cocon a type theory for defining logics and proofs
play

Cocon: A Type Theory for Defining Logics and Proofs Brigitte - PowerPoint PPT Presentation

Feb 21, 2024 •244 likes •840 views

Cocon: A Type Theory for Defining Logics and Proofs Brigitte Pientka McGill University Montreal, Canada What are good high-level proof languages that make it easier to mechanize metatheory? What are good high-level proof languages that make

  1. Cocon: A Type Theory for Defining Logics and Proofs Brigitte Pientka McGill University Montreal, Canada

  2. What are good high-level proof languages that make it easier to mechanize metatheory?

  3. What are good high-level proof languages that make it easier to mechanize metatheory?

  4. Theory Def. Operational Semantics Type System Model Type Theory Program Transformations Type Inference Algorithm Logic ...

  5. Theory Def. Operational Semantics Type System Model Type Theory Program Transformations Metatheory Type Inference Algorithm Type Safety Logic Decidability of Type Checking ... Soundness of Prog. Transform. Consistency Completeness Program Equivalence Bisimulation

  6. Mechanized Theory Def. Metatheory Operational Semantics Type System Model Type Theory Program Transformations Metatheory Type Inference Algorithm Type Safety Logic Decidability of Type Checking ... Soundness of Prog. Transform. Consistency Completeness Program Equivalence implemented Bisimulation in a proof assistant

  7. Correct proofs are tricky to write. On paper: • Challenging to keep track of all the details • Easy to skip over details • Difficult to understand interaction between different features • Difficulties increase with size In a proof assistant: • A lot of overhead in building basic infrastructure • May get lost in the technical, low-level details • Time consuming • Experience, experience, experience 2

  8. Mechanizing Normalization for STLC “To those that doubted de Bruijn, I wished to prove them wrong, or discover why they were right. Now, after some years and many hundred hours of labor, I can say with some authority: they were right. De Bruijn indices are foolishly difficult for this kind of proof. [ . . . ] The full proof runs to 3500 lines, although that relies on a further library of 1900 lines of basic facts about lists and sets. [ . . . ] the cost of de Bruijn is partly reflected in the painful 1600 lines that are used to prove facts about “shifting” and “substitution”.” Ezra Cooper (PhD Student) https://github.com/ezrakilty/sn-stlc-de-bruijn-coq 3

  9. Mechanizing Normalization for STLC “To those that doubted de Bruijn, I wished to prove them wrong, or discover why they were right. Now, after some years and many hundred hours of labor, I can say with some authority: they were right. De Bruijn indices are foolishly difficult for this kind of proof. [ . . . ] The full proof runs to 3500 lines, although that relies on a further library of 1900 lines of basic facts A. Rossberg, C. Russo, D. Dreyer. F-ing Modules. JFP, 2014 about lists and sets. [ . . . ] the cost of de Bruijn is partly reflected in the painful 1600 lines that are used to prove facts about “shifting” and “substitution”.” Ezra Cooper (PhD Student) https://github.com/ezrakilty/sn-stlc-de-bruijn-coq 3

  10. Abstraction, Abstraction, Abstraction “The motivation behind the work in very-high-level languages is to ease the programming task by providing the programmer with a language containing primitives or abstractions suitable to his problem area. The programmer is then able to spend his effort in the right place; he concentrates on solving his problem, and the resulting program will be more reliable as a result. Clearly, this is a worthwhile goal.” B. Liskov [1974] 4

  11. Abstraction, Abstraction, Abstraction “The motivation behind the work in very-high-level languages is to ease the programming task by providing the programmer with a language containing primitives or abstractions suitable to his problem area. The programmer is then able to spend his effort in the right place; he concentrates on solving his problem, s e d v i o r p and the resulting program will be more reliable as a result. t a h t s ) c a i d g o g A l g n Clearly, this is a worthwhile goal.” o r B. Liskov [1974] i n q fi o e C d o y l t t n a r a g i l m e l i e s ( d n y Goal: r a o e y l h t t c a e p p m y t o c t n r e o d f n s e n o p e t i d c A a r t s b a t h g i r e h t and proofs. 4

