Split
751a25780f
Tactical (sentence-level): - Strengthened weak verbs and passive constructions - Improved issue-point positioning (old info first, new info in stress position) - Removed unnecessary hedging phrases - Fixed active/passive voice for clarity Operational (paragraph/section): - Added transition sentences between major subsections - Strengthened flow between State of the Art and Research Approach - Added connecting tissue between continuous controller types - Improved coherence within outcomes section Strategic (document-level): - Made 'what's new' explicit with highlighted innovation statement - Added summary paragraph to State of the Art defining the verification gap - Strengthened connections between sections for Heilmeier alignment - Clarified how the three-layer approach unifies existing tools
82 lines
4.1 KiB
TeX
82 lines
4.1 KiB
TeX
% GOAL PARAGRAPH
|
|
This research develops a methodology for creating autonomous control systems
|
|
with event-driven control laws that guarantee safe and correct behavior.
|
|
|
|
% INTRODUCTORY PARAGRAPH Hook
|
|
Nuclear power relies on extensively trained operators who follow detailed
|
|
written procedures to manage reactor control. Operators interpret plant
|
|
conditions and make critical decisions about when to switch between control
|
|
objectives.
|
|
% Gap
|
|
This reliance on human operators creates an economic challenge for
|
|
next-generation nuclear power plants. Small modular reactors face per-megawatt
|
|
staffing costs that significantly exceed those of conventional plants. These
|
|
economic constraints demand autonomous control systems that safely manage
|
|
complex operational sequences with the same assurance as human-operated systems,
|
|
but without constant supervision.
|
|
|
|
% APPROACH PARAGRAPH Solution
|
|
We will combine formal methods from computer science with control theory to
|
|
build hybrid control systems that are correct by construction.
|
|
% Rationale
|
|
Hybrid systems use discrete logic to switch between continuous control modes,
|
|
mirroring how operators change control strategies. Existing formal methods
|
|
generate provably correct switching logic but cannot handle continuous dynamics
|
|
during transitions. Traditional control theory verifies continuous behavior but
|
|
lacks tools for proving discrete switching correctness.
|
|
% Hypothesis and Technical Approach
|
|
A three-stage methodology will bridge this gap. First, we translate written
|
|
operating procedures into temporal logic specifications using NASA's Formal
|
|
Requirements Elicitation Tool (FRET). FRET structures requirements into scope,
|
|
condition, component, timing, and response elements, enabling realizability
|
|
checking that identifies conflicts and ambiguities before implementation.
|
|
Second, we synthesize discrete mode switching logic using reactive synthesis to
|
|
generate deterministic automata that are provably correct by construction.
|
|
Third, we develop continuous controllers for each discrete mode using standard
|
|
control theory and reachability analysis. We classify continuous modes based on
|
|
their transition objectives, then employ assume-guarantee contracts and barrier
|
|
certificates to prove that mode transitions occur safely and as the
|
|
deterministic automata specify. Local verification of continuous modes becomes
|
|
possible without global trajectory analysis across the entire hybrid system. An
|
|
Emerson Ovation control system will demonstrate this methodology.
|
|
% Pay-off
|
|
This approach demonstrates that autonomous control can manage complex nuclear
|
|
power operations while maintaining safety guarantees.
|
|
|
|
% OUTCOMES PARAGRAPHS
|
|
If this research is successful, we will be able to do the following:
|
|
\begin{enumerate}
|
|
% OUTCOME 1 Title
|
|
\item \textit{Synthesize written procedures into verified control logic.}
|
|
% Strategy
|
|
We will develop a methodology for converting written operating procedures
|
|
into formal specifications. Reactive synthesis tools will then generate
|
|
discrete control logic from these specifications.
|
|
% Outcome
|
|
Control engineers will generate mode-switching controllers from regulatory
|
|
procedures with minimal formal methods expertise, reducing barriers to
|
|
high-assurance control systems.
|
|
|
|
% OUTCOME 2 Title
|
|
\item \textit{Verify continuous control behavior across mode transitions.}
|
|
% Strategy
|
|
Reachability analysis will ensure continuous control modes satisfy discrete
|
|
transition requirements.
|
|
% Outcome
|
|
Engineers will design continuous controllers using standard practices while
|
|
ensuring system correctness, proving that mode transitions occur safely at
|
|
the right times.
|
|
|
|
% OUTCOME 3 Title
|
|
\item \textit{Demonstrate autonomous reactor startup control with safety
|
|
guarantees.}
|
|
% Strategy
|
|
A small modular reactor simulation using industry-standard control hardware
|
|
will implement this methodology.
|
|
% Outcome
|
|
Control engineers will implement high-assurance autonomous controls on
|
|
industrial platforms they already use, enabling autonomy without retraining
|
|
costs or developing new equipment.
|
|
|
|
\end{enumerate}
|