Luckcuck, Matt
2021-05-20
<p>MASCOT Model and Data</p>
<p>Matt Luckcuck <a href="mailto:m.luckcuck@tutanota.com">m.luckcuck@tutanota.com</a> 2021-05-14</p>
<p>A Communicating Sequential Processes (CSP) model of the MASCOT v.6 Safety Sub-System and the response time data from checking various traces using <a href="https://cocotec.io/fdr/">FDR</a> and our Runtime Verification toolchain <a href="https://github.com/autonomy-and-verification/varanus/tree/FMICS-Data">Varanus</a>.</p>
<p>Description</p>
<p>The CSP model was built from a natural-language report of the (proposed) safety sub-system for the tele-operated robotic system MASCOT. A set of traces were constructed to test the model:</p>
<ul>
<li>Stress-Testing: increasingly large, semi-random traces to test how model-checking/Varanus response times scale, and;</li>
<li>Scenarios: different 'attempts' at a hypothetical mission, designed to test all of the safety functions in the model.</li>
</ul>
<p>Each trace was checked using <a href="https://cocotec.io/fdr/">FDR</a>'s API directly; and then using our <a href="https://github.com/autonomy-and-verification/varanus/tree/FMICS-Data">Varanus</a> toolchain for Offline RV. The check is to determine if the trace is a valid trace of the model.</p>
<p>Further description of our toolchain and a link to relevant paper(s) can be found in the <a href="https://github.com/autonomy-and-verification/varanus">Varanus repository</a></p>
<p>Scenarios</p>
<p>Briefly, the scenarios are:</p>
<ol>
<li>Operator stays in hands on mode, speed stays below limit.</li>
<li>Operator stays in hands on mode, speed exceeds limit and tries to continue (causes a failure).</li>
</ol>
<ul>
<li>2a Instead of the failure in Scenario 2, the system handles the broken speed limit, then resets, restarts, and finishes the mission.</li>
<li>2b Instead of the failure in Scenario 2, the system handles the broken speed limit, the safe state key is removed, to allow minor servicing to the system. Then the key is returned, the system is reset, restarted, and the mission is completed.</li>
</ul>
<ol>
<li>Operator switches to autonomous mode after collecting tools, speed stays below limit.</li>
<li>Operator switches to autonomous mode after collecting tools, speed exceeds limit and tries to continue (causes a failure).</li>
</ol>
<ul>
<li>4a Instead of the failure in Scenario 4, the system handles the broken speed limit, then resets, restarts, and finishes the mission.</li>
<li>4b Instead of the failure in Scenario 4, the system handles the broken speed limit, then safe state key is removed, to allow minor servicing to the system. Then the key is returned, the system is reset, restarted, and the mission is completed.</li>
</ul>
<ol>
<li>The Safe State Key is used to trigger an emergency stop. Then the system is reset, restarted, and the mission is completed.</li>
<li>System enters Master Commissioning Mode. After some unmonitored movements (not triggering protective stop), Safe State Key is used to enter Safe State, and system is reset.</li>
<li>The Slave Commissioning Mode key is used to put the system into the Slave Commissioning Mode, where no speed events are registered. Then Slave Commissioning Mode is disabled, again using the Slave Commissioning Mode key.</li>
</ol>
<p>Structure</p>
<ul>
<li>
<p>data: the raw log files and a spreadsheet of the FDR API and Varanus results:</p>
<ul>
<li><code>api-times</code> contains the results for using the FDR API directly,</li>
<li><code>offline-times</code> contains the results for using Varanus for Offline RV,</li>
<li><code>online-time</code> contains the results for using Varanus for Online RV on one scnerio only,</li>
<li><code>varanus-data.ods</code> contains the summary of the results for each stress-test or scenario</li>
</ul>
</li>
<li>
<p>model: the CSP model of the safety sub-system, including the stress-test (<code>scenarios-stress-tests.csp</code> and scenario (<code>scenarios.csp</code>) traces</p>
</li>
</ul>
https://doi.org/10.5281/zenodo.4775421
oai:zenodo.org:4775421
eng
Zenodo
https://doi.org/10.5281/zenodo.3932004
info:eu-repo/semantics/openAccess
Creative Commons Attribution 4.0 International
https://creativecommons.org/licenses/by/4.0/legalcode
Varanus: MASCOT Model and Data
info:eu-repo/semantics/other