Modeling and assuring dependability of Systems of Systems

Detail

Research Theme

We treat a System of Systems (SoS) not as a mere collection of connected systems, but as a social system in which autonomous actors make decisions and interact. The behavior of such large socio-technical systems cannot be explained by checking each component in isolation.

Our goal is to build an engineering perspective that designs behavior at the whole-system level — covering not only structure and connectivity, but also the interactions, incentives, and decisions among participating actors, together with methods to explain, design, and validate the system-wide behavior we want.

Detail

Social Challenges

Modern systems such as automated road traffic, smart grids, smart cities, and data-sharing infrastructures are increasingly distributed systems in which multiple actors make decisions independently. Even when each actor behaves rationally, their interaction can still produce outcomes at the level of the whole system that no one intended.

• Self-interested behavior can reduce overall efficiency, as seen in traffic congestion or peak electricity demand.
• Unexpected interactions can destabilize the system as a whole.
• Even when each individual subsystem is locally optimal, the overall system may still fail to function well.

Detail

Limits of Previous Research

Conventional systems engineering and System of Systems Engineering (SoSE) have achieved important results in areas such as architecture design, communication and control, and software design. However, they have not fully addressed one of the most important questions in real-world SoS: how the participating actors actually behave.

As a result, a system may be architecturally correct and implemented according to specification, yet still fail to work as intended in practice. To make SoS function in real society, it is necessary to design not only the structure of the system but also the decision-making and interaction among its actors.

Detail

Our Approach

Rather than controlling the system from the outside, we design it so that desirable behavior is naturally selected. Concretely, we design rules, contracts, and incentives so that even when each actor acts autonomously, the system as a whole converges to a desirable state.

This reframes SoS design: not as centralized control, but as setting the conditions under which the interaction of independent actors yields a desirable equilibrium. Treating SoS as socio-technical systems lets us extend engineering from structural design to include behavioral and institutional design.

Detail

Future Directions

The next step is to make this equilibrium-based view of SoS design concrete and to establish practical foundations for design and validation in real-world settings. Through formalization of rules and contracts in Contract Architecture Description Language (CADL), design of dynamic adaptation under autonomous actors, evaluation of system-wide dependability, and empirical studies using digital twins, we aim to develop a methodology for SoS as socio-technical system design.

• Formalization and verification of rules and contracts: describe not only system structure but also rules and contracts, and detect contradictions or inconsistencies at design time.
• Design of dynamic adaptation under autonomous actors: clarify mechanisms by which independently acting and learning actors can still lead the whole system toward desirable states.
• Evaluation of system-wide dependability: assess and mitigate not only component-level correctness but also problems caused by interaction across the whole system.