[aadl]: AADL Virtual Meetings in January 2022, with email corrections. Jan 18 ->10-11AM CT. Jan 19 ->10:00-11:30 AM CT
Bruce Lewis
bruce.lewis at galois.com
Fri Dec 23 21:18:21 EST 2022
Dear All,
Sorry for the unfinished email that preceded this one. Here's the update.
We had 25 participants for our November Google Meet with Dr. John
Hatcliff's HAMR presentation (abstract below). We recorded the session
and the chat transcript. If you get a chance to review it before the
January AADL Technology Update, it provides context for the next
presentation in January on GUMBO.
Web address for the HAMR video:
https://drive.google.com/file/d/1ahgYWh5iu5SvHUISOu_7EH1jNwospC4S/view
Web address for the chat transcript:
https://drive.google.com/file/d/1xa1rzEflvfA0sO2QesFT3SQBRosEvOtN/view
January AADL meetings:
On January 18th, Dr. Danielle Stewart, of Galois, will be presenting GUMBO.
GUMBO is an AADL contract language currently under research &
development at Galois along with John Hatcliff at KSU. GUMBO reduces
the gap between model-level behavior specifications and the verification
of the behavior of deployed code. We developed a model-level behavior
specification language and provided full development support. We
designed this first order logic specification language in tandem with a
formalization of AADL model-level semantics. We then developed the
capability to automatically translate these specifications from the
model down to the generated code via the High Assurance Modeling and
Rapid engineering framework (HAMR). HAMR also auto-generates the
partitioning and information flow policies for the seL4 micro-kernel,
based on the topology of the components and connections in the
architecture model. The software implementation, with its corresponding
contracts, may then be verified using our Logika formal verification
tool, which handles reasoning about the contracts generated from the
specification language. The resulting integrated tool set provides an
understandable correspondence between models and verifiable
implementations. Using the tool set, developers can specify both
architecture and behavior of the system at the model level,
auto-generate code that can be deployed on the system, and then formally
verify that the code behavior satisfies the requirements specified at
the model level.
Join with Google meet on Jan18 from 10:00-11:00 Central Time,web
address: meet.google.com/not-tvtf-jbu
On January 19th, Dr. Jerome Hugues will be leading the AADL Standard
session. We will discuss a list of topics and gather feedback on
priorities, including: 1) AADL core: semantics of modes; 2) EMV2:
review issues, many are critical issues in the semantics of the language
itself and how to interpret some constructs. This is especially
critical as those rules specify how to compute probabilities. See the
errata at: https://github.com/saeaadl/emv2
Join with Google Meet on Jan 19 at 10:00-11:30 AM Eastern Time, web
address: meet.google.com/ihj-nvca-nxd
Thanks, Bruce Lewis, AADL Committee Chair
Prior AADL Technology session on HAMR ========================================================
Title: HAMR - High-Assurance Modeling and Rapid Engineering for Embedded Systems Using AADL
Project Website:http://hamr.sireum.org
Presenter: John Hatcliff, Kansas State University
Collaborators: Adventium Labs (Galois, Inc) and Collins Aerospace
This talk will present an overview of HAMR (High-Assurance Modeling and Rapid Engineering) -- a multiple- platform code-generation, development, and verification tool-chain for AADL-specified systems. HAMR's architecture factors code-generation through AADL's standardized run-time services (RTS). HAMR uses the AADL RTS as an abstract platform-independent realization of execution semantics which can be instantiated by backend translations for different platforms. Current supported translation targets are: (1) Slang (a safety-critical subset of Scala with JVM-based deployment as well as C code generation designed for embedded systems), (2) Javascript (e.g., for rapid prototyping and illustration of system execution to stakeholders), (3) a C back-end for Linux with communication based on System V inter-process communication primitives, and (4) a C back-end for the seL4 verified micro-kernel being used in a number of US Department of Defense research projects. The C generated by HAMR is also compatible with the CompCert verified C compiler. HAMR supports integrations with other languages (e.g., CakeML) through its generated AADL RTS foreign-function interface facilities.
The talk will describe experience with HAMR on the DARPA CASE (Cyber-Assured System Engineering) project. On CASE, AADL is used to model defense systems and to enable component-based model-based transformations that enhance system architecture to achieve greater cyber-resiliency. HAMR is then used to support development and deployment on the seL4 microkernel. SeL4’s formally-verified partitioning and memory security properties provide the foundation for cyber-resiliency assurance arguments.
The talk will conclude with survey of current work on HAMR, including some teasers about the GUMBO AADL contract language and its translation to program-level Slang contracts with accompanying verification. More details about GUMBO and Slang contracts will be presented in a future AADL committee talk.
========================================================
-------------- next part --------------
HTML attachment scrubbed and removed
More information about the sae-aadl-users
mailing list