  12. “To know your future you must know your past.” – G. Santayana

  13. Back in the 80s... 5

  14. Back in the 80s... 1987 • R. Harper, F. Honsell, G. Plotkin: A Framework for Defining Logics, LICS’87 1988 • F. Pfenning and C. Elliott : Higher-Order Abstract Syntax, PLDI’88 • LF = Dependently Typed Lambda Calculus ( λ Π ) serves as a Meta-Language for representing formal systems • Higher-order Abstract Syntax (HOAS) : Uniformly model binding structures in Object Language with (intensional) functions in LF 5

  15. Representing Types and Terms in LF – In a Nutshell Types A , B ::= nat | A ⇒ B Terms M ::= x | lam x : A . M | app M N 6

  16. Representing Types and Terms in LF – In a Nutshell Types A , B ::= nat | A ⇒ B Terms M ::= x | lam x : A . M | app M N LF Representation obj: type . tm: type . nat: obj. lam: obj → (tm → tm) → tm. arr: obj → obj → obj. app: tm → tm → tm. On Paper (Object Language) In LF (Meta Language) lam x :nat . x lam nat λ x.x lam x :nat . (lam x :nat ⇒ nat . x ) lam nat λ x.(lam (arr nat nat) λ x.x) lam x :nat . (lam f :nat ⇒ nat . app f x ) lam nat λ x.(lam (arr nat nat) λ f.app f x) Higher-order Abstract Syntax (HOAS) : • Uniformly model bindings with (intensional) functions in LF • Inherit α -renaming and single substitutions 6 Model

  17. Uniformly Model Binding Structures using LF Functions Types A , B ::= nat | A ⇒ B | Terms M ::= x | lam x : A . M | app M N | α | ∀ α. A let x = M in N | tlam α. M | . . . 7

  18. Uniformly Model Binding Structures using LF Functions Types A , B ::= nat | A ⇒ B | Terms M ::= x | lam x : A . M | app M N | α | ∀ α. A let x = M in N | tlam α. M | . . . LF Representation obj: type . tm: type . nat: obj. lam: obj → (tm → tm) → tm. arr: obj → obj → obj. app: tm → tm → tm. all: (obj → obj) → obj. let: tm → (tm → tm) → tm. tlam: (obj → tm) → tm. On Paper (Object Language) In LF (Meta Language) tlam α. (lam x : α. x ) tlam λ a.(lam a λ x.x) ∀ α. ∀ β.α ⇒ β all λ a.all λ b.arr a b 7

  19. Uniformly Model Binding Structures using LF Functions LF = Dependently Typed Lambda Calculus λ Π Types A , B ::= nat | A ⇒ B | Terms M ::= x | lam x : A . M | app M N | α | ∀ α. A let x = M in N | tlam α. M | . . . • LF functions only encode variable scope LF Representation no recursion, no pattern matching, etc. • HOAS trees = Syntax trees with binders obj: type . tm: type . • Benefit: α -renaming and substitution principles nat: obj. lam: obj → (tm → tm) → tm. arr: obj → obj → obj. app: tm → tm → tm. all: (obj → obj) → obj. let: tm → (tm → tm) → tm. • Scales: Model derivation trees - Hypothetical derivations as LF functions tlam: (obj → tm) → tm. - Parametric derivations as LF functions On Paper (Object Language) In LF (Meta Language) tlam α. (lam x : α. x ) tlam λ a.(lam a λ x.x) ∀ α. ∀ β.α ⇒ β all λ a.all λ b.arr a b 7

  20. Sounds cool . . . can I do this in OCaml or Agda?

  21. An Attempt in OCaml OCaml 1 type tm = Lam of (tm -> tm) 2 let apply = function (Lam f) -> f 3 let omega = Lam (function x -> apply x x) What happens, when we try to evaluate apply omega omega ? 8

  22. An Attempt in OCaml OCaml 1 type tm = Lam of (tm -> tm) 2 let apply = function (Lam f) -> f 3 let omega = Lam (function x -> apply x x) What happens, when we try to evaluate apply omega omega ? It will loop. 8

  23. An Attempt in OCaml and Agda OCaml 1 type tm = Lam of (tm -> tm) 2 let apply = function (Lam f) -> f 3 let omega = Lam (function x -> apply x x) What happens, when we try to evaluate apply omega omega ? It will loop. Agda data tm : type = lam : (tm → tm) → tm Violates positivity restriction 8

  24. An Attempt in OCaml and Agda OCaml 1 type tm = Lam of (tm -> tm) Functions in OCaml and Agda are opaque (black box). 2 let apply = function (Lam f) -> f 3 let omega = Lam (function x -> apply x x) • We can observe the result that a function computes • We cannot pattern match to inspect the function body What happens, when we try to evaluate apply omega omega ? It will loop. Agda data tm : type = lam : (tm → tm) → tm Violates positivity restriction 8

  25. OK . . . so, how do we write recursive programs over with HOAS trees? We clearly want pattern matching, since a HOAS tree is a data structure.

