WO2016078715A1 - Procédé et dispositif pour vérifier une propriété de persistance d'un système technique dynamique - Google Patents

Procédé et dispositif pour vérifier une propriété de persistance d'un système technique dynamique Download PDF

Info

Publication number
WO2016078715A1
WO2016078715A1 PCT/EP2014/075152 EP2014075152W WO2016078715A1 WO 2016078715 A1 WO2016078715 A1 WO 2016078715A1 EP 2014075152 W EP2014075152 W EP 2014075152W WO 2016078715 A1 WO2016078715 A1 WO 2016078715A1
Authority
WO
WIPO (PCT)
Prior art keywords
technical system
polytope
optimization problem
mixed integer
integer optimization
Prior art date
Application number
PCT/EP2014/075152
Other languages
English (en)
Inventor
Jan Richter
Original Assignee
Siemens Aktiengesellschaft
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Siemens Aktiengesellschaft filed Critical Siemens Aktiengesellschaft
Priority to PCT/EP2014/075152 priority Critical patent/WO2016078715A1/fr
Publication of WO2016078715A1 publication Critical patent/WO2016078715A1/fr

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F30/00Computer-aided design [CAD]
    • G06F30/20Design optimisation, verification or simulation

Definitions

  • the present invention relates to a method for automatically verifying a persistence property of a design of a dynamical technical system.
  • This invention addresses the process of verifying the satisfaction of formal requirements within the Systems
  • This invention tries to contribute to making this complexity manageable.
  • a typical design validation technique used today is the numerical simulation of sets of test scenarios, e.g. using simulation tools such as LMS Amesim, MATLAB Simulink, Dymola, etc.
  • simulation process for design validation consists the following steps:
  • Tests either automatically generated scenarios or manually selected test scenarios (See also the paper "Model-based Requirement Verification”) . Sufficiently many design/test loops.
  • Involved methods are: logical equivalence checking, finite state machine (FSM) equivalence checking, model checking and theorem proving.
  • FSM finite state machine
  • the object of the present invention is to provide a method which facilitates verification of a persistence property of a design of a dynamical technical system. Furthermore, a corresponding engineering system shall be provided.
  • this object is solved by a method for automatically verifying a persistence property of a design of a dynamical technical system, the method
  • a method for automatically verifying a persistence property of a design of a dynamical technical system including the steps of
  • the at least one formal requirement separating allowed states and forbidden states of the technical system in the state space
  • the current invention addresses the behavioral verification of liveness properties on an infinite time horizon preferably in mixed-logical dynamical (MLD) models.
  • MLD mixed-logical dynamical
  • This invention is helpful for creating a dedicated Systems Engineering product that allows top-down engineering
  • the discrete-time state model is a mixed-logical dynamical model.
  • a mixed-logical dynamical model can be expressed with few state equations and inequations.
  • the discrete-time state model may be formulated in the language HYSDEL.
  • HYSDEL is a higher-level language so that the models do not need to be expressed directly in the MLD format (Mixed-Logical Dynamical) .
  • temporal logic with signal abstraction.
  • Such temporal logic allows for unambiguously formulating
  • an engineering system designed to perform one of the methods described above.
  • Such engineering system can provide a behavioural verification of liveness properties on an infinite time horizon.
  • FIG 1 a counter example of a positive invariant set of solutions of a mixed integer optimization problem
  • FIG 2 a production system as example
  • FIG 3 an automotive drivetrain as further example.
  • E x x(t) + E u u(t) + E aux w(t) ⁇ E aff (index sets) J X ,J U ,J W ,J ,J ineq x is the state vector of a system
  • y is the output vector and the discrete time period is given by t e Z
  • u represents a control signal, i.e. an input signal including noise
  • w represents an auxiliary signal vector for expressing certain classes of non-linear functions.
  • the fixed parameters A, B., C., D., E. with different indices usually have the form of matrices .
  • obeying dynamics (1) reaches a polytope target set PP in finite time and stays within ° forever. Such a set is called positive invariant under dynamics (1) .
  • the polytope set P is described as an intersection of half- spaces with matrix HH and vector ⁇ , each of compatible
  • the rows of W describe the orientation of facets of , and rows of ⁇ describe corresponding offsets from the origin .
  • Step 2 of the verification serves for checking whether each state of the polytope P remains within in the polytope P, so that the system is positive (for the future) invariant.
  • This step 2 is expressed by the following problem, which can be checked completely independently of Step 1 . Note that it is logically negated by asking whether there exist initial state conditions - ⁇ (1) *O)within ⁇ that leave P in one step (see right side of FIG 1 ) . Note that one time step is sufficient, since all initial conditions in P are checked.
  • a barrier certificate helps verifying a safety property by establishing a reliable barrier between possible evolutions of the system variables and forbidden areas.
  • the key advantage of this approach is the strong degree of abstraction from the details of possible variable evolutions.
  • Such barrier certificate are known from the article of S. Prajna et al . : “Safety Verification of Hybrid Systems Using Barrier Certificates" in "Hybrid Systems:
  • the present invention thus allows an unbounded model checki procedure without the need for repetitive cycles through positive invariant sets .
  • An integration into a tool set for systems engineering is possible.
  • the models for the components of the technical system are expressed not directly by discrete-time mixed-logical dynamical (MLD) models, but in higher-level language such as HYSDEL.
  • MLD discrete-time mixed-logical dynamical
  • FIG 2. A concrete example referring to a simple production system is shown in FIG 2.
  • the system consists of two tanks 8, 9 filled by inputs ui and U2, which deposit material on a transport belt 10 in a desired proportion, adjustable by means of the outlet valves.
  • the packer unit 11 will then combine the material mix into packages 12, which shall come out of the production system at a desired rate.
  • the objective would be, from startup conditions, to exceed a minimum required production rate fttt _ n bounded time
  • a verification method not presented here might confirm that the desired production rate can be achieved.
  • the method of the present invention can show that the region
  • Additional application domains may include embedded systems verification, especially mixed-signal designs: although formal methods originate from microprocessor design dominated by discrete behaviors, this invention may be attractive for that domain, at least as far as mixed signal designs are concerned.
  • Mixed signals digital/analogue or, in

