David Geleßus’s research while affiliated with Heinrich Heine University Düsseldorf and other places

What is this page?


This page lists works of an author who doesn't have a ResearchGate profile or hasn't added the works to their profile yet. It is automatically generated from public (personal) data to further our legitimate goal of comprehensive and accurate scientific recordkeeping. If you are this author and want this page removed, please let us know.

Publications (8)


Fig. 1: Various measures towards certification of AI-based obstacle detection
Fig. 2: AI-based Obstacle Detection System
Fig. 3: Yolov8 Object-Detection and Subsequent Certificate Checking via Feature Detection
Fig. 4: Machine Hierarchy
Fig. 5: Domain-Specific VisB Visualisation

+2

A Formal Model of Train Control with AI-Based Obstacle Detection
  • Chapter
  • Full-text available

September 2023

·

183 Reads

·

6 Citations

Lecture Notes in Computer Science

Jan Gruteser

·

David Geleßus

·

·

[...]

·

The research project KI-LOK aims to develop a certification methodology for incorporating AI components into rail vehicles. In this work, we study how to safely incorporate an AI for obstacle detection into an ATO (automatic train operation) system for shunting movements. To analyse the safety of our system we present a formal B model comprising the steering and AI perceptions subsystems as well as the shunting yard environment. Classical model checking is applied to ensure that the complete system is safe under certain assumptions. We use SimB to simulate various scenarios and estimate the likelihood of certain errors when the AI makes mistakes.

Download

Fig. 1: Schematic view on a VO (left) and the AVoiR framework (right)
Fig. 2: Schematic abstraction (left) and abstraction from the example (right)
Validation by Abstraction and Refinement

May 2023

·

151 Reads

·

6 Citations

Lecture Notes in Computer Science

While refinement can help structure the modeling and proving process, it also forces the modeler to introduce features in a particular order. This means that features deeper in the refinement chain cannot be validated in isolation, making some reasoning unnecessarily intricate. In this paper, we present the AVoiR (Abstraction-Validation Obligation-Refinement) framework to ease validation of such complex refinement chains. The triptych AVoiR framework operates as follows: 1) We first simplify a complex model by abstracting away the noise, i.e., removing the information unrelated to properties under analysis. 2) Using the Validation Obligations (VOs) technique, we formalize the validation tasks of the desired property. 3) Finally, we trickle down the validation results by establishing the noiseless model as a parent of the initially investigated model through the standard refinement relationship. Furthermore, by using the technique of VO refinement, we establish the VOs of the abstract model on the initial model. We use a case study from the aviation domain to show the proposed framework’s effectiveness.KeywordsFormal Methods Validation ObligationsAbstractionRefinementValidationEvent-B


Fig. 2: Requirement Overview in ProB2-UI's VO manager
Fig. 3: Domain-Specific Visualization of AMAN in M6
Fig. 4: Example: User Interaction + Simulation in SimB focuses on the user elements M0 to M9 without M1. Due to the contribution's size and content, the contribution [13] is available separately.
Modeling and Analysis of a Safety-Critical Interactive System Through Validation Obligations

May 2023

·

86 Reads

·

6 Citations

Lecture Notes in Computer Science

This paper presents insights gained during modeling and analyzing the arrival manager (AMAN) case study in Event-B with validation obligations (VOs). AMAN is a safety-critical interactive system for air traffic controllers to organize the landing of airplanes at airports. The presented model consists of a human-machine interface comprising interactive and autonomous parts. We employ VOs to formalize requirements, uncover contradictions and ambiguities, and validate the model’s compliance with the requirements. To capture the AMAN’s human-machine interaction, we implement an interactive domain-specific visualization and an automatic simulation using the VisB and SimB components of ProB.KeywordsEvent-BRefinementValidation ObligationsSimulationVisualization


ProB source code statistics
Making ProB Compatible with SWI-Prolog

June 2022

·

22 Reads

·

1 Citation

Theory and Practice of Logic Programming

Even though the core of the Prolog programming language has been standardized by ISO since 1995, it remains difficult to write complex Prolog programs that can run unmodified on multiple Prolog implementations. Indeed, implementations sometimes deviate from the ISO standard and the standard itself fails to cover many features that are essential in practice. Most Prolog applications thus have to rely on nonstandard features, often making them dependent on one particular Prolog implementation and incompatible with others. We examine one such Prolog application: ProB, which has been developed for over 20 years in SICStus Prolog. The article describes how we managed to refactor the codebase of ProB to also support SWI-Prolog, with the goal of verifying ProB’s results using two independent toolchains. This required a multitude of adjustments, ranging from extending the SICStus emulation in SWI-Prolog on to better modularizing the monolithic ProB codebase. We also describe notable compatibility issues and other differences that we encountered in the process, and how we were able to deal with them with few major code changes.



