| | |
Summary: Automatic Symbolic Verification of Embedded Systems \Lambda
Rajeev Alur y Thomas A. Henzinger z PeiHsin Ho x
Abstract. We present a modelchecking procedure and its implementation for the au
tomatic verification of embedded systems. The system components are described as Hy
brid Automata---communicating machines with finite control and realvalued variables
that represent continuous environment parameters such as time, pressure, and tempera
ture. The system requirements are specified in a temporal logic with stop watches, and
verified by symbolic fixpoint computation. The verification procedure---implemented
in the Cornell Hybrid Technology Tool, HyTech---applies to hybrid automata whose
continuous dynamics is governed by linear constraints on the variables and their deriva
tives. We illustrate the method and the tool by checking safety, liveness, timebounded,
and duration requirements of digital controllers, schedulers, and distributed algorithms.
1 Introduction
Hybrid systems are digital realtime systems that are embedded in analog environments. Due
to the rapid development of digitalprocessor technology, hybrid systems directly control much
of what we depend on in our daily lives. Many hybrid systems, ranging from automobiles to
aircraft, operate in safetycritical situations and therefore call for rigorous analysis techniques. Yet
traditional program verification methods allow us, at best, to approximate continuously changing
environments by discrete sampling. Only recently have there been some attempts at developing a
verification methodology for hybrid systems [GNRR93, ANKS95, AHS96].
|
