VeriPhy: Verified Controller Executables from Verified Cyber-Physical System Models
Paper in proceeding, 2018

We present VeriPhy, a verified pipeline which automatically transforms verified high-level models of safety-critical cyberphysical systems (CPSs) in differential dynamic logic (dL) to verified controller executables. VeriPhy proves that all safety results are preserved end-to-end as it bridges abstraction gaps, including: i) the gap between mathematical reals in physical models and machine arithmetic in the implementation ii) the gap between real physics and its differentialequation models iii) and the gap between nondeterministic controller models and machine code. VeriPhy reduces CPS safety to the faithfulness of the physical environment, which is checked at runtime by synthesized, verified monitors. We use three provers in this effort: KeYmaera X, HOL4, and Isabelle/HOL. To minimize the trusted base, we cross-verify KeYmaera X in Isabelle/HOL. We evaluate the resulting controller and monitors on commodity robotics hardware.

verified executables

formal verification

hybrid systems

verified compilation

cyber-physical systems

Author

Yong Kiam Tan

Carnegie Mellon University (CMU)

Brandon Bohrer

Carnegie Mellon University (CMU)

Stefan Mitsch

Carnegie Mellon University (CMU)

Magnus Myreen

Chalmers, Computer Science and Engineering (Chalmers), Formal methods

André Platzer

Carnegie Mellon University (CMU)

The 39th ACM SIGPLAN Conference on Programming Language Design and Implementation
Philadelphia, USA,

Pålitlig mjukvara via programmering och kompilering i logik

Swedish Foundation for Strategic Research (SSF) (FFL15-0191), 2017-01-01 -- 2021-12-31.

Areas of Advance

Information and Communication Technology

Subject Categories

Embedded Systems

Control Engineering

Computer Systems

DOI

10.1145/3192366.3192406

More information

Latest update

1/9/2019 1