modelling and verification
play

Modelling and Verification Lecture 4 Weak bisimilarity and weak - PowerPoint PPT Presentation

Aug 06, 2023 •328 likes •587 views

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of weak bisimilarity Example: a

  1. Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of weak bisimilarity Example: a communication protocol and its modelling in CCS Concurrency workbench (CWB) Lecture 4 Modelling and Verification

  2. � � � � � Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Problems with Internal Actions Question Does a .τ. Nil ∼ a . Nil hold? NO! Problem Strong bisimilarity does not abstract away from τ actions. Example: SmUni �∼ Spec �∼ Spec SmUni pub ( CM | CS 1 ) � { coin , coffee } pub τ ( CM 1 | CS 2 ) � { coin , coffee } pub τ ( CM | CS ) � { coin , coffee } Lecture 4 Modelling and Verification

  3. � � � � � Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Problems with Internal Actions Question Does a .τ. Nil ∼ a . Nil hold? NO! Problem Strong bisimilarity does not abstract away from τ actions. Example: SmUni �∼ Spec �∼ Spec SmUni pub ( CM | CS 1 ) � { coin , coffee } pub τ ( CM 1 | CS 2 ) � { coin , coffee } pub τ ( CM | CS ) � { coin , coffee } Lecture 4 Modelling and Verification

  4. � � � � � Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Problems with Internal Actions Question Does a .τ. Nil ∼ a . Nil hold? NO! Problem Strong bisimilarity does not abstract away from τ actions. Example: SmUni �∼ Spec �∼ Spec SmUni pub ( CM | CS 1 ) � { coin , coffee } pub τ ( CM 1 | CS 2 ) � { coin , coffee } pub τ ( CM | CS ) � { coin , coffee } Lecture 4 Modelling and Verification

  5. � � � � � Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Problems with Internal Actions Question Does a .τ. Nil ∼ a . Nil hold? NO! Problem Strong bisimilarity does not abstract away from τ actions. Example: SmUni �∼ Spec �∼ Spec SmUni pub ( CM | CS 1 ) � { coin , coffee } pub τ ( CM 1 | CS 2 ) � { coin , coffee } pub τ ( CM | CS ) � { coin , coffee } Lecture 4 Modelling and Verification

  6. Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Transition Relation a Let ( Proc , Act , { − →| a ∈ Act } ) be an LTS such that τ ∈ Act . Definition of Weak Transition Relation � a τ τ ( − → ) ∗ ◦ − → ◦ ( − → ) ∗ if a � = τ a = ⇒ = τ ( − → ) ∗ if a = τ a What does s = ⇒ t informally mean? a If a � = τ then s = ⇒ t means that from s we can get to t by doing zero or more τ actions, followed by the action a , followed by zero or more τ actions. τ If a = τ then s = ⇒ t means that from s we can get to t by doing zero or more τ actions. Lecture 4 Modelling and Verification

  7. Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Transition Relation a Let ( Proc , Act , { − →| a ∈ Act } ) be an LTS such that τ ∈ Act . Definition of Weak Transition Relation � a τ τ ( − → ) ∗ ◦ − → ◦ ( − → ) ∗ if a � = τ a = ⇒ = τ ( − → ) ∗ if a = τ a What does s = ⇒ t informally mean? a If a � = τ then s = ⇒ t means that from s we can get to t by doing zero or more τ actions, followed by the action a , followed by zero or more τ actions. τ If a = τ then s = ⇒ t means that from s we can get to t by doing zero or more τ actions. Lecture 4 Modelling and Verification

  8. Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Bisimilarity a Let ( Proc , Act , { − →| a ∈ Act } ) be an LTS such that τ ∈ Act . Weak Bisimulation A binary relation R ⊆ Proc × Proc is a weak bisimulation iff whenever ( s , t ) ∈ R then for each a ∈ Act (including τ ): → s ′ then t a ⇒ t ′ for some t ′ such that ( s ′ , t ′ ) ∈ R a if s − = → t ′ then s ⇒ s ′ for some s ′ such that ( s ′ , t ′ ) ∈ R . a a if t − = Weak Bisimilarity Two processes p 1 , p 2 ∈ Proc are weakly bisimilar ( p 1 ≈ p 2 ) if and only if there exists a weak bisimulation R such that ( p 1 , p 2 ) ∈ R . ≈ = ∪{ R | R is a weak bisimulation } Lecture 4 Modelling and Verification

