Yi Li,Meng Sun

DOI: https://doi.org/10.1016/j.scico.2015.10.016

IF: 1.039

2015-01-01

Science of Computer Programming

Abstract:Connectors have emerged as a powerful concept for composition and coordination of concurrent activities encapsulated as components and services. Compositional coordination languages like Reo, serve as a means to formally specify and implement connectors. They support large-scale distributed applications by allowing construction of complex component connectors out of simpler ones. In this paper, we present a new approach to modeling and verification of Reo connectors via Coq, a proof assistant based on higher-order logic and A.-calculus. Basic notions in Reo, like nodes and channels, are defined by inductive types. By tracing the data streams, we provide a method for simulation of the behavior and output of a given Reo connector. With input constraints specified, connectors' properties can be proved by induction. Furthermore, properties specified in LTL can be verified using a simulation-based model-checking approach. An access control system is investigated to show our approach. (C) 2015 Elsevier B.V. All rights reserved.

Xiyue Zhang,Meng Sun

DOI: https://doi.org/10.18293/seke2018-023

2018-01-01

Abstract:The coordination language Reo has played an important role in organizing the interactions among different components in large-scale distributed applications. A probabilistic extension on classical Reo is necessary to deal with the uncertainty of the real world. In this paper we developed a framework in Coq for formalizing probabilistic connectors and reasoning about their probabilistic properties. Different types of probabilistic channels are characterized by the relations on their input and output timed data distribution streams. More complex probabilistic connectors can be further constructed based on the probabilistic channels and composition operators. Within such a framework, properties under analysis and refinement / equivalence relations between probabilistic connectors can be naturally established as theorems and proved using tactics in Coq.

Ziyun Xu,Meng Sun

DOI: https://doi.org/10.1109/csce60160.2023.00410

2023-01-01

Abstract:The Internet of Things (IoT) is rapidly advancing and reshaping the whole world. Coordination models and languages, like Reo and Orc, provide connectors that interconnect components in IoT applications and organize their interactions in distributed environments. In this paper, we propose a method for formally modeling and verifying the properties of timed connectors using Z3, an SMT (Satisfiability Modulo Theories) solver. We use Z3 Python-bindings to construct the models and carry out experiments. The formal model in Z3 clearly reflects the original structure of connectors. With the definition in Z3, we can automatically verify time-related properties of connectors, and automatically construct counter-examples when the properties do not hold.

Yi Li,Meng Sun

DOI: https://doi.org/10.1007/978-3-319-07602-7_17

2014-01-01

Abstract:Connectors have emerged as a powerful concept for composition and coordination of concurrent activities encapsulated as components and services. Compositional coordination languages, like Reo, serve as a means to formally specify and implement connectors. They support large-scale distributed applications by allowing construction of complex component connectors out of simpler ones. In this paper, we present a new approach to modeling and analysis of Reo connectors via Coq, a proof assistant based on high-order logic and lambda-calculus. Basic notions in Reo, like nodes and channels, are defined by inductive types. By tracing the data streams, we can simulate the behavior and output of a given Reo connector. Besides, with prerequisite axioms given, we can automatically prove connectors' properties using the Coq proof assistant.

Xiyue Zhang,Weijiang Hong,Yi Li,Meng Sun

DOI: https://doi.org/10.1007/978-3-319-57666-4_11

IF: 1.039

2018-01-01

Science of Computer Programming

Abstract:Reo is a channel-based exogenous coordination language in which complex coordinators, called connectors, are compositionally built out of simpler ones. In this paper, we present an approach to model and reason about connectors using Coq and Z3. Both models reflect the original structure of connectors as closely as possible. In our framework, both basic connectors (channels) and composition operations are modeled as axioms. Then complex connectors are modeled as the combination of logical predicates which correspond to simpler connectors. With such definitions provided, connector properties, as well as equivalence and refinement relations between different connectors, can be formalized as goals in Coq and proved using pre-defined tactics, if satisfied by connectors. When failing to prove whether a property is satisfiable or not with Coq, we use Z3, an SMT solver, to search for possible bounded counter examples automatically.

