Process Algebra for Event-Driven Runtime Verification: A Case Study of Wireless Network Management
Runtime verification is analysis based on information extracted from a running system. Traditionally this involves reasoning about system states, for example using trace predicates. We have been investigating runtime verification for event-driven systems and in that context we propose a higher level of abstraction can be useful, namely reasoning at the level of user-perceived system events. And when considering events, then the natural formalism for verification is a form of process algebra. We employ a universal process algebra that encapsulates both dynamic and spatial behaviour, based on Robin Milner's bigraphs . Our models are an extension of his bigraphical reactive systems. These consist of a set of bigraphs that describe spatial and communication relationships, and a set of bigraphical reaction rules that define how bigraphs can evolve over time. We have extended the basic formalism to bigraphical reactive systems with sharing , to allow for spatial locations that can overlap. In this talk we present a case study involving wireless home network management and the automatic generation of bigraphical models, and their analysis, in real-time. Wireless home networking is chosen as our case study because it is notoriously difficult to install and manage, especially for non-expert users. The Homework network management system  has been designed to provide user-oriented support in home wireless local area network (WLAN) environments. The Homework user interface includes drag and drop, comic-strip style interaction for users, and the information plane uses a stream database to record (raw and derived) events. Events include network behaviours such as detecting that a new machine has joined the network, resulting in new links and granting a DCHP lease, and user-intiated behaviours such as enforcing or dropping a policy. Policies forbid or allow access control; for example, a policy might block UDP and TCP traffic from a given site. All network and policy events (simple and derived) are recorded as a stream of tuples in the stream database. This part of the management system is illustrated in the left hand side of Figure 1. On the right hand side of Figure 1 we depict our addtion to the Homework system: additional runtime verification components, and feedback from the verification to the network and users. In this talk we focus first on the bigraphical representations of networks topologies, the encodings of events that modify topologies as bigraph reaction rules, and the encodings of access control policy enforcements and revokations as bigraph reaction rules, and second on how the two components are deployed at run-time and their interplay. Both components are part of a larger bigraph evaluation and rewriting toolkit . Briefly, the Bigraph encoder component encodes events (network topology or policy) as bigraphical reaction rules, in real-time, as they are stored in the stream database. The Bigraph analysis component has two roles. First, it generates the bigraphical representation of the current configuration of the WLAN, according to the sequences of reaction rules received from the Bigraph encoder. Namely, a sequence of bigraphs is generated. A simple example bigraph of a WLAN with one router (R), one machine (Ml), and their respective wireless signals (S), is given in Figure 2. Second, it analyses the current configuration by checking predicates encoded as instances of bigraph matching. These predicates encapsulate properties required for correct encoding of topology or policy events, as well as system properties, including detecting configurations that violate user-invoked access control policies. Example predicates include: 'Machine 01:23:45:67:89:ab is in the range of the router's signal', 'Host Laptop has access to the Internet', and 'TCP traffic is blocked for machine with IP address 192.168.0.3'. The results are logged and fed back to the system, or to the user, when a verification fails. An explanation of the failure, or a counter-example can be displayed to a user, using the graphical bigraph notation. An indication of failure is also sent to the network, if appropriate, e.g. to deny activation of a policy, and/or simply stored in a logfile. The encoding and analysis components have been implemented on the router itself, and we give some empirical evidence of runtime verification from experiments using actual and synthetic network data.......
【作者名称】: Muffy Calder
, Michele Sevegnani
【作者单位】: School of Computing Science, University of Glasgow, UK
, School of Computing Science, University of Glasgow, UK
【关 键 词】: Process Algebra for Event-Driven Runtime Verification: A Case Study of Wireless Network Management
【会议名称】: Integrated formal methods
【会议组织】: School of Computing Science, University of Glasgow, UK;School of Computing Science, University of Glasgow, UK;
【上篇论文】: 外文会议 - Agent Technology Applied to Monitoring, Security and Diagnosis of Energy Systems
【下篇论文】: 外文会议 - RBFs with Spatially Variable Shape Parameters and Optimized Knot Locations
目的:肿瘤化疗是治疗肿瘤的重要手段之一,它大大提高了一些肿瘤治愈的可能性.然而,肿瘤细胞耐药(Drug resistance)往往导致化疗的失败.肿瘤细胞对一种药物耐药后,往往也会对不同化学结构和不同作用机制的药物同时耐药,这就是多药耐药(Multidrug resistance).目前,研究MDR的机理成为肿瘤研究的主攻方向,其中由多药耐药基因(mdrl)编码的分子量为170kD的P糖蛋白(P- [肿瘤化疗,盐酸千金藤碱,K562细胞,ADR细胞,多药耐药性,P糖蛋白表达]......
