Pingfan Kong,Yi Li,Xiaohong Chen,Jun Sun,Meng Sun,Jingyi Wang

DOI: https://doi.org/10.1007/978-3-319-48989-6_28

2016-01-01

Abstract:Hybrid systems exhibit both continuous and discrete behavior. Analyzing hybrid systems is known to be hard. Inspired by the idea of concolic testing (of programs), we investigate whether we can combine random sampling and symbolic execution in order to effectively verify hybrid systems. We identify a sufficient condition under which such a combination is more effective than random sampling. Furthermore, we analyze different strategies of combining random sampling and symbolic execution and propose an algorithm which allows us to dynamically switch between them so as to reduce the overall cost. Our method has been implemented as a web-based checker named HyChecker. HyChecker has been evaluated with benchmark hybrid systems and a water treatment system in order to test its effectiveness.

A. Dubey,X. Wu,H. Su,T. J. Koo

DOI: https://doi.org/10.1007/11562948_11

2005-01-01

Abstract:In this paper, we describe a computation platform called ReachLab, which enables automatic analysis of embedded software systems that interact with continuous environment. Algorithms are used to specify how the state space of the system model should be explored in order to perform analysis. In ReachLab, both system models and analysis algorithm models are specified in the same framework using Hybrid System Analysis and Design Language (HADL), which is a meta-model based language. The platform allows the models of algorithms to be constructed hierarchically and promotes their reuse in constructing more complex algorithms. Moreover, the platform is designed in such a way that the concerns of design and implementation of analysis algorithms are separated. On one hand, the models of analysis algorithms are abstract and therefore the design of algorithms can be made independent of implementation details. On the other hand, translators are provided to automatically generate implementations from the models for computing analysis results based on computation kernels. Multiple computation kernels, which are based on specific computation tools such as d/dt and the Level Set toolbox, are supported and can be chosen to enable hybrid state space exploration. An example is provided to illustrate the design and implementation process in ReachLab.

Stefan Schupp,Erika Abraham,Xin Chen,Ibtissem Ben Makhlouf,Goran Frehse,Sriram Sankaranarayanan,Stefan Kowalewski

DOI: https://doi.org/10.1007/978-3-319-25141-7_2

2015-01-01

Abstract:Latest developments brought interesting theoretical results and powerful tools for the reachability analysis of hybrid systems. However, there are still challenging problems to be solved in order to make those technologies applicable to large-scale applications in industrial context. To support this development, in this paper we give a brief overview of available algorithms and tools, and point out some of their individual characteristics regarding various properties which are crucial for the verification of hybrid systems. We present exemplary evaluations on three benchmarks to motivate the need for further development and discuss some of the main challenges for future research in this area.

Lei Bu,Xuandong Li

DOI: https://doi.org/10.1007/s10009-010-0163-9

2010-01-01

International Journal on Software Tools for Technology Transfer

Abstract:The existing techniques for reachability analysis of linear hybrid systems do not scale well to the problem size of practical interest. The performance of existing techniques is even worse for reachability analysis of a composition of several linear hybrid automata. In this paper, we present an efficient path-oriented approach to bounded reachability analysis of composed systems modeled by linear hybrid automata with synchronization events. It is suitable for analyzing systems with many components by selecting critical paths, while this task was quite insurmountable before because of the state explosion problem. This group of paths will be transformed to a group of linear constraints, which can be solved by a linear programming solver efficiently. This approach of symbolic execution of paths allows design engineers to check important paths, and accordingly increase the faith in the correctness of the system. This approach is implemented into a prototype tool Bounded reAchability CHecker (BACH). The experimental data show that both the path length and the number of participant automata in a system checked using BACH can scale up greatly to satisfy practical requirements.

K. L. Man,Tomas Krilavičius,Kaiyu Wan

2010-01-01

Abstract:Hybrid systems exhibit both discrete and continuous behavior and thus are notoriously heterogeneous and complex. Over years, there are abundant tools for simulation and verification of hybrid systems. The goal of this paper is to review existing tools as well as presenting recent developed tools for simulation and verification of hybrid systems through classical examples in hybrid academia. Specifically, we use Bouncing Ball, Tank and Thermostat as three examples to illustrate simulation tools of BHPC and Hybrid Chi formalism. In a similar way, classical hybrid system examples (e.g. bouncing ball and tank) are used to illustrate the applicability of the verification tools of KeYmaera, HySAT and iSAT. Afterwards we give a comparative summary for these tools. © Copyright International Association of Engineers.