  26. An Attempt to Compute the Size of a Term size (lam λ x.lam λ f. app f x) = ⇒ size (lam λ f. app f x) + 1 = ⇒ (app f x) + 1 + 1 size = ⇒ size f + size x + 1 + 1 + 1 = ⇒ 0 + 0 + 1 + 1 + 1 “the whole HOAS approach by its very nature disallows a feature that we regard of key practical importance: the ability to manipulate names of bound variables explicitly in computation and proof. ” [Pitts, Gabbay’97] 9

  27. Back in 2008 . . .

  28. LF and Holes in HOAS trees – Revisited In LF (Meta Lang.) lam λ x. lam λ f.app f x lam λ x. lam λ f. app f x LF Typing Judgment: : Ψ ⊢ ⊢ M A LF Type LF Context LF Term 10

  29. LF and Holes in HOAS trees – Revisited In LF (Meta Lang.) lam λ x. lam λ f.app f x lam λ x. lam λ f. app f x LF Typing Judgment: : tm x : tm ⊢ lam λ f . app f x ⊢ LF Type LF Context LF Term 10

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2.

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2.

Constructive Proofs and Program Extraction Christoph Kreitz 1. Type Theory vs. Set Theory 2. Overview of the Nuprl System 3. Proofs of the Integer Square Root Problem What distinguishes Type Theory from Set Theory? n r r 2 n

800 views • 42 slides
Logic Encodings in LF: A Completeness Criterion Florian Rabe Jacobs University Bremen 1 LF

Logic Encodings in LF: A Completeness Criterion Florian Rabe Jacobs University Bremen 1 LF

Logic Encodings in LF: A Completeness Criterion Florian Rabe Jacobs University Bremen 1 LF LF = A Framework for Defining Logics (Harper, Honsell, Plotkin; 1993) Impredicative dependent type theory, related to Martin-L of type theory

93 views • 6 slides
Exploring Properties of Normal Multimodal Logics in Simple Type Theory with LEO-II 1 Christoph E.

Exploring Properties of Normal Multimodal Logics in Simple Type Theory with LEO-II 1 Christoph E.

Exploring Properties of Normal Multimodal Logics in Simple Type Theory with LEO-II 1 Christoph E. Benzm uller Deduktionstreffen 2008, Saarbr ucken, March 18, 2008 jww: L. Paulson, F. Theiss and A. Fietzke 1 Funded by EPSRC grant

441 views • 25 slides
Dependent Types in Haskell What is Dependent Type Theory? are types, proofs are programs

Dependent Types in Haskell What is Dependent Type Theory? are types, proofs are programs

Stephanie Weirich University of Pennsylvania https://github.com/sweirich/dth @fancytypes Dependent Types in Haskell What is Dependent Type Theory? are types, proofs are programs Originally, logical foundation for mathematics

840 views • 39 slides
Parallel Dialogue Games and Hypersequents for Intermediate Logics Chris Ferm uller Theory and

Parallel Dialogue Games and Hypersequents for Intermediate Logics Chris Ferm uller Theory and

Proofs and Dialogues T ubingen, February 2011 Parallel Dialogue Games and Hypersequents for Intermediate Logics Chris Ferm uller Theory and Logic Group, TU Wien (Vienna University of Technology) Motivation: Understanding Hypersequent

326 views • 18 slides
CoCon: A Conference Management System with Verified Document Confidentiality Sudeep Kanav Peter

CoCon: A Conference Management System with Verified Document Confidentiality Sudeep Kanav Peter

CoCon: A Conference Management System with Verified Document Confidentiality Sudeep Kanav Peter Lammich Andrei Popescu Technische Universit at M unchen Overview What? Overview What? Implementation of CoCon, a conf. manag. sys.

