DOCSLIB.ORG

Algorithms and Data Structures for Parametric Analysis of Real Time Systems

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

Algorithms and data structures for parametric analysis of real time systems Dissertation zur Erlangung des Doktorgrades der Mathematisch-Naturwissenschaftlichen Fakultäten der Georg-August-Universität zu Göttingen vorgelegt von Patryk Chamuczyński aus Brzeg Dolny Göttingen 2009 D7 Referent: Prof. Dr. Hogrefe Korreferent: Prof. Dr. Castanet Tag der mändlichen Prüfung: Algorithms and data structures for modeling and analysis of real-time systems Abstract: This document is intended to contribute to the area of validation and verification of com- municating real time systems, with emphasis put on parametric reachability analysis of systems modeled using timed automata. Reachability analysis is a crucial aspect of validation and verification of software and hardware systems. The reachability analysis for real time systems is area that is studied by many researchers in academic and industrial communities. However, not much work has been done for systems, where temporal constraints are expressed using parameters. This is serious disproportion with real world, where specifications of most of the communication protocols or embedded software and hardware systems are indeed parameterized. This thesis presents a complete framework for forward and backward parametric reachabil- ity analysis. The solution presented here can be used as a base of algorithms for validation and verification of software and hardware real-time systems, modeled as timed automata with parameters. The results of the thesis can be easily applied to model checking or test generation tools and algorithms. The core idea of the thesis is a concept of Extended Difference Bound Matrix (EDBM). This is a data structure that stores relations between all system’s clocks and parameters. In contrast to Parametric DBM, that is the state-of-the-art data structure for parametric analysis, EDBM does not require storing constraints on clocks and constraints on parame- ters separately. This leads to significant benefits regarding memory consumption and time necessary to perform basic operations for symbolic analysis. The maturity of the solution was proven by implementation of a proof-of-concept tool and by experiments performed with modern communication protocol. The results show that even complex systems can be efficiently handled by the framework. Keywords: timed automata, Difference Bound Matrix, embedded systems, real time sys- tems, parameterized verification, model checking, test generation Acknowledgements It is not possible to mention here all the people that I want to thank, so please do not be angry if you can not find your name below. In the first place I would like to thank my supervisors - prof. Richard Castanet from University of Bordeaux and prof. Dieter Hogrefe from University of Göttingen for giving me an ultimate freedom in the direction of my research while always being ready with help and advice. Big part of the research reported in this thesis was done at the University of Bordeaux and the LaBRI institute. There is a lot of people, that need to be mentioned for their help and support during those 18 months, that I spent in France. In the first place I want to thank Jean Louis Lassartesses for his tremendous help with all the required administration work. With your guidance even the legendary French bureaucracy was not scary to me. I want to thank Antoine Rollet for taking care of me during my first days at LaBRI, although they were his first days there as well. Special thanks must be said to Gosia Napierała (I guess that your name is Vincent now) for teaching me French. You really taught me more than I expected and deserved. And last but not least – Ismaïl Berrada. It was your initial idea to investigate the subject, that turned out to be worth of writing 170 pages long thesis. To all of you: merci beaucoup. The list of people from Institute for Informatics in Göttingen that I want to thank is for sure not shorter from the French one. Carmen Scherbaum de Huamán for making German bureaucracy (definitely not less legendary then French) easier. Also for keeping me motivated to learn and practice my German. Udo Burghard for doing magical things with my computer when it refused to obey me. Some words must be said about Nikunj Modi for his permanent distracting me from work and entertaining me with Indian stories. And mostly for Omar Alfandi for his permanent ability to listen, help and support in all aspects of my stay in Germany. To all of you: danke sehr. It must be said here, that a single page of this work could not be written without the support of my wife. I thank you the most. Dziękuję. Mojej żonie To my wife Pour ma femme Für meine Frau Contents 1 Introduction 1 1.1 Formalmethods................................. 1 1.2 Realtimesystems................................ 