首页 > 最新文献

ACM Transactions on Cyber-Physical Systems最新文献

英文 中文
Security Risk Assessments: Modeling and Risk Level Propagation 安全风险评估:建模和风险水平传播
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2022-11-04 DOI: 10.1145/3569458
D. Angermeier, Hannah Wester, Kristian Beilke, Gerhard Hansch, Jörn Eichler
Security risk assessment is an important task in systems engineering. It is used to derive security requirements for a secure system design and to evaluate design alternatives as well as vulnerabilities. Security risk assessment is also a complex and interdisciplinary task, where experts from the application domain and the security domain have to collaborate and understand each other. Automated and tool-supported approaches are desired to help manage the complexity. However, the models used for system engineering usually focus on functional behavior and lack security-related aspects. Therefore, we present our modeling approach that alleviates communication between the involved experts and features steps of computer-aided modeling to achieve consistency and avoid omission errors. We demonstrate our approach with an example. We also describe how to model impact rating and attack feasibility estimation in a modular fashion, along with the propagation and aggregation of these estimations through the model. As a result, experts can make local decisions or changes in the model, which in turn provides the impact of these decisions or changes on the overall risk profile. Finally, we discuss the advantages of our model-based method.
安全风险评估是系统工程中的一项重要任务。它用于推导安全系统设计的安全要求,并评估设计备选方案和漏洞。安全风险评估也是一项复杂的跨学科任务,应用领域和安全领域的专家必须相互协作和了解。需要自动化和工具支持的方法来帮助管理复杂性。然而,用于系统工程的模型通常侧重于功能行为,而缺乏与安全相关的方面。因此,我们提出了我们的建模方法,该方法减轻了相关专家之间的沟通,并提供了计算机辅助建模的特征步骤,以实现一致性并避免遗漏错误。我们用一个例子来展示我们的方法。我们还描述了如何以模块化的方式对影响评级和攻击可行性估计进行建模,以及这些估计在模型中的传播和聚合。因此,专家可以对模型进行局部决策或更改,从而提供这些决策或更改对整体风险状况的影响。最后,我们讨论了基于模型的方法的优点。
{"title":"Security Risk Assessments: Modeling and Risk Level Propagation","authors":"D. Angermeier, Hannah Wester, Kristian Beilke, Gerhard Hansch, Jörn Eichler","doi":"10.1145/3569458","DOIUrl":"https://doi.org/10.1145/3569458","url":null,"abstract":"Security risk assessment is an important task in systems engineering. It is used to derive security requirements for a secure system design and to evaluate design alternatives as well as vulnerabilities. Security risk assessment is also a complex and interdisciplinary task, where experts from the application domain and the security domain have to collaborate and understand each other. Automated and tool-supported approaches are desired to help manage the complexity. However, the models used for system engineering usually focus on functional behavior and lack security-related aspects. Therefore, we present our modeling approach that alleviates communication between the involved experts and features steps of computer-aided modeling to achieve consistency and avoid omission errors. We demonstrate our approach with an example. We also describe how to model impact rating and attack feasibility estimation in a modular fashion, along with the propagation and aggregation of these estimations through the model. As a result, experts can make local decisions or changes in the model, which in turn provides the impact of these decisions or changes on the overall risk profile. Finally, we discuss the advantages of our model-based method.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"7 1","pages":"1 - 25"},"PeriodicalIF":2.3,"publicationDate":"2022-11-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"49176055","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
A Timing-Based Framework for Designing Resilient Cyber-Physical Systems under Safety Constraint 基于时序的安全约束下弹性网络物理系统设计框架
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2022-08-30 DOI: 10.1145/3594638
Abdullah Al Maruf, Luyao Niu, Andrew Clark, J. S. Mertoguno, R. Poovendran
Cyber-physical systems (CPS) are required to satisfy safety constraints in various application domains such as robotics, industrial manufacturing systems, and power systems. Faults and cyber attacks have been shown to cause safety violations, which can damage the system and endanger human lives. Resilient architectures have been proposed to ensure safety of CPS under such faults and attacks via methodologies including redundancy and restarting from safe operating conditions. The existing resilient architectures for CPS utilize different mechanisms to guarantee safety, and currently, there is no common framework to compare them. Moreover, the analysis and design undertaken for CPS employing one architecture is not readily extendable to another. In this article, we propose a timing-based framework for CPS employing various resilient architectures and develop a common methodology for safety analysis and computation of control policies and design parameters. Using the insight that the cyber subsystem operates in one out of a finite number of statuses, we first develop a hybrid system model that captures CPS adopting any of these architectures. Based on the hybrid system, we formulate the problem of joint computation of control policies and associated timing parameters for CPS to satisfy a given safety constraint and derive sufficient conditions for the solution. Utilizing the derived conditions, we provide an algorithm to compute control policies and timing parameters relevant to the employed architecture. We also note that our solution can be applied to a wide class of CPS with polynomial dynamics and also allows incorporation of new architectures. We verify our proposed framework by performing a case study on adaptive cruise control of vehicles.