ProB source code statistics
Making ProB compatible with SWI-Prolog

May 2022

·

40 Reads

Even though the core of the Prolog programming language has been standardized by ISO since 1995, it remains difficult to write complex Prolog programs that can run unmodified on multiple Prolog implementations. Indeed, implementations sometimes deviate from the ISO standard and the standard itself fails to cover many features that are essential in practice. Most Prolog applications thus have to rely on non-standard features, often making them dependent on one particular Prolog implementation and incompatible with others. We examine one such Prolog application: ProB, which has been developed for over 20 years in SICStus Prolog. The article describes how we managed to refactor the codebase of ProB to also support SWI-Prolog, with the goal of verifying ProB's results using two independent toolchains. This required a multitude of adjustments, ranging from extending the SICStus emulation in SWI-Prolog on to better modularizing the monolithic ProB codebase. We also describe notable compatibility issues and other differences that we encountered in the process, and how we were able to deal with them with few major code changes. Under consideration for acceptance in TPLP.


Fig. 1. Main Window of ProB2-UI
Fig. 2. Graph visualisation window of ProB2-UI with projected state space
Fig. 4. Model Checking View
Fig. 5. LTL Model Checking View
ProB2-UI: A Java-Based User Interface for ProB

August 2021

·

328 Reads

·

12 Citations

Lecture Notes in Computer Science

ProB2-UI is a modern JavaFX-based user interface for the animator, constraint solver, and model checker ProB. We present the main features of the tool, especially compared to ProB’s previous user interfaces and other available tools for B, Event-B, and other formalisms. We also present some of ProB2-UI’s history as well as its uses in the industry since its release in 2019.


ProB and Jupyter for Logic, Set Theory, Theoretical Computer Science and Formal Methods

May 2020

·

53 Reads

·

8 Citations

Lecture Notes in Computer Science

We present a tool for using the B language in computational notebooks, based on the Jupyter Notebook interface and the ProB tool. Applications of B notebooks include executable documentation of formal models, interactive manuals, validation reports but also teaching of formal methods, logic, set theory and theoretical computer science. In addition to B and Event-B, the tool supports Z, \textsc {TLA}^{+} and Alloy.

Citations (5)


... Those systems include autonomous vehicles and autonomous railway systems. In earlier work [14], we formally verified a steering system, assuming the perception system works perfectly. However, as the perception system is imperfect, we also created simulations with (hand-coded) probabilities for all kinds of erroneous detections. ...

Reference:

Using Formal Models, Safety Shields and Certified Control to Validate AI-Based Train Systems
A Formal Model of Train Control with AI-Based Obstacle Detection

Lecture Notes in Computer Science

... Animation, simulation, and visualization of scenarios are important enabling technologies: a domain expert can grasp the behavior of a model by looking at visualizations without having to understand the underlying mathematical notation. Even for modelers, visualization is important; for instance, some errors are immediately obvious in a visual rendering, while they can remain hidden within the mathematical, textual counterpart (see various case studies, e.g., Vehicle's Light System [52], Landing Gear [44], ETCS Hybrid Level 3 [33], Air Traffic Control Software [28]). ...

Modeling and Analysis of a Safety-Critical Interactive System Through Validation Obligations

Lecture Notes in Computer Science

... ProB [16,17] is an animator, constraint solver, and model checker for formalisms such as B, Event-B, TLA + or CSP. It provides capabilities such as animation, trace replay [5], simulation [38], and different model checking techniques [13,23] to verify and validate formal models. SimB [37,38] is a simulator with support for timing, probabilities, and live user interaction. ...

ProB2-UI: A Java-Based User Interface for ProB

Lecture Notes in Computer Science

... The ProB validation tool [29] for B can bring this mathematics to life [28]. We have been using this fact to develop a variety of interactive teaching materials for an undergraduate theoretical computer science course, in particular via Jupyter notebooks [15]. In many cases the mathematical formulas in the course script [36] are valid B formulas or need only minor adaptations. ...

ProB and Jupyter for Logic, Set Theory, Theoretical Computer Science and Formal Methods
  • Citing Chapter
  • May 2020

Lecture Notes in Computer Science