VeriPhy: Verified Controller Executables from Verified Cyber-Physical System Models
Paper in proceeding, 2018
We present VeriPhy, a verified pipeline which automatically transforms verified high-level models of safety-critical cyberphysical systems (CPSs) in differential dynamic logic (dL) to verified controller executables. VeriPhy proves that all safety results are preserved end-to-end as it bridges abstraction gaps, including: i) the gap between mathematical reals in physical models and machine arithmetic in the implementation ii) the gap between real physics and its differentialequation models iii) and the gap between nondeterministic controller models and machine code. VeriPhy reduces CPS safety to the faithfulness of the physical environment, which is checked at runtime by synthesized, verified monitors. We use three provers in this effort: KeYmaera X, HOL4, and Isabelle/HOL. To minimize the trusted base, we cross-verify KeYmaera X in Isabelle/HOL. We evaluate the resulting controller and monitors on commodity robotics hardware.
verified executables
formal verification
hybrid systems
verified compilation
cyber-physical systems
Author
Yong Kiam Tan
Carnegie Mellon University (CMU)
Brandon Bohrer
Carnegie Mellon University (CMU)
Stefan Mitsch
Carnegie Mellon University (CMU)
Magnus Myreen
Chalmers, Computer Science and Engineering (Chalmers), Formal methods
André Platzer
Carnegie Mellon University (CMU)
The 39th ACM SIGPLAN Conference on Programming Language Design and Implementation
Philadelphia, USA,
Philadelphia, USA,
Pålitlig mjukvara via programmering och kompilering i logik
Swedish Foundation for Strategic Research (SSF) (FFL15-0191), 2017-01-01 -- 2021-12-31.
Areas of Advance
Information and Communication Technology
Subject Categories
Embedded Systems
Control Engineering
Computer Systems
DOI
10.1145/3192366.3192406