818 views • 57 slides
Logics and Rules Colloquium Logicum 2016 Hamburg, 10 September 2016 Rosalie Iemhoff Utrecht

Logics and Rules Colloquium Logicum 2016 Hamburg, 10 September 2016 Rosalie Iemhoff Utrecht

Logics and Rules Colloquium Logicum 2016 Hamburg, 10 September 2016 Rosalie Iemhoff Utrecht University, the Netherlands 1 / 33 Numerous logics In building a foundation for mathematics one develops one big theory, such as set theory, type

970 views • 33 slides
Informal cubical type theory Bruno Bentzen Carnegie Mellon University, USA

Informal cubical type theory Bruno Bentzen Carnegie Mellon University, USA

Outline Informal type theory Cubical type theory Proofs Informal cubical type theory Bruno Bentzen Carnegie Mellon University, USA bbentzen@andrew.cmu.edu August 16, 2019 Bruno Bentzen Informal cubical type theory 1 / 58 Outline

979 views • 69 slides
Homotopy canonicity of homotopy type theory Christian Sattler jww. Chris Kapulkin University of

Homotopy canonicity of homotopy type theory Christian Sattler jww. Chris Kapulkin University of

Homotopy canonicity of homotopy type theory Christian Sattler jww. Chris Kapulkin University of Nottingham Aug 16, 2019 Introduction: constructivity of MLTT Martin-Lf type theory (MLTT) is a constructive system: existence proofs are

1.58k views • 62 slides
An Invitation to Homotopy Type Theory Tingxiang Zou Type Theory Formal Systems: Churchs

An Invitation to Homotopy Type Theory Tingxiang Zou Type Theory Formal Systems: Churchs

An Invitation to Homotopy Type Theory Tingxiang Zou Type Theory Formal Systems: Churchs simply typed lambda calculus (1940); Martin L ofs dependent type theory (1971-1984) Origin: Russells theory of types The world is

848 views • 12 slides
Defining methods Defining methods Method header: type name ( parameter declarations )

Defining methods Defining methods Method header: type name ( parameter declarations )

Defining methods Defining methods Method header: type name ( parameter declarations ) type refers to the result of the method May be any primitive type, any class, or void If not void , statements in the method body must

292 views • 11 slides
The Evolution of Inductive Definitions in Type Theory (a Retrospective) to Christine on the

The Evolution of Inductive Definitions in Type Theory (a Retrospective) to Christine on the

Introduction ITT CC CIC ITT+ID Beyond ID The Evolution of Inductive Definitions in Type Theory (a Retrospective) to Christine on the occasion of her honorary doctorate at Gothenburg University Peter Dybjer Workshop on Proofs and

346 views • 32 slides
Cubical Type Theory Goal: provide a computational justification for Homotopy Type Theory and

Cubical Type Theory Goal: provide a computational justification for Homotopy Type Theory and

Cubical Type Theory: a constructive interpretation of the univalence axiom Anders M ortberg Inria Sophia-Antipolis TTT: Type Theory Based Tools January 15, 2017 - 1 / 39 Cubical Type Theory Goal: provide a computational justification for

743 views • 39 slides
Non-classical logics Lecture 9: Applications of many-valued logics Viorica Sofronie-Stokkermans

Non-classical logics Lecture 9: Applications of many-valued logics Viorica Sofronie-Stokkermans

Non-classical logics Lecture 9: Applications of many-valued logics Viorica Sofronie-Stokkermans sofronie@uni-koblenz.de 1 Applications of many-valued logic independence proofs modeling undefined function and predicate values (program

346 views • 23 slides
Type Theory Proof by reflection Marene Dimmendaal, Pleun Koldewijn Overview - What is proof

Type Theory Proof by reflection Marene Dimmendaal, Pleun Koldewijn Overview - What is proof

Type Theory Proof by reflection Marene Dimmendaal, Pleun Koldewijn Overview - What is proof by reflection? - The two main classes: - Direct computation proofs - Algebraic computation proofs - Example Direct proof - Example

483 views • 37 slides
Formalizing type theory in type theory using nominal techniques Ulrik Buchholtz TU Darmstadt

Formalizing type theory in type theory using nominal techniques Ulrik Buchholtz TU Darmstadt