网络物理系统(CPS)需要满足机器人、工业制造系统和电力系统等各种应用领域的安全约束。故障和网络攻击已被证明会导致安全违规,从而损坏系统并危及人类生命。已经提出了弹性架构,以通过包括冗余和从安全操作条件重启在内的方法来确保CPS在此类故障和攻击下的安全。现有的CPS弹性体系结构利用不同的机制来保证安全,目前还没有通用的框架来比较它们。此外,采用一种架构的CPS的分析和设计不容易扩展到另一种架构。在本文中,我们提出了一个基于时序的CPS框架,该框架采用了各种弹性架构,并开发了一种用于安全分析和计算控制策略和设计参数的通用方法。利用赛博子系统在有限数量的状态中的一种状态下运行的见解,我们首先开发了一个混合系统模型,该模型捕捉采用任何这些架构的CPS。基于混合系统,我们提出了CPS的控制策略和相关时序参数的联合计算问题,以满足给定的安全约束,并导出了求解的充分条件。利用导出的条件,我们提供了一种算法来计算与所采用的架构相关的控制策略和时序参数。我们还注意到,我们的解决方案可以应用于具有多项式动力学的广泛类别的CPS,并且还允许引入新的架构。我们通过对车辆自适应巡航控制进行案例研究来验证我们提出的框架。
{"title":"A Timing-Based Framework for Designing Resilient Cyber-Physical Systems under Safety Constraint","authors":"Abdullah Al Maruf, Luyao Niu, Andrew Clark, J. S. Mertoguno, R. Poovendran","doi":"10.1145/3594638","DOIUrl":"https://doi.org/10.1145/3594638","url":null,"abstract":"Cyber-physical systems (CPS) are required to satisfy safety constraints in various application domains such as robotics, industrial manufacturing systems, and power systems. Faults and cyber attacks have been shown to cause safety violations, which can damage the system and endanger human lives. Resilient architectures have been proposed to ensure safety of CPS under such faults and attacks via methodologies including redundancy and restarting from safe operating conditions. The existing resilient architectures for CPS utilize different mechanisms to guarantee safety, and currently, there is no common framework to compare them. Moreover, the analysis and design undertaken for CPS employing one architecture is not readily extendable to another. In this article, we propose a timing-based framework for CPS employing various resilient architectures and develop a common methodology for safety analysis and computation of control policies and design parameters. Using the insight that the cyber subsystem operates in one out of a finite number of statuses, we first develop a hybrid system model that captures CPS adopting any of these architectures. Based on the hybrid system, we formulate the problem of joint computation of control policies and associated timing parameters for CPS to satisfy a given safety constraint and derive sufficient conditions for the solution. Utilizing the derived conditions, we provide an algorithm to compute control policies and timing parameters relevant to the employed architecture. We also note that our solution can be applied to a wide class of CPS with polynomial dynamics and also allows incorporation of new architectures. We verify our proposed framework by performing a case study on adaptive cruise control of vehicles.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":" ","pages":"1 - 25"},"PeriodicalIF":2.3,"publicationDate":"2022-08-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"49433790","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
DeResolver: A Decentralized Conflict Resolution Framework with Autonomous Negotiation for Smart City Services DeResolver:一个具有自主协商的智能城市服务去中心化冲突解决框架
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2022-07-12 DOI: 10.1145/3529096
Yukun Yuan, Meiyi Ma, Songyang Han, Desheng Zhang, Fei Miao, J. Stankovic, Shan Lin
As various smart services are increasingly deployed in modern cities, many unexpected conflicts arise due to various physical world couplings. Existing solutions for conflict resolution often rely on centralized control to enforce predetermined and fixed priorities of different services, which is challenging due to the inconsistent and private objectives of the services. Also, the centralized solutions miss opportunities to more effectively resolve conflicts according to their spatiotemporal locality of the conflicts. To address this issue, we design a decentralized negotiation and conflict resolution framework named DeResolver, which allows services to resolve conflicts by communicating and negotiating with each other to reach a Pareto-optimal agreement autonomously and efficiently. Our design features a two-step self-supervised learning-based algorithm to predict acceptable proposals and their rankings of each opponent through the negotiation. Our design is evaluated with a smart city case study of three services: intelligent traffic light control, pedestrian service, and environmental control. In this case study, a data-driven evaluation is conducted using a large dataset consisting of the GPS locations of 246 surveillance cameras and an automatic traffic monitoring system with more than 3 million records per day to extract real-world vehicle routes. The evaluation results show that our solution achieves much more balanced results, i.e., only increasing the average waiting time of vehicles, the measurement metric of intelligent traffic light control service, by 6.8% while reducing the weighted sum of air pollutant emission, measured for environment control service, by 12.1%, and the pedestrian waiting time, the measurement metric of pedestrian service, by 33.1%, compared to priority-based solution.
随着各种智能服务越来越多地部署在现代城市中,由于各种物理世界的耦合,出现了许多意想不到的冲突。现有的冲突解决方案往往依赖于集中控制来强制执行不同服务的预定和固定优先级,由于服务的不一致和私人目标,这是具有挑战性的。此外,集中式解决方案根据冲突的时空位置错过了更有效地解决冲突的机会。为了解决这个问题,我们设计了一个名为DeResolver的去中心化协商和冲突解决框架,该框架允许服务通过相互沟通和协商来解决冲突,从而自主高效地达成Pareto最优协议。我们的设计采用了一种基于两步自监督学习的算法来预测谈判中每个对手的可接受提议及其排名。我们的设计是通过三项服务的智能城市案例研究进行评估的:智能红绿灯控制、行人服务和环境控制。在本案例研究中,使用由246个监控摄像头的GPS位置组成的大型数据集和每天有300多万条记录的自动交通监控系统进行数据驱动的评估,以提取真实世界的车辆路线。评估结果表明,我们的解决方案实现了更平衡的结果,即仅将智能红绿灯控制服务的测量指标车辆的平均等待时间提高了6.8%,同时将环境控制服务的空气污染物排放量和行人等待时间的加权和降低了12.1%,与基于优先级的解决方案相比,行人服务的衡量标准提高了33.1%。
