Autonomous driving systems (ADSs) integrate sensing, perception, drive control, and several other critical tasks in autonomous vehicles, motivating research into techniques for assessing their safety. While there are several approaches for testing and analysing them in high-fidelity simulators, ADSs may still encounter additional critical scenarios beyond those covered once they are deployed on real roads. An additional level of confidence can be established by monitoring and enforcing critical properties when the ADS is running. Existing work, however, is only able to monitor simple safety properties (e.g., avoidance of collisions) and is limited to blunt enforcement mechanisms such as hitting the emergency brakes. In this work, we propose REDriver, a general and modular approach to runtime enforcement, in which users can specify a broad range of properties (e.g., national traffic laws) in a specification language based on signal temporal logic (STL). REDriver monitors the planned trajectory of the ADS based on a quantitative semantics of STL, and uses a gradient-driven algorithm to repair the trajectory when a violation of the specification is likely. We implemented REDriver for two versions of Apollo (i.e., a popular ADS), and subjected it to a benchmark of violations of Chinese traffic laws. The results show that REDriver significantly improves Apollo’s conformance to the specification with minimal overhead.
Wed 17 AprDisplayed time zone: Lisbon change
14:00 - 15:30 | Dependability and Formal methods 1Software Engineering in Practice / Demonstrations / Research Track at Maria Helena Vieira da Silva Chair(s): Domenico Bianculli University of Luxembourg | ||
14:00 15mTalk | REDriver: Runtime Enforcement for Autonomous Vehicles Research Track Yang Sun Singapore Management University, Chris Poskitt Singapore Management University, Xiaodong Zhang , Jun Sun Singapore Management University Pre-print | ||
14:15 15mTalk | Scalable Relational Analysis via Relational Bound Propagation Research Track DOI Pre-print | ||
14:30 15mTalk | Kind Controllers and Fast Heuristics for Non-Well-Separated GR(1) Specifications Research Track Ariel Gorenstein Tel Aviv University, Shahar Maoz Tel Aviv University, Jan Oliver Ringert Bauhaus-University Weimar | ||
14:45 15mTalk | On the Difficulty of Identifying Incident-Inducing Changes Software Engineering in Practice Eileen Kapel ING & Delft University of Technology, Luís Cruz Delft University of Technology, Diomidis Spinellis Athens University of Economics and Business & Delft University of Technology, Arie van Deursen Delft University of Technology | ||
15:00 15mTalk | Autonomous Monitors for Detecting Failures Early and Reporting Interpretable Alerts in Cloud Operations Software Engineering in Practice Adha Hrusto Lund University, Sweden, Per Runeson Lund University, Magnus C Ohlsson System Verification | ||
15:15 7mTalk | nvshare: Practical GPU Sharing without Memory Size Constraints Demonstrations Pre-print | ||
15:22 7mTalk | Daedalux: An Extensible Platform for Variability-Aware Model Checking Demonstrations Sami Lazreg Visteon Electronics and Universite Cote d Azur, Maxime Cordy University of Luxembourg, Luxembourg, Simon Thrane Hansen SnT, University of Luxembourg, Axel Legay Université Catholique de Louvain, Belgium | ||