目的:FFP经过去白、血液辐照仪辐照去除或灭活白细胞后,测定凝血功能检测指标.评价去白及辐照对凝血系统中各种凝血因子的影响.方法:1.取泸州市中心血站采集的30例健康献血者的FFP 30袋,每袋50ml,采用随机区组单盲(检测者不清楚分组情况)设计.每袋血浆分为3个实验组为一个区组,共30个区组,每个区组内有三个检测样本,共90个分析样本.每次实验,将6例FFP于冰箱中取出解冻后,每例FFP经一次 [新鲜冰冻血浆,白细胞过滤,射线辐照,凝血因子]......
本文研究目的:将冠状动脉造影(CAG)结果与心电图(ECG)变化对比分析,探讨心电图ST/T改变在判断急性冠脉综合征(ACS)患者冠脉血管病变中的应用价值. 研究方法:回顾分析2004年5月至2006年12月以"ACS"收入我院心脏科的患者310例,其中男性215例,女性95例,年龄30-80岁(平均年龄57.60±10.46岁).所有患者均进行CAG和ECG检查.冠状动脉狭窄≥50％有意义.心电 [急性冠脉综合征,冠状动脉造影,心电图,血管病变]......
- Effects of different doses of allergen on acute and subacute mouse models of asthma
Objectives:We aimed to establish ovalbumin (OVA)-induced acute and sub-acute mouse models ofasthma and evaluate effects of intranasal inhalation of various doses of OVA on airways inflammation,remodel [哮喘,发病机制,炎性细胞,动物模型]......
目的：根据不同病理类型及相关亚型甲状腺癌的临床生物学特征，结合声像图特点，创建甲状腺癌、甲状腺乳头状癌及甲状腺癌颈部转移淋巴结的超声分型。同时，将超声应用于甲状腺癌的临床分期，实现对甲状腺癌患者术前合理评估、精确分期及个体化治疗。rn 方法：收集有完整病例记录、有完整的甲状腺肿瘤超声图像及明确病理诊断的甲状腺癌病例407例，通过回顾性研究，计算超声诊断甲状腺癌的准确率，并分析比较不同病理类型及相关 [甲状腺癌,超声诊断,临床分期,病理类型,个体化治疗]......
- Treatment of frozen shoulder by hydraulic distention and manipulation under dynamic arthrography of shoulder joint
Objective The investigation was to evaluate the efficiency of the frozen shoulder treated by hydraulic distention and manipulation under dynamic arthrography of shoulder joint, and analyze the influen [Treatment,frozen shoulder,hydraulic distention,manipulation under,shoulder joint,冻结肩]......
- 中药材商品规格等级标准研制进展 (詹志来,黄璐琦,何雅莉,金艳,杨光)
Ⅰ自然定律——不可抗拒力rn 自古以来，宇宙万物皆由大自然定律衍生，人类若然浪费时光及暴殄天物，将会是罪过的，及破坏人类文明的进程。相反，人类若能善用地球资源，将可建立巩固的平台，为未来世代向前发展提供动力。rn 作为创建楼宇及城市，也许该说是环境建设的专业人士，对于依从宇宙自然定律，是不置疑的责任，亦是良知使然，我们必须要时刻提醒自我的天赋的责任。rn 楼宇的设计师(建筑师、工程师、规划师等)所 [楼宇生命力,楼宇设计,可持续建筑,生命周期,太阳能]......
- Reworking Package on Package components
In 2007 Lead Free Package POP (Package on Package) will be a major new device to hit the streets this year and will challenge many to re-evaluate their soldering and rework products/processes.The impl [POP,package on package,Reworking,components]......