SOFTWARE AND SOCIETAL SYSTEMS DEPARTMENT TECHNICAL REPORT ABSTRACTS

CMU-S3D-24-111
Software and Societal Systems Department
School of Computer Science, Carnegie Mellon University

CMU-S3D-24-111

Behavioral Robustness of Software System Designs

Changjian Zhang

December 2024

Ph.D. Thesis
Software Engineering

Keywords: Software Design, Software Requirements, Software Specifications, Robustness, Safety, Model-Driven Engineering, Formal Methods, Formal Software Verification, Model Checking, Discrete Systems, Labeled Transition Systems, Supervisory Control, Linear Temporal Logic, LTL Learning

Abstract Software systems are designed and implemented with assumptions about the environment. However, once a system is deployed, the actual environment may deviate from its expected behavior, potentially leading to violations of desired properties. Ideally, a system should be robust to continue establishing its most critical requirements even in the presence of possible deviations in the environment. To enable systematic design of robust systems against environmental deviations, this work proposes a rigorous behavioral notion of robustness for software systems. Then, it presents a technique called behavioral robustification, which involves two tactics to systematically and rigorously improve the robustness of a system design against potential deviations.

Specifically, the robustness of a system is defined as the largest set of deviating environmental behaviors under which the system is capable of guaranteeing a desired property. Then, we present an approach to compute robustness based on this definition. On the other hand, the system is not robust against an environment when the environment exhibits deviations causing a violation of the desired property. The robustification method finds a redesign that is capable of satisfying the property under such a deviated environment. In particular, two tactics, namely robustification-by-control and robustification-by-specification-weakening, are introduced. The robustification-by-control tactic formulates the robustification problem as a multi-objective optimization problem with the goal of guaranteeing the desired property while maximally preserving the existing functionality and minimizing the cost of changes to the original design. Then, the specification-weakening tactic is used alongside the control tactic, which allows weakening the property to generate more feasible redesigns that retain more functionality or have a lower cost.

The proposed robustness computation and robustification method are implemented in a tool named Fortis. The applicability and efficiency of these approaches are evaluated through experimental results across five case studies, including a radiation therapy machine, an electronic voting machine, network protocols, a transportation fare system, and an infusion pump machine.

154 pages

Thesis Committee:
Eunsuk Kang (Co-chair)
David Garlan (Co-chair)
Jonathan Aldrich
Sebastian Uchitel (Imperial College / Universidad de Buenos Aires)

Nicolas Christin, Head, Software and Societal Systems Department
Martial Hebert, Dean, School of Computer Science

Return to: SCS Technical Report Collection
School of Computer Science

This page maintained by reports@cs.cmu.edu