3 1.2.1 Modelsofrealtimesystems . 4 1.2.2 Parametricreal-timereasoning. ... 4 1.3 Motivationofthethesis . .. .. 5 1.4 Structureofthethesis ............................ 6 1.5 Acknowledgements ............................... 7 2 Formalities 9 2.1 Notation..................................... 10 2.1.1 Numbers................................. 10 2.1.2 Predicatelogic ............................. 10 2.1.3 Algorithmnotation ........................... 10 2.2 Sets, multisets and sequences . ... 11 2.2.1 Sets ................................... 11 2.2.2 Multisets................................. 12 2.2.3 Sequence................................. 13 2.3 Graphs...................................... 13 2.3.1 Fundamentaldefinitions . 13 2.3.2 Path................................... 14 2.3.3 Minimalandpositivegraphs . 14 2.3.4 Graphtransformations . 16 2.3.5 Minimizationalgorithm . 16 2.4 Densespaces .................................. 18 1 2.4.1 Valuations................................ 18 2.4.2 Polyhedra ................................ 18 2.4.3 Numericalbounds............................ 20 2.4.4 Constraintgraph ............................ 21 2.4.5 Canonicalformofapolyhedron . 22 2.4.6 Minimalconstraintsystem . 24 2.4.7 Operationsonpolyhedra . 26 3 Modeling Real Time Systems 29 3.1 Background ................................... 30 3.1.1 Clocks .................................. 30 3.1.2 Alphabets and timed sequence . 30 3.2 TimedAutomata ................................ 31 3.2.1 SyntaxandsemanticsofTA . 31 3.2.2 Computation .............................. 32 3.2.3 Invariants ................................ 33 3.2.4 Urgentlocations ............................ 34 3.2.5 TimeInputOutputAutomata. 35 3.2.6 ExtendedTIOA............................. 35 3.3 Modelingparallelsystems . .. 36 3.3.1 Networks of TIOA ........................... 37 3.3.2 CommunicatingSystem . 38 3.3.3 Summary ................................ 41 4 Symbolic Analysis of Timed Automata 43 4.1 Modelchecking ................................. 43 4.2 SymbolicPath.................................. 45 4.2.1 Path................................... 45 4.2.2 Zones .................................. 45 4.2.3 Symbolicoperationsonzones . 46 4.2.4 Symbolicpathanalysis . 48 4.3 DifferenceBoundsMatrix . 51 4.3.1 MinimalDBMs ............................. 52 4.3.2 OperationsonDBM .......................... 53 5 Parameterized systems 61 5.1 Parametricreasoning . .. .. 61 5.2 ParametricTimedAutomata. 62 5.2.1 Preliminaries .............................. 62 5.2.2 DefinitionofPTA............................ 65 5.3 ParametricDBM ................................ 66 5.3.1 DefinitionofPDBM .......................... 66 5.3.2 OperationsonconstrainedPDBMs . 67 5.4 Summary .................................... 73 6 Extended Difference Bound Matrix 75 6.1 DefinitionofExtendedDBM. 76 6.1.1 Equivalent elements and equivalence classes . ...... 77 6.2 CanonicalizationofEDBM. 81 6.2.1 LinearDBM............................... 82 6.2.2 ClosureofEDBM............................ 84 6.2.3 MinimizationofLDBM. 92 6.3 OperationsonEDBM.............................. 97 6.3.1 Propertychecking............................ 97 6.3.2 Transformations............................. 99 6.4 Symbolic analysis using EDBM . 110 6.5 Summary .................................... 115 7 Implementation and experiments 119 7.1 ImplementationofEDBMandLDBM . 120 7.1.1 Implementationofbound. 120 7.1.2 EDBM class implementation . 120 7.2 TheSMARTtool ................................ 127 7.2.1 GlobalDefinitions............................ 129 7.2.2 Parser .................................. 134 7.2.3 SystemDefinition............................ 135 7.2.4 SimulationEngine ........................... 137 7.2.5 SymbolicStateHandler . 139 7.3 SMARTinputfiles ............................... 140 7.3.1 Automatadescription. 140 7.3.2 Systemdescription . .. .. .. 145 7.4 Generating test cases with SMART . 150 7.4.1 Test selection using coloring coverage criterion . ......... 150 7.4.2 Testgenerationalgorithms . 151 7.5 Experiments................................... 152 8 Conclusions and future work 155 8.1 Conclusions ................................... 155 8.2 Futureperspectives .............................. 156 1 Introduction 1.1 Formal methods The recent technological revolution resulted in rapid expansion of Internet, communication systems and embedded applications in different fields of human life. Not more than 20 years ago, using computer was a privilege of small amount of specialist. Nowadays, our interac- tion with some kind of computational-based device is unavoidable. Consumer electronics, vehicles, telecommunication systems, medical equipment – these are only few examples of domains where the impact of the revolution in electronics
Recommended publications
  • A Boolean Approach to Unbounded, Fully Symbolic Model Checking of Timed Automata

