Synthesis of Admissible Shields
Laura Humphrey,Bettina Könighofer,Robert Könighofer,Ufuk Topcu +3 more
- pp 134-151
Reads0
Chats0
TLDR
It is shown that for UAVs, the authors can generate admissible shields, even when k-stabilizing shields do not exist, and if there is no shield that guarantees recovery within k steps regardless of system behavior, the admissible shield will attempt to work with the system to recover as soon as possible.Abstract:
Shield synthesis is an approach to enforce a set of safety-critical properties of a reactive system at runtime A shield monitors the system and corrects any erroneous output values instantaneously The shield deviates from the given outputs as little as it can and recovers to hand back control to the system as soon as possible This paper takes its inspiration from a case study on mission planning for unmanned aerial vehicles (UAVs) in which k-stabilizing shields, which guarantee recovery in a finite time, could not be constructed We introduce the notion of admissible shields, which improves k-stabilizing shields in two ways: (1) whereas k-stabilizing shields take an adversarial view on the system, admissible shields take a collaborative view That is, if there is no shield that guarantees recovery within k steps regardless of system behavior, the admissible shield will attempt to work with the system to recover as soon as possible (2) Admissible shields can handle system failures during the recovery phase In our experimental results we show that for UAVs, we can generate admissible shields, even when k-stabilizing shields do not existread more
Citations
More filters
Book ChapterDOI
Runtime Failure Prevention and Reaction
TL;DR: This chapter presents an overall vision of the problem of ensuring highly-dependable behaviours at runtime based on the concept of autonomic monitor, and presents the two families of relevant approaches for this purpose.
Book ChapterDOI
Sandboxing Controllers for Stochastic Cyber-Physical Systems.
TL;DR: A novel solution for sandboxing unverified complex controllers for CPS operating in noisy environments (a.k.a. stochastic CPS) and provides probabilistic guarantees on their safety.
Journal ArticleDOI
Industrial Control Systems Security via Runtime Enforcement
TL;DR: A formal approach based on runtime enforcement to ensure specification compliance in networks of controllers, possibly compromised by colluding malware that may locally tamper with actuator commands, sensor readings, and inter-controller communications is proposed.
Posted Content
Runtime Enforcement of Programmable Logic Controllers.
TL;DR: In this paper, the authors propose a formal approach based on runtime enforcement to ensure specification compliance in networks of controllers, possibly compromised by colluding malware that may tamper with actuator commands, sensor readings, and inter-controller communications.
Journal ArticleDOI
Safe-visor architecture for sandboxing (AI-based) unverified controllers in stochastic cyber–physical systems
TL;DR: In this paper, a Safe-visor architecture for sandboxing unverified controllers in CPSs operating in noisy environments is proposed, which contains a history-based supervisor, which checks inputs from the unverified controller and makes a compromise between functionality and safety of the system, and a safety advisor that provides fallback when the un-verified controller endangers the safety of system.
References
More filters
Journal ArticleDOI
A Brief Account of Runtime Verification
TL;DR: A comparison to well-known verification techniques like model checking and testing is provided, and applications in which runtime verification brings out its distinguishing features are pointed out.
Journal ArticleDOI
Synthesis of Reactive(1) designs
TL;DR: This work addresses the problem of automatically synthesizing digital designs from linear-time specifications by considering various classes of specifications that can be synthesized with effort quadratic in the number of states of the reactive system, where effort in symbolic steps is measured.
Journal ArticleDOI
Autopilots for small unmanned aerial vehicles: A survey
TL;DR: A survey of the autopilot systems for small or micro unmanned aerial vehicles (UAVs) is presented and several typical off-the-shelf autopilot packages are compared in terms of sensor packages, observation approaches and controller strengths.
Journal ArticleDOI
Verified hybrid controllers for automated vehicles
TL;DR: This work discusses the design of safe and efficient hybrid controllers for regulation of vehicles on an AHS and uses game theoretic techniques to deal with the multiagent and multiobjective nature of the problem.
Book ChapterDOI
On the Synthesis of an Asynchronous Reactive Module
Amir Pnueli,Roni Rosner +1 more
TL;DR: The synthesis of a reactive asynchronous module which communicates with its environment via the shared input variable x and the shared output variable y is considered, assuming that the module is specified by the linear temporal formula ϕ(x,y).