Safety Shielding under Delayed Observation

Filip Cano Córdoba; Alexander Palmisano; Martin Fränzle; Roderick Bloem; Bettina Könighofer

doi:10.1609/icaps.v33i1.27181

Safety Shielding under Delayed Observation

Filip Cano Córdoba^*, Alexander Palmisano, Martin Fränzle, Roderick Bloem, Bettina Könighofer^*

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Agents operating in physical environments need to be able to handle delays in the input and output signals since neither data transmission nor sensing or actuating the environment are instantaneous. Shields are correct-by-construction runtime enforcers that guarantee safe execution by correcting any action that may cause a violation of a formal safety specification. Besides providing safety guarantees, shields should interfere minimally with the agent. Therefore, shields should pick the safe corrective actions in such a way that future interferences are most likely minimized. Current shielding approaches do not consider possible delays in the input signals in their safety analyses. In this paper, we address this issue. We propose synthesis algorithms to compute delay-resilient shields that guarantee safety under worst-case assumptions on the delays of the input signals. We also introduce novel heuristics for deciding between multiple corrective actions, designed to minimize future shield interferences caused by delays. As a further contribution, we present the first integration of shields in a realistic driving simulator. We implemented our delayed shields in the driving simulator CARLA. We shield potentially unsafe autonomous driving agents in different safety-critical scenarios and show the effect of delays on the safety analysis.

Original language	English
Title of host publication	Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS)
Place of Publication	Palo Alto, California, USA
Publisher	AAAI Press
Pages	80-85
Number of pages	6
Volume	33
Edition	1
ISBN (Print)	978-1-57735-881-7
DOIs	https://doi.org/10.1609/icaps.v33i1.27181
Publication status	Published - 2023

Publication series

Name	Proceedings International Conference on Automated Planning and Scheduling, ICAPS
ISSN (Print)	2334-0835

Keywords

Control under Delay
Autonomous Driving
Reactive synthesis
Safety
Shielding

ASJC Scopus subject areas

Information Systems and Management
Artificial Intelligence
Computer Science Applications

Fields of Expertise

Information, Communication & Computing

Access to Document

10.1609/icaps.v33i1.27181

1-s2.0-S0950584923000794-mainFinal published version, 2.64 MB

https://ojs.aaai.org/index.php/ICAPS/article/view/27181/26954

Cite this

Cano Córdoba, F., Palmisano, A., Fränzle, M., Bloem, R., & Könighofer, B. (2023). Safety Shielding under Delayed Observation. In Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS) (1 ed., Vol. 33, pp. 80-85). (Proceedings International Conference on Automated Planning and Scheduling, ICAPS). AAAI Press. https://doi.org/10.1609/icaps.v33i1.27181

Safety Shielding under Delayed Observation. / Cano Córdoba, Filip; Palmisano, Alexander; Fränzle, Martin et al.
Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS). Vol. 33 1. ed. Palo Alto, California, USA: AAAI Press, 2023. p. 80-85 (Proceedings International Conference on Automated Planning and Scheduling, ICAPS).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Cano Córdoba, F, Palmisano, A, Fränzle, M, Bloem, R & Könighofer, B 2023, Safety Shielding under Delayed Observation. in Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS). 1 edn, vol. 33, Proceedings International Conference on Automated Planning and Scheduling, ICAPS, AAAI Press, Palo Alto, California, USA, pp. 80-85. https://doi.org/10.1609/icaps.v33i1.27181

Cano Córdoba F, Palmisano A, Fränzle M, Bloem R , Könighofer B. Safety Shielding under Delayed Observation. In Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS). 1 ed. Vol. 33. Palo Alto, California, USA: AAAI Press. 2023. p. 80-85. (Proceedings International Conference on Automated Planning and Scheduling, ICAPS). doi: 10.1609/icaps.v33i1.27181

@inproceedings{b1723dbdeac34d8f9f1b37164277bd9c,

title = "Safety Shielding under Delayed Observation",

abstract = "Agents operating in physical environments need to be able to handle delays in the input and output signals since neither data transmission nor sensing or actuating the environment are instantaneous. Shields are correct-by-construction runtime enforcers that guarantee safe execution by correcting any action that may cause a violation of a formal safety specification. Besides providing safety guarantees, shields should interfere minimally with the agent. Therefore, shields should pick the safe corrective actions in such a way that future interferences are most likely minimized. Current shielding approaches do not consider possible delays in the input signals in their safety analyses. In this paper, we address this issue. We propose synthesis algorithms to compute delay-resilient shields that guarantee safety under worst-case assumptions on the delays of the input signals. We also introduce novel heuristics for deciding between multiple corrective actions, designed to minimize future shield interferences caused by delays. As a further contribution, we present the first integration of shields in a realistic driving simulator. We implemented our delayed shields in the driving simulator CARLA. We shield potentially unsafe autonomous driving agents in different safety-critical scenarios and show the effect of delays on the safety analysis.",

