Lin Gui,Jun Sun,Yang Liu,Yuanjie Si,Jin Song Dong,Xinyu Wang

DOI: https://doi.org/10.1145/2483760.2483779

2013-01-01

Abstract:Testing provides a probabilistic assurance of system correctness. In general, testing relies on the assumptions that the system under test is deterministic so that test cases can be sampled. However, a challenge arises when a system under test behaves non-deterministiclly in a dynamic operating environment because it will be unknown how to sample test cases. In this work, we propose a method combining hypothesis testing and probabilistic model checking so as to provide the ``assurance" and quantify the error bounds. The idea is to apply hypothesis testing to deterministic system components and use probabilistic model checking techniques to lift the results through non-determinism. Furthermore, if a requirement on the level of ``assurance" is given, we apply probabilistic model checking techniques to push down the requirement through non-determinism to individual components so that they can be verified using hypothesis testing. We motivate and demonstrate our method through an application of system reliability prediction and distribution. Our approach has been realized in a toolkit named RaPiD, which has been applied to investigate two real-world systems.

Teng Long,Xingtao Ren,Qing Wang,Chao Wang

DOI: https://doi.org/10.1016/j.sysarc.2022.102646

IF: 5.836

2022-09-01

Journal of Systems Architecture

Abstract:With the development of network technology and the increasing popularity of distributed systems, the society pays more and more attention to the reliability of distributed systems. Distributed systems establish services and communications among a large number of terminals, and message passing is a common communication method in distributed systems. In practice, asynchronous mode has better performance than synchronous mode, but asynchronous completion makes the task of specifying correct behaviors more difficult. Verification of asynchronous distributed systems is challenging due to unpredictable interleaving and possible network failures. Aiming to verify the safety properties of asynchronous programs, we propose a simple procedure with the assumption of mergeable parallelism in this paper. Then we characterize inference rules to describe the sequence combination that satisfies the conditions of the receive operations. The program’s execution can be reduced to executions with sets of fixed order. A proof is provided to show its soundness. The correctness of the mergeable message passing programs could be verified by a state-of-the-art verification framework. Experimental results show that our method is efficient and applicable in various message passing cases.

computer science, software engineering, hardware & architecture

Tao Wang,Li Kang,Jiang Duan

DOI: https://doi.org/10.1016/j.comcom.2023.04.017

IF: 5.047

2023-04-21

Computer Communications

Abstract:When an onboard unit (OBU) moves into the area of a roadside unit (RSU), authentication occurs. In areas with heavy traffic, e.g., intersections, an RSU may receive thousands of requests in a short period . Verifying each request separately can lead to wasted resources and cause RSU service bottlenecks. Because these requests have stringent real-time requirements, if they are not processed in time, vehicles may not be able to change their driving status and could encounter large-scale congestion or even dangerous areas. To improve efficiency, this study investigated a secure access control scheme with batch verification for vehicular ad hoc networks . The proposed method requires only two bilinear pairing operations to verify n requests, which is the same number for a single verification. Through a performance analysis, it was confirmed that the proposed scheme has a lower computation cost and the least communication overhead among existing schemes. Furthermore, extensive simulations demonstrated that the scheme has the lowest processing delay, and as the number of batch verifications increases, its processing delay growth range also diminishes. A detailed security analysis shows that the scheme achieves collusion resistance, signature unforgeability, and replaying resistance.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yun-min ZHU,Li-wei ZHANG,Sheng-yuan WANG,Yuan DONG,Su-qin ZHANG

DOI: https://doi.org/10.3321/j.issn:0372-2112.2009.z1.001

2009-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:2 Abstract As the multi-core processor is widely used and advanced high-trusted software is required, the verification of parallel programs for multi-core processor becomes more and more important. This paper presents a proof framework about the verification of parallel programs, including the definition of our abstract machine, the formal specification for object code, logic inference rules and the proof of soundness theory. We certify the code at an assembly-level directly in order to disregard the correctness of compilers. The classic spin-lock technology is introduced to implement the mutually exclusive access to shared memory. Our proof framework supports Hoare-logic style reasoning. In addition, we use high-order logic to describe both operational semantics and security-policy, so the partial correctness of multi-core parallel programs can be verified in our system.