{"title":"DeResolver: A Decentralized Conflict Resolution Framework with Autonomous Negotiation for Smart City Services","authors":"Yukun Yuan, Meiyi Ma, Songyang Han, Desheng Zhang, Fei Miao, J. Stankovic, Shan Lin","doi":"10.1145/3529096","DOIUrl":"https://doi.org/10.1145/3529096","url":null,"abstract":"As various smart services are increasingly deployed in modern cities, many unexpected conflicts arise due to various physical world couplings. Existing solutions for conflict resolution often rely on centralized control to enforce predetermined and fixed priorities of different services, which is challenging due to the inconsistent and private objectives of the services. Also, the centralized solutions miss opportunities to more effectively resolve conflicts according to their spatiotemporal locality of the conflicts. To address this issue, we design a decentralized negotiation and conflict resolution framework named DeResolver, which allows services to resolve conflicts by communicating and negotiating with each other to reach a Pareto-optimal agreement autonomously and efficiently. Our design features a two-step self-supervised learning-based algorithm to predict acceptable proposals and their rankings of each opponent through the negotiation. Our design is evaluated with a smart city case study of three services: intelligent traffic light control, pedestrian service, and environmental control. In this case study, a data-driven evaluation is conducted using a large dataset consisting of the GPS locations of 246 surveillance cameras and an automatic traffic monitoring system with more than 3 million records per day to extract real-world vehicle routes. The evaluation results show that our solution achieves much more balanced results, i.e., only increasing the average waiting time of vehicles, the measurement metric of intelligent traffic light control service, by 6.8% while reducing the weighted sum of air pollutant emission, measured for environment control service, by 12.1%, and the pedestrian waiting time, the measurement metric of pedestrian service, by 33.1%, compared to priority-based solution.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"6 1","pages":"1 - 27"},"PeriodicalIF":2.3,"publicationDate":"2022-07-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"49349973","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
Model-bounded Monitoring of Hybrid Systems 混合系统的模型有界监测
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2022-04-25 DOI: 10.1145/3529095
Masaki Waga, É. André, I. Hasuo
Monitoring of hybrid systems attracts both scientific and practical attention. However, monitoring algorithms suffer from the methodological difficulty of only observing sampled discrete-time signals, while real behaviors are continuous-time signals. To mitigate this problem of sampling uncertainties, we introduce a model-bounded monitoring scheme, where we use prior knowledge about the target system to prune interpolation candidates. Technically, we express such prior knowledge by linear hybrid automata (LHAs)—the LHAs are called bounding models. We introduce a novel notion of monitored language of LHAs, and we reduce the monitoring problem to the membership problem of the monitored language. We present two partial algorithms—one is via reduction to reachability in LHAs and the other is a direct one using polyhedra—and show that these methods, and thus the proposed model-bounded monitoring scheme, are efficient and practically relevant.
混合系统的监测受到了科学和实践的双重关注。然而,监测算法存在方法上的困难,即只观察采样的离散时间信号,而实际行为是连续时间信号。为了减轻采样不确定性的问题,我们引入了一种模型有界监测方案,其中我们使用关于目标系统的先验知识来修剪插值候选。从技术上讲,我们用线性混合自动机(lha)来表达这种先验知识,lha被称为边界模型。我们引入了lha监控语言的概念,并将监控问题简化为监控语言的隶属性问题。我们提出了两种部分算法——一种是在lha中通过约简到可达性,另一种是使用多面体的直接算法——并表明这些方法以及由此提出的模型有界监测方案是有效的和实际相关的。
{"title":"Model-bounded Monitoring of Hybrid Systems","authors":"Masaki Waga, É. André, I. Hasuo","doi":"10.1145/3529095","DOIUrl":"https://doi.org/10.1145/3529095","url":null,"abstract":"Monitoring of hybrid systems attracts both scientific and practical attention. However, monitoring algorithms suffer from the methodological difficulty of only observing sampled discrete-time signals, while real behaviors are continuous-time signals. To mitigate this problem of sampling uncertainties, we introduce a model-bounded monitoring scheme, where we use prior knowledge about the target system to prune interpolation candidates. Technically, we express such prior knowledge by linear hybrid automata (LHAs)—the LHAs are called bounding models. We introduce a novel notion of monitored language of LHAs, and we reduce the monitoring problem to the membership problem of the monitored language. We present two partial algorithms—one is via reduction to reachability in LHAs and the other is a direct one using polyhedra—and show that these methods, and thus the proposed model-bounded monitoring scheme, are efficient and practically relevant.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"6 1","pages":"1 - 26"},"PeriodicalIF":2.3,"publicationDate":"2022-04-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"42937640","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 1
Automating Safety and Security Co-design through Semantically Rich Architecture Patterns 通过语义丰富的体系结构模式实现安全和安保的自动化协同设计
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2022-01-25 DOI: 10.1145/3565269
Yuri Gil Dantas, Vivek Nigam
During the design of safety-critical systems, safety and security engineers make use of architecture patterns, such as Watchdog and Firewall, to address identified failures and threats. Often, however, the deployment of safety architecture patterns has consequences on security; e.g., the deployment of a safety architecture pattern may lead to new threats. The other way around may also be possible; i.e., the deployment of a security architecture pattern may lead to new failures. Safety and security co-design is, therefore, required to understand such consequences and tradeoffs in order to reach appropriate system designs. Currently, architecture pattern descriptions, including their consequences, are described using natural language. Therefore, their deployment in system design is carried out manually by experts and thus is time-consuming and prone to human error, especially given the high system complexity. We propose the use of semantically rich architecture patterns to enable automated support for safety and security co-design by using Knowledge Representation and Reasoning (KRR) methods. Based on our domain-specific language, we specify reasoning principles as logic specifications written as answer-set programs. KRR engines enable the automation of safety and security co-engineering activities, including the automated recommendation of which architecture patterns can address failures or threats, and consequences of deploying such patterns. We demonstrate our approach on an example taken from the ISO 21434 standard.