    A Boolean Approach to Unbounded, Fully Symbolic Model Checking of Timed Automata

    A Boolean Approach to Unbounded, Fully Symbolic Model Checking of Timed Automata Sanjit A. Seshia Randal E. Bryant March 2003 CMU-CS-03-117 School of Computer Science Carnegie Mellon University Pittsburgh, PA 15213 A shorter version of this paper will appear at CAV '03. Abstract We present a new approach to unbounded, fully symbolic model checking of timed automata that is based on an efficient translation of quantified separation logic to quantified Boolean logic. Our technique preserves the interpretation of clocks over the reals and can check any property expressed in the timed µ calculus. The core operations of eliminating quantifiers over real variables and deciding separation logic are respectively translated to eliminating quantifiers on Boolean variables and checking Boolean satisfiability (SAT). We can thus leverage well-known techniques for Boolean formulas, including Binary Decision Diagrams (BDDs) and recent advances in SAT and SAT-based quantifier elimination. We present preliminary empirical results for a BDD-based implementation of our method. This research was supported in part by a National Defense Science and Engineering Graduate Fellowship and by ARO grant DAAD19-01-1-0485. The U.S. Government is authorized to reproduce and distribute reprints for Governmental purposes notwith- standing any copyright annotation thereon. The views and conclusions contained in this document are those of the authors, and should not be interpreted as necessarily representing the official policies or endorsements, either expressed or implied, of the Department of Defense or the U.S. Government. Keywords: Timed automata, Model checking, Boolean logic, Separation logic, Quantifier elimination 1 Introduction Timed automata [2] have proved to be a useful formalism for modeling real-time systems.
  • Automata on Timed Structures 1

    Automata on Timed Structures 1

    Automata on Timed Structures 1 Samy Jaziri June 14, 2019 1This thesis have been supported by ERC project EQualIS Contents I Timed Systems Modeling 7 1 Basic Notions on Transition Systems 8 1.1 Partial Functions . .9 1.2 Labeled Transition System . .9 1.3 Bisimulation on Labeled Transition Systems . 11 2 Timed Structures 14 2.1 Timed Domains . 15 2.2 Updates and Timed Structures . 19 2.3 About Guards and Guarded Timed Structures . 20 3 Automata on Timed Structures 25 3.1 Definition and Representation . 26 3.2 Bisimulation for Automata on Timed Structures . 31 4 Controls 36 4.1 General Definition . 37 4.2 Timed Controls . 39 4.3 Graph and Bisimulation of Timed Controlled Automata . 42 II Determinization of Timed Systems 47 5 Timed Control Determinization 48 5.1 Determinization of Timed Controlled Automata on Timed Systems . 50 5.2 Application to Timed Automata . 56 6 Timed Structure Equivalences 59 6.1 From Product to Maps . 60 6.2 From Maps to Bounded Markings . 67 7 Application to Classes of Timed Automata 74 7.1 Application to Timed Automata . 75 7.2 About Other Determinizable Classes . 76 8 Full Control Determinization 80 8.1 Full Controlled ATS are always Strongly Determinizable . 81 8.2 Application to Input-Determined Models . 85 1 III Diagnosis of Timed Automata 90 9 Diagnosis for Timed Automata 91 9.1 General Context . 92 9.2 Diagnosis with Automata On Timed Structures . 93 10 Timed Set Algebra 97 10.1 Timed Sets . 98 10.2 Regular Timed Interval . 104 10.3 Regular Timed Markings .
  • Fully Symbolic Model Checking of Timed Systems Using Di Erence

