directly check the execution trace itself, our online checking at model level is capable of checking a running system some steps ahead of the actual state of execution. In this paper, we describe online model checking as well as the underlying system architecture in general, explain the basic algorithm and its extension to improve performance, and provide experimental results.

YANG Xiao-hui,ZHOU Xue-hai,TIAN Jun-feng,LI Zhen

2010-01-01

Abstract:In order to improve current dynamic trusted evaluation theories and methods of software,the conceptions of behavior trace and checkpoint scene are proposed to depict the dynamic characteristics of software behaviors,the deviation degrees of behavior trace and checkpoint scene are measured by computing system call context values and formulating relationship constraint rules of system call arguments,and a dynamic trusted evaluation model is built based on software behavior automaton.Experimental results show that this novel model can accurately obtain information on software behavior and correctly detect attacks with lower overhead.

Weigang Ma,Xinhong Hei

DOI: https://doi.org/10.1109/ICCASM.2010.5620084

2010-01-01

Abstract:A modeling and verification methodology is presented for railway interlocking system which is regarded as a safety-critical system. The methodology utilizes UML (Unified Modeling Language) to model the function requirement and FSM (Finite State Machine) to verify the safety requirements of the specification. The device specifications of railway interlocking system are modeled with UML, and dynamic behaviors of the device and whole system are modeled with FSM, the safety specification is translated LTL (Linear Temporal Logic) and analyzed with NuSMV. We try to show the feasibility of improving the reliability and reducing revalidation efforts when designing and developing a decentralized railway signaling system.

Jingyi Wang,Jun Sun,Yifan Jia,Shengchao Qin,Zhiwu Xu

DOI: https://doi.org/10.1007/978-3-319-95582-7_5

2018-05-10

Abstract:Modeling and verifying real-world cyber-physical systems is challenging, which is especially so for complex systems where manually modeling is infeasible. In this work, we report our experience on combining model learning and abstraction refinement to analyze a challenging system, i.e., a real-world Secure Water Treatment system (SWaT). Given a set of safety requirements, the objective is to either show that the system is safe with a high probability (so that a system shutdown is rarely triggered due to safety violation) or not. As the system is too complicated to be manually modeled, we apply latest automatic model learning techniques to construct a set of Markov chains through abstraction and refinement, based on two long system execution logs (one for training and the other for testing). For each probabilistic safety property, we either report it does not hold with a certain level of probabilistic confidence, or report that it holds by showing the evidence in the form of an abstract Markov chain. The Markov chains can subsequently be implemented as runtime monitors in SWaT.

Artificial Intelligence,Software Engineering

Ghalya Alwhishi,Jamal Bentahar,Ahmed Elwhishi,Witold Pedrycz

DOI: https://doi.org/10.1016/j.eswa.2023.123113

IF: 8.5

2024-01-07

Expert Systems with Applications

Abstract:Intelligent applications are highly susceptible to uncertainty and inconsistency due to the intense and intricate interactions among their autonomous components (or agents), making their verification theoretically and practically challenging. This paper presents the design and implementation of a new open-source and scalable software tool for modeling and verifying intelligent applications with commitment and trust protocols under both uncertainty and inconsistency settings, using reduction-based multi-valued model checking techniques. The proposed tool is equipped with original and novel algorithms that transform our logics of multi-valued commitment (mv-CTLC) and multi-value trust (mv-TCTL) that we recently introduced to their classical two-valued commitment (CTLC) and trust (TCTL) logic versions as well as to Computational Tree Logic (CTL). Moreover, the tool transforms the mv-CTL to CTL, and it is applicable for the classical model checking by transforming the classical logics of trust and commitment to CTL. To demonstrate the practicality and applicability of the proposed tool in real settings, we present and report experimental results over two blockchain-based applications in the healthcare domain. Finally, we provide discussions and comparisons between the proposed approaches regarding scalability and efficiency. Moreover, we provide packages of more than 11 experiments, including the ones we conduct in this paper and enhanced experiments from previous works. Our findings ensure that the proposed approaches and the software tool that implements them are highly efficient and scalable, giving accurate results under varying conditions.

computer science, artificial intelligence,engineering, electrical & electronic,operations research & management science

HU Bin,LI Yang,GAO Ji

DOI: https://doi.org/10.3785/j.issn.1008-973x.2011.09.008

2011-01-01

Abstract:Towards the difficulty of property verification in the norm-governed trustworthy cross-organizational collaboration system,this work introduced a verification method based on symbolic model checking.This method includes three different parts: the syntax and semantics of norms,the Abstract system model and the verification algorithm.The semantics of norms constitute the core of the whole method.It maps norms into the state sets or the state transition sets that satisfy them,thus eliminates the semantics gap between norms and the system model.The Abstract model,which includes the definition of normative Kripke structure,normative traces,and the computation tree logic(CTL) semantics under the system model,provides the framework for formally modeling the collaboration systems.The verification algorithm is the implementation of the method.In contrast to the theorem-proven based verification,this method can effectively reduce the verification time,thus improve the verification efficiency.

Haiyang Hu,Jianen Xie,JiDong Ge

DOI: https://doi.org/10.1007/978-3-642-16720-1_18

2010-01-01

Abstract:Web services-based systems have gained the attention of researchers, which enable business process system to automatically discovery and invocation suitable Web services at run time. In this paper, for stochastic- timing software business process collaboration based on Web services, we take into account the problem of verifying the behavioral compatibility in the cross-organizational system. We use the extended markovian process algebra to model the behavior of the business processes, and address the issue of formally verification of whether the behavior of system design can meet the requirements of behavioral compatibility from the aspect of stochastic timing. Based on analyzing the bisimulation relation of the parallelism of business processes, we present a several theorems for check the behavioral compatibility in the collaboration system.

Shahbaz Ali,Hailong Sun,Yongwang Zhao

DOI: https://doi.org/10.1007/978-3-030-41418-4_18

2020-01-01

Abstract:In the current technological era, the correct functionality and quality of software systems are of prime concern and require practical approaches to improve their reliability. Besides classical testing, formal verification techniques can be employed to enhance the reliability of software systems. In this connection, we propose an approach that combines the strengths of two effective techniques, i.e., Model learning and Model checking for the formal analysis of Java libraries. To evaluate the performance of the proposed approach, we consider the implementation of “Java.util” package as a case study. First, we apply model learning to infer behavior models of Java package and then use model checking to verify that the obtained models satisfy basic properties (safety, functional, and liveness) specified in LTL/CTL languages. Our results of the formal analysis reveal that the learned models of Java package satisfy all the selected properties specified in temporal logic. Moreover, the proposed approach is generic and very promising to analyze any software library/package considered as a black-box.

Xiaohong Chen,Kun Ruan,Zhi Jin,Junhu Li,Lingling Zheng

DOI: https://doi.org/10.1109/isssr58837.2023.00032

2023-01-01

Abstract:Formal methods have demonstrated tremendous potential for verifying requirements consistency, particularly for safety-critical systems. In our previous research, we included environment characteristics in the scope of formal specification verification for embedded systems and proposed a requirement consistency verification method based on an environment model. However, we found that this method was not sufficiently efficient. To address this issue, this paper defines this environment model introduced inconsistency as mutually exclusive inconsistency, based on its representation characteristics, and proposes an efficient static verification approach for embedded systems. We reduce the consistency verification problem to the traversal of a graph. To support the proposed approach, we implement a requirement consistency verification tool, called Env-Consistency, and apply it to industrial cases. To illustrate the advantages of this approach, several sets of comparative experiments are designed, which demonstrates our approach is both effective and efficient.

Jin ZHANG,Manxia LIU,Erqun ZHAO,Junfei LIU

DOI: https://doi.org/10.3778/j.issn.1002-8331.1308-0197

2015-01-01

Abstract:To the problems on software formal description and partial correctness verification, a unified frame based on XYZ/SE is proposed. The unified frame includes four steps. Software is abstracted based on stepwise idea. It uses XYZ/SE to finish formal description and partial correctness verification of whole software. It uses XYZ/SE to finish formal descrip-tion and partial correctness verification of each component of software. It adjusts and validates previous inference. If inferred results are different from anticipated conclusion, related program should be rewritten or inferring process should be checked to make sure possible wrong until partial correctness can be proved. In order to analyze the practicability of the unified frame, Treasury Information Process System(TIPS)is selected as research object. Analytical results show that XYZ/SE has the capability to describe formally different abstract level of software and realize smooth transition from static semantics to dynamic semantics. Meanwhile, the unified frame based on XYZ/SE can express inferring rules of Horse.

Xiaohong Chen,Juan Zhang,Zhi Jin,Min Zhang,Tong Li,Xiang Chen,Tingliang Zhou

DOI: https://doi.org/10.1109/tits.2023.3324022

IF: 8.5

2023-12-05

IEEE Transactions on Intelligent Transportation Systems

Abstract:Consistency verification of safety requirements is crucial for the success of safety-critical systems, particularly railway systems. However, this task often requires significant time spent on interaction and communication between domain experts, who possess in-depth knowledge of safety requirements in a specific domain, and formal experts, who have the necessary skills to apply verification tools and techniques. To enhance time efficiency and productivity, we propose an approach to empower domain experts with formal methods for verifying safety requirements' consistency. This involves transforming natural requirements into formal models and using formal methods for verification. The approach also localizes inconsistent requirements to provide feedback to domain experts. Communication between domain experts and formal experts can be facilitated through the pattern language SafeNL. By adopting this approach, domain experts can utilize formal verification without extensive consultation with formal experts. Two practical case studies with CASCO Signal Ltd. validate its effectiveness, practicality, as well as a significant reduction of time compared to traditional methods (at least 90% reduction). This reduction in time is primarily due to reduced communication needs and more efficient localization. Evaluations show that SafeNL is user-friendly and the approach performs well in modular systems while scalability is somewhat limited.

engineering, electrical & electronic,transportation science & technology, civil

Ruirui Chen,Yusheng Liu,Xiaoping Ye

DOI: https://doi.org/10.1115/detc2018-85689

2018-01-01

Abstract:Model Based Systems Engineering (MBSE) is a mainstream methodology for the design of complex systems. Verification is a necessary part of MBSE. Although there is significant past research on verification, some deficiencies still exist, such as behavior requirement verification in the early design stage is lacking. In this study, behavior verification at the early design stage is presented. First, a unified modeling method based on SysML is proposed and some transformation rules are defined to ensure the correctness and definiteness of the ontology generation. Second, behavior requirements are classified and formalized as rules. Finally, a hierarchical behavior verification approach based on ontology reasoning is proposed. This approach is convenient for designers to use and no additional expertise is needed. A case study is provided to demonstrate its effectiveness.

Qi Zhou,David Heath,William Harris

DOI: https://doi.org/10.4204/EPTCS.296.6

2019-07-09

Abstract:Relational properties describe relationships that hold over multiple executions of one or more programs, such as functional equivalence. Conventional approaches for automatically verifying such properties typically rely on syntax-based, heuristic strategies for finding synchronization points among the input programs. These synchronization points are then annotated with appropriate relational invariants to complete the proof. However, when suboptimal synchronization points are chosen the required invariants can be complicated or even inexpressible in the target theory. In this work, we propose a novel approach to verifying relational properties. This approach searches for synchronization points and synthesizes relational invariants simultaneously. Specifically, the approach uses synthesized invariants as a guide for finding proper synchronization points that lead to a complete proof. We implemented our approach as a tool named PEQUOD, which targets Java Virtual Machine (JVM) bytecode. We evaluated PEQUOD by using it to solve verification challenges drawn from the from the research literature and by verifying properties of student-submitted solutions to online challenge problems. The results show that PEQUOD solve verification problems that cannot be addressed by current techniques.

Programming Languages,Logic in Computer Science

Lianyi Zhang,Qingdi Meng,Guiming Luo

DOI: https://doi.org/10.1504/ijcat.2016.076799

2016-01-01

International Journal of Computer Applications in Technology

Abstract:Many software processes have been adopted in industrial practices. It is important to be able to understand whether a software process is efficient and effective. Many software process simulation methods have been proposed over the years to estimate and measure the processes. These measurements are highly effective at what they do but they are also highly inefficient in other terms. In this paper, we present a proposal for the application of probabilistic model checking in software process modelling, simulation and verification. Software processes are modelled using Markov chain models and the interested properties are specified as probabilistic temporal logic. We illustrate the proposal by a real case study of software maintenance of the lean-kanban process. The process requirements were validated by PRISM.