在安全关键型系统的设计过程中,安全和安全工程师使用诸如Watchdog和Firewall之类的体系结构模式来处理已识别的故障和威胁。然而,安全体系结构模式的部署通常会对安全性产生影响;例如,安全体系结构模式的部署可能导致新的威胁。反过来也有可能;例如,安全体系结构模式的部署可能会导致新的故障。因此,需要安全性和安全性协同设计来理解这样的结果和权衡,以便达到适当的系统设计。目前,体系结构模式描述,包括它们的结果,都是使用自然语言描述的。因此,它们在系统设计中的部署是由专家手动执行的,因此非常耗时且容易出现人为错误,特别是考虑到高系统复杂性。我们建议使用语义丰富的体系结构模式,通过使用知识表示和推理(KRR)方法,实现对安全和安全协同设计的自动化支持。基于我们的领域特定语言,我们将推理原则指定为编写为回答集程序的逻辑规范。KRR引擎支持安全和安全协同工程活动的自动化,包括自动推荐哪些体系结构模式可以处理故障或威胁,以及部署这些模式的后果。我们通过取自ISO 21434标准的一个示例来演示我们的方法。
{"title":"Automating Safety and Security Co-design through Semantically Rich Architecture Patterns","authors":"Yuri Gil Dantas, Vivek Nigam","doi":"10.1145/3565269","DOIUrl":"https://doi.org/10.1145/3565269","url":null,"abstract":"During the design of safety-critical systems, safety and security engineers make use of architecture patterns, such as Watchdog and Firewall, to address identified failures and threats. Often, however, the deployment of safety architecture patterns has consequences on security; e.g., the deployment of a safety architecture pattern may lead to new threats. The other way around may also be possible; i.e., the deployment of a security architecture pattern may lead to new failures. Safety and security co-design is, therefore, required to understand such consequences and tradeoffs in order to reach appropriate system designs. Currently, architecture pattern descriptions, including their consequences, are described using natural language. Therefore, their deployment in system design is carried out manually by experts and thus is time-consuming and prone to human error, especially given the high system complexity. We propose the use of semantically rich architecture patterns to enable automated support for safety and security co-design by using Knowledge Representation and Reasoning (KRR) methods. Based on our domain-specific language, we specify reasoning principles as logic specifications written as answer-set programs. KRR engines enable the automation of safety and security co-engineering activities, including the automated recommendation of which architecture patterns can address failures or threats, and consequences of deploying such patterns. We demonstrate our approach on an example taken from the ISO 21434 standard.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"7 1","pages":"1 - 28"},"PeriodicalIF":2.3,"publicationDate":"2022-01-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"44278879","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 5
From Lustre to Simulink 从Lustre到Simulink
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2021-07-29 DOI: 10.1145/3461668
Hamza Bourbouh, P. Garoche, C. Garion, X. Thirioux
Model-based design is now unavoidable when building embedded systems and, more specifically, controllers. Among the available model languages, the synchronous dataflow paradigm, as implemented in languages such as MATLAB Simulink or ANSYS SCADE, has become predominant in critical embedded system industries. Both of these frameworks are used to design the controller itself but also provide code generation means, enabling faster deployment to target and easier V&V activities performed earlier in the design process, at the model level. Synchronous models also ease the definition of formal specification through the use of synchronous observers, attaching requirements to the model in the very same language, mastered by engineers and tooled with simulation means or code generation. However, few works address the automatic synthesis of MATLAB Simulink annotations from lower-level models or code. This article presents a compilation process from Lustre models to genuine MATLAB Simulink, without the need to rely on external C functions or MATLAB functions. This translation is based on the modular compilation of Lustre to imperative code and preserves the hierarchy of the input Lustre model within the generated Simulink one. We implemented the approach and used it to validate a compilation toolchain, mapping Simulink to Lustre and then C, thanks to equivalence testing and checking. This backward compilation from Lustre to Simulink also provides the ability to produce automatically Simulink components modeling specification, proof arguments, or test cases coverage criteria.
在构建嵌入式系统,更具体地说,是控制器时,基于模型的设计现在是不可避免的。在可用的模型语言中,同步数据流范式,如在MATLAB Simulink或ANSYS SCADE等语言中实现的,已经在关键的嵌入式系统行业中占据主导地位。这两个框架都用于设计控制器本身,但也提供了代码生成方法,使更快的部署目标和更容易的V&V活动在设计过程的早期,在模型级别上执行。同步模型还通过使用同步观察者简化了正式规范的定义,用工程师掌握的相同语言将需求附加到模型上,并使用仿真手段或代码生成工具。然而,很少有作品解决了从低级模型或代码自动合成MATLAB Simulink注释的问题。本文介绍了从Lustre模型到真正的MATLAB Simulink的编译过程,不需要依赖外部C函数或MATLAB函数。这种转换是基于Lustre到命令式代码的模块化编译,并在生成的Simulink模型中保留了输入Lustre模型的层次结构。我们实现了这种方法,并使用它来验证编译工具链,通过等效测试和检查,将Simulink映射到Lustre,然后映射到C。这种从Lustre到Simulink的反向编译也提供了自动生成Simulink组件建模规范、证明参数或测试用例覆盖标准的能力。
{"title":"From Lustre to Simulink","authors":"Hamza Bourbouh, P. Garoche, C. Garion, X. Thirioux","doi":"10.1145/3461668","DOIUrl":"https://doi.org/10.1145/3461668","url":null,"abstract":"Model-based design is now unavoidable when building embedded systems and, more specifically, controllers. Among the available model languages, the synchronous dataflow paradigm, as implemented in languages such as MATLAB Simulink or ANSYS SCADE, has become predominant in critical embedded system industries. Both of these frameworks are used to design the controller itself but also provide code generation means, enabling faster deployment to target and easier V&V activities performed earlier in the design process, at the model level. Synchronous models also ease the definition of formal specification through the use of synchronous observers, attaching requirements to the model in the very same language, mastered by engineers and tooled with simulation means or code generation. However, few works address the automatic synthesis of MATLAB Simulink annotations from lower-level models or code. This article presents a compilation process from Lustre models to genuine MATLAB Simulink, without the need to rely on external C functions or MATLAB functions. This translation is based on the modular compilation of Lustre to imperative code and preserves the hierarchy of the input Lustre model within the generated Simulink one. We implemented the approach and used it to validate a compilation toolchain, mapping Simulink to Lustre and then C, thanks to equivalence testing and checking. This backward compilation from Lustre to Simulink also provides the ability to produce automatically Simulink components modeling specification, proof arguments, or test cases coverage criteria.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"5 1","pages":"1 - 20"},"PeriodicalIF":2.3,"publicationDate":"2021-07-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1145/3461668","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"47509264","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
Toward a Scientific and Engineering Discipline of Cyber-Physical Systems 走向网络物理系统的科学与工程学科
