Symbolic Fault Tree Analysis for Reactive Systems

  • Marco Bozzano
  • Alessandro Cimatti
  • Francesco Tapparo
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4762)

Abstract

Fault tree analysis is a traditional and well-established technique for analyzing system design and robustness. Its purpose is to identify sets of basic events, called cut sets, which can cause a given top level event, e.g. a system malfunction, to occur. Generating fault trees is particularly critical in the case of reactive systems, as hazards can be the result of complex interactions involving the dynamics of the system and of the faults. Recently, there has been a growing interest in model-based fault tree analysis using formal methods, and in particular symbolic model checking techniques. In this paper we present a broad range of algorithmic strategies for efficient fault tree analysis, based on binary decision diagrams (BDDS). We describe different algorithms encompassing different directions (forward or backward) for reachability analysis, using dynamic cone of influence techniques to optimize the use of the finite state machine of the system, and dynamically pruning of the frontier states. We evaluate the relative performance of the different algorithms on a set of industrial-size test cases.

Keywords

Model Check Binary Decision Diagram Kripke Structure Symbolic Model Check Fault Tree Analysis 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
This is a preview of subscription content, log in to check access.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Abdulla, P.A., Deneux, J., Stålmarck, G., Ågren, H., Åkerlund, O.: Designing Safe, Reliable Systems using Scade. In: Margaria, T., Steffen, B. (eds.) ISoLA 2004. LNCS, vol. 4313, Springer, Heidelberg (2006)Google Scholar
  2. 2.
    Aldemir, T.: Computer-assisted Markov Failure Modeling of Process Control Systems. IEEE Transactions on Reliability R-36, 133–144 (1987)CrossRefGoogle Scholar
  3. 3.
    Banach, R., Bozzano, M.: Retrenchment, and the Generation of Fault Trees for Static, Dynamic and Cyclic Systems. In: Górski, J. (ed.) SAFECOMP 2006. LNCS, vol. 4166, Springer, Heidelberg (2006)Google Scholar
  4. 4.
    Bieber, P., Castel, C., Seguin, C.: Combination of Fault Tree Analysis and Model Checking for Safety Assessment of Complex System. In: Proceedings of Dependable Computing EDCC-4: 4th European Dependable Computing Conference, Toulouse, France, October 23-25, 2002. LNCS, vol. 2485, pp. 19–31. Springer, Heidelberg (2002)Google Scholar
  5. 5.
    Biere, A., Cimatti, A., Clarke, E.M., Zhu, Y.: Symbolic Model Checking without BDDs. In: Cleaveland, W.R. (ed.) TACAS 1999. LNCS, vol. 1579, Springer, Heidelberg (1999)Google Scholar
  6. 6.
    Bozzano, M., Cavallo, A., Cifaldi, M., Valacca, L., Villafiorita, A.: Improving Safety Assessment of Complex Systems: An industrial case study. In: Araki, K., Gnesi, S., Mandrioli, D. (eds.) FME 2003. LNCS, vol. 2805, Springer, Heidelberg (2003)Google Scholar
  7. 7.
    Bozzano, M., Villafiorita, A.: The FSAP/NuSMV-SA Safety Analysis Platform. Software Tools for Technology Transfer 9(1), 5–24 (2007)CrossRefGoogle Scholar
  8. 8.
    Bozzano, M., et al.: ESACS: An Integrated Methodology for Design and Safety Analysis of Complex Systems. In: Proc. ESREL 2003, Balkema Publisher (2003)Google Scholar
  9. 9.
    Bozzano, M., et al.: ISAAC, a framework for integrated safety analysis of functional, geometrical and human aspects. In: Proc. ERTS 2006 (2006)Google Scholar
  10. 10.
    Bryant, R.E.: Symbolic Boolean Manipulation with Ordered Binary Decision Diagrams. ACM Computing Surveys 24(3), 293–318 (1992)CrossRefGoogle Scholar
  11. 11.
    Cimatti, A., Clarke, E.M., Giunchiglia, F., Roveri, M.: NuSMV: a new symbolic model checker. Software Tools for Technology Transfer 2(4), 410–425 (2000)MATHCrossRefGoogle Scholar
  12. 12.
    Cojazzi, G., Izquierdo, J.M., Meléndez, E., Perea, M.S.: The Reliability and Safety Assessment of Protection Systems by the Use of Dynamic Event Trees. The DYLAM-TRETA Package. In: Proc. XVIII Annual Meeting Spanish Nucl. Soc. (1992)Google Scholar
  13. 13.
