VeriPhy: Verified Controller Executables from Verified Cyber-Physical System Models
Paper in proceeding, 2018
We present VeriPhy, a verified pipeline which automatically transforms verified high-level models of safety-critical cyberphysical systems (CPSs) in differential dynamic logic (dL) to verified controller executables. VeriPhy proves that all safety results are preserved end-to-end as it bridges abstraction gaps, including: i) the gap between mathematical reals in physical models and machine arithmetic in the implementation ii) the gap between real physics and its differentialequation models iii) and the gap between nondeterministic controller models and machine code. VeriPhy reduces CPS safety to the faithfulness of the physical environment, which is checked at runtime by synthesized, verified monitors. We use three provers in this effort: KeYmaera X, HOL4, and Isabelle/HOL. To minimize the trusted base, we cross-verify KeYmaera X in Isabelle/HOL. We evaluate the resulting controller and monitors on commodity robotics hardware.
hybrid systems
verified executables
verified compilation
cyber-physical systems
formal verification
Author
Yong Kiam Tan
Carnegie Mellon University (CMU)
Brandon Bohrer
Carnegie Mellon University (CMU)
Stefan Mitsch
Carnegie Mellon University (CMU)
Magnus Myreen
Chalmers, Computer Science and Engineering (Chalmers), Formal methods
André Platzer
Carnegie Mellon University (CMU)
Proceedings of the ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI)
617-630
978-145035698-5 (ISBN)
The 39th ACM SIGPLAN Conference on Programming Language Design and Implementation
Philadelphia, USA,
Philadelphia, USA,
Pålitlig mjukvara via programmering och kompilering i logik
Swedish Foundation for Strategic Research (SSF) (FFL15-0191), 2017-01-01 -- 2021-12-31.
Areas of Advance
Information and Communication Technology
Subject Categories (SSIF 2011)
Embedded Systems
Control Engineering
Computer Systems
DOI
10.1145/3192366.3192406