Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems

Andrej Kiviriga; Kim Guldstrand Larsen; Dejan Nickovic; Ulrik Nyman

doi:10.1007/978-3-031-42626-1_9

Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems

Andrej Kiviriga, Kim Guldstrand Larsen, Dejan Nickovic^*, Ulrik Nyman

^*Corresponding author for this work

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

Abstract

Falsification testing is a popular method for efficiently identifying inputs that witness the violation of cyber-physical system (CPS) specifications. The generated counterexamples are used to locate and explain faults and debug the system. However, CPS rarely operate in unconstrained environments and not all counterexamples have the same value. On one hand, faults resulting from common system usage are more likely to happen in practice than faults triggered by esoteric inputs. On the other hand, some faults can have more severe consequences than others. Together, the probability and the severity of a fault determine its risk, an important aspect that is neglected by the existing falsification testing techniques. We propose a new falsification testing methodology that is aware of the system’s expected usage and the severity associated to different faulty behaviors. Given a user profile in the form of a stochastic hybrid automaton, an associated severity degree measure, an executable black-box implementation of the CPS and its formalized requirements, we provide a test generation method that (1) uses efficient randomized methods to generate multiple violating traces, and (2) estimates the probability and the expected severity, and hence the expected risk of each counterexample, thus providing their ranking to the engineer.

Original language	English
Title of host publication	Formal Modeling and Analysis of Timed Systems : 21st International Conference, FORMATS 2023, Antwerp, Belgium, September 19–21, 2023, Proceedings
Editors	Laure Petrucci, Jeremy Sproston
Number of pages	17
Publisher	Springer
Publication date	2023
Pages	141-157
ISBN (Print)	978-3-031-42625-4
ISBN (Electronic)	978-3-031-42626-1
DOIs	https://doi.org/10.1007/978-3-031-42626-1_9
Publication status	Published - 2023
Event	Proceedings of the 21st International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2023 - Antwerp, Belgium Duration: 19 Sept 2023 → 21 Sept 2023

Conference

Conference	Proceedings of the 21st International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2023
Country/Territory	Belgium
City	Antwerp
Period	19/09/2023 → 21/09/2023

Series	Lecture Notes in Computer Science
Volume	14138 LNCS
ISSN	0302-9743

Bibliographical note

Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Switzerland AG 2023.

Keywords

black-box testing
counterexample
Cyber-physical systems
falsification-based testing
randomized testing

Access to Document

10.1007/978-3-031-42626-1_9

Usage_aware_Falsification_for_Cyber_Physical_SystemsAccepted author manuscript, 1.2 MBLicence: Unspecified

AUB Link

Search for the material in Aalborg University Library's search engine

Cite this

Kiviriga, A., Larsen, K. G., Nickovic, D., & Nyman, U. (2023). Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems. In L. Petrucci, & J. Sproston (Eds.), Formal Modeling and Analysis of Timed Systems: 21st International Conference, FORMATS 2023, Antwerp, Belgium, September 19–21, 2023, Proceedings (pp. 141-157). Springer. https://doi.org/10.1007/978-3-031-42626-1_9

Kiviriga, Andrej ; Larsen, Kim Guldstrand ; Nickovic, Dejan et al. / Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems. Formal Modeling and Analysis of Timed Systems: 21st International Conference, FORMATS 2023, Antwerp, Belgium, September 19–21, 2023, Proceedings. editor / Laure Petrucci ; Jeremy Sproston. Springer, 2023. pp. 141-157 (Lecture Notes in Computer Science, Vol. 14138 LNCS).

@inproceedings{27ff9e0487a6457b90a351c8211fb7c8,

title = "Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems",

abstract = "Falsification testing is a popular method for efficiently identifying inputs that witness the violation of cyber-physical system (CPS) specifications. The generated counterexamples are used to locate and explain faults and debug the system. However, CPS rarely operate in unconstrained environments and not all counterexamples have the same value. On one hand, faults resulting from common system usage are more likely to happen in practice than faults triggered by esoteric inputs. On the other hand, some faults can have more severe consequences than others. Together, the probability and the severity of a fault determine its risk, an important aspect that is neglected by the existing falsification testing techniques. We propose a new falsification testing methodology that is aware of the system{\textquoteright}s expected usage and the severity associated to different faulty behaviors. Given a user profile in the form of a stochastic hybrid automaton, an associated severity degree measure, an executable black-box implementation of the CPS and its formalized requirements, we provide a test generation method that (1) uses efficient randomized methods to generate multiple violating traces, and (2) estimates the probability and the expected severity, and hence the expected risk of each counterexample, thus providing their ranking to the engineer.",

keywords = "black-box testing, counterexample, Cyber-physical systems, falsification-based testing, randomized testing",

author = "Andrej Kiviriga and Larsen, {Kim Guldstrand} and Dejan Nickovic and Ulrik Nyman",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2023.; Proceedings of the 21st International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2023 ; Conference date: 19-09-2023 Through 21-09-2023",

