TY - GEN
T1 - Falsification using Reachability of Surrogate Koopman Models
AU - Bak, Stanley
AU - Bogomolov, Sergiy
AU - Hekal, Abdelrahman
AU - Kochdumper, Niklas
AU - Lew, Ethan
AU - Mata, Andrew
AU - Rahmati, Amir
N1 - Publisher Copyright:
© 2024 Copyright held by the owner/author(s). Publication rights licensed to ACM.
PY - 2024/5/14
Y1 - 2024/5/14
N2 - Black-box falsification problems are most often solved by numerical optimization algorithms. In this work, we propose an alternative approach, where simulations are used to construct a surrogate model for the system dynamics using data-driven Koopman operator linearization. Since the dynamics of the Koopman model are linear, the reachable set of states can be computed and combined with an encoding of the signal temporal logic specification in a mixed-integer linear program (MILP). To determine the next sample, an MILP solver computes the least robust trajectory inside the reachable set of the surrogate model. The trajectory’s initial state and input signal are then executed on the original black-box system, where the specification is either falsified or additional simulation data is generated that we use to retrain the surrogate Koopman model and repeat the process. The proposed method is highly effective. Evaluation on the complete set of benchmarks taken from the 2022 ARCH falsification competition demonstrates superior performance—fewer expected simulations—over all participating tools on 16 out of 19 benchmarks. Further, on three benchmarks where no tool consistently reports a falsifying trace, our method reliably uncovers a counterexample.
AB - Black-box falsification problems are most often solved by numerical optimization algorithms. In this work, we propose an alternative approach, where simulations are used to construct a surrogate model for the system dynamics using data-driven Koopman operator linearization. Since the dynamics of the Koopman model are linear, the reachable set of states can be computed and combined with an encoding of the signal temporal logic specification in a mixed-integer linear program (MILP). To determine the next sample, an MILP solver computes the least robust trajectory inside the reachable set of the surrogate model. The trajectory’s initial state and input signal are then executed on the original black-box system, where the specification is either falsified or additional simulation data is generated that we use to retrain the surrogate Koopman model and repeat the process. The proposed method is highly effective. Evaluation on the complete set of benchmarks taken from the 2022 ARCH falsification competition demonstrates superior performance—fewer expected simulations—over all participating tools on 16 out of 19 benchmarks. Further, on three benchmarks where no tool consistently reports a falsifying trace, our method reliably uncovers a counterexample.
KW - Cyber-Physical Systems
KW - Falsification
KW - Koopman Operator Linearization
KW - Reachability Analysis
KW - Signal Temporal Logic
UR - https://www.scopus.com/pages/publications/85193840946
U2 - 10.1145/3641513.3650141
DO - 10.1145/3641513.3650141
M3 - Conference contribution
AN - SCOPUS:85193840946
T3 - HSCC 2024 - Proceedings of the 27th ACM International Conference on Hybrid Systems: Computation and Control, HSCC 2024, part of CPS-IoT Week
BT - HSCC 2024 - Proceedings of the 27th ACM International Conference on Hybrid Systems
PB - Association for Computing Machinery, Inc
T2 - 27th ACM International Conference on Hybrid Systems: Computation and Control, HSCC 2024
Y2 - 13 May 2024 through 16 May 2024
ER -