csc 509 lecture notes week 4 using formal specs to
play

CSC 509 Lecture Notes Week 4 Using Formal Specs to Support Testing - PowerPoint PPT Presentation

Feb 04, 2024 •426 likes •1.11k views

CSC509-S14-L4 Slide 1 CSC 509 Lecture Notes Week 4 Using Formal Specs to Support Testing (Monday) Class Project Proposals (Wednesday) CSC509-S14-L4 Slide 2 I. Quick Notes about "How to Read a Paper" A. A useful little ditty. B.

  1. CSC509-S14-L4 Slide 1 CSC 509 Lecture Notes Week 4 Using Formal Specs to Support Testing (Monday) Class Project Proposals (Wednesday)

  2. CSC509-S14-L4 Slide 2 I. Quick Notes about "How to Read a Paper" A. A useful little ditty. B. Particularly like observation about literature search: "... if you are lucky, [you’ll find] a pointer to a recent survey paper [and then] you are done."

  3. CSC509-S14-L4 Slide 3 II. Very common refrains about manual test case generation, as performed by humans: A. It’s tedious. B. It’s boring. C. It’s error prone. D. It may leave important things untested. E. There’s got to be a better way.

  4. CSC509-S14-L4 Slide 4 III. Questions about the readings: A. In the overall field of software testing, how signif- icant is the subject matter in the survey paper? B. How does the JML tools paper relate to the sur- vey paper? C. How does the jmlunitng paper relate to the gen- eral JML tools paper?

  5. CSC509-S14-L4 Slide 5 IV. Answers, using a cosmologic metaphor: A. literature outlined in Lecture Notes 1 covers the galaxy of software testing. B. Survey paper covers rather remote galactic neighborhood of auto test gen from specs.

  6. CSC509-S14-L4 Slide 6 Software testing cosmology, cont’d C. The JML tools paper talks about one small solar system in the larger neighborhood. 1. Note that in 75 pages survey paper only men- tions Java a few times in passing. 2. It never references JML specifically. 3. Survey authors evidently don’t think much of the JML solar system.

  7. CSC509-S14-L4 Slide 7 Software testing cosmology, cont’d 4. The jmlunitng paper talks about one pretty small planet in the JML solar system, still in its formative stages.

  8. CSC509-S14-L4 Slide 8 V. My impressions of the survey paper. A. I rather disagree with their statement at the outset that "Traditionally formal methods and software testing have been seen as rivals" 1. I think this invokes some rather old "traditions". 2. Authors go on to say that in a fact for some time "these approaches are seen as complementary"

  9. CSC509-S14-L4 Slide 9 Impressions of survey paper, cont’d B. Otherwise, I very strongly agree with the authors statements in the paper introduction, including in particular these: 1. combined formal analysis of specification and test could provide very strong guarantees of cor- rectness 2. information gathered by testing may assist when using a formal specification

  10. CSC509-S14-L4 Slide 10 Impressions of survey paper, cont’d 3. testing can be used in order to provide initial confidence in a system before effort is expended in attempting to prove correctness 4. Where it is not cost-effective to produce a proof of conformance, the developers may gain confi- dence in the SUT through systematic testing.

  11. CSC509-S14-L4 Slide 11 Impressions of survey paper, cont’d 5. this might be complemented by proofs that criti- cal properties hold 6. a proof of correctness might also use information derived during testing

  12. CSC509-S14-L4 Slide 12 Impressions of survey paper, cont’d 7. Finally, a proof of correctness relies upon a model of the underlying system and dynamic testing might be used to indirectly check that this model holds. 8. An interesting challenge is to generate tests that are likely to be effective in detecting errors in the assumptions inherent in a proof.

