Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Hybrid Rebeca Revisited

Fatemeh Ghassemi, Saeed Zhiany, Nesa Abbasimoghadam, Ali Hodaei, Ali Ataollahi, József Kovács, Erika Ábrahám, Marjan Sirjani

TL;DR

The paper tackles safety verification of asynchronous event-based CPS with non-deterministic time by extending Hybrid Rebeca to model time intervals for delays and mode transitions. It replaces the traditional HA-transform approach with a direct Timed Transition System-based reachability analysis that adapts flowpipe construction to Hybrid Rebeca and proves its soundness. Key contributions include the time-interval extension, a direct reachability algorithm backed by formal mappings to hybrid automata, and a HyPro-enabled tool implementation with experimental results. The approach reduces intermediate model blow-up and enhances precision and scalability for complex CPS scenarios, enabling more efficient safety analysis. Practical impact lies in enabling rigorous verification of CPS where communication and computation delays are inherently non-deterministic.

Abstract

Hybrid Rebeca is a modeling framework for asynchronous event-based cyber-physical systems (CPSs). In this work, we extend Hybrid Rebeca to allow the modeling of non-deterministic time behavior. Besides the syntactical extension, we formalize the semantics of the extended language in terms of Timed Transition Systems, and adapt a reachability analysis algorithm originally designed for hybrid automata to be applicable to Hybrid Rebeca models. We prove the soundness of our approach and illustrate its applicability on a case study. The case study demonstrates that our dedicated algorithm is clearly superior to the alternative approach of transforming Hybrid Rebeca models to hybrid automata as an intermediate model and then applying the original reachability analysis method to this intermediate transformed models.

Hybrid Rebeca Revisited

TL;DR

The paper tackles safety verification of asynchronous event-based CPS with non-deterministic time by extending Hybrid Rebeca to model time intervals for delays and mode transitions. It replaces the traditional HA-transform approach with a direct Timed Transition System-based reachability analysis that adapts flowpipe construction to Hybrid Rebeca and proves its soundness. Key contributions include the time-interval extension, a direct reachability algorithm backed by formal mappings to hybrid automata, and a HyPro-enabled tool implementation with experimental results. The approach reduces intermediate model blow-up and enhances precision and scalability for complex CPS scenarios, enabling more efficient safety analysis. Practical impact lies in enabling rigorous verification of CPS where communication and computation delays are inherently non-deterministic.

Abstract

Hybrid Rebeca is a modeling framework for asynchronous event-based cyber-physical systems (CPSs). In this work, we extend Hybrid Rebeca to allow the modeling of non-deterministic time behavior. Besides the syntactical extension, we formalize the semantics of the extended language in terms of Timed Transition Systems, and adapt a reachability analysis algorithm originally designed for hybrid automata to be applicable to Hybrid Rebeca models. We prove the soundness of our approach and illustrate its applicability on a case study. The case study demonstrates that our dedicated algorithm is clearly superior to the alternative approach of transforming Hybrid Rebeca models to hybrid automata as an intermediate model and then applying the original reachability analysis method to this intermediate transformed models.

Paper Structure

This paper contains 28 sections, 3 theorems, 19 equations, 8 figures, 2 tables, 2 algorithms.

Table of Contents

  1. Introduction
  2. Motivating Example
  3. Preliminaries
  4. Hybrid Automata
  5. Hybrid Automata Reachability Analysis by Flowpipe Construction
  6. Hybrid Rebeca
  7. Syntax
  8. Operational Semantics
  9. Notations
  10. Hybrid Rebeca Models and their Semantics
  11. Global States
  12. Transitions
  13. Initial State
  14. Reachability Analysis of Rebeca Models
  15. Soundness of Approach
  16. ...and 13 more sections

Key Result

Theorem 8

For a given Hybrid Rebeca model $\mathcal{M}$, let ${\it HA}(\mathcal{M})$ denote the corresponding monolithic hybrid automaton as defined in SoSym. For any reachable state $s$ achieved by Algorithm alg::HybridRebecaReachabilityAnalysisAlgorithm on ${\it TTS}(\mathcal{M})$, denoted by $s\in\mathcal{

Figures (8)

  • Figure 1: A Hybrid Rebeca model of a room with a sensor-equipped heater, a controller, and an alarm mechanism.
  • Figure 2: The monolithic hybrid automaton constructed for the Rebeca model given in Fig. \ref{['code::motiExample']}; urgent locations, in which time does not pass, are indicated by 'U'; invariants are shown in purple, guards in green, resets in blue, and the mailbox and variable values of rebecs in black.
  • Figure 3: An example of an execution of a hybrid automaton and its flowpipe construction Chen.
  • Figure 4: Syntax of Hybrid Rebeca. Identifiers $C$, $msg$, $\mathfrak{m}$, $v$, $c$, and $r$ denote the name of a class, message server, mode, variable, constant, and rebec, respectively.
  • Figure 5: The corresponding timed transition system of the Rebeca model given in Fig. \ref{['code::motiExample']}
  • ...and 3 more figures

Theorems & Definitions (14)

  • Definition 1
  • Definition 2: Hybrid Rebeca model
  • Definition 3: Timed Transition System for a Hybrid Rebeca model
  • Definition 4: Local state of a reactive rebec
  • Definition 5: State of a physical rebec
  • Example 6
  • Example 7
  • Theorem 8
  • Definition 9: Hybrid automaton for a Hybrid Rebeca model
  • Definition 10: Pending event
  • ...and 4 more