[aadl]: AADL/ACVIP Technology Update Session Dec 14, HAMR - High-Assurance Modeling and Rapid Engineering for Embedded Systems Using AADL

Bruce Lewis bruce.lewis at adventiumlabs.com
Fri Dec 23 20:11:45 EST 2022 

Dear All,

We had 25 on-line for Dr. John Hatcliff's HAMR presentation/abstract 
below.  Lots of questions.  We recorded the session and chat 
transcript.  If you get a chance to review it before the January AADL 
Technology Update, it provides the context for the next presentation in 
January on GUMBO, a contract language that works with AADL and HAMR to 
specify behavior contracts both on the architecture and then down to the 
components for formal verification, including within the the component.

Web address for the HAMR video: 
https://drive.google.com/file/d/1ahgYWh5iu5SvHUISOu_7EH1jNwospC4S/view

Web address for the chat transcript: 
https://drive.google.com/file/d/1xa1rzEflvfA0sO2QesFT3SQBRosEvOtN/view


January AADL meetings:

Dr. Danielle Stewart, of Galois, will be presenting GUMBO on January 18th.

GUMBO is an exploratory AADL contract language effort still under 
development.  GUMBO reduces the gap between model-level behavior 
specifications and the verification of the behavior of deployed code. We 
developed a model-level behavior specification language with full 
development support. We designed this first order logic specification 
language in tandem with a formalization of AADL model-level semantics. 
We then developed the capability to automatically translate these 
specifications from the model down to the generated code via the High 
Assurance Modeling and Rapid engineering framework (HAMR). HAMR also 
auto-generates the partitioning and information flow policies for the 
seL4 micro-kernel, based on the topology of the components and 
connections in the architecture model. The software implementation, with 
its corresponding contracts, may then be verified using our Logika 
formal verification tool, which handles reasoning about the contracts 
generated from the specification language. The resulting integrated 
toolset provides an understandable correspondence between models and 
verifiable implementations. Using the toolset, developers can specify 
both architecture and behavior of the system at the model level, 
auto-generate code that can be deployed on the system, and then formally 
verify that the code behavior satisfies the requirements specified at 
the model level.

Join with Google meet:

meet.google.com/not-tvtf-jbu


Dr. Jerome Hugues will be leading the AADL Standard session to plan 
priority topics for review and update on January 19th. Discuss list of 
topics and gather feedback on priorities, including:

AADL core: semantics of modes;

  EMV2: review issues, many are critical issues in the semantics of the 
language itself and how to interpret some constructs.  This is 
especially critical as those rules specify how to compute probabilities. 
https://github.com/saeaadl/emv2

Join with Google Meet at 11 AM ET, 10AM

meet.google.com/ihj-nvca-nxd

Thanks,

Bruce Lewis,

AADL Committee Chair







On 11/23/2022 11:56 AM, Bruce Lewis wrote:
>
> Dear All,
>
> Here's the abstract for the AADL Technology Update Session for 
> December.  It will be Dec 14, starting 11am EST.  This would be 10AM 
> Central, 5PM in Europe and 8AM PT.  Mark your calendar. Here's the link:
>
> meet.google.com/xuo-uraq-dpu
>
> ========================================================
>
> Title: HAMR - High-Assurance Modeling and Rapid Engineering for Embedded Systems Using AADL
>
> Project Website:http://hamr.sireum.org
>
> Presenter: John Hatcliff, Kansas State University
>
> Collaborators: Adventium Labs (Galois, Inc) and Collins Aerospace
>
> This talk will present an overview of HAMR (High-Assurance Modeling and Rapid Engineering) -- a multiple- platform code-generation, development, and verification tool-chain for AADL-specified systems. HAMR's architecture factors code-generation through AADL's standardized run-time services (RTS). HAMR uses the AADL RTS as an abstract platform-independent realization of execution semantics which can be instantiated by backend translations for different platforms. Current supported translation targets are: (1) Slang (a safety-critical subset of Scala with JVM-based deployment as well as C code generation designed for embedded systems), (2) Javascript (e.g., for rapid prototyping and illustration of system execution to stakeholders), (3) a C back-end for Linux with communication based on System V inter-process communication primitives, and (4) a C back-end for the seL4 verified micro-kernel being used in a number of US Department of Defense research projects. The C generated by HAMR is also compatible with the CompCert verified C compiler. HAMR supports integrations with other languages (e.g., CakeML) through its generated AADL RTS foreign-function interface facilities.
>
> The talk will describe experience with HAMR on the DARPA CASE (Cyber-Assured System Engineering) project. On CASE, AADL is used to model defense systems and to enable component-based model-based transformations that enhance system architecture to achieve greater cyber-resiliency. HAMR is then used to support development and deployment on the seL4 microkernel. SeL4’s formally-verified partitioning and memory security properties provide the foundation for cyber-resiliency assurance arguments.
>
> The talk will conclude with survey of current work on HAMR, including some teasers about the GUMBO AADL contract language and its translation to program-level Slang contracts with accompanying verification.  More details about GUMBO and Slang contracts will be presented in a future AADL committee talk.
>
> Speaker Bio:
>
> Dr. John Hatcliff is a University Distinguished Professor and Lucas-Rathbone Professor of Engineering at Kansas State University working in the areas of safety-critical systems, software architectures, and software verification and certification. He leads the Laboratory on Specification, Analysis, and Transformation of Software (SAnToS Lab), whose research has been funded by national funding agencies and companies including Department of Defense, National Science Foundation, DARPA, Department of Homeland Security, US Army, NASA, NIH, ARO, Air Force Office of Scientific Research, SEI, Collins Aerospace, Adventium Labs, and Lockheed Martin.
>
>
> ========================================================
>
> Bruce
>
>
>
>
>
-- 
Bruce Lewis
256-468-4902
256-919-6627

-------------- next part --------------
HTML attachment scrubbed and removed
-------------- next part --------------
HTML attachment scrubbed and removed
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://lists.sei.cmu.edu/pipermail/sae-aadl-users/attachments/20221223/fd857240/attachment-0001.sig>

More information about the sae-aadl-users mailing list