formal verification of automatic circuit transformations
play

Formal Verification of Automatic Circuit Transformations for - PowerPoint PPT Presentation

Nov 20, 2022 •300 likes •1.11k views

Formal Verification of Automatic Circuit Transformations for Fault-Tolerance Dmitry Burlyaev Pascal Fradet 09/30/15, Austin, TX, USA @ FMCAD'15 Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form

  1. Formal Verification of Automatic Circuit Transformations for Fault-Tolerance Dmitry Burlyaev Pascal Fradet 09/30/15, Austin, TX, USA @ FMCAD'15

  2. Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form ∀ C : circuit, ∀ i : inputs, ∀ o : outputs, faulty C i − → o ⇒ T [ [ C ] ] i − → o 1/28

  3. Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form ∀ C : circuit, ∀ i : inputs, ∀ o : outputs, faulty C i − → o ⇒ T [ [ C ] ] i − → o ◮ Syntax of circuits 1/28

  4. Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form ∀ C : circuit, ∀ i : inputs, ∀ o : outputs, faulty C i − → o ⇒ T [ [ C ] ] i − → o ◮ Syntax of circuits ◮ Circuit transformations on syntax 1/28

  5. Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form ∀ C : circuit, ∀ i : inputs, ∀ o : outputs, faulty C i − → o ⇒ T [ [ C ] ] i − → o ◮ Syntax of circuits ◮ Circuit transformations on syntax ◮ Semantics of circuits 1/28

  6. Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form ∀ C : circuit, ∀ i : inputs, ∀ o : outputs, faulty C i − → o ⇒ T [ [ C ] ] i − → o ◮ Syntax of circuits ◮ Circuit transformations on syntax ◮ Semantics of circuits ◮ Fault-models described in semantics: bit-flip (SEU), glitch (SET), ... 1/28

  7. Outline For a given (fault-tolerance) transformation T , we want to prove a property of the form ∀ C : circuit, ∀ i : inputs, ∀ o : outputs, faulty C i − → o ⇒ T [ [ C ] ] i − → o ◮ Syntax of circuits ◮ Circuit transformations on syntax ◮ Semantics of circuits ◮ Fault-models described in semantics: bit-flip (SEU), glitch (SET), ... ◮ Case study: our fault-tolerance solution required full confidence 1/28

  8. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible 2/28

  9. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) 2/28

  10. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  11. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  12. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  13. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  14. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  15. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  16. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  17. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  18. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id 2/28

  19. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id C ::= Gate | C 1 - - C 2 | [ ] C 1 , C 2[ ] | b − C ◦ 3/28

  20. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id C ::= Gate | C 1 - - C 2 | [ ] C 1 , C 2[ ] | b − C ◦ C1 C2 3/28

  21. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id C ::= Gate | C 1 - - C 2 | [ ] C 1 , C 2[ ] | b − C ◦ C1 C2 3/28

  22. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id C ::= Gate | C 1 - - C 2 | [ ] C 1 , C 2[ ] | b − C ◦ C x 3/28

  23. lddl - language to describe circuits ◮ Gate level HDL ◮ as simple as possible A combinator language (inspired from Sheeran’s µ FP, Ruby, . . . ) Gate ::= not | and | or logic | swap | fork | rsh | lsh wiring id C ::= Gate | C 1 - - C 2 | [ ] C 1 , C 2[ ] | b − C ◦ x − ( swap ) = SWAP x x 3/28

  24. lddl types Bus B := ω | ( B 1 ∗ B 2 ) Gates not : Gate ω ω and , or : Gate ( ω ∗ ω ) ω Plugs ... swap : ∀ α β, Plug ( α ∗ β ) ( β ∗ α ) ... 4/28

  25. lddl types Circuits C ::= ... | C 1 - : ∀ α β γ, Circ α β → Circ β γ - C 2 ◦ → Circ α γ ... | [ ] C 1 , C 2 [ ] : ∀ α β γ δ, Circ α γ → Circ β δ → Circ ( α ∗ β ) ( γ ∗ δ ) ... 5/28

  26. Language feature summary ◮ Correct circuits by construction ◮ correctly connected (typing) ◮ all loops contain a cell (Loop operator) 6/28

  27. Language feature summary ◮ Correct circuits by construction ◮ correctly connected (typing) ◮ all loops contain a cell (Loop operator) ◮ No variables ◮ Simpler semantics (no environment) 6/28

  28. Language feature summary ◮ Correct circuits by construction ◮ correctly connected (typing) ◮ all loops contain a cell (Loop operator) ◮ No variables ◮ Simpler semantics (no environment) ◮ We represent the state (FF values) by circuit itself ◮ e.g., ( false − swap ) true → ( true − swap ) 6/28

  29. lddl semantics of a clock cycle w/o fault A predicate: step C a b C ′ C - an original circuit; a - an input b - an output; C ′ - resulting state after a cycle ❏ G ❑ a = b Gates & Plugs step G a b G step C 1 a b C ′ step C 2 b c C ′ 1 2 Seq step ( C 1 - - C 2 ) a c ( C ′ - C ′ 2 ) 1 - ◦ ◦ step C 1 a c C ′ step C 2 b d C ′ 1 2 Par ] C ′ 1 , C ′ step [ ] C 1 , C 2 [ ] ( a, b ) ( c, d ) [ 2 [ ] step C ( a, b2s x ) ( b, s ) C ′ s2b s y Loop step x − C a b y − C ′ 7/28

  30. lddl semantics of a clock cycle w/o fault A predicate: step C a b C ′ C - an original circuit; a - an input b - an output; C ′ - resulting state after a cycle ❏ G ❑ a = b Gates & Plugs step G a b G step C 1 a b C ′ step C 2 b c C ′ 1 2 Seq step ( C 1 - - C 2 ) a c ( C ′ - C ′ 2 ) 1 - ◦ ◦ step C 1 a c C ′ step C 2 b d C ′ 1 2 Par ] C ′ 1 , C ′ step [ ] C 1 , C 2 [ ] ( a, b ) ( c, d ) [ 2 [ ] step C ( a, b2s x ) ( b, s ) C ′ s2b s y Loop step x − C a b y − C ′ 8/28

  31. lddl semantics of a clock cycle w/o fault A predicate: step C a b C ′ C - an original circuit; a - an input b - an output; C ′ - resulting state after a cycle ❏ G ❑ a = b Gates & Plugs step G a b G step C 1 a b C ′ step C 2 b c C ′ 1 2 Seq step ( C 1 - - C 2 ) a c ( C ′ - C ′ 2 ) 1 - ◦ ◦ step C 1 a c C ′ step C 2 b d C ′ 1 2 Par ] C ′ 1 , C ′ step [ ] C 1 , C 2 [ ] ( a, b ) ( c, d ) [ 2 [ ] step C ( a, b2s x ) ( b, s ) C ′ s2b s y Loop step x − C a b y − C ′ 9/28

  32. Evaluation of a circuit w/o faults As a predicate from Stream to Stream eval : Circ α β → Stream α → Stream β eval C ′ is os step C i o C ′ Eval eval C ( i : is ) ( o : os ) If C applied to input i → output o and C ′ and if C ′ applied to infinite stream is → stream os ⇒ evaluation of C with stream ( i : is ) → stream ( o : os ). 10/28

  33. lddl semantics of a cycle with a fault SET (1 , K )::”at most 1 glitch within K clock cycles” Signal := 0 | 1 | ✒ ◮ Evaluation with glitches is non deterministic ◮ not deterministically latched (as true or false ) by cells ◮ can be be logically masked ( e.g., and (0 , ✒ ) = 0 , . . . ) A predicate: stepg C a b C ′ C - an original circuit; a - an input b - an output; C ′ - possibly corrupted state after a cycle with a glitch at any wire 11/28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry 1 Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal verification Machine-checked proof Automatic and interactive approaches HOL Light Floating point

366 views • 25 slides
for Formal Verification of Industrial Circuit Designs John OLeary and Roope Kaivola, Intel Tom

for Formal Verification of Industrial Circuit Designs John OLeary and Roope Kaivola, Intel Tom

Relational STE and Theorem Proving for Formal Verification of Industrial Circuit Designs John OLeary and Roope Kaivola, Intel Tom Melham, Oxford CPU datapath verification at Intel Thousands of operations Integer, FP, SSE, AVX,

241 views • 23 slides
Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal

Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal

Formal Verification of Floating-Point Arithmetic 1 Formal Verification of Floating-Point Arithmetic John Harrison Intel Corporation Formal verification Machine-checked proof Automatic and interactive approaches HOL Light

539 views • 19 slides
Automatic Formal Verification for EPICS Jonathan Jacky, Stefani Banerian, Michael D. Ernst,

Automatic Formal Verification for EPICS Jonathan Jacky, Stefani Banerian, Michael D. Ernst,

Automatic Formal Verification for EPICS Jonathan Jacky, Stefani Banerian, Michael D. Ernst, Calvin Loncaric, Stuart Pernsteiner, Zachary Tatlock, Emina Torlak Department of Radiation Oncology University of Washington Medical Center Paul G.

412 views • 13 slides
Formal Verification of Candidate Solutions for Evolutionary Circuit Design (Entry 04) Zden k

Formal Verification of Candidate Solutions for Evolutionary Circuit Design (Entry 04) Zden k

Humies at GECCO 2011 Formal Verification of Candidate Solutions for Evolutionary Circuit Design (Entry 04) Zden k Va ek and Luk Sekanina Faculty of Information Technology Brno University of Technology Brno, Czech Republic

390 views • 11 slides
Automatic Verification of Cryptographic Protocols in the Formal Model Automatic Verifier ProVerif

Automatic Verification of Cryptographic Protocols in the Formal Model Automatic Verifier ProVerif

Automatic Verification of Cryptographic Protocols in the Formal Model Automatic Verifier ProVerif Bruno Blanchet INRIA, Ecole Normale Sup erieure, CNRS blanchet@di.ens.fr September 2011 Bruno Blanchet (INRIA) ProVerif September 2011

1.55k views • 143 slides
Model-Checking Acknowledgment Formal Verification Formal verification means to apply

Model-Checking Acknowledgment Formal Verification Formal verification means to apply

Model-Checking Acknowledgment Formal Verification Formal verification means to apply mathematical arguments to prove the correctness of systems Systems have bugs Formal verification aims to find and correct such bugs Why? Computer systems

1.42k views • 122 slides
Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for

Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for

Formal Verification and Computer Architecture A Validated Formal Model of the x86 ISA for Analyzing Computing Systems Shilpi Goel shilpi@centtech.com Formal Verification Engineer Centaur Technology, Inc. Software and Reliability Can we rely

1.14k views • 78 slides
Formal Hardware Verification: getting started Mary Sheeran Making Formal Verification work Aim

Formal Hardware Verification: getting started Mary Sheeran Making Formal Verification work Aim

Formal Hardware Verification: getting started Mary Sheeran Making Formal Verification work Aim for automation (bit level) Find niches where formal methods work well Use assertions/ properties first in sim. and then in FV (the acronym is ABV,

1.14k views • 65 slides
On the Impact of Structural Circuit Partitioning on SAT-based Combinational Circuit Verification

On the Impact of Structural Circuit Partitioning on SAT-based Combinational Circuit Verification

On the Impact of Structural Circuit Partitioning on SAT-based Combinational Circuit Verification (Presentation at IEEE MTV 2004) Marc Herbstritt (joint work with Thomas Kmieciak and Bernd Becker) http://ira.informatik.uni-freiburg.de

351 views • 18 slides
Remodularizing Legacy Model Transformations with Automatic Clustering Techniques Andreas

Remodularizing Legacy Model Transformations with Automatic Clustering Techniques Andreas

Remodularizing Legacy Model Transformations with Automatic Clustering Techniques Andreas Rentschler , Dominik Werle, Qais Noorshams, Lucia Happe, Ralf Reussner 3rd Workshop on the Analysis of Model Transformations Monday, September 29,

578 views • 43 slides
Formal Verification of Mathematical Algorithms John Harrison Intel Corporation The cost of

Formal Verification of Mathematical Algorithms John Harrison Intel Corporation The cost of

Formal Verification of Mathematical Algorithms 1 Formal Verification of Mathematical Algorithms John Harrison Intel Corporation The cost of bugs Formal verification Levels of verification HOL Light Formalizing mathematics

353 views • 19 slides
Formal Verification of RISC-V cores with riscv-formal Clifford Wolf CTO, Symbiotic EDA

Formal Verification of RISC-V cores with riscv-formal Clifford Wolf CTO, Symbiotic EDA

Formal Verification of RISC-V cores with riscv-formal Clifford Wolf CTO, Symbiotic EDA http://www.clifford.at/papers/2018/riscv-formal/ About assertion based formal verification (formal ABV) Assertion based verification (ABV) Uses

781 views • 39 slides
Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal

Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal

Formal Verification with Yosys-SMTBMC Clifford Wolf Yosys Flows Synthesis Formal Verification Yosys-STMBMC iCE40 FPGAs Bounded Model Checking (Project IceStorm) Using any SMT-LIB2 solver (using QF_AUFBV logic) Xilinx

706 views • 56 slides
Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim

Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim

Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim Kobeissi PROSECCO: Pro gramming Sec urely with C rypt o graphy. Team at INRIA Paris specializing in applied cryptography and formal verification.

357 views • 14 slides
Local proof transformations for flexible interpolation and proof reduction N. Sharygina Formal

Local proof transformations for flexible interpolation and proof reduction N. Sharygina Formal

Local proof transformations for flexible interpolation and proof reduction N. Sharygina Formal Verification and Security Group University of Lugano June 21, 2011 Natasha Sharygina (USI) Flexible Proof Transformation June 21, 2011 1 / 72

2.21k views • 186 slides
Point-Free Templates European LLVM Developers Meeting 2018 Andrew Gozillon, Dr. Paul Keir School

Point-Free Templates European LLVM Developers Meeting 2018 Andrew Gozillon, Dr. Paul Keir School

Point-Free Templates European LLVM Developers Meeting 2018 Andrew Gozillon, Dr. Paul Keir School of Engineering and Computing University of the West of Scotland, Paisley Campus April 17th, 2018 Introduction C++ template metaprogramming is

258 views • 23 slides
Basics of Digital Logic Design 0 1 1 0 1 0 0 1 1 1 0 1 0 1 1 0 1 1 0 0 1 1 1

Basics of Digital Logic Design 0 1 1 0 1 0 0 1 1 1 0 1 0 1 1 0 1 1 0 0 1 1 1

Signals, Logic Operations and Gates CSE 675.02: Introduction to Computer Rather than referring to voltage levels of signals, we shall consider Architecture signals that are logically 1 or 0 (or asserted or de-asserted). Logic XOR NOT AND

189 views • 8 slides
Lecture 7: Logic design Binary digital logic circuits: Two voltage levels (ground and

Lecture 7: Logic design Binary digital logic circuits: Two voltage levels (ground and

Lecture 7: Logic design Binary digital logic circuits: Two voltage levels (ground and supply voltage) for 0 and 1 Built from transistors used as on/off switches Analog circuits not very suitable for generic computing Digital

411 views • 17 slides
Combinational Logic Prof. Usagi 2 Recap: Logic Design?

Combinational Logic Prof. Usagi 2 Recap: Logic Design?

Combinational Logic Prof. Usagi 2 Recap: Logic Design? https://www.britannica.com/technology/logic-design 3 Recap: Analog v.s. digital signals 0.5? 0.4? 0.45? Anything within this wide 0.445? 0.4445? or range is considered as 1

473 views • 43 slides
More Event Combinators CML provides two more event combinators: guard and withNack : val guard :

More Event Combinators CML provides two more event combinators: guard and withNack : val guard :

More Event Combinators CML provides two more event combinators: guard and withNack : val guard : (unit -> a event) -> a event val withNack : (unit event -> a event) -> a event Each time an event involving guard f is

265 views • 3 slides
What solves this equation? Equation: n : if n = 0 then 1 else n 1 ) ? fact fact ( n

What solves this equation? Equation: n : if n = 0 then 1 else n 1 ) ? fact fact ( n

What solves this equation? Equation: n : if n = 0 then 1 else n 1 ) ? fact fact ( n = The factorial function! Factorial in lambda calculus Wish for: fact = \n.(zero? n) 1 (times n (fact (pred n))); But: on right-hand side, fact is

471 views • 14 slides
equational programming 2020 11 02 lecture 3 lambda-calculus in a nutshell -terms: variable x

equational programming 2020 11 02 lecture 3 lambda-calculus in a nutshell -terms: variable x

equational programming 2020 11 02 lecture 3 lambda-calculus in a nutshell -terms: variable x constant c abstraction ( x . M ) application ( F M ) we consider -terms modulo -conversion -reduction rule: ( x . M ) N M [ x

728 views • 39 slides
Advanced Semantics of Programming Languages Pierre C LAIRAMBAULT & Colin R IBA LIP - ENS de

Advanced Semantics of Programming Languages Pierre C LAIRAMBAULT & Colin R IBA LIP - ENS de

Advanced Semantics of Programming Languages Pierre C LAIRAMBAULT & Colin R IBA LIP - ENS de Lyon Course 03 09/25 C LAIRAMBAULT & R IBA (LIP - ENS de Lyon) ASPL (CR04) Course 03 09/25 1 / 11 Gdels System T Gdels System T

880 views • 59 slides

More recommend