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Evolutionary Computation (AREA)
  • Geometry (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

Selon l'invention, un procédé pour vérifier si un système reste ou non dans une partie pré-donnée d'un espace d'état doit être fourni, c'est-à-dire le système doit s'avérer être un invariant positif. Par conséquent, un procédé pour vérifier automatiquement une propriété de persistance d'une conception d'un système technique dynamique est suggéré, comprenant les étapes consistant à fournir un modèle d'état en temps discret du système technique, à fournir au moins une exigence formelle pour le système technique, à formuler un problème d'optimisation à nombres entiers mélangés sur la base du modèle d'état en temps discret et de l'exigence formelle, à vérifier si toutes les solutions du problème d'optimisation à nombres entiers mélangés atteignent ou non un polytope (P) pré-donné dans un espace d'état dans un temps pré-donné, chaque solution représentant un état du système technique, et à vérifier si une solution du problème d'optimisation à nombres entiers mélangés dans le polytope (P) laisse ou non le polytope après une étape de temps pré-donné, et à distribuer un résultat respectif.
PCT/EP2014/075152 2014-11-20 2014-11-20 Procédé et dispositif pour vérifier une propriété de persistance d'un système technique dynamique WO2016078715A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/EP2014/075152 WO2016078715A1 (fr) 2014-11-20 2014-11-20 Procédé et dispositif pour vérifier une propriété de persistance d'un système technique dynamique

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/EP2014/075152 WO2016078715A1 (fr) 2014-11-20 2014-11-20 Procédé et dispositif pour vérifier une propriété de persistance d'un système technique dynamique

Publications (1)

Publication Number Publication Date
WO2016078715A1 true WO2016078715A1 (fr) 2016-05-26

Family

ID=52023465

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2014/075152 WO2016078715A1 (fr) 2014-11-20 2014-11-20 Procédé et dispositif pour vérifier une propriété de persistance d'un système technique dynamique

Country Status (1)

Country Link
WO (1) WO2016078715A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018157999A1 (fr) 2017-02-28 2018-09-07 Renault S.A.S Dispositif de controle de trajectoire d'un vehicule
US11467575B2 (en) 2019-06-27 2022-10-11 Toyota Motor Engineering & Manufacturing North America, Inc. Systems and methods for safety-aware training of AI-based control systems

Non-Patent Citations (10)