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2021-07-29 DOI: 10.1145/3464945
Chenyang Lu
Cyber-physical systems (CPS) are driving a wide range of exciting applications from smart cities to smart healthcare. In contrast to traditional embedded systems, CPS operate in unpredictable environments in which they must meet stringent requirements such as end-to-end timeliness and physical system stability. The field of CPS addresses these critical challenges through seamless integration of computing and physical components. In the second decade since its inception as an interdisciplinary field, CPS is growing as a vibrant scientific and engineering discipline. I am honored to be named the new editor-in-chief of ACM Transactions on Cyber-Physical Systems (TCPS). TCPS has established itself as a leading journal in the field of CPS under the great leadership of Tei-Wei Kuo as the founding editor-in-chief. While traditional computer science disciplines are dominated by their premier conferences, the diverse and interdisciplinary nature of CPS provides a unique opportunity for TCPS to become the premier venue for publishing CPS research. Our aspiration is to grow TCPS into the flagship publication where best CPS works are published in a timely fashion, covering both the foundation and emergent frontiers of CPS research. In the following I’d like to share some initiatives that the editorial board is undertaking to realize our aspiration. Special issues on emerging topics. Special issues have been instrumental for establishing the topics and growing the submission pipeline of TCPS. Given the rapid evolution of CPS, we will continue to organize special issues on emerging topics. New topics on CPS often face challenges at established publication venues due to their interdisciplinary nature. TCPS aims to fill the gap with special issues that capture the state of the art of the new topics and shape the evolving areas. The success of special issues depends on the impacts of the topics and the leadership of the guest editors. We welcome strong proposals from the community on emerging topics of CPS. Foundation and core technologies. In parallel to the development of innovative applications and point solutions, we are witnessing the emergence of the foundation and core technologies of CPS as a scientific and engineering discipline. Examples range from cyber-physical co-design approaches to holistic system architectures crosscutting cyber and physical components. We welcome research papers on foundations and core CPS technologies underpinning the field of CPS. We will balance the special issues and regular issues to cover both new and established topics. Furthermore, some of the special issues will help evolve new topics toward established areas of CPS that continue to attract regular submissions. Timely, predictable, and rigorous reviews. Lengthy and unpredictable review cycles are major factors that discourage authors from submitting to journals. We aim to streamline the review process based on the best practices of ACM publications. Furthermore, we plan
网络物理系统(CPS)正在推动从智能城市到智能医疗等一系列令人兴奋的应用。与传统嵌入式系统相比,CPS在不可预测的环境中运行,必须满足端到端及时性和物理系统稳定性等严格要求。CPS领域通过计算和物理组件的无缝集成来解决这些关键挑战。自CPS作为一个跨学科领域成立以来的第二个十年,CPS正在成长为一个充满活力的科学和工程学科。我很荣幸被任命为ACM网络物理系统学报(TCPS)的新任主编。在郭德伟先生作为创刊总编辑的卓越领导下,《TCPS》已成为CPS领域的领先期刊。虽然传统的计算机科学学科由其主要会议主导,但CPS的多样性和跨学科性质为TCPS提供了一个独特的机会,使其成为发表CPS研究的主要场所。我们的愿望是将TCPS发展成为最好的CPS作品及时出版的旗舰出版物,涵盖CPS研究的基础和新兴前沿。下面,我愿与大家分享编委会为实现这一愿望所采取的一些举措。关于新兴主题的特刊。特刊对建立专题和增加TCPS的提交渠道起到了重要作用。鉴于CPS的快速发展,我们将继续就新兴主题组织专题。关于CPS的新课题由于其跨学科的性质,在现有的出版场所经常面临挑战。TCPS的目标是用特刊来填补这一空白,这些特刊捕捉了新主题的最新技术,并塑造了不断发展的领域。特刊的成功与否,取决于选题的影响力和特邀编辑的领导能力。我们欢迎社会各界就CPS的新课题提出强有力的建议。基础和核心技术。随着创新应用和点解决方案的发展,我们正在见证CPS作为一门科学和工程学科的基础和核心技术的出现。例子包括从网络物理协同设计方法到横切网络和物理组件的整体系统架构。我们欢迎关于支撑CPS领域的基础和核心CPS技术的研究论文。特刊和定期刊要平衡,既涵盖新议题,也涵盖老议题。此外,一些特殊问题将有助于向CPS的既定领域发展新的主题,这些领域将继续吸引定期提交。及时、可预测和严格的审查。冗长和不可预测的评审周期是阻碍作者向期刊投稿的主要因素。我们的目标是根据ACM出版物的最佳实践简化审查过程。此外,我们计划纳入和调整经过良好测试的主要会议方法,以缩短审查周期。一个及时的、可预测的和严格的审查过程将吸引对TCPS的强有力的提交
{"title":"Toward a Scientific and Engineering Discipline of Cyber-Physical Systems","authors":"Chenyang Lu","doi":"10.1145/3464945","DOIUrl":"https://doi.org/10.1145/3464945","url":null,"abstract":"Cyber-physical systems (CPS) are driving a wide range of exciting applications from smart cities to smart healthcare. In contrast to traditional embedded systems, CPS operate in unpredictable environments in which they must meet stringent requirements such as end-to-end timeliness and physical system stability. The field of CPS addresses these critical challenges through seamless integration of computing and physical components. In the second decade since its inception as an interdisciplinary field, CPS is growing as a vibrant scientific and engineering discipline. I am honored to be named the new editor-in-chief of ACM Transactions on Cyber-Physical Systems (TCPS). TCPS has established itself as a leading journal in the field of CPS under the great leadership of Tei-Wei Kuo as the founding editor-in-chief. While traditional computer science disciplines are dominated by their premier conferences, the diverse and interdisciplinary nature of CPS provides a unique opportunity for TCPS to become the premier venue for publishing CPS research. Our aspiration is to grow TCPS into the flagship publication where best CPS works are published in a timely fashion, covering both the foundation and emergent frontiers of CPS research. In the following I’d like to share some initiatives that the editorial board is undertaking to realize our aspiration. Special issues on emerging topics. Special issues have been instrumental for establishing the topics and growing the submission pipeline of TCPS. Given the rapid evolution of CPS, we will continue to organize special issues on emerging topics. New topics on CPS often face challenges at established publication venues due to their interdisciplinary nature. TCPS aims to fill the gap with special issues that capture the state of the art of the new topics and shape the evolving areas. The success of special issues depends on the impacts of the topics and the leadership of the guest editors. We welcome strong proposals from the community on emerging topics of CPS. Foundation and core technologies. In parallel to the development of innovative applications and point solutions, we are witnessing the emergence of the foundation and core technologies of CPS as a scientific and engineering discipline. Examples range from cyber-physical co-design approaches to holistic system architectures crosscutting cyber and physical components. We welcome research papers on foundations and core CPS technologies underpinning the field of CPS. We will balance the special issues and regular issues to cover both new and established topics. Furthermore, some of the special issues will help evolve new topics toward established areas of CPS that continue to attract regular submissions. Timely, predictable, and rigorous reviews. Lengthy and unpredictable review cycles are major factors that discourage authors from submitting to journals. We aim to streamline the review process based on the best practices of ACM publications. Furthermore, we plan ","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"5 1","pages":"1 - 2"},"PeriodicalIF":2.3,"publicationDate":"2021-07-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1145/3464945","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"43575838","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
