New Logic Modeling Paradigms for Complex System Reliability and Risk Analysis

Similar documents
The AltaRica 3.0 Project

Safety Assessment of an Electrical System with AltaRica 3.0

AltaRica 3.0 project: compile Guarded Transition Systems into Fault Trees

Stochastic Petri nets

AltaRica 3 Based Models for ISO Automotive Safety Mechanisms

Open-PSA Open-PSA Model Exchange Format - 1. The Open-PSA Initiative. Open-PSA Model Exchange Format

The AltaRica 3.0 Project for Model-Based Safety Assessment

GraphXica: a Language for Graphical Animation of Models

Dependability Modeling Based on AADL Description (Architecture Analysis and Design Language)

Safety and Reliability of Embedded Systems. (Sicherheit und Zuverlässigkeit eingebetteter Systeme) Safety and Reliability Analysis Models: Overview

Model-based System Engineering for Fault Tree Generation and Analysis

COMPASS GRAPHICAL MODELLER

Stochastic simulation of AltaRica 3.0 models

The OpenAltaRica Platform

Scalable Analysis of Fault Trees with Dynamic Features

System Structure Modeling Language (S2ML)

Petri Nets ~------~ R-ES-O---N-A-N-C-E-I--se-p-te-m--be-r Applications.

COMPASS: FORMAL METHODS FOR SYSTEM-SOFTWARE CO-ENGINEERING

OpenAltaRica - Example A (Simple) Cooling System

Module 4: Stochastic Activity Networks

Model-Based Safety Approach for Early Validation of Integrated and Modular Avionics Architectures

DEVELOPMENT OF AN ADVANCED FAULT TREE QUANTIFICATION ENGINE BASED ON BDD/ZBDD ALGORITHM

SHARPE Interface User's Manual Version 1.01

COMPASS. COMPASS Tutorial. Correctness, Modeling, and Performance of Aerospace Systems. Version 3.0

Verification by Static Analysis

Overview. Probabilistic Programming. Dijkstra s guarded command language: Syntax. Elementary pgcl ingredients. Lecture #4: Probabilistic GCL

Discrete Event Simulation and Petri net Modeling for Reliability Analysis

Dependability Modelling using AADL and the AADL Error Model Annex

Reading assignment: Reviews and Inspections

Page 1. Reading assignment: Reviews and Inspections. Foundations for SE Analysis. Ideally want general models. Formal models

Reliability and Dependability in Computer Networks. CS 552 Computer Networks Side Credits: A. Tjang, W. Sanders

AVERTISSEMENT. D'autre part, toute contrefaçon, plagiat, reproduction encourt une poursuite pénale. LIENS

Generating Petri Nets from AADL descriptions. Thomas Vergnaud

Dependable and Secure Systems Dependability

Symbolic Synthesis of Observability Requirements for Diagnosability

Probabilistic Model Checking. Mohammad Roohitavaf

FROM SAFETY MODELS TO SECURITY MODELS: PRELIMINARY LESSONS LEARNT

A Modelling and Analysis Environment for LARES

Automatic Implementation of the KKL seismic PSA

Industrial Automation course

Knowledge-based Systems for Industrial Applications

Safety Assessment ICAS 2010

Semantic Subtyping. Alain Frisch (ENS Paris) Giuseppe Castagna (ENS Paris) Véronique Benzaken (LRI U Paris Sud)

these developments has been in the field of formal methods. Such methods, typically given by a

A Verification Method for Software Safety Requirement by Combining Model Checking and FTA Congcong Chen1,a, Fuping Zeng1,b, Minyan Lu1,c

Dependable and Secure Systems Dependability Master of Science in Embedded Computing Systems

Stochastic Petri Nets Supporting Dynamic Reliability Evaluation

Methods of Technical Risk Assessment in a Regional Context

Formal Modeling of BPEL Workflows Including Fault and Compensation Handling

Logic and Computation

ExCuSe A Method for the Model-Based Safety Assessment of Simulink and Stateflow Models

PRISM An overview. automatic verification of systems with stochastic behaviour e.g. due to unreliability, uncertainty, randomisation,