keywords = "Control under Delay, Autonomous Driving, Reactive synthesis, Safety, Shielding",

author = "{Cano C{\'o}rdoba}, Filip and Alexander Palmisano and Martin Fr{\"a}nzle and Roderick Bloem and Bettina K{\"o}nighofer",

year = "2023",

doi = "10.1609/icaps.v33i1.27181",

language = "English",

isbn = "978-1-57735-881-7",

volume = "33",

series = "Proceedings International Conference on Automated Planning and Scheduling, ICAPS",

publisher = "AAAI Press",

pages = "80--85",

booktitle = "Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS)",

edition = "1",

}

TY - GEN

T1 - Safety Shielding under Delayed Observation

AU - Cano Córdoba, Filip

AU - Palmisano, Alexander

AU - Fränzle, Martin

AU - Bloem, Roderick

AU - Könighofer, Bettina

PY - 2023

Y1 - 2023

N2 - Agents operating in physical environments need to be able to handle delays in the input and output signals since neither data transmission nor sensing or actuating the environment are instantaneous. Shields are correct-by-construction runtime enforcers that guarantee safe execution by correcting any action that may cause a violation of a formal safety specification. Besides providing safety guarantees, shields should interfere minimally with the agent. Therefore, shields should pick the safe corrective actions in such a way that future interferences are most likely minimized. Current shielding approaches do not consider possible delays in the input signals in their safety analyses. In this paper, we address this issue. We propose synthesis algorithms to compute delay-resilient shields that guarantee safety under worst-case assumptions on the delays of the input signals. We also introduce novel heuristics for deciding between multiple corrective actions, designed to minimize future shield interferences caused by delays. As a further contribution, we present the first integration of shields in a realistic driving simulator. We implemented our delayed shields in the driving simulator CARLA. We shield potentially unsafe autonomous driving agents in different safety-critical scenarios and show the effect of delays on the safety analysis.

AB - Agents operating in physical environments need to be able to handle delays in the input and output signals since neither data transmission nor sensing or actuating the environment are instantaneous. Shields are correct-by-construction runtime enforcers that guarantee safe execution by correcting any action that may cause a violation of a formal safety specification. Besides providing safety guarantees, shields should interfere minimally with the agent. Therefore, shields should pick the safe corrective actions in such a way that future interferences are most likely minimized. Current shielding approaches do not consider possible delays in the input signals in their safety analyses. In this paper, we address this issue. We propose synthesis algorithms to compute delay-resilient shields that guarantee safety under worst-case assumptions on the delays of the input signals. We also introduce novel heuristics for deciding between multiple corrective actions, designed to minimize future shield interferences caused by delays. As a further contribution, we present the first integration of shields in a realistic driving simulator. We implemented our delayed shields in the driving simulator CARLA. We shield potentially unsafe autonomous driving agents in different safety-critical scenarios and show the effect of delays on the safety analysis.

KW - Control under Delay

KW - Autonomous Driving

KW - Reactive synthesis

KW - Safety

KW - Shielding

UR - http://www.scopus.com/inward/record.url?scp=85169808165&partnerID=8YFLogxK

U2 - 10.1609/icaps.v33i1.27181

DO - 10.1609/icaps.v33i1.27181

M3 - Conference paper

SN - 978-1-57735-881-7

VL - 33

T3 - Proceedings International Conference on Automated Planning and Scheduling, ICAPS

SP - 80

EP - 85

BT - Proceedings of the International Conference on Automated Planning and Scheduling (ICAPS)

PB - AAAI Press

CY - Palo Alto, California, USA

ER -

Safety Shielding under Delayed Observation

Abstract

Publication series

Keywords

ASJC Scopus subject areas

Fields of Expertise

Access to Document

Other files and links

Fingerprint

EU - FOCETA - Foundations for continuous engineering of trustworthy autonomy

Cite this

Safety Shielding under Delayed Observation

Abstract

Publication series

Keywords

ASJC Scopus subject areas

Fields of Expertise

Access to Document

Other files and links

Fingerprint

Projects

EU - FOCETA - Foundations for continuous engineering of trustworthy autonomy

Cite this