Yunfeng Hou,Qingdu Li,Yunfeng Ji,Gang Wang,Ching-Yen Weng

DOI: https://doi.org/10.1109/tcns.2023.3234598

IF: 4.347

2023-01-01

IEEE Transactions on Control of Network Systems

Abstract:In decentralized networked supervisory control of discrete-event systems (DESs), the local supervisors observe event occurrences subject to observation delays to make correct control decisions. Delay coobservability describes whether these local supervisors can make sufficient observations. In this paper, we provide an efficient way to verify delay coobservability. For each controllable event, we partition the specification language into a finite number of sets such that strings in different sets have different lengths. For each of the sets, we construct a verifier to check if delay coobservability holds for the controllable event. The computational complexity of the proposed approach is polynomial with respect to the number of states, the number of events, and the upper bounds on observation delays and only exponential with respect to the number of local supervisors. It has lower complexity order than the existing approaches. In addition, we investigate the relationship between the decentralized supervisory control of networked DESs and the decentralized fault diagnosis of networked DESs and show that delay $K$-codiagnosability is transformable to delay coobservability. Thus, techniques for the verification of delay coobservability can be leveraged to verify delay $K$-codiagnosability.

computer science, information systems,automation & control systems

ZHU Ming,BIAN Ji-nian,WU Wei-min

DOI: https://doi.org/10.3969/j.issn.1006-5911.2005.12.016

2005-01-01

Computer Integrated Manufacturing Systems

Abstract:To improve functional verification efficiency in large-scale circuit designs,a novel collaborative verification scheme was proposed and seamless collaboration platform for various verification technologies was constructed.Through this scheme,system functions were verified by adaptively selecting appropriate techniques according to classified functional properties.Therefore,the overall verification scale could be effectively reduced by selecting the most suitable verification method and special optimization techniques for different parts of the design.The collaborative process was performed on a refined model extracted from Control Data Flow Graph(CDFG) by using special optimization techniques such as property grouping,variable reordering and model-refining.The validity and practicality of this collaborative scheme were checked by the experiments on ITC99 benchmarks.

Saksham Goel,Benjamin Mikek,Jehad Aly,Venkat Arun,Ahmed Saeed,Aditya Akella

2024-02-28

Abstract:Performance verification is a nascent but promising tool for understanding the performance and limitations of heuristics under realistic assumptions. Bespoke performance verification tools have already demonstrated their value in settings like congestion control and packet scheduling. In this paper, we aim to emphasize the broad applicability and utility of performance verification. To that end, we highlight the design principles of performance verification. Then, we leverage that understanding to develop a set of easy-to-follow guidelines that are applicable to a wide range of resource allocation heuristics. In particular, we introduce Virelay, a framework that enables heuristic designers to express the behavior of their algorithms and their assumptions about the system in an environment that resembles a discrete-event simulator. We demonstrate the utility and ease-of-use of Virelay by applying it to six diverse case studies. We produce bounds on the performance of classical algorithms, work stealing and SRPT scheduling, under practical assumptions. We demonstrate Virelay's expressiveness by capturing existing models for congestion control and packet scheduling, and we verify the observation that TCP unfairness can cause some ML training workloads to spontaneously converge to a state of high network utilization. Finally, we use Virelay to identify two bugs in the Linux CFS load balancer.

Logic in Computer Science

Yang Yang,Haiyang Yu,Yanan Zhao,Han Jiang,Yilong Ren

DOI: https://doi.org/10.1016/j.vehcom.2023.100683

IF: 6.7

2023-10-21

Vehicular Communications

Abstract:The Internet of Vehicles (IoV) can improve the efficiency of transportation systems while enhancing the passenger travel experience. However, due to the open wireless communication environment of the IoV, the transmission of data faces the threats of eavesdropping, forging and tampering. Fortunately, the concept of Vehicle-assisted Message Verification Schemes (VMS) are proposed which not only ensures the integrity and authenticity of message but also alleviates the burden of original verification nodes such as Roadside Units (RSUs). Nevertheless, since the individual rationality of vehicles, not all vehicles are willing to participate the message verification tasks. Besides, there may be an overlap in sensory ranges of vehicles that results in redundant verification data. Such two challenges greatly hinder the development of the VMS. Therefore, we present LBABV, a vehicle-assisted batch verification scheme towards load balancing in the IoV system. Firstly, we propose a novel batch verification scheme to enhance the efficiency of messages verification. Then, based on the proposed batch verification scheme, an assisted nodes selection algorithm with incentive mechanism is designed to select a suitable set of vehicles for parallel verification. In this way, the problems of redundant verification as well as individual rationality are elegantly addressed. Theoretical analysis demonstrates the security of our proposal. In the meanwhile, the simulation results show that the system total delay of our LBABV is reduced by 75% compared to batch verification and 81% compared to individual verification, respectively.