Modelling & Simulation of Complex Socio-Cyber- Physical Systems and Large Scale Systems of Systems

Program verification. Generalities about software Verification Model Checking. September 20, 2016

DIVERSITY TG Automatic Test Case Generation from Matlab/Simulink models. Diane Bahrami, Alain Faivre, Arnault Lapitre

A System Performance in Presence of Faults Modeling Framework Using AADL and GSPNs

Analysis and Design Language (AADL) for Quantitative System Reliability and Availability Modeling

The Abstract Behavioral Specification Language

Quantitative Analysis of UML Models

Performability Modeling & Analysis in UML

A System Dependability Modeling Framework Using AADL and GSPNs

Safety analysis integration in a systems engineering approach for mechatronic systems design

Exercise Unit 2: Modeling Paradigms - RT-UML. UML: The Unified Modeling Language. Statecharts. RT-UML in AnyLogic

ENABLING AND (IN MY HUMBLE OPINION) ESSENTIAL TECHNOLOGIES FOR DEPENDABILITY BENCHMARKING. William H. Sanders

Fachgebiet Softwaretechnik, Heinz Nixdorf Institut, Universität Paderborn. 2.3 Timed Automata and Real-Time Statecharts

Verification in Continuous Time Recent Advances

Myron Hecht, Alex Lam, Chris Vogl, Presented to 2011 UML/AADL Workshop Las Vegas, NV. April, 2011

Contract-based design, model checking, and model-based safety assessment

Sequential Failure Analysis Using Counters of Petri Net Models

Formal Verification and Validation of AADL Models

SySTEMA. SYstem & Safety Tool for Executing Model-based Analyses

Chair of Software. Engineering. Overview. School of Business Informatics and Mathematics. 1. Find out why software engineering is important

ON-LINE QUALITATIVE MODEL-BASED DIAGNOSIS OF TECHNOLOGICAL SYSTEMS USING COLORED PETRI NETS

International Training Workshop on FPGA Design for Scientific Instrumentation and Computing November 2013

MONIKA HEINER.

Automatic analysis technology for aviation equipment software requirements ZHOUHan-Qing, LI Hai-Feng,HUANG Yan-Bing

Simulation-Based Analysis of UML Statechart Diagrams: Methods and Case Studies 1

Quantitative Safety Analysis of SysML Models

Circuit simplification examples

Formal Methods and their role in Software and System Development. Riccardo Sisto, Politecnico di Torino

Automation Systems Discrete Event Control Systems and Networked Automation Systems

A Component Modular Modeling Approach based on Object Oriented Petri Nets for the Performance Analysis of Distributed Discrete Event Systems

Techniques, and Tools

CSC313 High Integrity Systems/CSCM13 Critical Systems. CSC313/CSCM13 Chapter 1 1/ 38

Software and Hardware

VALIDATING AN ANALYTICAL APPROXIMATION THROUGH DISCRETE SIMULATION

Fault Tree Linking versus Event Tree Linking Approaches: A Mathematical and Algorithmic Reconciliation

SBML Event Semantics

Estimating Number of Organs using Erlang's B & C-Formulas

AADL Fault Modeling and Analysis Within an ARP4761 Safety Assessment

An Information Model for High-Integrity Real Time Systems

Using Diposets to Model Concurrent Systems

Software verification for ubiquitous computing

Test Automation. 20 December 2017

Internal Flooding According to EPRI Guidelines Detailed Electrical Mapping at Ringhals

TECHNIQUE OF CONSTRUCTION MODELS OF BEHAVIOR ALGORITHMS OF RADIO ELECTRONIC COMPLEX SYSTEM USING THE SCHEME OF PATHS METHOD

Operational Semantics 1 / 13

CONTROLLER DEPENDABILITY ANALYSIS BY PROBABILISTIC MODEL CHECKING. Marta Kwiatkowska, Gethin Norman and David Parker

AltaRica 3.0: a Model-Based approach for Safety Analyses

Queuing Networks. Renato Lo Cigno. Simulation and Performance Evaluation Queuing Networks - Renato Lo Cigno 1

Transcription:

New Logic Modeling Paradigms for Complex System Reliability and Risk Analysis Antoine Rauzy Chair Blériot-Fabre* - Ecole Centrale de Paris Ecole Polytechnique FRANCE Antoine.Rauzy@ecp.fr http://www.lgi.ecp.fr/pmwiki.php/pagesperso/arauzy *Sponsored by SAFRAN group

Probabilistic Risk Assessment is now established on a solid scientific ground is a mature technology is a great tool for decision making So, what s next? More openness Higher level modeling languages Wider spectrum of applications

Standard Representation Formats Issues Models are tool-dependent Calculations are provably difficult so calculation engines perform unwarranted approximations Challenge/research direction: Define standard representation formats, with all the necessary constructs, with a clear and sound semantics Version 3 of the Open-PSA standard under redaction Simplifications Block Diagrams Multi-phase Markov Chains with Rewards The Open-PSA Standard Representation Format for Fault Trees and Event Trees <define-fault-tree name="ft1" > <define-gate name="top" > <or> <gate name="g" /> <basic-event name="c" /> </or> </define-gate> <define-gate name="g" > <and> <basic-event name="a" /> <basic-event name="b" /> </and> </define-gate> </define-fault-tree>

New Algorithms for Model Assessment Issues: Finding the right level of abstraction is difficult to achieve Design Filtering Algorithms that to build simpler models that are equivalent w.r.t. to observation means Typical example (US plant): ~2 500 Basic Events PSA model What has been calculated: ~100 000 Minimal Cutsets 95% of the Core Damage Frequency with less than 5% of the Basic Events, 100% with 25% In a word, 75% of the model is useless! Original Model Minimal Cutsets Simplified Model

Categories of Models Challenge/research direction: Many possibly very different models are undistinguishable by observation means, i.e. results of virtual experiments (typically, calculation of failure scenarios). They are equivalent in the Turing test sense. Equivalent models form a category. Design mathematical concepts, algorithms and tools to determine the most representative (simplest?) model of a category. Original Models MCS calculation Minimal Cutsets Representative Model?

High Level Modeling Languages System Specification AltaRica Issues: Completeness of specifications with respect to safety concerns Distance between system specifications and safety models Integration with other system engineering disciplines Automated Generation Fault Trees AltaRica features Formal Event-Based Textual & graphical Multiple assessment tools class component state Boolean working (init = true); event failure (delay = exponential(lambda)); transition failure: working -> working := false; end Calculations

AltaRica Mathematical Framework Guarded Transition Systems: domain componentstate { STANDBY, WORKING, FAILED} s=working not demanded? turnoff demanded? turnon s=standby demanded? failureondemand repair failure s=failed class sparecomponent componentstate s (init = WORKING); Boolean demanded (reset = false); event turnon (delay = 0, expectaction = 0.98), failureondemand (delay = 0, expectation = 0.02), turnoff (delay = 0), failure (delay = exponential(0.001)), repair (delay = exponential(0.1)); transition turnon: s==standby and demanded -> s := WORKING; failureondemand: s==standby and demanded -> s := FAILED; turnoff: s==working and not demanded -> s := STANDBY ; failure: s==working -> s := FAILED; repair: s==failed -> s := STANDBY; end Well founded generalization of: Fault Trees, Blocks Diagrams Markov chains, Stochastic Petri Nets

The AltaRica 3.0 Project Reliability Data GUI for modeling GUI for simulation Version & Configuration Management System Libraries patterns AltaRica 3.0 class Pump end AADL SysML Petri Nets Dynamic FaultTrees Guarded Transition Systems FMEA compilation to Fault Trees generation of sequences compilation to Markov Chains stochastic simulation Probabilité de l'er model checking reliability allocation 1.0000e+0 9.0000e-1 8.0000e-1 7.0000e-1 6.0000e-1 Pr[STop event] 5.0000e-1 4.0000e-1 3.0000e-1 2.0000e-1 0.0000 2000.0000 4000.0000 6000.0000 8000.0000

Performances Assessment Issues: The business model of industry is moving from selling products to selling capacities Companies have to take commitments and to do so to assess performances of systems in presence of hazards. = PRA languages and tools are well suited to assess capacities (it mainly suffices to assess mathematical expectations rather than probabilities)

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback