CertiCAN: A Tool for the Coq Certification of CAN Analysis Results | IEEE Conference Publication | IEEE Xplore

- Donate
- Personal Sign In

ADVANCED SEARCH

Conferences >2019 IEEE Real-Time and Embed...

CertiCAN: A Tool for the Coq Certification of CAN Analysis Results

Download PDF
Download References
Request Permissions
Save to
Alerts

Abstract:

This paper introduces CertiCAN, a tool produced using the Coq proof assistant for the formal certification of CAN analysis results. Result certification is a process that...Show More

Metadata

Abstract:

This paper introduces CertiCAN, a tool produced using the Coq proof assistant for the formal certification of CAN analysis results. Result certification is a process that is light-weight and flexible compared to tool certification, which makes it a practical choice for industrial purposes. The analysis underlying CertiCAN, which is based on a combined use of two well-known CAN analysis techniques, is computationally efficient. Experiments demonstrate that CertiCAN is faster than the corresponding certified combined analysis. More importantly, it is able to certify the results of RTaW-Pegase, an industrial CAN analysis tool, even for large systems. This result paves the way for a broader acceptance of formal tools for the certification of real-time systems analysis results.

Published in: 2019 IEEE Real-Time and Embedded Technology and Applications Symposium (RTAS)

Date of Conference: 16-18 April 2019

Date Added to IEEE Xplore: 24 June 2019

ISBN Information:

ISSN Information:

DOI: 10.1109/RTAS.2019.00023

Conference Location: Montreal, QC, Canada

References is not available for this document.

I. Introduction

There is a general trend toward certified proofs for real-time systems analysis. One reason for this is the need to increase our confidence in the analysis techniques developed by the research community. A recent series of mistakes in the analysis of self-suspending tasks [9] underlines the limitations of pen-and-paper proofs for such complex problems. This issue is not new, as illustrated by the flaw in the original Response Time Analysis (RTA) of CAN messages proposed by Tindell et al. [26], [28], [27], which was found and fixed only many years later [12]. This motivated the development of Prosa [11], an open-source library of definitions and proofs for real-time systems analysis based on the Coq [4] proof assistant. Computer assisted proofs provide the additional advantage that they make it easier to build on top of existing results and to precisely identify the hypotheses required for a result to hold.

Select All

1.

A Library for formally proven schedulability analysis, [online] Available: http://prosa.mpi-sws.org/.

2.

A Tool for the Coq Certification of CAN Analysis Results, [online] Available: https://team.inria.fr/spades/certican/.

3.

The CompCert C compiler, [online] Available: https://www.absint.com/compcert/.

4.

The Coq proof assistant, [online] Available: http://coq.inria.fr.

5.

Coq sources and Ocaml code of CertiCAN.

6.

The Isabelle proof assistant, [online] Available: https://isabelle.in.tum.de/.

7.

RTaW-Pegase: a Tool for Modeling Simulation and automated Configuration of communication networks, [online] Available: http://www.realtimeatwork.com/ software/rtaw-pegase/.

8.

The seL4 microkernel, [online] Available: https://sel4.systems/.

9.

K. Bletsas, N. C. Audsley, W. Huang, J. Chen and G. Nelissen, "Errata for three papers (2004-05) on fixed-priority scheduling with self-suspensions", LITES, vol. 5, no. 1, pp. 02:1-02:20, 2018.

10.

CAN specification version 2.0. Technical report Robert Bosch GmbH Postfach 30 02 40 D-70442 Stuttgart, 1991.

11.

F. Cerqueira, F. Stutz and B. B. Brandenburg, " Prosa: A case for readable mechanized schedulability analysis. In Real-Time Systems ( ECRTS ) ", 2016 28th Euromicro Conference on, pp. 273-284, 2016.

12.

R. I. Davis, A. Burns, R. J. Bril and J. J. Lukkien, "Controller Area Network (CAN) schedulability analysis: Refuted revisited and revised", Real-Time Systems, vol. 35, no. 3, pp. 239-272, 2007.

CrossRef Google Scholar

13.

B. Dutertre, "Formal analysis of the priority ceiling protocol", 21st IEEE Real-Time Systems Symposium (RTSS), pp. 151-160, 2000.

14.

B. Dutertre and V. Stavridou, "Formal analysis for real-time scheduling", 19th Digital Avionics Systems Conference (DASC), 2000.

15.

P. Fradet, X. Guo, J.-F. Monin and S. Quinton, "A generalized digraph model for expressing dependencies", RTNS’18-26th International Conference on Real-Time Networks and Systems, pp. 1-11, 2018.

CrossRef Google Scholar

16.

X. Guo, S. Quinton, P. Fradet and J.-F. Monin, "Work-in-progress: Toward a coq-certified tool for the schedulability analysis of tasks with offsets", Real-Time Systems Symposium (RTSS) 2017 IEEE, pp. 387-389, 2017.

17.

V. Ha, M. Rangarajan, D. Cofer, H. Rues and B. Dutertre, "Feature-based decomposition of inductive proofs applied to real-time avionics software: An experience report", 26th International Conference on Software Engineering (ICSE), pp. 304-313, 2004.

18.

X. Leroy, "Formal verification of a realistic compiler", Communications of the ACM, vol. 52, no. 7, pp. 107-115, 2009.

CrossRef Google Scholar

19.

E. Mabille, M. Boyer, L. Fejoz and S. Merz, "Towards certifying network calculus", Interactive Theorem Proving - 4th International Conference ITP 2013 Rennes France July 22-26 2013. Proceedings, pp. 484-489, 2013.

CrossRef Google Scholar

20.

A. Monot, N. Navet, B. Bavoux and C. Maxim, "Fine-grained simulation in the design of automotive communication systems", ERTSS-Embedded Real Time Software and Systems-2012, 2012.

21.

S. Quinton, T. T. Bone, J. Hennig, M. Neukirchner, M. Negrean and R. Ernst, "Typical worst case response-time analysis and its use in automotive network design", The 51st Annual Design Automation Conference 2014 DAC ’14 San Francisco CA USA June 1-5 2014, pp. 44:1-44:6, 2014.

CrossRef Google Scholar

22.

M. Stigge, N. Guan and W. Yi, "Refinement-based exact response-time analysis", 26th Euromicro Conference on Real-Time Systems ECRTS 2014 Madrid Spain July 8-11 2014, pp. 143-152, 2014.

23.

M. Stigge and W. Yi, "Combinatorial abstraction refinement for feasibility analysis of static priorities", Real-Time Systems, vol. 51, no. 6, pp. 639-674, 2015.

CrossRef Google Scholar

24.

K. Tindell, "Using offset information to analyse static priority pre-emptively scheduled task sets", Technical report YCS 182, 1992.

25.

K. Tindell, Adding time-offsets to schedulability analysis., 1994.

26.

K. Tindell and A. Burns, "Guaranteeing message latencies on controller area network (CAN)", Proceedings of 1st international CAN conference, pp. 1-11, 1994.

27.

K. Tindell, A. Burns and A. Wellings, "Calculating controller area network (CAN) message response times", Control Engineering Practice, vol. 3, no. 8, pp. 1163-1169, 1995.

CrossRef Google Scholar

28.

K. Tindell, H. Hanssmon and A. J. Wellings, "Analysing real-time communications: Controller area network (CAN)", Proceedings of the 15th IEEE Real-Time Systems Symposium (RTSS ’94), pp. 259-263, December 7-9, 1994.

29.

P. M. Yomsi, D. Bertrand, N. Navet and R. I. Davis, "Controller area network (can): Response time analysis with offsets", 2012 9th IEEE International Workshop on Factory Communication Systems, pp. 43-52, May 2012.

References is not available for this document.