M. Saqib Nawaz,Meng Sun

DOI: https://doi.org/10.18293/seke2018-024

2018-01-01

Abstract:Compositional coordination models such as Reo provide powerful support for the development of large-scale distributed systems by allowing construction of complex connectors that coordinate behavior among different components. The reliability of such distributed systems highly depends on the correctness of connectors. In this paper, we use the proof assistant PVS for formal modeling, analysis and verification of component connectors. We first present the modeling of primitive channels and the composition operators that are used to combine channels for building complex connectors. Furthermore, we show how to model and analyze connector’s behavior in PVS and prove some interesting connector properties. The model reflects the original topological structure of connectors simply and clearly. With the provided approach, different kinds of connector properties can be naturally formalized and proved in PVS.

Sun Meng,Farhad Arbab

DOI: https://doi.org/10.1007/978-3-540-72952-5_19

2007-01-01

Abstract:In this paper we introduce a formal model for reasoning about resource sensitive timed component connectors. We extended the constraint automata model, which is used as the semantic model for the exogenous channelbased coordination language Reo, through integrating both resource and time information. This model allows to specify both the interactions that take time to be performed and timeouts. Moreover, the model reflects resource issues, such as bandwidth or allocated memory, that may affect the time needed for interactions when specifying the timed behavior of connectors. The time duration that an interaction takes is represented by a function on the available resources. In addition to the formalism, we also discuss compositional reasoning and present two notions of simulation to relate different connectors from functional and resourcesensitive temporal perspectives respectively.

Meng Sun,Xiyue Zhang

DOI: https://doi.org/10.1007/978-3-030-00151-3_8

2018-01-01

Abstract:Connectors have shown their great potential for coordination of concurrent activities encapsulated as components and services in large-scale distributed applications. In this paper, we develop a formal model for a probabilistic extension of the channel-based coordination language Reo. The model formalizes connectors with probabilistic behavior as relations on Timed Data Distribution Streams (TDDSs), which specifies properties of primitive channels and complex connectors with probabilistic behavior properly. Furthermore, the implementation of this probabilistic model has been developed in Coq, which serves to demonstrate how the model can be used to prove probabilistic connectors’ properties.

Hai Wan,Gang Chen,Xiaoyu Song,Ming Gu

DOI: https://doi.org/10.1109/COMPSAC.2009.49

2009-01-01

Abstract:Programmable logic controllers (PLCs) are widely used in embedded systems. A timer plays a pivotal role in PLC real-time applications.The paper presents a formalization of TON-timers of PLC programs in the theorem proving system Coq. The behavior of a timer is characterized by a set of axioms at an abstract level. PLC programs with timers are modeled in Coq. As a case study, the quiz machine problem with timer is investigated. Relevant timing properties of practical interests are proposed and proven in Coq. This work unveils the hardness of timer modeling in embedded systems. It is an attempt of formally proving the correctness of PLC programs with timer control.

H. Wan,G. Chen,X. Song,M. Gu

DOI: https://doi.org/10.1049/iet-sen.2010.0002

2011-01-01

IET Software

Abstract:Programmable logic controllers (PLCs) are widely used in embedded systems. Timers play a pivotal role in PLC real-time applications. The formalisation of timers is of great importance. The study presents a formalisation of PLC timers in the theorem proving system Coq, in which the behaviours of timers are characterised by a set of axioms at an abstract level. The authors discuss how to model timers at a proper and sound abstract level. PLC programs with timers are modelled. As a case study, a quiz machine problem with a timer is investigated. This work demonstrates the complexity of formal timer modelling.

