<h1><a href="https://arxiv.org/abs/1412.6572">
Reachable Set Over-approximation for Nonlinear Systems Using Piecewise Barrier Tubes</a></h1>
Hui Kong et al.


<h2>Summary</h2>
* Over-approximate the flowpipe of the dynamics in a nonlinear continuous shystem and find the reachable set

<h2>Introduction</h2>

**Common approaches** for reachability problem of hybrid systems with ODEs
* Invariant generation
    * Find an invariant set $I$ such that initial set $I_0\subset I$ and unsafe set $U\subset I$.
    * Hard to define the constraints which can be solved efficiently.

* Abstraction and hybridization
    * Use linear model to abstract the nonlinear system.
    * Has discretization problem

* SMT over reals
    * Encode reachability problem as first-order logic formulas
    * Does not provide a complete and comprehensive description of the reachability set
    
* Bounded time flowpipe computation
    * Interval method or Tayler model
    * Easily has wrapping effect of intervals.

**`Barrier functions`** are defined in the way that by adding them to the constraints, all trajectories must move in the increasing direction of the level sets of barrier functions.

**`Barreir tubes`** are formed by groups of barrier functions to piecewisely enclose and over-approximate the flowpipe.

**`Lie Derivative`**
   * Given a polynomial $p$ over $x=[x_1,\ldots, x_n]^T$ and a continuous system $\dot{x}=f(x)$ where $\dot{x}=\frac{d x}{d t}$
   * The Lie derivative of $p$ along $f$ of order $k$ is the k-th derivative of p w.r.t. time
$$\mathcal{L}^k_f p\triangleq
\left\{
\begin{array}{ll}
      p, & k=0 \\
      \sum^n_{i=1}\frac{\partial \mathcal{L}^{k-1}_f p}{\partial x_i}\cdot f_i, & k\geq 1 \\
\end{array} 
\right. 
$$

**`Semialgebraic system`** is a triple $M\triangleq <X,f,X_0,I>$
  * $X\subset R^n$ is the state space of the system $M$.
  * $f\in \mathbb{R}[x]^n$ is locally Lipschitz continuous vector function,
  * $X_0\subset X$ is the initial set, which is semialgebraic.
  * $I$ is the invariant of the system
  
**`Trajectory`** originating from $x_0$ spanning over $t\in[0, T)$ is a continuous and differential function $\zeta(t)$ such that 
  * $\zeta(0)=x_0$
  * $\forall\tau\in[0, T), \frac{d\zeta(\tau)}{dt}|_{t=\tau}=f(\zeta(\tau)).$

**`Flowpipe`** of the initial set $X_0$ is 
$$Flow_f(X_0)\triangleq\{\zeta(x_0, t)|x_0\in X_0, t\in\mathbb{R}, \dot{\zeta}=f(\zeta)\}$$

**`Safety`** means that given system $M\triangleq <X,f,X_0,I>$ and unsafe $X_U\subset X$, $\forall x_0\in X_0$, no trajectory $\zeta(x_0, t)$ of  satisfies that $\exists\tau\in\mathbb{R}:x(\tau)\in X_U$

<h2>Computing Barrier Certificates</h2>

**`Barrier certificate`** is a real multivariate polynomial function $B(X)$ satisfying following constraint such that a semialgebraic system $M$ is guaranteed to be safe.
  * $\forall x\in X_0, B(x)> 0$ 
  * $\forall x\in X_U, B(x)< 0 $
  * $\forall x\in I, \mathcal{L}_f B>0$
  * The conditions mean that all trajectories in region $I$ always point in the direction of increasing $B(x)$ such that any trajectory originating from $I_0$ would never reach $X_U$.
  * <a href="https://link.springer.com/chapter/10.1007/978-3-540-24743-2_32">Previous work</a> formulates the constraint as sum-of-squares programming problems which can be solved in polynomial time. But it is hard to generate polynomial template for $B(x)$.

<h2>Piecewise Barrier Tubes</h2>

* Firstly, construct an enclosure box for each segment of the flowpipe
* Then for each flowpipe inside the box, construct a BT to form a tighter over-approximation.

<h3>Construct the enclosure box</h3>

Approximately bound the twisting of trajectories by $\theta$ in a box.

**`Twisting of a trajectory`** for a trajectory $\zeta(t)$ on time interval $I=[T_1, T_2]$ in a system $M$ is defined as 
$$\xi_I(\zeta)\triangleq sup_{t_1, t_2\in I} arccos(\frac{<\dot{\zeta}(t_1), \dot{\zeta}(t_2)>}{||\zeta(t_1)||||\zeta(t_2)||})$$

The basci idea of the algorithm of constructing such an enclosure box is as follows.
<img src='./fig1.png'></img>

> * The algorithm uses ?????????<a href="http://www.nsc.ru/interval/Library/Thematic/IntvalDEs/Nedialkov.pdf">`interval arithmetic`</a>???????
*  $(\theta,d)$-simulation means that the simulation stops either when the twisting of the trajectory reaches θ or when the distance to $x_0$ reaches d so that the flowpipe is long and straight. 
* The the while loop ends when the flowpipe intersects with the box on only one facet. 
  * In this case a barrier certificate can be solved to bound the trajectory so that the trajectory won't intersect with other facets.
  * If the barrier certificate does not exist, or can not be solved, then push the facet to enlarge the box. The loop goes on.
  
<h3>Compute Barrier Tube</h3>

**`Barrier tube`** is set of real-valued function $BT=\{B_i(x), i=1, \ldots, m\}$ in box $E$ such that 
* $\forall B_i(x)\in BT, (\forall x\in X_0, B_i(x)>0)\wedge(\forall x\in E, \mathcal{L}_f B_i>0)$
* $\Omega=\{x\in \mathbb{R}^n|\wedge B_i(x)>0, B_i \in BT\}$, then  $Flow_f(X_0)\cap E\subset \Omega\cap E$ 

Multiple barrier certificates can over-approximate the flowpipe better than single one. But barrier tube can be very conservative due to absence of definition of unsafe set. Therefore, the concept of `auxiliary unsafe set` is introduced.

**`Auxiliary unsafe set (AUS)`** is a set of unsafe sets $U_i$. For each $U_i$ a barrier certificate $B_i$ can be solved by adding $U_i$ to the barrier certificate condition inequalities. This will improve the quality and accuracy of the over-approximation. The ideal situation is that the box encloses AUS sets, the AUS sets surround the barrier tube which in turn covers the flowpipe. 

<img src='./fig2.png'></img>
> One dimension requires 2 barrier certificates and 2 AUSs. 
Iteratively adjust the width of AUS through binary search until the difference in width between two AUSs becomes trivial.

<h3>Compute Piecewise Barrier Tube (PBT)</h3>

The facet of an enclosure box that intersects with the barrier tube can be regarded as the initial set of the next enclosure box. By creating a series of enclosure boxes piecewisely and consecutively, an over-approximationg for the flowpipe can be obtained. 

<img src='./fig3.png'></img>
