Proceedings ArticleDOI
Formal Specification and Analysis of Spacecraft Collision Avoidance Run Time Assurance Requirements
Kerianne Hobbs,Jennifer A. Davis,Lucas G. Wagner,Eric Feron +3 more
- pp 1-16
TLDR
This paper describes the elicitation, formal specification, and analysis of general collision avoidance system requirements for a conceptual spacecraft conducting autonomous close-proximity operations based on a run time assurance construct, the first formally specified and analyzed generalizedrun time assurance architecture for spacecraft that includes a fault monitor, interlock monitor, and human-machine interface.Abstract:
One of the greatest challenges preventing the use of advanced controllers in aerospace is developing methods to verify, validate, and certify them with high assurance. One emerging approach is to push the burden of assurance from offline verification of an autonomous controller at design time, to online verification of safe behavior through a monitor and high assurance backup controller at run time. Run time assurance goes a step beyond alerting systems by detecting imminent unsafe behavior and intervening with a trusted control response. In the spacecraft domain, autonomous operations could be approved if run time assurance systems can provide collision avoidance capabilities. While several approaches to run time assurance have been developed and successfully demonstrated, the design and verification of these systems is ad hoc and specific to the application. This paper describes the elicitation, formal specification, and analysis of general collision avoidance system requirements for a conceptual spacecraft conducting autonomous close-proximity operations based on a run time assurance construct. This includes the first formally specified and analyzed generalized run time assurance architecture for spacecraft that includes a fault monitor, interlock monitor, and human-machine interface. Mathematically precise requirements are elicited through the process of formal specification based on common design elements, spacecraft guidance constraints in the literature, and a structured hazard assessment. Finally, the requirements are analyzed using compositional reasoning and formal model checking verification techniques.read more
Citations
More filters
Patent
Scalable methods for analyzing formalized requirements and localizing errors
TL;DR: According to some embodiments, a system and method are provided comprising a communication device operative to communicate with a user to obtain one or more requirements, wherein each requirement is defined using a formal notation.
Posted Content
The JKind Model Checker
TL;DR: JKind as mentioned in this paper is an open-source industrial model checker developed by Rockwell Collins and the University of Minnesota that uses multiple parallel engines to prove or falsify safety properties of infinite state models.
Journal ArticleDOI
Runtime Assurance for Safety-Critical Systems: An Introduction to Safety Filtering Approaches for Complex Control Systems
TL;DR: Run Time Assurance (RTA) as mentioned in this paper is an online verification mechanism that filters an unverified primary controller output to ensure system safety, which can be used to enforce safety constraints from performance-related objectives.
Posted Content
Run Time Assurance for Safety-Critical Systems: An Introduction to Safety Filtering Approaches for Complex Control Systems.
TL;DR: Run Time Assurance (RTA) as discussed by the authors is an online verification mechanism that filters an unverified primary controller output to ensure system safety, which can be defined as the ability to alter unsafe control inputs explicitly to assure safety.
References
More filters
Book ChapterDOI
Z3: an efficient SMT solver
TL;DR: Z3 is a new and efficient SMT Solver freely available from Microsoft Research that is used in various software verification and analysis applications.
Proceedings ArticleDOI
Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints
Patrick Cousot,Radhia Cousot +1 more
TL;DR: In this paper, the abstract interpretation of programs is used to describe computations in another universe of abstract objects, so that the results of abstract execution give some information on the actual computations.
Book
Principles of Model Checking
TL;DR: Principles of Model Checking offers a comprehensive introduction to model checking that is not only a text suitable for classroom use but also a valuable reference for researchers and practitioners in the field.
Book ChapterDOI
Design and Synthesis of Synchronization Skeletons Using Branching-Time Temporal Logic
TL;DR: It is shown that it is possible to automatically synthesize the synchronization skeleton of a concurrent program from a Temporal Logic specification and it is believed that this approach may in the long run turn out to be quite practical.
Journal ArticleDOI
Binary Decision Diagrams
TL;DR: This paper describes a method for defining, analyzing, testing, and implementing large digital functions by means of a binary decision diagram that provides a complete, concise, "implementation-free" description of the digital functions involved.
Related Papers (5)
Strictly Formalized Situation-Operator-Modeling technique for fall-back layer modeling for autonomous or semi-autonomous systems requiring software-based fail-safe behavior
Georg Hagele,Dirk Söffker +1 more