  9. Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Bisimilarity a Let ( Proc , Act , { − →| a ∈ Act } ) be an LTS such that τ ∈ Act . Weak Bisimulation A binary relation R ⊆ Proc × Proc is a weak bisimulation iff whenever ( s , t ) ∈ R then for each a ∈ Act (including τ ): → s ′ then t a ⇒ t ′ for some t ′ such that ( s ′ , t ′ ) ∈ R a if s − = → t ′ then s ⇒ s ′ for some s ′ such that ( s ′ , t ′ ) ∈ R . a a if t − = Weak Bisimilarity Two processes p 1 , p 2 ∈ Proc are weakly bisimilar ( p 1 ≈ p 2 ) if and only if there exists a weak bisimulation R such that ( p 1 , p 2 ) ∈ R . ≈ = ∪{ R | R is a weak bisimulation } Lecture 4 Modelling and Verification

  10. Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Bisimulation Game Definition All the same except that a defender can now answer using = ⇒ moves. a The attacker is still using only − → moves. Theorem States s and t are weakly bisimilar if and only if the defender has a universal winning strategy starting from the configuration ( s , t ). States s and t are not weakly bisimilar if and only if the attacker has a universal winning strategy starting from the configuration ( s , t ). Lecture 4 Modelling and Verification

  11. Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Bisimulation Game Definition All the same except that a defender can now answer using = ⇒ moves. a The attacker is still using only − → moves. Theorem States s and t are weakly bisimilar if and only if the defender has a universal winning strategy starting from the configuration ( s , t ). States s and t are not weakly bisimilar if and only if the attacker has a universal winning strategy starting from the configuration ( s , t ). Lecture 4 Modelling and Verification

  12. � � � � � Definition Strong Bisimilarity (Reprise) Bisimulation Games Weak Bisimilarity Properties Case Study: Communication Protocol Buffer Example Congruence Problems Summary Weak Bisimilarity – Properties Properties of ≈ an equivalence relation the largest weak bisimulation validates lots of natural laws, e.g. a .τ. P ≈ a . P P + τ. P ≈ τ. P a . ( P + τ. Q ) ≈ a . ( P + τ. Q ) + a . Q P + Q ≈ Q + P P | Q ≈ Q | P P + Nil ≈ P . . . strong bisimilarity is included in weak bisimilarity ( ∼ ⊆ ≈ ) abstracts from τ loops • ≈ • τ a a � � � � � � � � � � � • � • Lecture 4 Modelling and Verification

  13. Strong Bisimilarity (Reprise) Definitions Weak Bisimilarity Weak Bisimulation Game Case Study: Communication Protocol Properties of Weak Bisimilarity Congruence Problems Case Study: Communication Protocol ✬✩ ✬✩ ack acc del Send Rec ✛ r r r r ✫✪ ✫✪ ✬✩ error r ❍ ❨ ❍ ❍ r ✟ ✯ r ✟✟✟✟ ❍❍❍❍ r trans Med send ❥ r r ✫✪ def def Send = acc . Sending Rec = trans . Del def def Sending = send . Wait Del = del . Ack def def Wait = ack . Send + error . Sending Ack = ack . Rec def send . Med ′ Med = def Med ′ = τ. Err + trans . Med def Err = error . Med Lecture 4 Modelling and Verification

  14. Strong Bisimilarity (Reprise) Definitions Weak Bisimilarity Weak Bisimulation Game Case Study: Communication Protocol Properties of Weak Bisimilarity Congruence Problems Case Study: Communication Protocol ✬✩ ✬✩ ack acc del Send Rec ✛ r r r r ✫✪ ✫✪ ✬✩ error r ❍ ❨ ❍ ❍ r ✟ ✯ r ✟✟✟✟ ❍❍❍❍ r trans Med send ❥ r r ✫✪ def def Send = acc . Sending Rec = trans . Del def def Sending = send . Wait Del = del . Ack def def Wait = ack . Send + error . Sending Ack = ack . Rec def send . Med ′ Med = def Med ′ = τ. Err + trans . Med def Err = error . Med Lecture 4 Modelling and Verification

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CLASSI C CLASSI C CLASSI C Modelling , Specification , and Verification using UPPAAL Kim

CLASSI C CLASSI C CLASSI C Modelling , Specification , and Verification using UPPAAL Kim

CLASSI C CLASSI C CLASSI C Modelling , Specification , and Verification using UPPAAL Kim Guldstrand Larsen Finite State Machines Modelling using UC UC b Modelling processes A process is the execution of a sequential program.

1.41k views • 108 slides
Modelling and Verification of Component Compatibility by Composition MOCA'04 Third Workshop on

Modelling and Verification of Component Compatibility by Composition MOCA'04 Third Workshop on

Modelling and Verification of Component Compatibility by Composition MOCA'04 Third Workshop on Modelling of Objects, Components and Agents Aarhus, Denmark October 11-13, 2004 Donald C. Craig and Wlodek M. Zuberek Department of Computer

293 views • 14 slides
Modelling and Verification of a Distributed Interlocking System using UPPAAL and UMC Van Anh Thi

Modelling and Verification of a Distributed Interlocking System using UPPAAL and UMC Van Anh Thi