  13. CSC509-S14-L4 Slide 13 Impressions of survey paper, cont’d C. Overall, they’re espousing one of my favorite themes in software development -- multiple views of the same artifact can be very helpful indeed D. in this context we have these multiple views 1. the spec 2. the generated test cases 3. the code 4. a proof of correctness

  14. CSC509-S14-L4 Slide 14 VI. "Heavyweight" versus "Lightweight" methods. A. Heavyweight methods are fully formal, based on fully mechanized logics such as 1. theorem provers 2. resolution-based model checkers 3. constraint solvers

  15. CSC509-S14-L4 Slide 15 Heavyweight versus Lightweight, cont’d B. Leightweigh methods based on a formal spec, but lec they do not employ fully or at all the mecha- nized logics of the heavyweight methods; 1. instead, the lightweight approaches provide some form of implementation that uses the specifica- tion as a data structure from which a non- exhaustive but "good" set of tests are generated.

  16. CSC509-S14-L4 Slide 16 VII. On the weightiness of the three papers A. The survey is pure heavyweight stuff. B. The JML tools paper talks about some moderately heavy weight, medium weight, and lightweight tools. C. The JMLUnitNG paper self describes its tool as "extremely lightweight".

  17. CSC509-S14-L4 Slide 17 VIII. Snarky swipe at "noweight" informal testing. A. Based on an ad hoc "think clearly about it" test generation methodology. B. Use an ad hoc oracle definition. C. Use test coverage tools to mitigate ad hocness, often without full satisfaction.

  18. CSC509-S14-L4 Slide 18 IX. Some Highlights of the Survey Paper -- A. Centerpiece of the survey is the focus on five dif- ferent styles of formal specification: 1. Model-based 2. State machines 3. Concurrency formalisms 4. Hybrid digital/analog 5. Algebraic

  19. CSC509-S14-L4 Slide 19 X. Model-Based, e.g., Z, JML A. Most directly relevant to software in the systems and information processing domains typical for end-user applications. B. Most accessible to programmers.

  20. CSC509-S14-L4 Slide 20 XI. FSMs, e.g., State Charts A. Used in communication systems and other forms of apps that can be aptly characterized using FSMs B. I personally find this form of specification obtuse, tedious, and not relevant for many forms of end- user software.

  21. CSC509-S14-L4 Slide 21 XII. Concurrency formalisms, e.g., CSP A. An essential formalism for modeling and testing concurrent systems. B. A single-thread formalism such as Z and JML simply must have some additional mathematical representation to deal effectively with multi- threaded software architectures. C. Another approach to this not mentioned in the survey is Lamport’s temporal logic .

  22. CSC509-S14-L4 Slide 22 XIII. Hybrid math models, e.g., CHARON A. As a practical mater, this style is more applicable to systems-level and embedded software than end-user software. B. Testing approaches focus on the use of simula- tion. C. The survey paper questions the practicality of this approach in general, and I agree particularly for end-user software.

  23. CSC509-S14-L4 Slide 23 XIV. Algebraic, e.g., OBJ, Maude A. This is a powerful and elegant approach to speci- fication. B. Among other things, the specification is itself fully executable 1. an execution and a proof are the same thing 2. execution is performed by term reduction in essentially the same form as term reduction is used in mechanized algebraic proofs

  24. CSC509-S14-L4 Slide 24 Algebraic specs, cont’d C. The specification is 100% "model free", in that are are no concrete data models defined. D. Behavior is defined entirely in terms of an equal- ity definition of operation behavior, with the only data model per se being that of a term .

  25. CSC509-S14-L4 Slide 25 Algebraic specs, cont’d E. To test an algebraic specification, one can use the same form of inductive partition of inputs as for model-based specification F. The fundamental problem with algebraic specs is that the mapping from the specification to a con- ventional sequentially-executing program is not at all straightforward.

  26. CSC509-S14-L4 Slide 26 1. With model-based specs, the specification is predicative annotation that is directly attached to the program. 2. With a algebraic specification, the specification is associated the the program at the class level.

  27. CSC509-S14-L4 Slide 27 Algebraic specs, cont’d G. And alas, the mathematics involved in this form of specification is sufficiently dense and inacces- sible to most software developers as to render this approach to specification and subsequently test- ing impractical. H. This is a shame really, giv en the supreme ele- gance of algebraic specification.

  28. CSC509-S14-L4 Slide 28 -- Quick Highlights of JML Tools Paper -- A. It describes what’s on offer from the JMl crowd in addition to automated testing. B. The majority of high-end research is on verifica- tion and other forms of static and dynamic analy- sis.

  29. CSC509-S14-L4 Slide 29 -- Highlights of the JMLUnitNG Paper -- A. Describes a tool that generates JUnit-style tests from JML specs. B. There are three aspects to such a tool, as outlined in the survey paper and embodied in this particu- lar tool (among many others):

  30. CSC509-S14-L4 Slide 30 JMLUnitNG, cont’d 1. Choose a spec language -- JML in this case. 2. Choose a well-known test generation technique -- exhaustive range and input combination in this case 3. Implement in a existing spec language transla- tion environment -- java4c in this case

  31. CSC509-S14-L4 Slide 31 -- Highlights of Three Different Spec Languages -- XV. There’s clearly a "tower of babel" problem with the diversity of different specification languages, all of which do the same thing A. We’ll look at two model-based languages -- Z and JML B. We’ll also have a quick look at an algebraic lan- guage -- OBJ

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CSC 309 Lecture Notes Week 4 Formal Specs in Testing Intro to Testing Techniques CSC309-S15-L4

CSC 309 Lecture Notes Week 4 Formal Specs in Testing Intro to Testing Techniques CSC309-S15-L4

CSC309-S15-L4 Slide 1 CSC 309 Lecture Notes Week 4 Formal Specs in Testing Intro to Testing Techniques CSC309-S15-L4 Slide 2 I. Deriving and refining method specs. A. Testing requires that we know exactly what constitutes valid versus

1.91k views • 153 slides
CSC 530 Lecture Notes Week 5 More on Formal Semantics with Attribute Grammars CSC530-W02-L5

CSC 530 Lecture Notes Week 5 More on Formal Semantics with Attribute Grammars CSC530-W02-L5

CSC530-W02-L5 Slide 1 CSC 530 Lecture Notes Week 5 More on Formal Semantics with Attribute Grammars CSC530-W02-L5 Slide 2 I. Attribute semantics of real programming languages A. Last weeks pretty trivial B. These notes investigate SIL

790 views • 53 slides
CSC 509 Lecture Notes Week 9 The Dream of Formal Verification or is it Delusion? CSC509-S14-L9

CSC 509 Lecture Notes Week 9 The Dream of Formal Verification or is it Delusion? CSC509-S14-L9

CSC509-S14-L9 Slide 1 CSC 509 Lecture Notes Week 9 The Dream of Formal Verification or is it Delusion? CSC509-S14-L9 Slide 2 I. Administrative Matters A. Recap of Remaining work: 1. Assignment 6 -- last set of readings. 2. Assignment 7 --

608 views • 42 slides
Notes From Last Week Some Class Members Questions WB-Formal training of the artists: Meta

Notes From Last Week Some Class Members Questions WB-Formal training of the artists: Meta

Notes From Last Week Some Class Members Questions WB-Formal training of the artists: Meta Warwick Fuller; PA Museum and School of Art Ecole des Beaux Arts and Atelier of Rodin William H. Johnson; National Academy of Design, Cape Cod School

665 views • 30 slides
CS 678 Machine Learning Lecture Notes 1 Week 1 - chapter 1 and probability 1.1 General

CS 678 Machine Learning Lecture Notes 1 Week 1 - chapter 1 and probability 1.1 General

CS 678 Machine Learning Lecture Notes 1 Week 1 - chapter 1 and probability 1.1 General syllabus what do students know (prog. lang., stats, math, calculus ) 1.2 machine learning 1.2.1 general concepts example of predicting basketball

298 views • 10 slides
CSC 530 Lecture Notes Week 2 Discussion of Assignment 1 Topics from the Lisp Primer Topics from

CSC 530 Lecture Notes Week 2 Discussion of Assignment 1 Topics from the Lisp Primer Topics from

CSC530-W02-L2 Slide 1 CSC 530 Lecture Notes Week 2 Discussion of Assignment 1 Topics from the Lisp Primer Topics from Part 1 of the Readings CSC530-W02-L2 Slide 2 I. Reading this week -- papers 1-4 on functional programming. II. Discussion

1.13k views • 93 slides
CSC 484 Lecture Notes Week 8 Chapters 13, 14, and 15 of the Book CSC484-S08-L8 Slide 2 I.

CSC 484 Lecture Notes Week 8 Chapters 13, 14, and 15 of the Book CSC484-S08-L8 Slide 2 I.

CSC484-S08-L8 Slide 1 CSC 484 Lecture Notes Week 8 Chapters 13, 14, and 15 of the Book CSC484-S08-L8 Slide 2 I. Relevant reading -- See title slide. CSC484-S08-L8 Slide 3 II. Intro to Ch 13 (Sec 13.1). A. Largely a recap. B. Presents eval

796 views • 65 slides
CSC 509 Lecture Notes Week 6 Survey of Test Coverage and Adequacy CSC509-S15-L5 Slide 2 I.

CSC 509 Lecture Notes Week 6 Survey of Test Coverage and Adequacy CSC509-S15-L5 Slide 2 I.

CSC509-S15-L5 Slide 1 CSC 509 Lecture Notes Week 6 Survey of Test Coverage and Adequacy CSC509-S15-L5 Slide 2 I. Administrative Matters A. This coming Wed, brief individual meetings. 1. Ill provide some concrete feedback on your project

354 views • 24 slides
CSC 530 Lecture Notes Week 6 Discussion of Assignment 3, Questions 1 and 2 Introduction to

CSC 530 Lecture Notes Week 6 Discussion of Assignment 3, Questions 1 and 2 Introduction to

CSC530-W02-L6 Slide 1 CSC 530 Lecture Notes Week 6 Discussion of Assignment 3, Questions 1 and 2 Introduction to Denotational Semantics CSC530-W02-L6 Slide 2 I. Turingol Highlights A. Semantics define compilation of a TM language into

715 views • 34 slides
Paxos week and the Temple of Doom Doug Woos Logistics notes Next Monday: International

Paxos week and the Temple of Doom Doug Woos Logistics notes Next Monday: International

Paxos week and the Temple of Doom Doug Woos Logistics notes Next Monday: International Workers Day - No in-class lecture - Will record a video lecture - Please watch by next Wednesday! Lab 2b due tonight at 9pm Problem Set 2 due Friday

1.04k views • 45 slides
CSC 309 Lecture Notes Week 1 Introduction to the Course Introduction to the Design Process

CSC 309 Lecture Notes Week 1 Introduction to the Course Introduction to the Design Process

CSC309-S15-L1 Slide 1 CSC 309 Lecture Notes Week 1 Introduction to the Course Introduction to the Design Process CSC309-S15-L1 Slide 2 I. First-day handouts A. Syllabus B. Milestone 1, including 1. SCO format 2. work breakdown format 3.

977 views • 52 slides
Paxos week! Doug Woos Logistics notes Next Monday: International Workers Day - No in-class

Paxos week! Doug Woos Logistics notes Next Monday: International Workers Day - No in-class

Paxos week! Doug Woos Logistics notes Next Monday: International Workers Day - No in-class lecture - Will record a video lecture - Please watch by next Wednesday! Lab 2b due Wednesday Problem Set 2 due Friday - Typeset, short answers,

580 views • 24 slides
CSC 530 Lecture Notes Week 10 Algebraic Semantics CSC530-S02-L10 Slide 2 I. A grand vision. A.

CSC 530 Lecture Notes Week 10 Algebraic Semantics CSC530-S02-L10 Slide 2 I. A grand vision. A.

CSC530-S02-L10 Slide 1 CSC 530 Lecture Notes Week 10 Algebraic Semantics CSC530-S02-L10 Slide 2 I. A grand vision. A. Algebraic semantics intended to have a wide scope. B. In is grandest form, its a unifying the- oretical framework for:

532 views • 23 slides
CSC 405 Lecture Notes Week 9 OCU/Manet Testing Details CSC405-F10-L9 Slide 2 I. Revisiting

CSC 405 Lecture Notes Week 9 OCU/Manet Testing Details CSC405-F10-L9 Slide 2 I. Revisiting

CSC405-F10-L9 Slide 1 CSC 405 Lecture Notes Week 9 OCU/Manet Testing Details CSC405-F10-L9 Slide 2 I. Revisiting SQLite as a "best practice" example. A. Go over each point in the exec summary. B. Consider if/how these points will be

