Abstract
Fault detection, isolation and recovery subsystems are accepted to make safety-critical systems resilient against faults and failures. Yet, these subsystems should be devised only for those faults that violate the system’s requirements, while providing a correct approach such that requirements are met again. Consequently, the obtained system is minimal, although complete, and robust both with respect to safety and performance requirements. In this paper, we propose a systematic and automated approach based on formal methods that includes (1) the evaluation of the relevance of faults based on quantitative risk assessment, and (2) the validation of system robustness by statistical model checking. We apply this approach on an excerpt of a real-life autonomous robotics case study, and we report on the implementation and results obtained with the \(\mathcal {S}\text {BIP}\) framework.
Similar content being viewed by others
Notes
BIP stands for Behavior–Interaction–Priority.
See [28] for the formal definition of the stochastic real-time BIP.
The suffixes out in and return used in Fig. 5 are modeling the directionality of the requests. Out models that the component sends the request. In models that the component receives the request. Return models that the action associated with the request has finished executing.
Notice that the values for P, D, \(\textit{MIAT}\), and size are part of the system specification.
The system architecture and specification, \(\textsf{Watchdog}\) included, have been provided in the frame of this case study such that the used resources (e.g., number of components and threads) are minimal.
References
Abdellatif T, Bensalem S, Combaz J et al (2012) Rigorous design of robot software: a formal component-based approach. Robot Autonom Syst 60(12):1563–1578. https://doi.org/10.1016/j.robot.2012.09.005
Alur R, Dill DL (1994) A theory of timed automata. Theor Comput Sci 126(2):183–235
Alur R, Henzinger T (1993) Real-time logics: complexity and expressiveness. Inf Comput 104(1):35–77. https://doi.org/10.1006/inco.1993.1025
Baier C, Katoen JP (2008) Principles of model checking (representation and mind series). The MIT Press
Basu A, Bensalem S, Bozga M et al (2010) Statistical abstraction and model-checking of large heterogeneous systems. Forum for fundamental research on theory, FORTE’10, LNCS, vol 6117. Springer, Berlin Heidelberg, Berlin, Heidelberg, pp 32–46
Basu A, Bensalem S, Bozga M, et al (2010b) Verification of an AFDX Infrastructure using Simulations and Probabilities. In: Runtime Verification, RV’10, LNCS, vol 6418. Springer Berlin Heidelberg
Batteux M, Prosvirnova T, Rauzy A, et al (2013) The AltaRica 3.0 project for model-based safety assessment. In: 11th IEEE international conference on industrial informatics, INDIN 2013, Bochum, Germany, July 29-31, 2013. IEEE, pp 741–746, https://doi.org/10.1109/INDIN.2013.6622976
Bensalem S, de Silva L, Griesmayer A, et al (2011) A formal approach for incremental construction with an application to autonomous robotic systems. In: Apel S, Jackson EK (eds) Software composition: 10th international conference, SC 2011, Zurich, Switzerland, June 30 - July 1, 2011. Proceedings, Lecture Notes in Computer Science, vol 6708. Springer, pp 116–132, https://doi.org/10.1007/978-3-642-22045-6_8
Bittner B, Bozzano M, Cimatti A et al (2014) An integrated process for FDIR design in aerospace. IMBSA 2014:82–95
Bittner B, Bozzano M, Cavada R et al (2016) The xSAP safety analysis platform. TACAS 2016:533–539
Bornot S, Sifakis J, Tripakis S (1997) Modeling urgency in timed systems. In: International symposium on compositionality, Springer, pp 103–129
Cavada R, Cimatti A, Dorigatti M, et al (2014) The nuxmv symbolic model checker. In: International conference on computer aided verification. Springer, pp 334–342
David A, Larsen K, Legay A et al (2015) Statistical model checking for biological systems. Int J Softw Tools Technol Transf (STTT) 17(3):351–367
David A, Larsen KG, Legay A et al (2015) Uppaal SMC tutorial. STTT 17(4):397–415
Desai A, Qadeer S, Seshia SA (2018) Programming safe robotics systems: challenges and advances. In: International symposium on leveraging applications of formal methods. Springer, pp 103–119
Dragomir I (2019) ESROCOS planetary exploration demonstrator: the watchdog component in TASTE and BIP. https://github.com/ESROCOS/control-mc_watchdog