ZHANG Xue-jun,XIE Jian-ying

DOI: https://doi.org/10.3969/j.issn.1004-731x.2001.02.020

2001-01-01

Abstract:According to the features of the hybrid systems including both continuous variables and discrete events, we give their modeling and simulation procedure under the Matlab environment. The principle and implementation of automatic verification, which provides a novel way to overcome the inherent limitation of simulation are presented. The method is illustrated by an example of chemical process control.

Sicun Gao,Soonho Kong,Wei Chen,Edmund Clarke

DOI: https://doi.org/10.48550/arXiv.1404.7171

2014-04-29

Abstract:We present the framework of delta-complete analysis for bounded reachability problems of general hybrid systems. We perform bounded reachability checking through solving delta-decision problems over the reals. The techniques take into account of robustness properties of the systems under numerical perturbations. We prove that the verification problems become much more mathematically tractable in this new framework. Our implementation of the techniques, an open-source tool dReach, scales well on several highly nonlinear hybrid system models that arise in biomedical and robotics applications.

Systems and Control,Logic in Computer Science

Xuandong Li,Sumit Jha Aanand,Lei Bu

DOI: https://doi.org/10.1016/j.entcs.2006.12.023

2007-01-01

Electronic Notes in Theoretical Computer Science

Abstract:The existing techniques for reachability analysis of linear hybrid automata do not scale well to problem sizes of practical interest. Instead of developing a tool to perform reachability check on all the paths of a linear hybrid automaton, a complementary approach is to develop an efficient path-oriented tool to check one path at a time where the length of the path being checked can be made very large and the size of the automaton can be made large enough to handle problems of practical interest. This approach of symbolic execution of paths can be used by design engineers to check important paths and thereby, increase the faith in the correctness of the system. Unlike simple testing, each path in our framework represents a dense set of possible trajectories of the system being analyzed. In this paper, we develop the linear programming based techniques towards an efficient path-oriented tool for the bounded reachability analysis of linear hybrid systems.

Lei Bu,You Li,Linzhang Wang,Xin Chen,Xuandong Li

DOI: https://doi.org/10.1109/date.2010.5457051

2010-01-01

Abstract:Existing reachability analysis techniques are easy to fail when applied to large compositional linear hybrid systems, since their memory usages rise up quickly with the increase of systems' size. To address this problem, we propose a tool BACH 2 that adopts a path-oriented method for bounded reachability analysis of compositional linear hybrid systems. For each component, a path is selected and all selected paths compose a path set for reachability analysis. Each path is independently encoded to a set of constraints while synchronization controls are encoded as a set of constraints too. By merging all the constraints into one set, the path-oriented reachability problem of a path set can be transformed to the feasibility problem of this resulting linear constraint set, which can be solved by linear programming efficiently. Based on this path-oriented method, BACH 2 adopts a shared label sequence guided depth first search (SLS-DFS) method to perform bounded reachability analysis of compositional linear hybrid system, where all potential path sets within the bound limit are identified and verified one by one. By this means, since only the structure of a system and the recently visited one path in each component need to be stored in memory, memory consumption of BACH 2 is very small at runtime. As a result, BACH 2 enables the verification of extremely large systems, as is demonstrated in our experiments.

张伟,孙优贤

DOI: https://doi.org/10.16383/j.aas.2002.03.012

2002-01-01

ACTA AUTOMATICA SINICA

Abstract:In this paper, the stability of hybrid systems is studied. At first, we give a general model for hybrid systems which can describe the jump phenomena of the hybrid states. Next, an auxiliary function is defined as the abstract measure of the system energy. Based on this model and the function, some new sufficient conditions for the stability of hybrid systems are established. Due to the jump of the hybrid states, the energy of the system may be increasing. In this case the stability of hybrid systems can be guaranteed by these new conditions. We then provide one method to search for the auxiliary function. At the end of the paper, the effectiveness of the method is illustrated by the simulation example.

Lei Bu,Rajarshi Ray,Stefan Schupp

2018-01-01

Abstract:This report presents results of a friendly competition for formal verification of continuous and hybrid systems with linear continuous dynamics. The friendly competition took place as part of the workshop Applied Verification for Continuous and Hybrid Systems (ARCH) in 2018. In its second edition, three tools have been applied to solve three different benchmark problems in the category ofbounded model checking of hybrid systems with piecewise constant dynamics (in alphabetical order): BACH, HyDRA, and XSpeed. This report is a snapshot of the current landscape of tools and the types of benchmarks they are particularly suited for. Due to the diversity of problems, we are not ranking tools and we also welcome more tools to join in this friendly competition in the future event.

