Learning-based cyber-physical systems (CPS) exhibit insufficient robustness under distributional shift, and conventional “detect-and-abstain” paradigms severely degrade system availability. To address this, we propose a novel “monitor-and-recover” paradigm: formal safety monitoring replaces distributional shift detection, while feedback-driven, lightweight adaptive recovery supersedes passive abstention. Our approach achieves, for the first time, deep integration of safety monitoring with dynamic recovery mechanisms, synergistically incorporating online uncertainty quantification and model recalibration. Evaluated on two representative CPS benchmarks, the method delivers millisecond-scale response times, ensures continuous safe decision-making under shift, and significantly improves both availability and robustness. It overcomes fundamental limitations of existing approaches—namely, their reliance on explicit shift detection and output abstention—thereby advancing the state of safe, adaptive CPS operation.

With the known vulnerability of neural networks to distribution shift, maintaining reliability in learning-enabled cyber-physical systems poses a salient challenge. In response, many existing methods adopt a detect and abstain methodology, aiming to detect distribution shift at inference time so that the learning-enabled component can abstain from decision-making. This approach, however, has limited use in real-world applications. We instead propose a monitor and recover paradigm as a promising direction for future research. This philosophy emphasizes 1) robust safety monitoring instead of distribution shift detection and 2) distribution shift recovery instead of abstention. We discuss two examples from our recent work.