telecommunications,transportation science & technology

Xue Ruini,Chen Wenguang,Zheng Weimin

DOI: https://doi.org/10.3321/j.issn:1671-4512.2005.z1.031

2005-01-01

Journal of Huazhong University of Science and Technology

Abstract:As high-performance computing systems continue to grow in size and popularity,issues of fault tolerance and reliability turn into limiting factors on application scalability and system availability.Current fault tolerance systems for parallel applications through checkpoint/restart cannot handle the communication environment transparently.Sockets would be closed before checkpointing and reestablished after recovery,which is difficult to implement and prone to errors."Communication exclusion" based on differential memory function is proposed to separate the communication and computation modules in order to avoid dealing with sockets directly.Experimental results indicate a little improvement on checkpointing performance.The strategy is helpful on reducing implementation complexity and improving recovery reliability,and is easy to be ported due to its independency to any parallel system.

Thanakorn Khamvilai,Louis Sutter,Eric Feron,Philippe Baufreton,Francois Neumann

DOI: https://doi.org/10.48550/arXiv.1910.06313

2019-11-19

Abstract:This work presents a decentralized allocation algorithm of safety-critical application on parallel computing architectures, where individual Computational Units can be affected by faults. The described method consists in representing the architecture by an abstract graph where each node represents a Computational Unit. Applications are also represented by the graph of Computational Units they require for execution. The problem is then to decide how to allocate Computational Units to applications to guarantee execution of the safety-critical application. The problem is formulated as an optimization problem, with the form of an Integer Linear Program. A state-of-the-art solver is then used to solve the problem. Decentralizing the allocation process is achieved through redundancy of the allocator executed on the architecture. No centralized element decides on the allocation of the entire architecture, thus improving the reliability of the system. Experimental reproduction of a multi-core architecture is also presented. It is used to demonstrate the capabilities of the proposed allocation process to maintain the operation of a physical system in a decentralized way while individual component fails.

Distributed, Parallel, and Cluster Computing,Systems and Control,Optimization and Control

Christian Cachin,Olga Ohrimenko

DOI: https://doi.org/10.1007/978-3-319-14472-6_1

2018-03-26

Abstract:A group of mutually trusting clients outsources a computation service to a remote server, which they do not fully trust and that may be subject to attacks. The clients do not communicate with each other and would like to verify the correctness of the remote computation and the consistency of the server's responses. This paper presents the Conflict-free Operation verification Protocol (COP) that ensures linearizability when the server is correct and preserves fork-linearizability in any other case. All clients that observe each other's operations are consistent, in the sense that their own operations and those operations of other clients that they see are linearizable. If the server forks two clients by hiding an operation, these clients never again see operations of each other. COP supports wait-free client operations in the sense that when executed with a correct server, non-conflicting operations can run without waiting for other clients, allowing more parallelism than earlier protocols. A conflict arises when an operation causes a subsequent operation to produce a different output value for the client who runs it. The paper gives a precise model for the guarantees of COP and includes a formal analysis that these are achieved.

Distributed, Parallel, and Cluster Computing

Lin Yi-fan,Zeng Xiao-yang,Wu Min,Chen Jun

DOI: https://doi.org/10.1109/ICASIC.2005.1611289

2005-01-01

Abstract:With the rapid development on the software-hardware co-verification of SoC, FPGA verification has become more and more critical for VLSI design, and it requires much more portion of time within the life circle of chip development. The time spent on the FPGA verification should be reduced to achieve a more efficient time-to-market for the IC product. Therefore, several strategies using both dynamic and static methods to execute this verification are proposed in this paper. By using a variety of techniques such as software static breakpoint monitoring and interrupt vectors remapping, the software verification is accelerated. A bus analyzer is adopted to provide real-time bus monitoring with a vivid evaluation of the system performance. In this paper, experiments show that above methods have greatly enhanced the efficiency and speed of the FPGA co-verification process

Wei-Chang Yeh

DOI: https://doi.org/10.48550/arXiv.2209.09711

2022-09-20

Abstract:Various networks are broadly and deeply applied in real-life applications. Reliability is the most important index for measuring the performance of all network types. Among the various algorithms, only implicit enumeration algorithms, such as depth-first-search, breadth-search-first, universal generating function methodology, binary-decision diagram, and binary-addition-tree algorithm (BAT), can be used to calculate the exact network reliability. However, implicit enumeration algorithms can only be used to solve small-scale network reliability problems. The BAT was recently proposed as a simple, fast, easy-to-code, and flexible make-to-fit exact-solution algorithm. Based on the experimental results, the BAT and its variants outperformed other implicit enumeration algorithms. Hence, to overcome the above-mentioned obstacle as a result of the size problem, a new parallel BAT (PBAT) was proposed to improve the BAT based on compute multithread architecture to calculate the binary-state network reliability problem, which is fundamental for all types of network reliability problems. From the analysis of the time complexity and experiments conducted on 20 benchmarks of binary-state network reliability problems, PBAT was able to efficiently solve medium-scale network reliability problems.