Wen Su,Jean-Raymond Abrial,Huibiao Zhu

DOI: https://doi.org/10.1007/978-3-642-34281-3_18

2012-01-01

Abstract:This paper contains a further contribution to the handling of hybrid systems as presented in [3]. This time we insist on the usage of multiple methodologies involving not only refinements and proofs as in Event-B and the Rodin Platform, but also Matlab simulation, Animation, and Invariant discovery. We believe that a successful understanding of hybrid systems has to be done in this way by involving several distinct methodologies that are complementary. The paper also presents many examples illustrating the approach.

Lei Bu,Jiawan Wang,Yuming Wu,Xuandong Li

DOI: https://doi.org/10.1007/978-3-030-55089-9_2

2019-01-01

Abstract:Hybrid Automata are a well-known framework used to model hybrid systems, containing both discrete and continuous dynamic behavior. However, reachability analysis of hybrid automata is difficult. Existing work does not scale well to the size of practical problems. This paper gives a review of how we handle the verification of hybrid systems in a path-oriented way. First, we propose a path-oriented bounded reachability analysis method to control the complexity of verification of linear hybrid automata. As we only check the reachability of one path at a time, the resulted state space for each computation is limited and hence can be solved efficiently. Then, we present an infeasible constraint guided path-pruning method to tailor the search space, a shallow synchronization semantics to handle compositional behavior, and a method based on linear temporal logic (LTL) to extend the bounded model checking (BMC) result to an unbounded state space. Such methods and tools are implemented in a tool, BACH, and have been used as the underlying decision procedure of our verification of cyber-physical systems (CPS) and Internet of Things (IoT).

Lei Bu,Alessandro Cimatti,Xuandong Li,Sergio Mover,Stefano Tonetta

DOI: https://doi.org/10.1007/978-3-642-13464-7_13

2010-01-01

Abstract:Hybrid automata are a widely accepted modeling framework for systems with discrete and continuous variables. The traditional semantics of a network of automata is based on interleaving, and requires the construction of a monolithic hybrid automaton based on the composition of the automata. This destroys the structure of the network and results in a loss of efficiency, especially using bounded model checking techniques. An alternative compositional semantics, called “shallow synchronization”, exploits the locality of transitions and relaxes time synchronization. The semantics is obtained by composing traces of the local automata, and superimposing compatibility constraints resulting from synchronization. In this paper, we investigate the different symbolic encodings of the reachability problem of a network of hybrid automata. We propose a novel encoding based on the shallow synchronization semantics, which allows different strategies for searching local paths that can be synchronized. We implemented a bounded reachability search based on the use of an incremental Satisfiability-Modulo-Theory solver. The experimental results confirm that the new encoding often performs better than the one based on interleaving.

Olaf Stursberg,Ansgar Fehnker,Zhi Han,Bruce H. Krogh

DOI: https://doi.org/10.1016/s1474-6670(17)36446-7

2003-01-01

IFAC Proceedings Volumes

Abstract:As the key step in verifying hybrid systems, the computation of reachable sets largely determines the complexity and thus the applicability of a verification approach. Most existing methods compute the reachable set without considering the specification to be verified. This paper presents an approach that identifies for abstractions of the hybrid model those behaviors that potentially violate the specification. A tailor-made sequence of validation procedures then checks the existence of these behaviors for the original model. In many cases, the proposed iterative algorithm that combines model abstraction, behavior validation, and model refinement to verify the specification explores a considerably smaller part of the reachable set than standard techniques. The paper describes an implementation of the procedure and illustrates the approach for an automotive cruise control example.

Samuel Burden,Humberto Gonzalez,Ramanarayan Vasudevan,Ruzena Bajcsy,S. Shankar Sastry

DOI: https://doi.org/10.1109/TAC.2015.2404231

2014-09-17

Abstract:The study of controlled hybrid systems requires practical tools for approximation and comparison of system behaviors. Existing approaches to these problems impose undue restrictions on the system's continuous and discrete dynamics. Metrization and simulation of controlled hybrid systems is considered here in a unified framework by constructing a state space metric. The metric is applied to develop a numerical simulation algorithm that converges uniformly, with a known rate of convergence, to orbitally stable executions of controlled hybrid systems, up to and including Zeno events. Benchmark hybrid phenomena illustrate the utility of the proposed tools.