711 views • 27 slides
CISC101 Reminders & Notes Today Test 3 this week in tutorial From last time

CISC101 Reminders & Notes Today Test 3 this week in tutorial From last time

CISC101 Reminders & Notes Today Test 3 this week in tutorial From last time Finding minimums and maximums USATs at the beginning of next lecture Slides 31-37 Please attend and fill out an evaluation Timing

257 views • 8 slides
CSC 509 Lecture Notes Week 5 The Promise of Spec-Based Test Generation -- a brief oveview of of a

CSC 509 Lecture Notes Week 5 The Promise of Spec-Based Test Generation -- a brief oveview of of a

CSC509-S15-L5 Slide 1 CSC 509 Lecture Notes Week 5 The Promise of Spec-Based Test Generation -- a brief oveview of of a new direction -- CSC509-S15-L5 Slide 2 I. Again, common refrains about manual test gen: A. Its boring and tedious. B.

521 views • 20 slides
Expressiveness (3) / department of mathematics and computer science 4/30 Answer Process Algebra

Expressiveness (3) / department of mathematics and computer science 4/30 Answer Process Algebra

/ department of mathematics and computer science to the transition system above. termination-behaviour. equation specifying for every recursion variable its transition- and 2. associate behaviour to every recursion variable by means of an 1.

81 views • 7 slides
Formal Specification and Verification Classical logic (6) 24.11.2016 Viorica

Formal Specification and Verification Classical logic (6) 24.11.2016 Viorica

Formal Specification and Verification Classical logic (6) 24.11.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Propositional logic First-order logic Syntax Semantics Algorithmic Problems/Undecidability

468 views • 30 slides
Trees At this point it is important to understand the two usages of the word tree . We introduced

Trees At this point it is important to understand the two usages of the word tree . We introduced

Trees At this point it is important to understand the two usages of the word tree . We introduced a map between terms and trees, because this new point of view gives some insights (e.g. the H function). In this context, a tree is another

497 views • 26 slides
Equational Logic A language L of algebras (or algebraic structures ) consists of a set F of

Equational Logic A language L of algebras (or algebraic structures ) consists of a set F of

(LMCS, p. 133) III.1 Equational Logic A language L of algebras (or algebraic structures ) consists of a set F of function symbols f, g, h, a set C of constant symbols c, d, e, a set of variables x, y, z .

1.35k views • 105 slides
Abstract Specification Theory Andrzej Tarlecki Institute of Informatics, Warsaw University and

Abstract Specification Theory Andrzej Tarlecki Institute of Informatics, Warsaw University and

Abstract Specification Theory Andrzej Tarlecki Institute of Informatics, Warsaw University and Institute of Computer Science, Polish Academy of Sciences Warsaw, Poland office: 4750 phone: (48)(22)(55)44475 tarlecki@mimuw.edu.pl

381 views • 11 slides
Formal Specification Techniques Knowledge of typical approaches to formal software specification

Formal Specification Techniques Knowledge of typical approaches to formal software specification

Goals Understanding of the motivation of mathematical approaches to software specification Formal Specification Techniques Knowledge of typical approaches to formal software specification CAS 707 and verification McMaster University, Winter

106 views • 6 slides
Chapter 1 Logics Course Model checking Volker Stolz, Martin Steffen Autumn 2019 Section

Chapter 1 Logics Course Model checking Volker Stolz, Martin Steffen Autumn 2019 Section

Chapter 1 Logics Course Model checking Volker Stolz, Martin Steffen Autumn 2019 Section Algebraic and first-order signatures Chapter 1 Logics Course Model checking Volker Stolz, Martin Steffen Autumn 2019 Intro IN5110

955 views • 41 slides
Lets Unify Theories of Programming He Jifeng Software Engineering Institute East China Normal

Lets Unify Theories of Programming He Jifeng Software Engineering Institute East China Normal

1 + Lets Unify Theories of Programming He Jifeng Software Engineering Institute East China Normal University Shanghai China + + 2 + Syllabus A simple theory Relational programming Link with

1.66k views • 165 slides

More recommend