Dragomir I, Iosti S, Bozga M et al (2018) Designing systems with detection and reconfiguration capabilities: a formal approach. In: Steffen B, Margaria T (eds) Leveraging applications of formal methods, verification and validation: 8th international symposium, ISoLA 2018, Lymassol, Cyprus, November 5–9, 2018. Springer, Lecture Notes in Computer Science
ESROCOS (2019a) ESROCOS Planetary Exploration Demonstrator. https://github.com/ESROCOS/plex-demonstrator-record
ESROCOS (2019b) ESROCOS Project Github Repository. https://github.com/ESROCOS
Foughali M, Berthomieu B, Dal Zilio S, et al (2018) Formal verification of complex robotic systems on resource-constrained platforms. In: FormaliSE: 6th international conference on formal methods in software engineering
Hérault T, Lassaigne R, Magniette F, et al (2004) Approximate probabilistic model checking. In: International conference on verification, model checking, and abstract interpretation, VMCAI’04, pp 73–84
Jegourel C, Legay A, Sedwards S (2013) Importance splitting for statistical model checking rare properties. In: CAV. Springer, pp 576–591
Kahn H, Marshall AW (1953) Methods of reducing sample size in Monte Carlo computations. J Oper Res Soc Am 1(5):263–278
Kulkarni VG (2011) Introduction to modeling and analysis of stochastic systems. Springer, New York
Mediouni BL, Nouri A, Bozga M, et al (2018) \({\cal{S}\text{BIP}}\) 2.0: Statistical model checking stochastic real-time systems. In: Lahiri SK, Wang C (eds) Automated technology for verification and analysis: 16th international symposium, ATVA, Los Angeles, CA, USA, October 7-10, 2018, Proceedings, LNCS, vol 11138. Springer, pp 536–542
Mitsch S, Ghorbal K, Vogelbacher D et al (2017) Formal verification of obstacle avoidance and navigation of ground robots. Int J Robot Res 36(12):1312–1340
Munoz M, Montano G, Wirkus M, et al (2017) ESROCOS: a robotic operating system for space and terrestrial applications. In: Symposium on advanced space technologies in robotics and automation (ASTRA) 2017, Leiden, Netherlands, June 20-22, 2017
Nouri A, Mediouni BL, Bozga M et al (2018) Performance evaluation of stochastic real-time systems with the SBIP framework. Int J Crit Comput-Based Syst 8(3–4):340–370. https://doi.org/10.1504/IJCCBS.2018.096439
Ocon J, Colemenero F, Estremera J, et al (2018) The ERGO framework and its use in planetary/orbital scenarios. In: International astronautical congress (IAC) 2018, Bremen, Germany, October 1-5, 2018
Pnueli A (1977) The temporal logic of programs. In: 18th annual symposium on foundations of computer science, Providence, Rhode Island, USA, 31 October–1 November 1977, pp 46–57, https://doi.org/10.1109/SFCS.1977.32
Raman B, Nouri A, Gangadharan D, et al (2013) Stochastic modeling and performance analysis of multimedia SoCs. In: International conference on systems, architectures, modeling and simulation, SAMOS’13, pp 145–154
Tosun T, Jing G, Kress-Gazit H, et al (2018) Computer-aided compositional design and verification for modular robots. In: Robotics research. Springer, pp 237–252
Wander A, Forstner R (2012) Innovative Fault Detection. State of the Art and Research Challenges. Deutscher Luft- und Raumfahrtkongress, Isolation and Recovery Strategies On-board Spacecraft
Younes HLS (2005) Verification and planning for stochastic processes with asynchronous events. PhD thesis, Carnegie Mellon
Acknowledgements
This work has been supported by the EU’s H2020 research and innovation programme under grant agreement #730080 (ESROCOS) and #700665 (CITADEL).
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
The model sources
The model sources used in this manuscript are available at https://drive.google.com/file/d/1oN90ZraClQxAH5hHE2tl7t2IMsZVzo7L/view?usp=drivesdk. The SMC-BIP tool can be downloaded from https://www-verimag.imag.fr/BIP-SMC-A-Statistical-Model-Checking.html.
Additional information
Publisher's Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.
About this article
Cite this article
Mediouni, B.L., Dragomir, I., Nouri, A. et al. Model-based design of resilient systems using quantitative risk assessment. Innovations Syst Softw Eng 20, 3–16 (2024). https://doi.org/10.1007/s11334-023-00527-0
Received:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11334-023-00527-0