interactive formal verifjcation
play

Interactive Formal Verifjcation Welcome Dr. Dominic P. Mulligan - PowerPoint PPT Presentation

Mar 31, 2024 •15 likes •335 views

Interactive Formal Verifjcation Welcome Dr. Dominic P. Mulligan Programming, Logic, and Semantics Group, University of Cambridge Academic year 20172018 1 Administrivia Course usually lectured by Prof. Lawrence Paulson Sabattical leave

  1. Interactive Formal Verifjcation Welcome Dr. Dominic P. Mulligan Programming, Logic, and Semantics Group, University of Cambridge Academic year 2017–2018 1

  2. Administrivia Course usually lectured by Prof. Lawrence Paulson Sabattical leave this year My offjce: FS16 • Until start of November • Then at ARM, but will return to fjnish course My e-mail: dominic.p.mulligan@gmail.com Course lab assistant: Dr. Victor Gomes Victor’s e-mail: vb358@cam.ac.uk 2

  3. Administrivia Course usually lectured by Prof. Lawrence Paulson Sabattical leave this year My offjce: FS16 • Until start of November • Then at ARM, but will return to fjnish course My e-mail: dominic.p.mulligan@gmail.com Course lab assistant: Dr. Victor Gomes Victor’s e-mail: vb358@cam.ac.uk 2

  4. Administrivia Course usually lectured by Prof. Lawrence Paulson Sabattical leave this year My offjce: FS16 • Until start of November • Then at ARM, but will return to fjnish course My e-mail: dominic.p.mulligan@gmail.com Course lab assistant: Dr. Victor Gomes Victor’s e-mail: vb358@cam.ac.uk 2

  5. Administrivia Course website: https://www.cl.cam.ac.uk/teaching/1718/L21/ Course consists of 16 hours of contact time: • 12 hours of lab-based lecturing, • 4 hours of lab-based practicals Assessed via two practical exercises: • First (computer science) on parser combinators • Second (maths) on metric spaces 3

  6. Administrivia Course website: https://www.cl.cam.ac.uk/teaching/1718/L21/ Course consists of 16 hours of contact time: • 12 hours of lab-based lecturing, • 4 hours of lab-based practicals Assessed via two practical exercises: • First (computer science) on parser combinators • Second (maths) on metric spaces 3

  7. Administrivia Course website: https://www.cl.cam.ac.uk/teaching/1718/L21/ Course consists of 16 hours of contact time: • 12 hours of lab-based lecturing, • 4 hours of lab-based practicals Assessed via two practical exercises: • First (computer science) on parser combinators • Second (maths) on metric spaces 3

  8. IMPORTANT All lecturing materials developed using Isabelle2016-1 Isabelle2017 about to be released imminently Make sure you use Isabelle2016-1 for this course! I recommend you install a local copy (ASAP) to follow along 4

  9. Obtaining Isabelle For your own machines: check course website For lab machines see: /auto/groups/acs-software/L21/Isabelle2016-1/ Contains Isabelle2016-1_app.tar.gz for installation in home directory Also can start Isabelle2016-1 from your machine via: /auto/groups/acs-software/L21/Isabelle2016-1/ Isabelle2016-1/Isabelle2016-1 5

  10. Course text Free! See: http://concrete-semantics.org/ A stripped down version is distributed with Isabelle 6

  11. Motivation

  12. Developing software is hard Most software (and hardware) has bugs Bugs are costly, and potentially dangerous IDEA : treat program as a formal mathematical object Prove relevant properties about model and obtain certifjed implementation thereafter Increases confjdence in software/hardware implementation 7

  13. Developing software is hard Most software (and hardware) has bugs Bugs are costly, and potentially dangerous IDEA : treat program as a formal mathematical object Prove relevant properties about model and obtain certifjed implementation thereafter Increases confjdence in software/hardware implementation 7

  14. Developing software is hard Most software (and hardware) has bugs Bugs are costly, and potentially dangerous IDEA : treat program as a formal mathematical object Prove relevant properties about model and obtain certifjed implementation thereafter Increases confjdence in software/hardware implementation 7

  15. Writing and checking proofs is hard Proofs in mathematics and computer science may: • Be tedious to check • Contain subtle mistakes • Be controversial (due to e.g. size, inability to review adequately) IDEA : have a computer check that proof is valid Increases confjdence in proof 8

