Evolution of Formal Model-Based Assurance Cases for Autonomous Robots

Gleirscher, Mario; Foster, Simon; Nemouchi, Yakoub

doi:10.1007/978-3-030-30446-1_5

Cited by 18 publications

(15 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Our approach improves the state of the art of ASC synthesis for HRC settings, particularly, when dealing with multiple risks, mitigation options, and safety modes. Verification results from using our method can contribute evidence to an ASC assurance case [30]- [32].…”

Section: Discussionmentioning

confidence: 93%

Safety Controller Synthesis for Collaborative Robots

Gleirscher

Călinescu

2020

2020 25th International Conference on Engineering of Complex Computer Systems (ICECCS)

Self Cite

View full text Add to dashboard Cite

In human-robot collaboration (HRC), softwarebased automatic safety controllers (ASCs) are used in various forms (e.g. shutdown mechanisms, emergency brakes, interlocks) to improve operational safety. Complex robotic tasks and increasingly close human-robot interaction pose new challenges to ASC developers and certification authorities. Key among these challenges is the need to assure the correctness of ASCs under reasonably weak assumptions. To address this need, we introduce and evaluate a tool-supported ASC synthesis method for HRC in manufacturing. Our synthesis approach is informed by the manufacturing process, risk analysis, and regulations. A synthesised ASC is formally verified against correctness criteria and selected from a design space of feasible controllers according to a set of optimality criteria. Such an ASC can detect the occurrence of hazards, move the process into a safe state, and, in certain circumstances, return the process to an operational state from which it can resume its original task.

show abstract

Section: Discussionmentioning

confidence: 93%

Safety Controller Synthesis for Collaborative Robots

Gleirscher

Călinescu

2020

2020 25th International Conference on Engineering of Complex Computer Systems (ICECCS)

Self Cite

View full text Add to dashboard Cite

show abstract

“…Isabelle/SACM enforces the usage of formal ontological links which represent the provenance between the assurance arguments and their claims, a feature inherited from DOF. Isabelle/SACM combines features from Isabelle/HOL, DOF, and SACM in a way that allows integration of formal methods and ACs [18].…”

Section: Discussionmentioning

confidence: 99%

“…We recently demonstrated formal verification facilities for a statechart-like notation [12,13], and are also working towards tools to support hybrid dynamical languages [15] like Modelica and Simulink. Our overarching goal is a comprehensive assurance framework supported by a variety of integrated formal methods in order to support complex certification tasks for cyber-physical systems such as autonomous robots [18,19].…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Isabelle/SACM: Computer-Assisted Assurance Cases with Integrated Formal Methods

Nemouchi

Foster

Gleirscher

et al. 2019

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Assurance cases (ACs) are often required to certify critical systems. The use of integrated formal methods (FMs) in assurance can improve automation, increase confidence, and overcome errant reasoning. However, ACs can rarely be fully formalised, as the use of FMs is contingent on models that are validated by informal processes. Consequently, assurance techniques should support both formal and informal artifacts, with explicated inferential links between them. In this paper, we contribute a formal machine-checked interactive language for the computer-assisted construction of ACs called Isabelle/SACM. The framework guarantees well-formedness, consistency, and traceability of ACs, and allows a tight integration of formal and informal evidence of various provenance. To validate Isabelle/SACM, we present a novel formalisation of the Tokeneer benchmark, verify its security requirements, and form a mechanised AC that combines the resulting formal and informal artifacts.

show abstract

“…• evaluate how assurance case construction and management for certifiable RASs can be improved by iFMs [57]. • debunk or justify arguments against the use of FMs or FM-based tools in RAS assurance.…”

Section: Research Objectives and Tasksmentioning

confidence: 99%

New Opportunities for Integrated Formal Methods

2019

Self Cite

View full text Add to dashboard Cite

Formal methods have provided approaches for investigating software engineering fundamentals and also have high potential to improve current practices in dependability assurance. In this article, we summarise known strengths and weaknesses of formal methods. From the perspective of the assurance of robots and autonomous systems (RAS), we highlight new opportunities for integrated formal methods and identify threats to the adoption of such methods. Based on these opportunities and threats, we develop an agenda for fundamental and empirical research on integrated formal methods and for successful transfer of validated research to RAS assurance. Furthermore, we outline our expectations on useful outcomes of such an agenda. AcronymsAI artificial intelligence ASIL automotive safety integrity level DA dependability assurance DAL design assurance level DSE dependable systems engineering DSL domain-specific language FDA Food and Drug Administration FI formal inspection FM formal method HCI human-computer interaction iFM integrated formal method IT information technology MBD model-based development MDE model-driven engineering ML machine learning RAS robots and autonomous systems RCA root cause analysis RE requirements engineering SACM Structured Assurance Case Meta-model SC systematic capability SIL safety integrity level SMT Satisfiability Modulo Theory SWOT strengths, weaknesses, opportunities, and threats SysML Systems Modelling Language UML Unified Modelling Language UTP Unifying Theories of ProgrammingWe view robots and autonomous systems as both dependable systems and highly automated machines capable of achieving a variety of complex tasks in support of humans. We can consider such systems by looking at four layers: the plant or process composed of the operational environment and the machine; the machine itself; the machine's controller, and the software embedded into this controller. Based on these layers, we treat "embedded system" and "embedded software" as synonyms. Machine, controller, and software can all be distributed.By dependable systems engineering, we refer to error-avoidance and error-detection activities in control system and embedded software development (e.g. according to the V-model). Avizienis et al.[7] devised a comprehensive terminology and an overview of the assessment and handling of a variety of faults, errors, and failures. For critical systems, such activities are expected to be explicit (e.g. traceable, documented), to employ best practices (e.g. design patterns), and to be driven by reasonably qualified personnel (e.g. well-trained and experienced engineers or programmers).The need for dependability often arises from the embedding of software into a cyber-physical context (i.e., an electronic execution platform, a physical process to be controlled, and other systems or human users to interact with). Dependability assurance (DA), or assurance for short, encompasses the usually cross-disciplinary task of providing evidence for an assurance case (e.g. safety, security, reliability) for a sys...

show abstract

Evolution of Formal Model-Based Assurance Cases for Autonomous Robots

Cited by 18 publications

References 32 publications

Safety Controller Synthesis for Collaborative Robots

Safety Controller Synthesis for Collaborative Robots

Isabelle/SACM: Computer-Assisted Assurance Cases with Integrated Formal Methods

New Opportunities for Integrated Formal Methods

Contact Info

Product

Resources

About