    Fully Symbolic Model Checking of Timed Systems Using Di Erence

    p URL httpwwwelsevier nl lo ca te ent cs vol ume htm l pages Fully Symb olic Mo del Checking of Timed Systems using Dierence Decision Diagrams Jesp er Mller Jakob Lichtenberg Henrik R Andersen and Henrik Hulgaard The IT University in Copenhagen Glentevej DK Copenhagen NV Denmark Email jmjlhrahenrikitudk Abstract Current approaches for analyzing timed systems are based on an explicit enumera tion of the discrete states and thus these techniques are only capable of analyzing systems with a handful of timers and a few thousand states We address this lim itation by describing how to analyze a timed system fully symb olically ie by representing sets of discrete states and their asso ciated timing information implic itly We demonstrate the eciency of the symb olic technique by computing the set of reachable states for a nontrivial timed system and compare the results with the stateoftheart to ols Kronos and Uppaal With an implementation based on dif ference decision diagrams the runtimes are several orders of magnitudes b etter The key op eration in obtaining these results is the abilitytoadvance time symb olically Weshow how to do this eciently by essentially quantifying out aspecialvariable z which is used to represent the constant zero The symb olic manipulations given in this pap er are sucienttoverify TCTLformulae fully symb olically Intro duction Mo del checking is to day used extensively for formal verication of nite state systems such as digital circuits and emb edded software The success of the technique is primarily due to
  • Clocks, Dbms and States in Timed Systems

    Clocks, Dbms and States in Timed Systems

    Clocks, DBMs and States in Timed Systems Johan Bengtsson A Dissertation submitted for the Degree of Doctor of Philosophy Department of Information Technology Uppsala University June 2002 Dissertation for the Degree of Doctor of Philosophy in Computer science with specialization in Real Time Systems presented at Uppsala University in 2002. ABSTRACT Bengtsson, J. 2002: Clocks, DBMs and States in Timed Systems. Acta Universitatis Upsaliensis Uppsala Dissertations from the Faculty of Science and Technology 39. 143 pp. Uppsala. ISBN 91-554-5350-3 Today, computers are used to control various technical systems in our society. In many cases, time plays a crucial role in the operation of computers embedded in such systems. This thesis is about techniques and tools for the analysis of timing behaviours of computer systems. Its main contributions are in the development and implementation of UPPAAL, a tool designed to automate the analysis process of systems modelled as timed automata. As the first contribution, we present a software package for timing constraints represented as Difference Bound Matrices. We describe in details, all data-structures and operations for DBMs needed in state-space exploration of timed automata, as well as techniques for efficient imple- mentation. In particular, we have developed two normalisation algorithms to guarantee termina- tion of reachability analysis for timed automata containing constraints on clock differences, that transform DBMs according to not only maximal constants of clocks as in algorithms published in the literature, but also difference constraints appearing in the automata. The second contribu- tion of this thesis is a collection of low level optimisations on the internal data-structures and algorithms of UPPAAL to minimise memory and time consumption.
  • Context-Dependent Reachability Analysis in Hybrid System Have Been Explored

    Context-Dependent Reachability Analysis in Hybrid System Have Been Explored

    The present work was submitted to the LuFG Theory of Hybrid Systems MASTER OF SCIENCE THESIS CONTEXT-DEPENDENT REACHABILITY ANALYSIS FOR HYBRID AUTOMATA Justin Winkens Examiners: Prof. Dr. Erika Ábrahám Prof. Dr. Thomas Noll Additional Advisor: Stefan Schupp M.Sc. Aachen, May 22, 2018 Abstract This thesis is focused on the analysis of hybrid automata, which incorporate discrete and continuous behavior of a given system into one model. A common approach to analyze these automata for safety is so called flowpipe construction that iteratively constructs a set of over-approximative geometric objects that contain all reachable states of the automaton. Implementations of this approach can be found in toolboxes like Flow*, HyPro/HyDRA or SpaceEx. Unfortunately, the computational cost of flowpipe construction is exponential in the number of variables/dimensions. This thesis aims at improving the HyPro/HyDRA toolbox by implement- ing a context-based approach to flowpipe analysis using variable set separation, in which the state space of the underlying automaton is decomposed into syn- tactically independent sets of variables allowing for separate analysis of the now lower dimensional subspaces. The different subspaces can then be analyzed for their properties enabling us to perform a context-based analysis where we will be able to dynamically choose data structures and algorithms based on the context defined by the automaton’s current location and the state’s subspaces. In the process HyPro is augmented with a new representation called differ- ence bound matrix that is especially suited for the analysis of timed automata. Experimental results in common benchmarks show a speedup of up to 11 000% for decomposed analysis.
  • Controller Program Synthesis for Industrial Machines