Hierarchical Planning for Dynamic Resource Allocation in Smart and Connected Communities 智能互联社区中动态资源分配的分层规划
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2021-07-02 DOI: 10.1145/3502869
Geoffrey Pettet, Ayan Mukhopadhyay, Mykel J. Kochenderfer, A. Dubey
Resource allocation under uncertainty is a classic problem in city-scale cyber-physical systems. Consider emergency response, where urban planners and first responders optimize the location of ambulances to minimize expected response times to incidents such as road accidents. Typically, such problems involve sequential decision making under uncertainty and can be modeled as Markov (or semi-Markov) decision processes. The goal of the decision maker is to learn a mapping from states to actions that can maximize expected rewards. While online, offline, and decentralized approaches have been proposed to tackle such problems, scalability remains a challenge for real world use cases. We present a general approach to hierarchical planning that leverages structure in city level CPS problems for resource allocation. We use emergency response as a case study and show how a large resource allocation problem can be split into smaller problems. We then use Monte Carlo planning for solving the smaller problems and managing the interaction between them. Finally, we use data from Nashville, Tennessee, a major metropolitan area in the United States, to validate our approach. Our experiments show that the proposed approach outperforms state-of-the-art approaches used in the field of emergency response.
不确定条件下的资源配置是城市规模信息物理系统中的一个经典问题。考虑紧急响应,城市规划者和第一响应者优化救护车的位置,以最大限度地减少对道路事故等事件的预期响应时间。通常,这类问题涉及不确定性下的顺序决策,可以建模为马尔可夫(或半马尔可夫)决策过程。决策者的目标是学习从状态到行动的映射,从而最大化预期回报。虽然已经提出了在线、离线和分散的方法来解决这些问题,但可伸缩性仍然是现实世界用例的挑战。我们提出了一种一般的分层规划方法,利用城市级CPS问题的结构进行资源分配。我们使用紧急响应作为案例研究,并展示如何将一个大的资源分配问题分解为较小的问题。然后,我们使用蒙特卡罗计划来解决较小的问题并管理它们之间的交互。最后,我们使用来自美国田纳西州纳什维尔的数据来验证我们的方法。我们的实验表明,所提出的方法优于应急响应领域使用的最先进的方法。
{"title":"Hierarchical Planning for Dynamic Resource Allocation in Smart and Connected Communities","authors":"Geoffrey Pettet, Ayan Mukhopadhyay, Mykel J. Kochenderfer, A. Dubey","doi":"10.1145/3502869","DOIUrl":"https://doi.org/10.1145/3502869","url":null,"abstract":"Resource allocation under uncertainty is a classic problem in city-scale cyber-physical systems. Consider emergency response, where urban planners and first responders optimize the location of ambulances to minimize expected response times to incidents such as road accidents. Typically, such problems involve sequential decision making under uncertainty and can be modeled as Markov (or semi-Markov) decision processes. The goal of the decision maker is to learn a mapping from states to actions that can maximize expected rewards. While online, offline, and decentralized approaches have been proposed to tackle such problems, scalability remains a challenge for real world use cases. We present a general approach to hierarchical planning that leverages structure in city level CPS problems for resource allocation. We use emergency response as a case study and show how a large resource allocation problem can be split into smaller problems. We then use Monte Carlo planning for solving the smaller problems and managing the interaction between them. Finally, we use data from Nashville, Tennessee, a major metropolitan area in the United States, to validate our approach. Our experiments show that the proposed approach outperforms state-of-the-art approaches used in the field of emergency response.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"6 1","pages":"1 - 26"},"PeriodicalIF":2.3,"publicationDate":"2021-07-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"46520928","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
Using Machine Learning for Dependable Outlier Detection in Environmental Monitoring Systems 在环境监测系统中使用机器学习进行可靠的离群点检测
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2021-07-01 DOI: 10.1145/3445812
Gonçalo Jesus, A. Casimiro, Anabela Oliveira
Sensor platforms used in environmental monitoring applications are often subject to harsh environmental conditions while monitoring complex phenomena. Therefore, designing dependable monitoring systems is challenging given the external disturbances affecting sensor measurements. Even the apparently simple task of outlier detection in sensor data becomes a hard problem, amplified by the difficulty in distinguishing true data errors due to sensor faults from deviations due to natural phenomenon, which look like data errors. Existing solutions for runtime outlier detection typically assume that the physical processes can be accurately modeled, or that outliers consist in large deviations that are easily detected and filtered by appropriate thresholds. Other solutions assume that it is possible to deploy multiple sensors providing redundant data to support voting-based techniques. In this article, we propose a new methodology for dependable runtime detection of outliers in environmental monitoring systems, aiming to increase data quality by treating them. We propose the use of machine learning techniques to model each sensor behavior, exploiting the existence of correlated data provided by other related sensors. Using these models, along with knowledge of processed past measurements, it is possible to obtain accurate estimations of the observed environment parameters and build failure detectors that use these estimations. When a failure is detected, these estimations also allow one to correct the erroneous measurements and hence improve the overall data quality. Our methodology not only allows one to distinguish truly abnormal measurements from deviations due to complex natural phenomena, but also allows the quantification of each measurement quality, which is relevant from a dependability perspective. We apply the methodology to real datasets from a complex aquatic monitoring system, measuring temperature and salinity parameters, through which we illustrate the process for building the machine learning prediction models using a technique based on Artificial Neural Networks, denoted ANNODE (ANN Outlier Detection). From this application, we also observe the effectiveness of our ANNODE approach for accurate outlier detection in harsh environments. Then we validate these positive results by comparing ANNODE with state-of-the-art solutions for outlier detection. The results show that ANNODE improves existing solutions regarding accuracy of outlier detection.