Distributed, Parallel, and Cluster Computing,Data Structures and Algorithms,Networking and Internet Architecture,Combinatorics

Jiaming Cheng,Wei Zhao

DOI: https://doi.org/10.1007/s00158-021-02857-8

IF: 4.279

2021-02-09

Structural and Multidisciplinary Optimization

Abstract:The existing engineering structural system is featured by complicated limit state functions of high nonlinearity, resulting in the conventional reliability analysis approach that is unable to evaluate these problems accurately or even unavailable. Various analytical methods have been presented by researchers over the past decades. However, these methods have difficulties in striking a balance between accuracy and computational efficiency. This paper proposes a relatively efficient and accurate procedure to estimate the failure probability of the parallel system based on the FORM and a new metaheuristic algorithm, chaotic enhanced colliding bodies optimization algorithm (CECBO). The CECBO has shown robustness, high accuracy, and implementation simplicity for solving optimization problems from previous work. Thus, the CECBO is employed to search the point of maximum likelihood (PML), a point that yields the highest value of the probability density function in the failure domain, through solving an optimization model and then approximates the failure domain of the parallel system to estimate the failure probability accurately. The results of the test examples indicate that the proposed procedure is promising for the estimation of the failure probability of a parallel system in terms of accuracy and efficiency.

mechanics,computer science, interdisciplinary applications,engineering, multidisciplinary

Zhiqiu Kong,Jinian Bian,Yanni Zhao,Shujun Deng

2009-01-01

Abstract:Complexity and large scale of SoC designs call for developments in today’s verification techniques. On the one hand, it costs too much efforts and time in traditional RTL modeling methodologies when verifying large scale designs; on the other hand, properties requiring cycle accuracy are not efficiently verified in Transaction Level Models due to the abstraction. In this paper, we present a hierarchical verification methodology which is dedicated to make tradeoffs between verification efficiency and completeness. Design under Verification (DUV) is firstly abstracted based on transactions; refinements on them will be done later in verification flow only when verifying properties which require finer time accuracy. Furthermore, improvements on model checking techniques are also proposed.

Guang Chen,Dexi Wang,Tianchi Li,Chao Zhang,Ming Gu,Jiaguang Sun

DOI: https://doi.org/10.1109/apsec.2018.00027

2018-01-01

Abstract:Software verification has been well applied in safety critical areas and has shown the ability to provide better quality assurance for modern software. However, as lines of code and complexity of software systems increase, the scalability of verification becomes a challenge. In this paper, we present an automatic software verification framework TSV to address the scalability issues: (i) the extended structural abstraction and property-guided program slicing to solve large-scale program verification problem, saving time and memory without losing accuracy; (ii) automatically select different verification methods according to the program and property context to improve the verification efficiency. For evaluation, we compare TSV's different configurations with existing C program verifiers based on open benchmarks. We found that TSV with auto-selection performs better than with bounded model checking only or with extended structural abstraction only. Compared to existing tools such as CMBC and CPAChecker, it acquires 10%-20% improvement of accuracy and 50%-90% improvement of memory consumption.

Zhenyu Li,Yong Ding,Honghao Gao,Bo Qu,Yujue Wang,Jun Li

DOI: https://doi.org/10.1145/3511901

IF: 5.3

2022-03-24

ACM Transactions on Internet Technology

Abstract:Edge networks are providing services for an increasing number of companies, and they can be used for communication between edge devices and edge gateways. However, the performance of edge devices varies greatly, and it is not easy to upgrade low-performance edge devices. Therefore, cyber attackers can use the vulnerability of edge devices to implement advanced persistent threat (APT) attacks. This paper proposes a network verification framework for edge networks that can minimize the upgrades needed to strengthen edge network security. First, the communication parties use the data transmitted by the given edge network. Our method uses our proposed PacketVerifier to attach verification information to the packet after it is sent and to verify and restore the packet before it reaches the receiver. Second, due to the performance requirements of edge networks, we design a new data processing structure, namely, a sliding window double ring (SWDR), to improve the performance of strict sequential protocols in parallel validation. Finally, experimental simulations show that our parallel processing algorithm has good performance in terms of network bandwidth compared with two existing packet processing algorithms. Furthermore, the proposed packet with verification information is compatible with the existing network topology, which helps PacketVerifier establish trustworthy transmission in a zero-trust environment.

computer science, information systems, software engineering

Qian Zhang,Shangping Wang,Duo Zhang,Jifang Wang,Yinjuan Deng

DOI: https://doi.org/10.1016/j.comnet.2023.109757

IF: 5.493

2023-04-08

Computer Networks

Abstract:The transaction processing mode of the permissionless blockchain with the PoW protocol is to generate transaction block through network-wide competition and perform transaction verification by all the nodes jointly, resulting in wasted computing power resources and low throughput as bottlenecks for its application in industrial fields with high-frequency transactions. In order to enhance the transaction processing performance of the blockchain system and meet the actual security requirements, we propose a scalable and fault-tolerant selection method of verification and accounting nodes. Firstly, combined with the advantages of PoW, we apply the computationally difficult problem in the selection method of the verification set, which can fully utilize computing resources and ensure the efficiency of transaction verification. Afterwards, a fault-tolerant selection method of accounting node is designed by constructing the verifiable random number using threshold signature, which can ensure the robust operation of the system in the presence of malicious nodes. The newly developed method has the following advantages: it has fault-tolerant characteristics; the method can be applied to systems with Byzantine or non-Byzantine errors, and is appropriate for practical application scenarios. It has compatibility, the method can be seamlessly integrated into Byzantine fault tolerance, crash tolerance, threshold voting and other consensus protocols to improve the performance of the protocol. It has versatility, the method can be applied to both single blockchains and sharding blockchains to demonstrate its versatility and flexibility. Finally, the results of the security analysis and experiment show the method is of superiority and effectiveness.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Nacha Chondamrongkul,Jing Sun,Bingyang Wei,Ian Warren

DOI: https://doi.org/10.1109/HASE.2019.00018

2019-01-01

Abstract:In the component-based software system, certain behaviours of components and their composition may affect system reliability at runtime. This problem can be early detected through the automated verification of software architecture design, by which model checking is one of the techniques to achieve this. However, its practicality and performance issue remain challenges. This paper presents a scalable approach for the software architecture verification. The modelling is proposed to manifest the behaviours in the software component, in order to detect problematic behaviours, such as circular dependency and performance bottleneck. The outcome of the verification identifies the problem and the scenarios that cause it. In order to mitigate the verification performance issue, the parallelism is applied to the verification process so that multiple decomposed models can be simultaneously verified on a multi-threaded environment. As some software systems are designed as the monolithic architecture, we present a method that helps to automatically decompose a large monolithic model into a set of smaller sub-models. Our approach was evaluated and proved to enhance the performance of the verification process for the large-scale complex software systems.

Shenshen Chen,Geng Li,Dennis Duan,Kerim Gokarslan,Bin Li,Qiao Xiang,Haitao Yu,Franck Le,Richard Yang,Ying Zhang

DOI: https://doi.org/10.48550/arXiv.2005.11425

2022-01-13

Abstract:Achieving highly reliable networks is essential for network operators to ensure proper packet delivery in the event of software errors or hardware failures. Networks must ensure reachability and routing correctness, such as subnet isolation and waypoint traversal. Existing work in network verification relies on centralized computation at the cost of fault tolerance, while other approaches either build an over-engineered, complex control plane, or compose multiple control planes without providing any guarantee on correctness. This paper presents Carbide, a novel system to achieve high reliability in networks through distributed verification and multiple control plane composition. The core of Carbide is a simple, generic, efficient distributed verification framework that transforms a generic network verification problem to a reachability verification problem on a directed acyclic graph (DAG), and solves the latter via an efficient distributed verification protocol (DV-protocol). Equipped with verification results, Carbide allows the systematic composition of multiple control planes and realization of operator-specified consistency. Carbide is fully implemented. Extensive experiments show that (1) Carbide reduces downtime by 43% over the most reliable individual underlying control plane, while enforcing correctness requirements on all traffic; and (2) by systematically decomposing computation to devices and pruning unnecessary messaging between devices during verification, Carbide scales to a production data center network.

Networking and Internet Architecture