Specifying Safety Monitors for Autonomous Systems Using Model-Checking

Machin, Mathilde; Dufossé, Fanny; Blanquart, Jean-Paul; Guiochet, Jérémie; Powell, David; Waeselynck, Hélène

doi:10.1007/978-3-319-10506-2_18

Cited by 25 publications

(16 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Specifying a monitor to restrict the robotic system to safe behaviours within its environment reduces the verification burden, as only the monitor needs to be verified [21]. For example, a robot's environment can be captured by timed automata and safety properties written in temporal logic [2].…”

Section: Modelling the Physical Environmentmentioning

confidence: 99%

Robotics and Integrated Formal Methods: Necessity Meets Opportunity

Farrell

Luckcuck

Fisher

2018

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Robotic systems are multi-dimensional entities, combining both hardware and software, that are heavily dependent on, and influenced by, interactions with the real world. They can be variously categorised as embedded, cyberphysical, real-time, hybrid, adaptive and even autonomous systems, with a typical robotic system being likely to contain all of these aspects. The techniques for developing and verifying each of these system varieties are often quite distinct. This, together with the sheer complexity of robotic systems, leads us to argue that diverse formal techniques must be integrated in order to develop, verify, and provide certification evidence for, robotic systems. Furthermore, we propose the fast evolving field of robotics as an ideal catalyst for the advancement of integrated formal methods research, helping to drive the field in new and exciting directions and shedding light on the development of large-scale, dynamic, complex systems.

show abstract

Section: Modelling the Physical Environmentmentioning

confidence: 99%

Robotics and Integrated Formal Methods: Necessity Meets Opportunity

Farrell

Luckcuck

Fisher

2018

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…But none of them offers a complete approach to identify invariants from hazards and formally derive the safety strategies. In contrast, our previous work [14], [15] provides a complete safety rule identification process, starting from a hazard analysis using the HAZOP-UML [8] technique and using formal verification techniques to synthesize the strategies.…”

Section: Related Workmentioning

confidence: 99%

Tuning Permissiveness of Active Safety Monitors for Autonomous Systems

Masson

Guiochet

Waeselynck

et al. 2018

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. Robots and autonomous systems have become a part of our everyday life, therefore guaranteeing their safety is crucial. Among the possible ways to do so, monitoring is widely used, but few methods exist to systematically generate safety rules to implement such monitors. Particularly, building safety monitors that do not constrain excessively the system's ability to perform its tasks is necessary as those systems operate with few human interventions. We propose in this paper a method to take into account the system's desired tasks in the specification of strategies for monitors and apply it to a case study. We show that we allow more strategies to be found and we facilitate the reasoning about the trade-off between safety and availability.

show abstract

“…Previous work has proposed a systematic process to produce the safety rules [1]. It starts by a hazard analysis method, HAZOP-UML [2], from which a set of safety invariants is derived.…”

Section: Introductionmentioning

confidence: 99%