Safety Analysis of AADL Models for Grid Cyber-Physical Systems via Model Checking of Stochastic Games

Xiaomin Wei,Yunwei Dong,Mingrui Xiao,Pengpeng Sun

doi:10.3390/electronics8020212

Xiaomin Wei, Yunwei Dong + Show 2 more

Open Access

https://doi.org/10.3390/electronics8020212

Copy DOI

Journal: Electronics	Publication Date: Feb 14, 2019
Citations: 7	License type: CC BY 4.0

Affiliation: Northwestern Polytechnical University

Abstract

As safety-critical systems, grid cyber-physical systems (GCPSs) are required to ensure the safety of power-related systems. However, in many cases, GCPSs may be subject to uncertain and nondeterministic environmental hazards, as well as the variable quality of devices. They can cause failures and hazards in the whole system and may jeopardize system safety. Thus, it necessitates safety analysis for system safety assurance. This paper proposes an architecture-level safety analysis approach for GCPSs applying the probabilistic model-checking of stochastic games. GCPSs are modeled using Architecture Analysis and Design Language (AADL). Random errors and failures of a GCPS and nondeterministic environment behaviors are explicitly described with AADL annexes. A GCPS AADL model including the environment can be regarded as a game. To transform AADL models to stochastic multi-player games (SMGs) models, model transformation rules are proposed and the completeness and consistency of rules are proved. Property formulae are formulated for formal verification of GCPS SMG models, so that occurrence probabilities of failed states and hazards can be obtained for system-level safety analysis. Finally, a modified IEEE 9-bus system with grid elements that are power management systems is modeled and analyzed using the proposed approach.

Highlights

To improve system quality and reduce cost, power systems are evolving to smart grids which can be seen as grid cyber-physical systems (GCPSs) [1]
Property formulae are formulated for formal verification of GCPS stochastic multi-player games (SMGs) models, so that occurrence probabilities of failed states and hazards can be obtained for system-level safety analysis
According to Formula (1), property formulae can be formulated for failed states and hazards, including GCPSsysFailed, OverVoltage, LowPower and EquipDamage

Summary

Introduction

To improve system quality and reduce cost, power systems are evolving to smart grids which can be seen as GCPSs [1]. The errors and failures can propagate from cyber systems to physical processes or vice versa. Huang et al [2,3] study the system robustness of a GCPS for cascading failures between the computational network and physical network. The robustness [2,3,5,6], reliability [4] and security [7,8,9] of GCPSs have been analyzed in numerous papers. It necessitates to perform safety assessment for power grids [10,11]. We focus on system safety of GCPSs

Results

Discussion

Conclusion