环境监测应用中使用的传感器平台在监测复杂现象时经常受到恶劣的环境条件的影响。因此,考虑到影响传感器测量的外部干扰,设计可靠的监测系统具有挑战性。即使是在传感器数据中检测异常值这一看似简单的任务也成为了一个难题,因为难以区分由传感器故障引起的真实数据错误和由自然现象引起的偏差(看起来像数据错误),这一问题更加突出。现有的运行时异常值检测解决方案通常假设物理过程可以精确建模,或者异常值由大偏差组成,这些偏差很容易被适当的阈值检测和过滤。其他解决方案假设可以部署多个传感器,提供冗余数据以支持基于投票的技术。在本文中,我们提出了一种新的方法来可靠地检测环境监测系统中的异常值,旨在通过处理它们来提高数据质量。我们建议使用机器学习技术对每个传感器的行为进行建模,利用其他相关传感器提供的相关数据的存在。使用这些模型,以及处理过的过去测量的知识,可以获得对观测到的环境参数的准确估计,并构建使用这些估计的故障检测器。当检测到故障时,这些估计还允许校正错误的测量,从而提高整体数据质量。我们的方法不仅可以将真正的异常测量与复杂自然现象引起的偏差区分开来,还可以量化每种测量质量,这从可靠性的角度来看是相关的。我们将该方法应用于复杂水生监测系统的真实数据集,测量温度和盐度参数,通过该数据集,我们说明了使用基于人工神经网络的技术构建机器学习预测模型的过程,该技术表示为ANNODE(ANN异常值检测)。从这个应用程序中,我们还观察到了我们的ANNODE方法在恶劣环境中准确检测异常值的有效性。然后,我们通过将ANNODE与最先进的异常值检测解决方案进行比较来验证这些积极的结果。结果表明,ANNODE改进了现有的异常值检测精度的解决方案。
{"title":"Using Machine Learning for Dependable Outlier Detection in Environmental Monitoring Systems","authors":"Gonçalo Jesus, A. Casimiro, Anabela Oliveira","doi":"10.1145/3445812","DOIUrl":"https://doi.org/10.1145/3445812","url":null,"abstract":"Sensor platforms used in environmental monitoring applications are often subject to harsh environmental conditions while monitoring complex phenomena. Therefore, designing dependable monitoring systems is challenging given the external disturbances affecting sensor measurements. Even the apparently simple task of outlier detection in sensor data becomes a hard problem, amplified by the difficulty in distinguishing true data errors due to sensor faults from deviations due to natural phenomenon, which look like data errors. Existing solutions for runtime outlier detection typically assume that the physical processes can be accurately modeled, or that outliers consist in large deviations that are easily detected and filtered by appropriate thresholds. Other solutions assume that it is possible to deploy multiple sensors providing redundant data to support voting-based techniques. In this article, we propose a new methodology for dependable runtime detection of outliers in environmental monitoring systems, aiming to increase data quality by treating them. We propose the use of machine learning techniques to model each sensor behavior, exploiting the existence of correlated data provided by other related sensors. Using these models, along with knowledge of processed past measurements, it is possible to obtain accurate estimations of the observed environment parameters and build failure detectors that use these estimations. When a failure is detected, these estimations also allow one to correct the erroneous measurements and hence improve the overall data quality. Our methodology not only allows one to distinguish truly abnormal measurements from deviations due to complex natural phenomena, but also allows the quantification of each measurement quality, which is relevant from a dependability perspective. We apply the methodology to real datasets from a complex aquatic monitoring system, measuring temperature and salinity parameters, through which we illustrate the process for building the machine learning prediction models using a technique based on Artificial Neural Networks, denoted ANNODE (ANN Outlier Detection). From this application, we also observe the effectiveness of our ANNODE approach for accurate outlier detection in harsh environments. Then we validate these positive results by comparing ANNODE with state-of-the-art solutions for outlier detection. The results show that ANNODE improves existing solutions regarding accuracy of outlier detection.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"5 1","pages":"1 - 30"},"PeriodicalIF":2.3,"publicationDate":"2021-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1145/3445812","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"45316508","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 4
Analysing Mission-critical Cyber-physical Systems with AND/OR Graphs and MaxSAT 用AND/OR图和MaxSAT分析任务关键型网络物理系统
IF 2.3 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS Pub Date : 2021-07-01 DOI: 10.1145/3451169
Martín Barrère, C. Hankin
Cyber-Physical Systems (CPS) often involve complex networks of interconnected software and hardware components that are logically combined to achieve a common goal or mission; for example, keeping a plane in the air or providing energy to a city. Failures in these components may jeopardise the mission of the system. Therefore, identifying the minimal set of critical CPS components that is most likely to fail, and prevent the global system from accomplishing its mission, becomes essential to ensure reliability. In this article, we present a novel approach to identifying the Most Likely Mission-critical Component Set (MLMCS) using AND/OR dependency graphs enriched with independent failure probabilities. We address the MLMCS problem as a Maximum Satisfiability (MaxSAT) problem. We translate probabilities into a negative logarithmic space to linearise the problem within MaxSAT. The experimental results conducted with our open source tool LDA4CPS indicate that the approach is both effective and efficient. We also present a case study on complex aircraft systems that shows the feasibility of our approach and its applicability to mission-critical cyber-physical systems. Finally, we present two MLMCS-based security applications focused on system hardening and forensic investigations.