Optimization and Control

李浪,李仁发,李肯立,姚凤娟

DOI: https://doi.org/10.3969/j.issn.1001-3695.2008.08.004

2008-01-01

Abstract:The hybrid systems contain both the discrete events and the continuous dynamic events.These systems are beco-ming more and more important and call for new modeling and analysis approach.This paper reviewed status of the hybrid system from modeling,analysis and verification of the three aspects and the need for further researches.

Mingshuai Chen,Xiao Han,Tao Tang,Shuling Wang,Mengfei Yang,Naijun Zhan,Hengjun Zhao,Liang Zou

DOI: https://doi.org/10.1007/978-3-319-48628-4_3

2017-01-01

Abstract:We introduce a toolchainMARS forModelling, Analyzing and veRifying hybrid Systems we developed in the past years. Using MARS, we build executable models of hybrid systems using the industrial standard environment Simulink/Stateflow, which facilitates analysis by simulation. To complement simulation, formal verification of Simulink/Stateflow models is conducted in the toolchain via the following steps: first, we translate Simulink/Stateflow diagrams to Hybrid CSP (HCSP) processes by an automatic translator Sim2HCSP, whereHCSP is an extension of CSP for formally modelling hybrid systems; second, to justify the translation, another automatic translator HCSP2Sim that translates from HCSP to Simulink is provided, so that the consistency between the original Simulink/Stateflowmodel and the translatedHCSP formalmodel can be checked by co-simulation; then, theHCSPprocesses obtained in the first step are verified by an interactive Hybrid Hoare Logic (HHL) prover; during the verification, an invariant generator independent of the theorem prover for synthesizing invariants for differential equations and loops is needed. We M. Chen (B) · S. Wang · N. Zhan · L. Zou State Key Lab. of Computer Science, Institute of Software, Chinese Academy of Sciences, Beijing, People’s Republic of China e-mail: chenms@ios.ac.cn S. Wang e-mail: wangsl@ios.ac.cn N. Zhan e-mail: znj@ios.ac.cn L. Zou e-mail: zoul@ios.ac.cn X. Han · T. Tang State Key Lab. of Rail Traffic Control and Safety, Beijing Jiaotong University, Beijing, People’s Republic of China M. Yang Chinese Academy of Space Technology, Beijing, People’s Republic of China H. Zhao School of Computer and Information Science, Southwest University, Chongqing, People’s Republic of China © Springer International Publishing AG 2017 M.G. Hinchey et al. (eds.), Provably Correct Systems, NASA Monographs in Systems and Software Engineering, DOI 10.1007/978-3-319-48628-4_3 39

E Clarke,A Fehnker,Z Han,B Krogh,O Stursberg,M Theobald

DOI: https://doi.org/10.1007/3-540-36577-X_14

2003-01-01

Abstract:Hybrid dynamic systems include both continuous and discrete state variables. Properties of hybrid systems, which have an infinite state space, can often be verified using ordinary model checking together with a finite-state abstraction. Model checking can be inconclusive, however, in which case the abstraction must be refined. This paper presents a new procedure to perform this refinement operation for abstractions of infinite-state systems, in particular of hybrid systems. Following an approach originally developed for finite-state systems [1,2], the refinement procedure constructs a new abstraction that eliminates a counterexample generated by the model checker. For hybrid systems, analysis. of the counterexample requires the computation of sets of reachable states in the continuous state space. We show how such reachability computations with varying degrees of complexity can be used to refine hybrid system abstractions efficiently.. A detailed example illustrates our counterexample-guided refinement procedure. Experimental results for a prototype implementation of the procedure indicate its advantages over existing methods.

Meng Li,Ratnesh Kumar

DOI: https://doi.org/10.1049/iet-cps.2017.0007

2017-01-01

Abstract:Simulink/Stateflow is a popular commercial model-based development tool for many industrial domains. For safety and security concerns, verification and testing must be performed on the Simulink/Stateflow designs and the generated code. The authors present a test generation approach for Simulink/Stateflow by its reduction to reachability in a hybrid automaton, with its locations representing the computations of the Simulink/Stateflow model, and edges representing the computation-succession. A novel reachability resolution method is presented based on the refinement of the hybrid automaton such that the reachability is reduced to the reachability in the underlying graph (without the dynamics), whenever the refinement step terminates. The approach yields a technique that is effective in terms of achieving test coverage and efficient in terms of test generation time whenever the computation of each time step can be analytically solved for an arbitrary number of repetition. The approach is also applied on defect-detection and requirements-satisfaction, and illustrated through application to a bounded counter and a cyberphysical system of a thermal control unit.