  16. Writing and checking proofs is hard Proofs in mathematics and computer science may: • Be tedious to check • Contain subtle mistakes • Be controversial (due to e.g. size, inability to review adequately) IDEA : have a computer check that proof is valid Increases confjdence in proof 8

  17. Writing and checking proofs is hard Proofs in mathematics and computer science may: • Be tedious to check • Contain subtle mistakes • Be controversial (due to e.g. size, inability to review adequately) IDEA : have a computer check that proof is valid Increases confjdence in proof 8

  18. Interactive theorem proving Want to work in an expressive logic (which?) The more expressive our logic the worse it behaves computationally Proof search undecidable, intractable even in decidable fragments IDEA : have the computer and a human work together Human guides the proof search with computer: • Checking that the human’s reasoning is valid • Helping when it can: (semi-)decision procedures, counterexample fjnders... 9

  19. Interactive theorem proving Want to work in an expressive logic (which?) The more expressive our logic the worse it behaves computationally Proof search undecidable, intractable even in decidable fragments IDEA : have the computer and a human work together Human guides the proof search with computer: • Checking that the human’s reasoning is valid • Helping when it can: (semi-)decision procedures, counterexample fjnders... 9

  20. Interactive theorem proving Want to work in an expressive logic (which?) The more expressive our logic the worse it behaves computationally Proof search undecidable, intractable even in decidable fragments IDEA : have the computer and a human work together Human guides the proof search with computer: • Checking that the human’s reasoning is valid • Helping when it can: (semi-)decision procedures, counterexample fjnders... 9

  21. Isabelle, and Isabelle/HOL

  22. • Provides common reasoning tools, document preparation, and so Isabelle: a generic proof assistant Isabelle initially written by Paulson starting mid 80s Nipkow, Wenzel and others in Munich and elsewhere now a major development force Written in Standard ML, follows LCF design philosophy Isabelle is a logical framework: • Provides a relatively weak base (meta) logic • More interesting (object) logics can be embedded in it on 10

  23. Isabelle: a generic proof assistant Isabelle initially written by Paulson starting mid 80s Nipkow, Wenzel and others in Munich and elsewhere now a major development force Written in Standard ML, follows LCF design philosophy Isabelle is a logical framework: • Provides a relatively weak base (meta) logic • More interesting (object) logics can be embedded in it on 10 • Provides common reasoning tools, document preparation, and so

  24. Many instantiations Many different object logic embeddings: • ZF set theory • First-order logic • Martin-Löf type theory In this course: • (Mostly) ignore Isabelle’s status as a logical framework • Focus on one object logic: HOL • Show off Isabelle/HOL as an interactive proof assistant for HOL 11

  25. Many instantiations Many different object logic embeddings: • ZF set theory • First-order logic • Martin-Löf type theory In this course: • (Mostly) ignore Isabelle’s status as a logical framework • Focus on one object logic: HOL • Show off Isabelle/HOL as an interactive proof assistant for HOL 11

  26. Gordon’s higher-order logic (HOL) HOL = Church’s Simple Theory of Types + type polymorphism Suggested by Mike Gordon as a suitable logic for hardware verifjcation Implemented in HOL4, HOL Light, ProofPower HOL, HOL Zero ...and of course Isabelle/HOL 12

  27. Gordon’s higher-order logic (HOL) HOL = Church’s Simple Theory of Types + type polymorphism Suggested by Mike Gordon as a suitable logic for hardware verifjcation Implemented in HOL4, HOL Light, ProofPower HOL, HOL Zero ...and of course Isabelle/HOL 12

  28. Gordon’s higher-order logic (HOL) HOL = Church’s Simple Theory of Types + type polymorphism Suggested by Mike Gordon as a suitable logic for hardware verifjcation Implemented in HOL4, HOL Light, ProofPower HOL, HOL Zero ...and of course Isabelle/HOL 12

  29. HOL HOL as a logic: • Is polymorphically typed (as opposed to e.g. ACL2) • Is higher-order (as opposed to e.g. ACL2, or tools like Vampire) interact with external tools (e.g. FOTPs, SMT solvers, etc.) As a functional programmer HOL will “feel” very familiar No need to learn a radically different way of doing things 13 • Does not have type-dependency (as opposed to e.g. Coq or Agda) • Strikes a good middle ground between expressivity and ability to