* Cited by examiner, † Cited by third party
Title
3. MIXED LOGICAL DYNAMICAL (MLD) SYSTEMS, pages 409 - 415
A. BEMPORAD; M. MORARI: "Control of systems integrating logic, dynamics and constrains", AUTOMATICA, vol. 35, 1999, pages 407 - 427, XP055203994, DOI: doi:10.1016/S0005-1098(98)00178-2
BEMPORAD A ET AL: "HYSDEL-A Tool for Generating Computational Hybrid Models for Analysis and Synthesis Problems", IEEE TRANSACTIONS ON CONTROL SYSTEMS TECHNOLOGY, IEEE SERVICE CENTER, NEW YORK, NY, US, vol. 12, no. 2, 1 March 2004 (2004-03-01), pages 235 - 249, XP011109974, ISSN: 1063-6536, DOI: 10.1109/TCST.2004.824309 *
F. LIANG; W. SCHAMAI; O. ROGOVCHENKO; S. SADEGHI; M. NYBERG; P. FRITZSON: "Model-based requirement verification: a case study", PROC. 9TH MODELICA CONFERENCE MUNICH, 2012, pages 385 - 392, XP055203993, DOI: doi:10.3384/ecp12076385
MORARI M ET AL: "Recent developments in the control of constrained hybrid systems", COMPUTERS & CHEMICAL ENGINEERING, PERGAMON PRESS, OXFORD, GB, vol. 30, no. 10-12, 12 September 2006 (2006-09-12), pages 1619 - 1631, XP027942782, ISSN: 0098-1354, [retrieved on 20060912] *
R ALUR ET AL: "The algorithmic analysis of hybrid systems", THEORETICAL COMPUTER SCIENCE, 1 January 1995 (1995-01-01), pages 3 - 34, XP055204311, Retrieved from the Internet <URL:http://www.sciencedirect.com/science/article/pii/030439759400202T> [retrieved on 20150723], DOI: 10.1016/0304-3975(94)00202-T *
RAJEEV ALUR: "Formal verification of hybrid systems", EMBEDDED SOFTWARE (EMSOFT), 2011 PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON, IEEE, 2 PENN PLAZA, SUITE 701 NEW YORK NY 10121-0701 USA, 9 October 2011 (2011-10-09), pages 273 - 278, XP058004998, ISBN: 978-1-4503-0714-7, DOI: 10.1145/2038642.2038685 *
S. PRAJNA ET AL.: "Safety Verification of Hybrid Systems Using Barrier Certificates", HYBRID SYSTEMS: COMPUTATION AND CONTROL, 25 March 2004 (2004-03-25), pages 477 - 492
STEPHEN PRAJNA ET AL: "Safety Verification of Hybrid Systems Using Barrier Certificates", 21 February 2004, HYBRID SYSTEMS: COMPUTATION AND CONTROL; [LECTURE NOTES IN COMPUTER SCIENCE;;LNCS], SPRINGER-VERLAG, BERLIN/HEIDELBERG, PAGE(S) 477 - 492, ISBN: 978-3-540-21259-1, XP019003806 *
THAO DANG ET AL: "Template-Based Unbounded Time Verification of Affine Hybrid Automata", 5 December 2011, PROGRAMMING LANGUAGES AND SYSTEMS, SPRINGER BERLIN HEIDELBERG, BERLIN, HEIDELBERG, PAGE(S) 34 - 49, ISBN: 978-3-642-25317-1, XP019170561 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018157999A1 (fr) 2017-02-28 2018-09-07 Renault S.A.S Dispositif de controle de trajectoire d'un vehicule
KR20190123736A (ko) 2017-02-28 2019-11-01 르노 에스.아.에스. 차량의 궤도를 제어하는 장치
US11467575B2 (en) 2019-06-27 2022-10-11 Toyota Motor Engineering & Manufacturing North America, Inc. Systems and methods for safety-aware training of AI-based control systems

Similar Documents

Publication Publication Date Title
Reissig et al. Feedback refinement relations for the synthesis of symbolic controllers
Yin et al. Synthesis of maximally permissive supervisors for partially-observed discrete-event systems
US9652571B2 (en) Reciprocal Quantum Logic (RQL) circuit synthesis
Sadeghzadeh Gain‐scheduled continuous‐time control using polytope‐bounded inexact scheduling parameters
Vazquez et al. Systems with two symmetric absorbing states: Relating the microscopic dynamics with the macroscopic behavior
US7124070B2 (en) Method of and apparatus for, and program for verifying equivalence between behavioral description and register transfer level description
Benvenuti et al. Contract-based design for computation and verification of a closed-loop hybrid system
WO2016078715A1 (fr) Procédé et dispositif pour vérifier une propriété de persistance d&#39;un système technique dynamique
Wongpiromsarn et al. Automatic synthesis of robust embedded control software
Basit-Ur-Rahim et al. Modeling of real-time embedded systems using SysML and its verification using UPPAAL and DiVinE
Georget et al. Simple automation of SEM‐EDS spectral maps analysis with Python and the edxia framework
Heras et al. Verifying an algorithm computing Discrete Vector Fields for digital imaging
WO2016078716A1 (fr) Procédé et dispositif pour valider automatiquement la conception d&#39;un système technique
Teixeira et al. Variable abstraction and approximations in supervisory control synthesis
Guissouma et al. ICARUS-incremental design and verification of software updates in safety-critical product lines
Franco et al. Model-based functional safety for the embedded software of automobile power window system
Marcos et al. Fault detection and isolation for a rocket engine valve
JP5524244B2 (ja) 仕様モデル検査方法および仕様モデル検査装置
Forouzanfar et al. A constrained optimization approach to integrated active fault detection and control
Olteanu et al. Advanced embedded nonlinear observer design and HIL validation using a Takagi-Sugeno approach with unmeasurable premise variables
Kajtazovic et al. Constraint-based verification of compositions in safety-critical component-based systems
Meskin et al. A geometric approach to robust fault detection and isolation of discrete-time Markovian jump systems
Dumitrescu et al. Flexible product line derivation applied to a model based systems engineering process
Vitale et al. The Software-Defined Vehicle: How to Verify and Validate Software Functions
Liu et al. Robust H 2 Filtering for Discrete‐Time Markovian Jump Linear Systems

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14811784

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14811784

Country of ref document: EP

Kind code of ref document: A1