Xiyue Zhang,Yi Li,Weijiang Hong,Meng Sun

DOI: https://doi.org/10.1109/tase.2019.00-12

2019-01-01

Abstract:Formal modeling and verification of component connectors in complex software systems are getting more interests with recent advancements and evolution in modern software techniques. Various properties of connectors can be specified as high-order logic propositions and verified using theorem proving techniques. However, most high-order logic provers still highly rely on human interactions and thus make the proving process difficult and time-consuming. In this paper, we propose an approach based on recurrent neural networks (RNNs) to predict the correct tactics in the proving process. Recurrent layers consisting of Long-Short-Term-Memory (LSTM) units provide a better correctness rate comparing with simple RNN units. Under this framework, properties of connectors can be naturally formalized and semi-automatically proved in Coq.

Sun Meng

DOI: https://doi.org/10.1109/tase.2012.36

2012-01-01

Abstract:Compositional coordination models and languages serve as a means to formally specify and implement component and service connectors. They support large-scale distributed applications by allowing construction of complex component connectors out of simpler ones. In this paper, we extend the design model for the channel-based coordination language Reo by introducing designs for timed connectors. Design is a key concept in Unifying Theories of Programming (UTP), which is used to describe the contract between programmer and client. The model developed in this paper specifies properties of timed channels and timed component connectors properly. Implementation of the design model developed in JTom is provided.

M. Saqib Nawaz,Meng Sun

DOI: https://doi.org/10.1007/978-3-030-31517-7_5

2019-01-01

Abstract:Reo is a channel-based coordination language that allows the construction of connectors to coordinate behavior among different components in distributed systems. Probabilistic connectors in Reo capture the random and probabilistic behavior to deal with the uncertainty of the real world. In this paper we use PVS to provide a mechanical formalization for probabilistic connectors. We first present the formalization of random/probabilistic channels and the composition operators in PVS. Random and probabilistic channels are modeled as relations on timed data distribution sequences that are observed at the source and sink ends of these channels. Composition operators are used to combine random/probabilistic channels together with primitive channels to construct complex component connectors. The approach can be used to naturally specify complex connectors and prove important properties for probabilistic connectors as well as the refinement/equivalence relations between them with the PVS proof assistant.

Yi Li,Meng Sun,Yiwu Wang

DOI: https://doi.org/10.1109/tase.2016.24

2016-01-01

Abstract:Coordination models and languages play a key role in formally specifying the communication and interaction among different components in large-scale concurrent systems. In this paper, we use active learning to extract timed connector models from black-box system implementations. Firstly, parameterized Mealy machine (PMM) is introduced as an operational semantic model for channel-based coordination language Reo. With product and link operators defined, we can construct complex connectors by joining basic ones in form of PMM. Moreover, with a concretize mapping function, PMMs can be easily transformed into Mealy machines, and the latter can be extracted by an optimized L* algorithm.

Shaodong Li,Xiaohong Chen,Yiwu Wang,Meng Sun

DOI: https://doi.org/10.1109/TASE.2015.9

2015-01-01

Abstract:Coordination is playing a key role in complex cyberphysicalsystems (CPSs). The complexity and importance of coordination models and languages for CPSs necessarily lead to a higher relevance of testing during development of CPSs. Model-based testing is a promising technology to test the conformance or non-conformance relation between the implementation-under-test (IUT) and its specification. In this paper, we present an approach to test the conformance relation tiococ(Timed Input-Output Conformance) between the implementation of a timed Reo connector and its specification given by a timed constraint automaton (TCA). An algorithm to generate test cases from a TCA is proposed and the testing approach is implemented in UPPAAL.

Marco Autili,Taolue Chen,Chris Chilton,Tingting Han,Lukáš Holík,Paola Inverardi,Bengt Jønsson,Marta Kwiatkowska,Marco Martinucci,Hongyang Qu,Massimo Tivoli

2012-01-01

Abstract:We supply details of a compositional specification theory we have been working on for modelling connectors and components. This supports the operations of parallel composition, for examining the structural behaviour of networked systems, logical conjunction, for supporting independent development of components, and quotient for incremental development in the form of component/connector synthesis. Our framework, a portion of which is conceptually similar to interface automata, is unique in that we've provided the first definition of quotient that can act on components exhibiting non-determinism, as well as the first definition of conjunction on this flavour of model. A refinement preorder corresponding to safe-substitutivity allows for the seamless interchanging of components and connectors without violating environmental assumptions. Our formulation of refinement also ensures that the framework enjoys strong algebraic properties. These are necessary for reasoning about components and connectors in a compositional manner.

Sun Meng,Farhad Arbab,Bernhard K. Aichernig,Lacramioara Astefanoaei,Frank S. de Boer,Jan Rutten

DOI: https://doi.org/10.1016/j.scico.2011.04.002

IF: 1.039

2012-01-01

Science of Computer Programming

Abstract:Over the past years, the need for high-confidence coordination mechanisms has intensified as new technologies have appeared for the development of service-oriented applications, making formalization of coordination mechanisms critical. Unifying Theories of Programming (UTP) provide a formal semantic foundation not only for programming languages but also for various expressive specification languages. A key concept in UTP is design: the familiar pre/post-condition pair that describes a contract. In this paper we use UTP to formalize Reo connectors, whereby connectors are interpreted as designs in UTP. This model can be used as a semantic foundation for proving properties of connectors, such as equivalence and refinement relations between connectors. Furthermore, it can be used as a reference document for developing tool support for Reo, such as test case generators. A fault-based method to generate test cases for component connectors from specifications is also provided in this paper. For connectors, faults are caused by possible errors during the development process, such as wrongly used channels, missing or redundant subcircuits, or circuits with wrongly constructed topology. We give test cases and connectors a unifying formal semantics by using the notion of design in UTP, and generate test cases by solving constraints obtained from a specification and a faulty implementation. A prototype serves to demonstrate the automatization of the approach.

Farhad Arbab,Tom Chothia,Sun Meng,Young-Joo Moon

DOI: https://doi.org/10.1007/978-3-540-72794-1_16

2007-01-01

Abstract:Connectors have emerged as a powerful concept for composition and coordination of concurrent activities encapsulated as components and services. Compositional coordination models and languages serve as a means to formally specify and implement component and service connectors. They support large-scale distributed applications by allowing construction of complex component connectors out of simpler ones. Modelling, analysis, and ensuring end-to-end Quality of Service (QoS) represent key concerns in such large-scale distributed applications. In this paper we introduce a compositional model of QoS, called Quantitative Constraint Automata, that reflects the underlying architecture of component/service composition represented by the Reo connector circuits. These can support compositional reasoning about component/service connectors, modelled as Reo circuits with QoS properties.

R. Wang,X. Song,M. Gu

DOI: https://doi.org/10.1049/iet-sen:20070009

2007-01-01

IET Software

Abstract:Validation is an important task in complex embedded system designs. A method of modelling and analysing embedded systems with programmable logic controllers is presented. Controllers and physical plants are modelled using timed automata. The system requirements are specified and formalised as computational tree logic properties. It is demonstrated that the designed model satisfies the required properties by resorting to a symbolic model checker, Uppaal, for real-time systems. A realistic example, the steeve controller of a theatre, illustrates the strategies. The safety and time constraint requirements are validated by Uppaal. The experimental results demonstrate the effectiveness of the approach presented here.

Chih-Hong Cheng,Christian Buckl,Javier Esparza,Alois Knoll

DOI: https://doi.org/10.1109/DS-RT.2009.20

2009-10-21

Abstract:The increasing use of model-based tools enables further use of formal verification techniques in the context of distributed real-time systems. To avoid state explosion, it is necessary to construct verification models that focus on the aspects under consideration. In this paper, we discuss how we construct a verification model for timing analysis in distributed real-time systems. We (1) give observations concerning restrictions of timed automata to model these systems, (2) formulate mathematical representations on how to perform model-to-model transformation to derive verification models from system models, and (3) propose some theoretical criteria how to reduce the model size. The latter is in particular important, as for the verification of complex systems, an efficient model reflecting the properties of the system under consideration is equally important to the verification algorithm itself. Finally, we present an extension of the model-based development tool FTOS, designed to develop fault-tolerant systems, to demonstrate %the benefits of our approach.

Distributed, Parallel, and Cluster Computing,Logic in Computer Science