year = "2023",

doi = "10.1007/978-3-031-42626-1_9",

language = "English",

isbn = "978-3-031-42625-4",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "141--157",

editor = "Laure Petrucci and Jeremy Sproston",

booktitle = "Formal Modeling and Analysis of Timed Systems",

address = "Germany",

}

Kiviriga, A, Larsen, KG, Nickovic, D & Nyman, U 2023, Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems. in L Petrucci & J Sproston (eds), Formal Modeling and Analysis of Timed Systems: 21st International Conference, FORMATS 2023, Antwerp, Belgium, September 19–21, 2023, Proceedings. Springer, Lecture Notes in Computer Science, vol. 14138 LNCS, pp. 141-157, Proceedings of the 21st International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2023, Antwerp, Belgium, 19/09/2023. https://doi.org/10.1007/978-3-031-42626-1_9

Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems. / Kiviriga, Andrej; Larsen, Kim Guldstrand; Nickovic, Dejan et al.
Formal Modeling and Analysis of Timed Systems: 21st International Conference, FORMATS 2023, Antwerp, Belgium, September 19–21, 2023, Proceedings. ed. / Laure Petrucci; Jeremy Sproston. Springer, 2023. p. 141-157 (Lecture Notes in Computer Science, Vol. 14138 LNCS).

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

TY - GEN

T1 - Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems

AU - Kiviriga, Andrej

AU - Larsen, Kim Guldstrand

AU - Nickovic, Dejan

AU - Nyman, Ulrik

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2023.

PY - 2023

Y1 - 2023

N2 - Falsification testing is a popular method for efficiently identifying inputs that witness the violation of cyber-physical system (CPS) specifications. The generated counterexamples are used to locate and explain faults and debug the system. However, CPS rarely operate in unconstrained environments and not all counterexamples have the same value. On one hand, faults resulting from common system usage are more likely to happen in practice than faults triggered by esoteric inputs. On the other hand, some faults can have more severe consequences than others. Together, the probability and the severity of a fault determine its risk, an important aspect that is neglected by the existing falsification testing techniques. We propose a new falsification testing methodology that is aware of the system’s expected usage and the severity associated to different faulty behaviors. Given a user profile in the form of a stochastic hybrid automaton, an associated severity degree measure, an executable black-box implementation of the CPS and its formalized requirements, we provide a test generation method that (1) uses efficient randomized methods to generate multiple violating traces, and (2) estimates the probability and the expected severity, and hence the expected risk of each counterexample, thus providing their ranking to the engineer.

AB - Falsification testing is a popular method for efficiently identifying inputs that witness the violation of cyber-physical system (CPS) specifications. The generated counterexamples are used to locate and explain faults and debug the system. However, CPS rarely operate in unconstrained environments and not all counterexamples have the same value. On one hand, faults resulting from common system usage are more likely to happen in practice than faults triggered by esoteric inputs. On the other hand, some faults can have more severe consequences than others. Together, the probability and the severity of a fault determine its risk, an important aspect that is neglected by the existing falsification testing techniques. We propose a new falsification testing methodology that is aware of the system’s expected usage and the severity associated to different faulty behaviors. Given a user profile in the form of a stochastic hybrid automaton, an associated severity degree measure, an executable black-box implementation of the CPS and its formalized requirements, we provide a test generation method that (1) uses efficient randomized methods to generate multiple violating traces, and (2) estimates the probability and the expected severity, and hence the expected risk of each counterexample, thus providing their ranking to the engineer.

KW - black-box testing

KW - counterexample

KW - Cyber-physical systems

KW - falsification-based testing

KW - randomized testing

UR - http://www.scopus.com/inward/record.url?scp=85172723935&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-42626-1_9

DO - 10.1007/978-3-031-42626-1_9

M3 - Article in proceeding

AN - SCOPUS:85172723935

SN - 978-3-031-42625-4

T3 - Lecture Notes in Computer Science

SP - 141

EP - 157

BT - Formal Modeling and Analysis of Timed Systems

A2 - Petrucci, Laure

A2 - Sproston, Jeremy

PB - Springer

T2 - Proceedings of the 21st International Conference on Formal Modeling and Analysis of Timed Systems, FORMATS 2023

Y2 - 19 September 2023 through 21 September 2023

ER -

Kiviriga A, Larsen KG, Nickovic D, Nyman U. Usage-and Risk-Aware Falsification Testing for Cyber-Physical Systems. In Petrucci L, Sproston J, editors, Formal Modeling and Analysis of Timed Systems: 21st International Conference, FORMATS 2023, Antwerp, Belgium, September 19–21, 2023, Proceedings. Springer. 2023. p. 141-157. (Lecture Notes in Computer Science, Vol. 14138 LNCS). doi: 10.1007/978-3-031-42626-1_9