    Coudert, O., Madre, J.C.: Implicit and Incremental Computation of Primes and Essential Primes of Boolean Functions. In: Proc. DAC 1992, IEEE Computer Society Press, Los Alamitos (1992)Google Scholar
  14. 14.
    Coudert, O., Madre, J.C.: Fault Tree Analysis: 1020 Prime Implicants and Beyond. In: Proc. RAMS 1993 (1993)Google Scholar
  15. 15.
    Deneux, J., Åkerlund, O.: A Common Framework for Design and Safety Analyses using Formal Methods. In: Proc. PSAM7/ESREL 2004 (2004)Google Scholar
  16. 16.
    The FSAP platform, http://sra.itc.it/tools/FSAP
  17. 17.
    Joshi, A., Heimdahl, M.P.E.: Model-Based Safety Analysis of Simulink Models Using SCADE Design Verifier. In: Winther, R., Gran, B.A., Dahll, G. (eds.) SAFECOMP 2005. LNCS, vol. 3688, Springer, Heidelberg (2005)Google Scholar
  18. 18.
    Joshi, A., Miller, S.P., Whalen, M., Heimdahl, M.P.E.: A Proposal for Model-Based Safety Analysis. In: Proc. DASC 2005 (2005)Google Scholar
  19. 19.
    Manian, R., Dugan, J.B., Coppit, D., Sullivan, K.J.: Combining Various Solution Techniques for Dynamic Fault Tree Analysis of Computer Systems. In: Proc. HASE 1998, IEEE Computer Society Press, Los Alamitos (1998)Google Scholar
  20. 20.
    Marseguerra, M., Zio, E., Devooght, J., Labeau, P.E.: A concept paper on dynamic reliability via Monte Carlo simulation. Math. and Comp. in Simulation 47, 371–382 (1998)CrossRefGoogle Scholar
  21. 21.
    McMillan, K.L.: Symbolic Model Checking. Kluwer Academic Publ., Dordrecht (1993)MATHGoogle Scholar
  22. 22.
    Miller, S.P., Tribble, A.C., Heimdahl, M.P.E.: Proving the Shalls. In: Araki, K., Gnesi, S., Mandrioli, D. (eds.) FME 2003. LNCS, vol. 2805, Springer, Heidelberg (2003)Google Scholar
  23. 23.
    The NuSMV model checker, http://nusmv.itc.it
  24. 24.
    Papazoglou, I.A.: Markovian Reliability Analysis of Dynamic Systems. In: Reliability and Safety Assessment of Dynamic Process Systems, pp. 24–43. Springer, Heidelberg (1994)Google Scholar
  25. 25.
    Peikenkamp, T., Böede, E., Brückner, I., Spenke, H., Bretschneider, M., Holberg, H.-J.: Model-based Safety Analysis of a Flap Control System. In: Proc. INCOSE 2004 (2004)Google Scholar
  26. 26.
    Rauzy, A.: New Algorithms for Fault Trees Analysis. Reliability Engineering and System Safety 40(3), 203–211 (1993)CrossRefGoogle Scholar
  27. 27.
    Rauzy, A., Dutuit, Y.: Exact and Truncated Computations of Prime Implicants of Coherent and Non-Coherent Fault Trees within Aralia. Reliability Engineering and System Safety 58(2), 127–144 (1997)CrossRefGoogle Scholar
  28. 28.
    Schäfer, A.: Combining Real-Time Model-Checking and Fault Tree Analysis. In: Araki, K., Gnesi, S., Mandrioli, D. (eds.) FME 2003. LNCS, vol. 2805, Springer, Heidelberg (2003)Google Scholar
  29. 29.
    Siu, N.O.: Risk Assessment for Dynamic Systems: An Overview. Reliability Engineering and System Safety 43, 43–74 (1994)CrossRefGoogle Scholar
  30. 30.
    Smidts, C., Devooght, J.: Probabilistic Reactor Dynamics II. A Monte-Carlo Study of a Fast Reactor Transient. Nuclear Science and Engineering 111(3), 241–256 (1992)Google Scholar
  31. 31.
    Sullivan, K.J., Dugan, J.B., Coppit, D.: The Galileo Fault Tree Analysis Tool. In: Proc. FTCS 1999, IEEE Computer Society Press, Los Alamitos (1999)Google Scholar
  32. 32.
    Thums, A., Schellhorn, G.: Model Checking FTA. In: Araki, K., Gnesi, S., Mandrioli, D. (eds.) FME 2003. LNCS, vol. 2805, Springer, Heidelberg (2003)Google Scholar
  33. 33.
    Tribble, A.C., Lempia, D.L., Miller, S.P.: Software Safety Analysis of a Flight Guidance System. In: Proc. DASC 2002 (2002)Google Scholar
  34. 34.
    Tribble, A.C., Miller, S.P.: Software Safety Analysis of a Flight Management System Vertical Navigation Function - A Status Report. In: Proc. DASC 2003 (2003)Google Scholar
  35. 35.
    Vesely, W.E., Goldberg, F.F., Roberts, N.H., Haasl, D.F.: Fault Tree Handbook. Technical Report NUREG-0492, Systems and Reliability Research Office of Nuclear Regulatory Research U.S. Nuclear Regulatory Commission (1981)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2007

Authors and Affiliations

  • Marco Bozzano
    • 1
  • Alessandro Cimatti
    • 1
  • Francesco Tapparo
    • 1
  1. 1.FBK-IRST, Via Sommarive 18, 38050 TrentoItaly

Personalised recommendations