Formalizing type theory in type theory using nominal techniques Ulrik Buchholtz TU Darmstadt HoTT/UF Workshop, Oxford, September 9, 2017 Motivation 1 Preliminaries 2 Nominal sets and types 3 Formalizing type theory 4 Conclusion 5

831 views • 40 slides
Property Accountability CW2 Mandee L. Mintz 4 th Brigade Property Book Officer Agenda

Property Accountability CW2 Mandee L. Mintz 4 th Brigade Property Book Officer Agenda

Property Accountability CW2 Mandee L. Mintz 4 th Brigade Property Book Officer Agenda Fundamentals of Property Accountability Assigning Responsibility Accountability & Inventory Basics Obtaining Relief from Responsibility

981 views • 68 slides
Fine-grained quantum supremacy Tomoyuki Morimae (YITP, Kyoto University) 45min Joint work with

Fine-grained quantum supremacy Tomoyuki Morimae (YITP, Kyoto University) 45min Joint work with

Fine-grained quantum supremacy Tomoyuki Morimae (YITP, Kyoto University) 45min Joint work with Suguru Tamaki (Hyogo University) TM and Tamaki, arXiv:1901.01637, 1902.08382 People believe quantum computing is faster than classical computing,

565 views • 28 slides
Joint Source and Channel Coding: Fundamental Bounds and Connections to Machine Learning Deniz G

Joint Source and Channel Coding: Fundamental Bounds and Connections to Machine Learning Deniz G

Joint Source and Channel Coding: Fundamental Bounds and Connections to Machine Learning Deniz G und uz Imperial College London 18 April 2019 European School of Information Theory (ESIT) Overview PART I: Information theoretic limits

1.2k views • 109 slides
Review for Final Exam 18.05 Spring 2014 Jeremy Orloff and Jonathan Bloom THANK YOU !!!! JON !!

Review for Final Exam 18.05 Spring 2014 Jeremy Orloff and Jonathan Bloom THANK YOU !!!! JON !!

Review for Final Exam 18.05 Spring 2014 Jeremy Orloff and Jonathan Bloom THANK YOU !!!! JON !! PETER !! RUTHI !! ERIKA !! ALL OF YOU !!!! Probability Counting Sets Inclusion-exclusion principle Rule of product (multiplication rule) Permutation and

731 views • 48 slides
Predicting Network Performance Characteristics - Introducing Flow Field Forecasting - Michael

Predicting Network Performance Characteristics - Introducing Flow Field Forecasting - Michael

Predicting Network Performance Characteristics - Introducing Flow Field Forecasting - Michael Frey Kyle Caudle Bucknell University South Dakota School mfrey@bucknell.edu of Mines & Technology e-Weather Center Project DOE ASCR Program

467 views • 13 slides
Investigations on Phrase-based Decoding with Recurrent Neural Network Language and Translation

Investigations on Phrase-based Decoding with Recurrent Neural Network Language and Translation

Investigations on Phrase-based Decoding with Recurrent Neural Network Language and Translation Models Tamer Alkhouli, Felix Rietig, and Hermann Ney surname@cs.rwth-aachen.de Tenth Workshop on Statistical Machine Translation Lisbon, Portugal

563 views • 24 slides
The supercooled Stefan problem Mykhaylo Shkolnikov, joint with Sergey Nadtochiy, Fran cois

The supercooled Stefan problem Mykhaylo Shkolnikov, joint with Sergey Nadtochiy, Fran cois

The supercooled Stefan problem Mykhaylo Shkolnikov, joint with Sergey Nadtochiy, Fran cois Delarue Princeton University April 12, 2019 Outline Motivation 1 Existence via interacting particle systems 2 Physical solutions 3 More on the

439 views • 25 slides
BIRDS Satellite Project as a Model for Capacity Building Towards Sustainable Space Program in

BIRDS Satellite Project as a Model for Capacity Building Towards Sustainable Space Program in

BIRDS Satellite Project as a Model for Capacity Building Towards Sustainable Space Program in Africa Taiwo Raphael TEJUMOLA, BIRDS Project Members, George Maeda, Mengu CHO Laboratory of Spacecraft Environment Interaction Engineering Kyushu

785 views • 29 slides

More recommend