    Controller Program Synthesis for Industrial Machines

    R S V E I T I A N S U S S A I R S A V I E N CONTROLLER PROGRAM SYNTHESIS FOR INDUSTRIAL MACHINES by Hans-Jorg¨ Peter A diploma thesis in the DEPARTMENT 6.2 - COMPUTER SCIENCE ADVISORS Prof. Bernd Finkbeiner, PhD Prof. Dr.-Ing. habil. Hartmut Janocha SAARLAND UNIVERSITY, GERMANY November 2005 Erklarung¨ Hiermit versichere ich an Eides statt, dass ich die vorliegende Arbeit selbst¨andig und unter ausschließlicher Verwendung der angegebenen Hilfsmittel angefertigt habe. Saarbr¨ucken, im November 2005 i This work is dedicated to my grandparents Hannelore and Nikolaus Peter ii Abstract In this thesis, a new synthesis algorithm for industrial controller programs is presented. Verification and synthesis are the two basic approaches to guarantee that a system is correct. While verification requires the programmer to provide both the specification and the implementation, synthesis automatically transforms the specification into an implemen- tation that is correct by construction. The presented approach includes a new specification language that is geared towards usability in an industrial set-up. Specifications consist of two parts: a generic description of the machine components that is reused for different programs, and a description of the production goals that is specific to each program. The behaviour of the machine compo- nents is described by timed automata, while the production goals are captured by safety and bounded liveness properties. The advantage of this approach is that the description of the goals, and thus of the behaviour of the overall system, is decoupled from the technical details of the machine components. This results in a high degree of re-usability, adaptivity, and maintainability.
  • Symbolic Implementation of Model-Checking Probabilistic Timed Automata

    Symbolic Implementation of Model-Checking Probabilistic Timed Automata

    SYMBOLIC IMPLEMENTATION OF MODEL-CHECKING PROBABILISTIC TIMED AUTOMATA by FUZHI WANG A thesis submitted to The University of Birmingham for the degree of DOCTOR OF PHILOSOPHY School of Computer Science The University of Birmingham September 2006 Abstract In this thesis, we present symbolic implementation techniques for model checking prob- abilistic timed automata as models for systems, for example, communication networks and randomised distributed algorithms. Given a system model as probabilistic timed au- tomata and a specification, such as, “a leader will be elected within 5 time units with probability 0.999” and “the message can be successfully delivered within 3 time units with probability 0.985”, a probabilistic real-time model checker can automatically verify if the model satisfies the specification. Motivated by the success of symbolic approaches to both non-probabilistic real-time model checking and untimed probabilistic model checking, we present a symbolic implementation of model checking for probabilistic timed automata, which is based on the data structure called Multi-terminal Binary Decision Diagrams (MTBDDs). Our MTBDD-based symbolic implementation is generic with respect to the support of the real-time information. Two data structures representing the real-time information are supported, Difference Bound Matrices (DBMs) and Difference Decision Diagrams (DDDs). We develop explicit and symbolic implementations of model check- ing for probabilistic timed automata, focusing on probabilistic reachability properties. The explicit implementation concerns both forward and backward generation of the zone graph, where the latter results in non-convex zones in the case of calculating the minimum probability. The symbolic implementation is of the forward exploration and is built on the PRISM software.
  • Symbolic Model Checking of Timed Guarded Commands Using