网络物理系统(CPS)通常涉及互连的软件和硬件组件的复杂网络,这些组件在逻辑上组合以实现共同的目标或任务;例如,让飞机在空中飞行或为城市提供能源。这些部件的故障可能会危及系统的任务。因此,确定最有可能发生故障的关键CPS组件的最小集合,并阻止全球系统完成其任务,对于确保可靠性至关重要。在这篇文章中,我们提出了一种新的方法来识别最可能的任务关键组件集(MLMCS),使用富含独立故障概率的AND/OR依赖图。我们将MLMCS问题作为最大可满足性(MaxSAT)问题来解决。我们将概率转换为负对数空间,以在MaxSAT内线性化问题。使用我们的开源工具LDA4CPS进行的实验结果表明,该方法既有效又高效。我们还介绍了一个关于复杂飞机系统的案例研究,该研究表明了我们的方法的可行性及其对关键任务网络物理系统的适用性。最后,我们介绍了两个基于MLMCS的安全应用程序,重点是系统强化和取证调查。
{"title":"Analysing Mission-critical Cyber-physical Systems with AND/OR Graphs and MaxSAT","authors":"Martín Barrère, C. Hankin","doi":"10.1145/3451169","DOIUrl":"https://doi.org/10.1145/3451169","url":null,"abstract":"Cyber-Physical Systems (CPS) often involve complex networks of interconnected software and hardware components that are logically combined to achieve a common goal or mission; for example, keeping a plane in the air or providing energy to a city. Failures in these components may jeopardise the mission of the system. Therefore, identifying the minimal set of critical CPS components that is most likely to fail, and prevent the global system from accomplishing its mission, becomes essential to ensure reliability. In this article, we present a novel approach to identifying the Most Likely Mission-critical Component Set (MLMCS) using AND/OR dependency graphs enriched with independent failure probabilities. We address the MLMCS problem as a Maximum Satisfiability (MaxSAT) problem. We translate probabilities into a negative logarithmic space to linearise the problem within MaxSAT. The experimental results conducted with our open source tool LDA4CPS indicate that the approach is both effective and efficient. We also present a case study on complex aircraft systems that shows the feasibility of our approach and its applicability to mission-critical cyber-physical systems. Finally, we present two MLMCS-based security applications focused on system hardening and forensic investigations.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":"5 1","pages":"1 - 29"},"PeriodicalIF":2.3,"publicationDate":"2021-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1145/3451169","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"47080722","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 6
期刊
ACM Transactions on Cyber-Physical Systems
全部 Acc. Chem. Res. ACS Applied Bio Materials ACS Appl. Electron. Mater. ACS Appl. Energy Mater. ACS Appl. Mater. Interfaces ACS Appl. Nano Mater. ACS Appl. Polym. Mater. ACS BIOMATER-SCI ENG ACS Catal. ACS Cent. Sci. ACS Chem. Biol. ACS Chemical Health & Safety ACS Chem. Neurosci. ACS Comb. Sci. ACS Earth Space Chem. ACS Energy Lett. ACS Infect. Dis. ACS Macro Lett. ACS Mater. Lett. ACS Med. Chem. Lett. ACS Nano ACS Omega ACS Photonics ACS Sens. ACS Sustainable Chem. Eng. ACS Synth. Biol. Anal. Chem. BIOCHEMISTRY-US Bioconjugate Chem. BIOMACROMOLECULES Chem. Res. Toxicol. Chem. Rev. Chem. Mater. CRYST GROWTH DES ENERG FUEL Environ. Sci. Technol. Environ. Sci. Technol. Lett. Eur. J. Inorg. Chem. IND ENG CHEM RES Inorg. Chem. J. Agric. Food. Chem. J. Chem. Eng. Data J. Chem. Educ. J. Chem. Inf. Model. J. Chem. Theory Comput. J. Med. Chem. J. Nat. Prod. J PROTEOME RES J. Am. Chem. Soc. LANGMUIR MACROMOLECULES Mol. Pharmaceutics Nano Lett. Org. Lett. ORG PROCESS RES DEV ORGANOMETALLICS J. Org. Chem. J. Phys. Chem. J. Phys. Chem. A J. Phys. Chem. B J. Phys. Chem. C J. Phys. Chem. Lett. Analyst Anal. Methods Biomater. Sci. Catal. Sci. Technol. Chem. Commun. Chem. Soc. Rev. CHEM EDUC RES PRACT CRYSTENGCOMM Dalton Trans. Energy Environ. Sci. ENVIRON SCI-NANO ENVIRON SCI-PROC IMP ENVIRON SCI-WAT RES Faraday Discuss. Food Funct. Green Chem. Inorg. Chem. Front. Integr. Biol. J. Anal. At. Spectrom. J. Mater. Chem. A J. Mater. Chem. B J. Mater. Chem. C Lab Chip Mater. Chem. Front. Mater. Horiz. MEDCHEMCOMM Metallomics Mol. Biosyst. Mol. Syst. Des. Eng. Nanoscale Nanoscale Horiz. Nat. Prod. Rep. New J. Chem. Org. Biomol. Chem. Org. Chem. Front. PHOTOCH PHOTOBIO SCI PCCP Polym. Chem.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1