Building Correct Cyber-Physical Systems: Why We Need a Multiview Contract Theory

Graf, Susanne; Quinton, Sophie; Girault, Alain; Gößler, Gregor

doi:10.1007/978-3-030-00244-2_2

Cited by 10 publications

(5 citation statements)

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A recent interest in creating contract frameworks for cyber-physical systems is appearing. The complexity of such systems and their interconnections make the verification and validation process challenging, render traditional system design methods inadequate, and call for more powerful frameworks to design such complex systems [11,19].…”

Section: Related Workmentioning

confidence: 99%

A Mechanically Verified Theory of Contracts

Kastenbaum,

Boyer,

Talpin

2021

Preprint

View full text Add to dashboard Cite

Cyber-physical systems (CPS) are assemblies of networked, heterogeneous, hardware, and software components sensing, evaluating, and actuating a physical environment. This heterogeneity induces complexity that makes CPSs challenging to model correctly. Since CPSs often have critical functions, it is however of utmost importance to formally verify them in order to provide the highest guarantees of safety. Faced with CPS complexity, model abstraction becomes paramount to make verification attainable. To this end, assume/guarantee contracts enable component model abstraction to support a sound, structured, and modular verification process. While abstractions of models by contracts are usually proved sound, none of the related contract frameworks themselves have, to the best of our knowledge, been formally proved correct so far. In this aim, we present the formalization of a generic assume/guarantee contract theory in the proof assistant Coq. We identify and prove theorems that ensure its correctness. Our theory is generic, or parametric, in that it can be instantiated and used with any given logic, in particular hybrid logics, in which highly complex cyber-physical systems can uniformly be described.

show abstract

Section: Related Workmentioning

confidence: 99%

A Mechanically Verified Theory of Contracts

Kastenbaum,

Boyer,

Talpin

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…We require that new components may read but never write to the existing components via FIFOs or registers unless writing operations by the new components fulfill given requirements (specified using e.g. contracts [13]), which is essential for future updates to preserve the original system functionality. Even though protocols may be needed to coordinate data exchange among the components (e.g.…”

Section: Separation Of Computation and Communicationmentioning

confidence: 99%

MIMOS: A Deterministic Model for the Design and Update of Real-Time Systems

Wang¹,

Mohaqeqi²,

Graf³

2020

Preprint

Self Cite

View full text Add to dashboard Cite

Inspired by the pioneering work of Gilles Kahn on concurrent systems, we propose to model timed systems as a network of software components (implemented as real-time processes or tasks), each of which is specified to compute a collection of functions according to given timing constraints. We present a fixed-point semantics for this model which shows that each system function of such a network computes for a given set of (timed) input streams, a deterministic (timed) output stream. As a desired feature, such a network model can be modified by integrating new components for adding new system functions without changing the existing ones. Additionally, existing components may be replaced also by new ones fulfilling given requirements. Thanks to the deterministic semantics, a model-based approach is enabled for not only building systems but also updating them after deployment, allowing for efficient analysis techniques such as model-in-theloop simulation to verify the complete behaviour of the updated system.

show abstract

“…These two examples illustrate the fact that researchers and tool providers must pay closer attention to which timing guarantees are used in practice. A better understanding about how the real-time aspects interface with other viewpoints such as function or energy consumption is needed for that [13].…”

Section: Expressivity Of the Provided Guaranteesmentioning

confidence: 99%

Evaluation and Comparison of Real-Time Systems Analysis Methods and Tools

Quinton

2018

Formal Methods for Industrial Critical Systems

Self Cite

View full text Add to dashboard Cite

The verification of real-time systems has been an active area of research for several decades now. Some results have been successfully transferred to industry. Still, many obstacles remain that hinder a smooth integration of academic research and industrial application. In this extended abstract, we discuss some of these obstacles and ongoing research and community efforts to bridge this gap. In particular, we present several experimental and theoretical methods to evaluate and compare real-time systems analysis methods and tools.

show abstract

Building Correct Cyber-Physical Systems: Why We Need a Multiview Contract Theory

Cited by 10 publications

References 40 publications

A Mechanically Verified Theory of Contracts

A Mechanically Verified Theory of Contracts

MIMOS: A Deterministic Model for the Design and Update of Real-Time Systems

Evaluation and Comparison of Real-Time Systems Analysis Methods and Tools

Contact Info

Product

Resources

About