    Symbolic Model Checking of Timed Guarded Commands Using

    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Elsevier - Publisher Connector THE JOURNAL OF LOGIC AND ALGEBRAIC PROGRAMMING The Journal of Logic and Algebraic Programming 52–53 (2002) 53–77 www.elsevier.com/locate/jlap Symbolic model checking of timed guarded commands using difference decision diagramsୋ Jesper Møller∗, Henrik Hulgaard, Henrik Reif Andersen Department of Innovation, The IT University of Copenhagen, Denmark Abstract We describe a novel methodology for analyzing timed systems symbolically. Given a formula representing a set of states, we describe how to determine a new formula that represents the set of states reachable by taking a discrete transition or by advancing time. The symbolic representations are given as formulae expressed in a simple first-order logic over difference constraints of the form x − y d which can be combined with Boolean operators and existentially quantified. We also show how to symbolically determine the set of states that can reach a given set of states (i.e., a backward step), thus making it possible to verify timed CTL-formulae symbolically. The main contribution is a way of advancing time symbolically essentially by quantifying out a special variable z which is used to represent the current zero point in time. We also describe a data structure called DDDs for representing difference constraint formulae, and we demonstrate the efficiency of the symbolic technique by analyzing two scheduling protocols using a DDD-based model checker. © 2002 Elsevier Science Inc. All rights reserved. Keywords: Real-time systems; Timed automata; Timed guarded commands; Symbolic model check- ing; Timed CTL; Difference constraint systems; Difference decision diagrams; Quantifier elimination 1.
  • What Else Is Decidable About Integer Arrays? Peter Habermehl, Radu Iosif, Tomáš Vojnar

    What Else Is Decidable About Integer Arrays? Peter Habermehl, Radu Iosif, Tomáš Vojnar

    What Else Is Decidable about Integer Arrays? Peter Habermehl, Radu Iosif, Tomáš Vojnar To cite this version: Peter Habermehl, Radu Iosif, Tomáš Vojnar. What Else Is Decidable about Integer Arrays?. Foun- dations of Software Science and Computational Structures, 11th International Conference, FOSSACS 2008, Mar 2008, Budapest, Hungary. 10.1007/978-3-540-78499-9_33. hal-01418914 HAL Id: hal-01418914 https://hal.archives-ouvertes.fr/hal-01418914 Submitted on 17 Dec 2016 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. What else is decidable about integer arrays? Peter Habermehl1, Radu Iosif2, and Tom´aˇsVojnar3 1 LSV, ENS Cachan, CNRS, INRIA; 61 av. du Pr´esident Wilson, F-94230 Cachan, France, e-mail:[email protected] 2 VERIMAG,CNRS, 2 av. de Vignate, F-38610 Gi`eres, France, e-mail:[email protected] 3 FIT BUT, Boˇzetˇechova 2, CZ-61266, Brno, Czech Republic, e-mail: [email protected] Abstract. We introduce a new decidable logic for reasoning about infinite arrays of integers. The logic is in the ∃∗∀∗ first-order fragment and allows (1) Presburger constraints on existentially quantified variables, (2) difference constraints as well as periodicity constraints on universally quantified indices, and (3) difference constraints on values.
  • Arxiv:2108.00893V2 [Cs.LG] 23 Aug 2021 Ning for Autonomous Systems

    Arxiv:2108.00893V2 [Cs.LG] 23 Aug 2021 Ning for Autonomous Systems

    Static analysis of ReLU neural networks with tropical polyhedra Eric Goubault?1, S´ebastienPalumby1, Sriram Sankaranarayanan2, Sylvie Putot1, and Louis Rustenholz1 1 LIX, Ecole Polytechnique, CNRS and Institut Polytechnique de Paris, 91128 Palaiseau, France [email protected] 2 Engineering Center Computer Science, University of Colorado at Boulder, USA [email protected] Abstract. This paper studies the problem of range analysis for feedfor- ward neural networks, which is a basic primitive for applications such as robustness of neural networks, compliance to specifications and reacha- bility analysis of neural-network feedback systems. Our approach focuses on ReLU (rectified linear unit) feedforward neural nets that present spe- cific difficulties: approaches that exploit derivatives do not apply in gen- eral, the number of patterns of neuron activations can be quite large even for small networks, and convex approximations are generally too coarse. In this paper, we employ set-based methods and abstract inter- pretation that have been very successful in coping with similar difficulties in classical program verification. We present an approach that abstracts ReLU feedforward neural networks using tropical polyhedra. We show that tropical polyhedra can efficiently abstract ReLU activation func- tion, while being able to control the loss of precision due to linear com- putations. We show how the connection between ReLU networks and tropical rational functions can provide approaches for range analysis of ReLU neural networks. We report on a preliminary evaluation of our approach using a prototype implementation. 1 Introduction and related work Neural networks are now widely used in numerous applications including speech recognition, natural language processing, image segmentation, control and plan- arXiv:2108.00893v2 [cs.LG] 23 Aug 2021 ning for autonomous systems.
  • Data Structure Choices for On-The-Fly Model Checking of Real-Time Systems

