Monitoring with Verified Guarantees

10/22/2021
by   Dauer J. C., et al.
0

Runtime monitoring is generally considered a light-weight alternative to formal verification. In safety-critical systems, however, the monitor itself is a critical component. For example, if the monitor is responsible for initiating emergency protocols, as proposed in a recent aviation standard, then the safety of the entire system critically depends on guarantees of the correctness of the monitor. In this paper, we present a verification extension to the Lola monitoring language that integrates the efficient specification of the monitor with Hoare-style annotations that guarantee the correctness of the monitor specification. We add two new operators, assume and assert, which specify assumptions of the monitor and expectations on its output, respectively. The validity of the annotations is established by an integrated SMT solver. We report on experience in applying the approach to specifications from the avionics domain, where the annotation with assumptions and assertions has lead to the discovery of safety-critical errors in the specifications. The errors range from incorrect default values in offset computations to complex algorithmic errors that result in unexpected temporal patterns.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
12/15/2020

Verified Rust Monitors for Lola Specifications

The safety of cyber-physical systems rests on the correctness of their m...
research
12/07/2014

On the Behavioural Formalization of the Cognitive Middleware AWDRAT

We present our ongoing work and initial results towards the (behavioral)...
research
07/25/2020

Efficient Two-Layered Monitor for Partially Synchronous Distributed Systems (Technical Report)

Monitoring distributed systems to ensure their correctness is a challeng...
research
03/27/2020

RTLola Cleared for Take-Off: Monitoring Autonomous Aircraft

The autonomous control of unmanned aircraft is a highly safety-critical ...
research
02/07/2022

Evaluation of Runtime Monitoring for UAV Emergency Landing

To certify UAV operations in populated areas, risk mitigation strategies...
research
09/28/2022

Monitoring ROS2: from Requirements to Autonomous Robots

Runtime verification (RV) has the potential to enable the safe operation...
research
11/15/2018

Verified Runtime Validation for Partially Observable Hybrid Systems

Formal verification provides strong safety guarantees about models of cy...

Please sign up or login with your details

Forgot password? Click here to reset