  30. HOL HOL as a logic: • Is polymorphically typed (as opposed to e.g. ACL2) • Is higher-order (as opposed to e.g. ACL2, or tools like Vampire) interact with external tools (e.g. FOTPs, SMT solvers, etc.) As a functional programmer HOL will “feel” very familiar No need to learn a radically different way of doing things 13 • Does not have type-dependency (as opposed to e.g. Coq or Agda) • Strikes a good middle ground between expressivity and ability to

  31. First taste of Isabelle/HOL

  32. See associated theory... 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Formal Verifjcation Lecture 1: Introduction to Model Checling and Temporal Logic Jacques

Formal Verifjcation Lecture 1: Introduction to Model Checling and Temporal Logic Jacques

Formal Verifjcation Lecture 1: Introduction to Model Checling and Temporal Logic Jacques Fleuriot jdf@inf.ed.ac.uk Acknowledgement: Adapted from original material by Paul Jackson, including some additions by Bob Atkey. Formal Verifjcation

381 views • 35 slides
Two camps of program verifjcation Interactive Theorem Provers (ITPs): Coq, Agda, Lean, Idris, ...

Two camps of program verifjcation Interactive Theorem Provers (ITPs): Coq, Agda, Lean, Idris, ...

Guido Martnez Nik Swamy ECI 2019 1 / 15 An introduction to Meta- F Two camps of program verifjcation Interactive Theorem Provers (ITPs): Coq, Agda, Lean, Idris, ... Program Verifjers: Dafny, VCC, Liquid Haskell, ... Verifjcation

759 views • 55 slides
Two camps of program verifjcation Interactive Theorem Provers (ITPs): Coq, Agda, Lean, Idris, ...

Two camps of program verifjcation Interactive Theorem Provers (ITPs): Coq, Agda, Lean, Idris, ...

Guido Martnez Nik Swamy ECI 2019 1 / 17 An introduction to Meta- F Two camps of program verifjcation Interactive Theorem Provers (ITPs): Coq, Agda, Lean, Idris, ... Program Verifjers: Dafny, VCC, Liquid Haskell, ... Verifjcation

1.17k views • 71 slides
Formal Verifjcation Lecture 2: Linear Temporal Logic Jacques Fleuriot jdf@inf.ed.ac.uk Recap

Formal Verifjcation Lecture 2: Linear Temporal Logic Jacques Fleuriot jdf@inf.ed.ac.uk Recap

Formal Verifjcation Lecture 2: Linear Temporal Logic Jacques Fleuriot jdf@inf.ed.ac.uk Recap Previously: Model Checking, and an informal introduction to LTL Tiis time: Linear Temporal Logic Syntax Semantics Equivalences

228 views • 21 slides
Formal Verifjcation Lecture 5: Computation Tree Logic (CTL) Jacques Fleuriot 1 jdf@inf.ac.uk

Formal Verifjcation Lecture 5: Computation Tree Logic (CTL) Jacques Fleuriot 1 jdf@inf.ac.uk

Formal Verifjcation Lecture 5: Computation Tree Logic (CTL) Jacques Fleuriot 1 jdf@inf.ac.uk 1With thanks to Bob Atkey for some of the diagrams. Recap Previously: Linear-time Temporal Logic Tiis time: A branching-time logic:

723 views • 35 slides
Formal Verifjcation Lecture 8: Operations on Binary Decision Diagrams (BDDs) Jacques Fleuriot

Formal Verifjcation Lecture 8: Operations on Binary Decision Diagrams (BDDs) Jacques Fleuriot

Formal Verifjcation Lecture 8: Operations on Binary Decision Diagrams (BDDs) Jacques Fleuriot jdf@inf..ac.uk Diagrams from Huth & Ryan, LiCS, 2nd Ed. Recap reduce , apply , restrict , exists Previously: (Reduced, Ordered) Binary

567 views • 33 slides
Formal Verifjcation Lecture 7: Introduction to Binary Decision Diagrams (BDDs) Jacques Fleuriot

Formal Verifjcation Lecture 7: Introduction to Binary Decision Diagrams (BDDs) Jacques Fleuriot

Formal Verifjcation Lecture 7: Introduction to Binary Decision Diagrams (BDDs) Jacques Fleuriot jdf@inf.ac.uk Diagrams from Huth & Ryan, 2nd Ed. Recap Previously: CTL and LTL Model Checking algorithms Tiis time: Binary

232 views • 21 slides
Formal Verifjcation Lecture 6: How LTL Model Checling Works (Potted Version) Jacques Fleuriot

Formal Verifjcation Lecture 6: How LTL Model Checling Works (Potted Version) Jacques Fleuriot

Formal Verifjcation Lecture 6: How LTL Model Checling Works (Potted Version) Jacques Fleuriot jdf@inf.ac.uk Recap Previously: Model Checking CTL formulas Tiis time: Model Checking LTL Language-theoretic viewpoint From

793 views • 20 slides
Railway Infrastructure Verifjcation and RDFox Bjrnar Luteberget / Christian Johansen July 4,

Railway Infrastructure Verifjcation and RDFox Bjrnar Luteberget / Christian Johansen July 4,

Railway Infrastructure Verifjcation and RDFox Bjrnar Luteberget / Christian Johansen July 4, 2016 1 / 19 Railway verifjcation and formal methods Railway systems: large-scale, safety-critical infrastructure High safety requirements:

336 views • 19 slides
Presentation for 4th International Workshop on Formal Methods for Interactive Systems: FMIS 2011,

Presentation for 4th International Workshop on Formal Methods for Interactive Systems: FMIS 2011,

Presentation for 4th International Workshop on Formal Methods for Interactive Systems: FMIS 2011, Limerick, Ireland, 21 June 2011 Formal Modeling and Analysis For Interactive Hybrid Systems Ellen J. Bass Systems and Information Engineering,

280 views • 26 slides
Verifjcation of Categorical Forecasts The Contingency T able Laurence Wilson

Verifjcation of Categorical Forecasts The Contingency T able Laurence Wilson

Verifjcation of Categorical Forecasts The Contingency T able Laurence Wilson laurence.Wilson@sympatico.ca Co-chair, WMO Joint Working Group on Forecast Verifjcation Research (JWGFVR) Outline What defjnes an event Hits,

270 views • 24 slides
Program Verifjcation While Loops Alice Gao Lecture 20 Based on work by J. Buss, L. Kari, A.

Program Verifjcation While Loops Alice Gao Lecture 20 Based on work by J. Buss, L. Kari, A.

1/33 Program Verifjcation While Loops Alice Gao Lecture 20 Based on work by J. Buss, L. Kari, A. Lubiw, B. Bonakdarpour, D. Maftuleac, C. Roberts, R. Trefmer, and P. Van Beek 2/33 Outline Program Verifjcation: While Loops Learning Goals

351 views • 33 slides
Spatial forecast verifjcation Manfred Dorninger University of Vienna Vienna, Austria

Spatial forecast verifjcation Manfred Dorninger University of Vienna Vienna, Austria

Spatial forecast verifjcation Manfred Dorninger University of Vienna Vienna, Austria manfred.dorninger@univie.ac.at Thanks to: B. Ebert, B. Casati, C. Keil 7 th Verifjcation T utorial Course, Berlin, 3-6 May, 2017 Motivation: Model

825 views • 81 slides
Deep Bayes Factor Scoring for Authorship Verifjcation Benedikt Boenninghoff Dorothea Kolossa

Deep Bayes Factor Scoring for Authorship Verifjcation Benedikt Boenninghoff Dorothea Kolossa

Deep Bayes Factor Scoring for Authorship Verifjcation Benedikt Boenninghoff Dorothea Kolossa Julian Rupp Robert M. Nickel PAN@CLEF2020 * Authorship verifjcation (AV) tasks at PAN 2020 to 2022 1 (Kestemont, Manjavacas, et al. 2020) Task:

812 views • 67 slides
Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal

Formal Verification in Industry 1 Formal Verification in Industry John Harrison Intel Corporation The cost of bugs Formal verification Machine-checked proof Automatic and interactive approaches HOL Light Floating point

366 views • 25 slides
Program Verifjcation Array Assignments Alice Gao Lecture 21 Based on work by J. Buss, L. Kari,

Program Verifjcation Array Assignments Alice Gao Lecture 21 Based on work by J. Buss, L. Kari,

1/14 Program Verifjcation Array Assignments Alice Gao Lecture 21 Based on work by J. Buss, L. Kari, A. Lubiw, B. Bonakdarpour, D. Maftuleac, C. Roberts, R. Trefmer, and P. Van Beek 2/14 Outline Program Verifjcation: Array Assignments

176 views • 14 slides
EO-253 Operating Systems Instructor: Vinod Ganapathy IISc Slide credits: David Mazieres

EO-253 Operating Systems Instructor: Vinod Ganapathy IISc Slide credits: David Mazieres

EO-253 Operating Systems Instructor: Vinod Ganapathy IISc Slide credits: David Mazieres (Stanford University) 1 / 33 Outline Administrivia 1 2 Substance 2 / 33 Administrivia Class web page:

509 views • 36 slides
CS 147: Computer Systems Performance Analysis Course Introduction 1 / 35 Overview CS147

CS 147: Computer Systems Performance Analysis Course Introduction 1 / 35 Overview CS147

CS147 2015-06-15 CS 147: Computer Systems Performance Analysis Course Introduction CS 147: Computer Systems Performance Analysis Course Introduction 1 / 35 Overview CS147 Overview 2015-06-15 Class Introduction Administrivia Projects

505 views • 35 slides
Administrivia Assignments 0 & 1 Class contact f or the next two weeks Next week

Administrivia Assignments 0 & 1 Class contact f or the next two weeks Next week

Administrivia Assignments 0 & 1 Class contact f or the next two weeks Next week midt er m exam pr oj ect r eview & discussion (Chr is Chamber s) Following week Memor y Management (Wuchi Feng) 1 CSE 513 I

1.03k views • 72 slides
New Computing In 2019 and Beyond - Opportunities, Challenges, and Threats Fromm Institute Fall

New Computing In 2019 and Beyond - Opportunities, Challenges, and Threats Fromm Institute Fall

New Computing In 2019 and Beyond - Opportunities, Challenges, and Threats Fromm Institute Fall 2019 - lecture 1 Bebo White - bebo.white@gmail.com 1 calendar 2 administrivia (1/2) all slides will be available online at each class -

541 views • 28 slides
Computational Geometry Exercise session #1 Yaron Ostrovsky-Berman, Computational Geometry, Spring

Computational Geometry Exercise session #1 Yaron Ostrovsky-Berman, Computational Geometry, Spring

Computational Geometry Exercise session #1 Yaron Ostrovsky-Berman, Computational Geometry, Spring 2005 1 Administrivia Exercise sessions (Shprinzak 202): Wednesday, 11:00 11:45. Course web page: www.cs.huji.ac.il/~compgeom

770 views • 9 slides
CS 744: PYWREN Shivaram Venkataraman Fall 2019 ADMINISTRIVIA Happy Thanksgiving!? NEW

CS 744: PYWREN Shivaram Venkataraman Fall 2019 ADMINISTRIVIA Happy Thanksgiving!? NEW

CS 744: PYWREN Shivaram Venkataraman Fall 2019 ADMINISTRIVIA Happy Thanksgiving!? NEW HARDWARE MODELS Infiniband Networks Compute Accelerators Serverless Computing Non-Volatile Memory SERVERLESS COMPUTING MOTIVATION: USABILITY What

554 views • 22 slides
2000-01-18 Lecture 1: Course administrivia. Presentations of the lecturer, the students

2000-01-18 Lecture 1: Course administrivia. Presentations of the lecturer, the students

Mats Nyl en January 19, 2000 Slide 1 of 21 2000-01-18 Lecture 1: Course administrivia. Presentations of the lecturer, the students and the course. Lecture 2: Introduction to scientific visualization. Object oriented

534 views • 21 slides
CS 350: Operating Systems Tim Brecht (8:30) Jeremy Barbay (2:30) Note: this info is available on

CS 350: Operating Systems Tim Brecht (8:30) Jeremy Barbay (2:30) Note: this info is available on

CS 350: Operating Systems Tim Brecht (8:30) Jeremy Barbay (2:30) Note: this info is available on the course web page Course Objective This course provides an introduction to operating systems; what they do, how they are used, and how they

460 views • 15 slides

More recommend