    Data Structure Choices for On-The-Fly Model Checking of Real-Time Systems

    Data Structure Choices for On-the-Fly Model Checking of Real-Time Systems Peter Fontana Rance Cleaveland Department of Computer Science Department of Computer Science University of Maryland, College Park University of Maryland, College Park Email: [email protected] Email: [email protected] Abstract—This paper studies the performance of sparse- checking based on proof search: a formula correspond- matrix-based data structures to represent clock zones (con- ing to the assertion that a timed automaton satisfies a vex sets of clock values) in an on-the-fly predicate equation mu-calculus property can be checked in a goal-driven system model checker for timed automata. We analyze the fashion to determine its truth. Zhang and Cleaveland [6] impact of replacing the dense difference bound matrix demonstrated the efficiency of this approach vis a` vis (DBM) with both the linked-list CRDZone and array-list CRDArray data structure. From analysis on the paired- other real-time model-checking approaches. example-by-example differences in time performance, we In this paper we consider the special model check- infer the DBM is either competitive with or slightly faster ing case of timed automata and timed modal equation than the CRDZone, and both perform faster than the systems representing safety properties (also studied in CRDArray. Using similar analysis on space performance, [6]), for which there are still many opportunities for we infer the CRDZone takes the least space, and the DBM performance improvements. One component of such a takes less space than the CRDArray. model checker that has a noticeable influence on perfor- mance is the data structure for the sets of clock values.
  • Incremental Closure for Systems of Two Variables Per Inequality

    Incremental Closure for Systems of Two Variables Per Inequality

    City Research Online City, University of London Institutional Repository Citation: Howe, J. M. ORCID: 0000-0001-8013-6941, King, A. and Simon, A. (2019). Incremental closure for systems of two variables per inequality. Theoretical Computer Science, 768, pp. 1-42. doi: 10.1016/j.tcs.2018.12.001 This is the published version of the paper. This version of the publication may differ from the final published version. Permanent repository link: https://openaccess.city.ac.uk/id/eprint/21241/ Link to published version: http://dx.doi.org/10.1016/j.tcs.2018.12.001 Copyright: City Research Online aims to make research outputs of City, University of London available to a wider audience. Copyright and Moral Rights remain with the author(s) and/or copyright holders. URLs from City Research Online may be freely distributed and linked to. Reuse: Copies of full items can be used for personal research or study, educational, or not-for-profit purposes without prior permission or charge. Provided that the authors, title and full bibliographic details are credited, a hyperlink and/or URL is given for the original metadata page and the content is not changed in any way. City Research Online: http://openaccess.city.ac.uk/ [email protected] Theoretical Computer Science 768 (2019) 1–42 Contents lists available at ScienceDirect Theoretical Computer Science www.elsevier.com/locate/tcs Incremental Closure for Systems of Two Variables Per Inequality ∗ ∗ Jacob M. Howe a, , Andy King b, , Axel Simon c a Department of Computer Science, City, University of London, EC1V 0HB, UK b School of Computing, University of Kent, Canterbury, CT2 7NF, UK c Google, Mountain View, California, CA 94043, USA a r t i c l e i n f o a b s t r a c t Article history: Subclasses of linear inequalities where each inequality has at most two variables are Received 1 December 2017 popular in abstract interpretation and model checking, because they strike a balance Received in revised form 14 October 2018 between what can be described and what can be efficiently computed.