Modelling and Verification of a Distributed Interlocking System using UPPAAL and UMC Van Anh Thi Trinh & Per Lange Laursen DTU Compute, Technical University of Denmark 22. maj 2019 DTU Compute Outline Objectives Modelling with

418 views • 11 slides
Probabilistic Modelling and Verification of Introduction Biological Systems Biological Systems

Probabilistic Modelling and Verification of Introduction Biological Systems Biological Systems

Probabilistic Modelling and Verification of Biological Systems Paolo Milazzo Outline Probabilistic Modelling and Verification of Introduction Biological Systems Biological Systems as Concurrent Systems Examples of Models Discussion on

840 views • 34 slides
Authenticated Encryption in TLS Same modelling Poor TLS track record & verification

Authenticated Encryption in TLS Same modelling Poor TLS track record & verification

Authenticated Encryption in TLS Same modelling Poor TLS track record & verification approach - Many implementation flaws - Attacks on weak cryptography concrete security: each lossy step (MD5, SHA1, ) documented by a game and a

514 views • 27 slides
Modelling and Verification Lecture 1 Lecturer: Luca Aceto luca@ru.is or luca.aceto@gmail.com

Modelling and Verification Lecture 1 Lecturer: Luca Aceto luca@ru.is or luca.aceto@gmail.com

Organization of the Course Introduction Formal Models for Reactive Systems Introduction to CCS Modelling and Verification Lecture 1 Lecturer: Luca Aceto luca@ru.is or luca.aceto@gmail.com Lecture 1 Modelling and Verification Organization

840 views • 36 slides
Modelling, Specification and Verification of Reactive Systems Milners Calculus of

Modelling, Specification and Verification of Reactive Systems Milners Calculus of

Introduction to CCS Syntax of CCS Semantics of CCS Value Passing CCS Modelling, Specification and Verification of Reactive Systems Milners Calculus of Communicating Systems (CCS) Plan for this part of the course: Informal introduction to

763 views • 50 slides
A unified approach to performance modelling and verification Stephen Gilmore and Le la Kloul

A unified approach to performance modelling and verification Stephen Gilmore and Le la Kloul

A unified approach to performance modelling and verification Stephen Gilmore and Le la Kloul Laboratory for Foundations of Computer Science The University of Edinburgh SAFECOMP, Sept 2003 Stephen Gilmore DEGAS project, LFCS, Edinburgh 1

761 views • 47 slides
Modelling, Specification and Verification of Reactive Systems Introduction to the Course

Modelling, Specification and Verification of Reactive Systems Introduction to the Course

Organization of the Course Introduction Formal Models for Reactive Systems Modelling, Specification and Verification of Reactive Systems Introduction to the Course Lecturer: Luca Aceto Email: luca@ru.is or luca.aceto@gmail.com Course web

449 views • 25 slides
Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation games Weak bisimilarity and weak

872 views • 47 slides
Modelling and Verification Hennessy-Milner Logic An introduction to Hennessy-Milner logic (HML)

Modelling and Verification Hennessy-Milner Logic An introduction to Hennessy-Milner logic (HML)

Introduction to Model Checking Hennessy-Milner Logic Hennessy-Milner Logic with One Recursive Definition Selection of Temporal Properties Modelling and Verification Hennessy-Milner Logic An introduction to Hennessy-Milner logic (HML) Syntax

1.2k views • 44 slides
Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the

Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the

Equivalence Checking Problems Regions Region Graph Networks of Timed Automata Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the reachability problem Networks of timed automata Model checking of timed

628 views • 30 slides
The Modelling and Simulation Process 1. History of Modelling and Simulation 2. Modelling and

The Modelling and Simulation Process 1. History of Modelling and Simulation 2. Modelling and

The Modelling and Simulation Process 1. History of Modelling and Simulation 2. Modelling and Simulation Concepts 3. Levels of Abstraction 4. Experimental Frame 5. Validation 6. Studying a mass-spring system 7. The Modelling and Simulation

692 views • 34 slides
Introduction to Electronic Verification Electronic Verification of Educational Records

Introduction to Electronic Verification Electronic Verification of Educational Records

Introduction to Electronic Verification Electronic Verification of Educational Records OVERVIEW 01 04 Scope of Verification Peggys Picks Types of verification, Verifying exam results or parameters, privacy graduation using databases

1.25k views • 81 slides
Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Timed Transition Systems Timed Automata Networks of Timed Automata Equivalence Checking Problems Regions and Region Graph Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition systems with time

1.21k views • 62 slides
DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification

DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification

DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification Projects Birth Record Verification State to State Verification DIVS State to State Verification Service (S2S) Program Benefits Mission

349 views • 8 slides
Colored intersection types: a bridge between linear logic and higher-order model-checking Charles

Colored intersection types: a bridge between linear logic and higher-order model-checking Charles

Colored intersection types: a bridge between linear logic and higher-order model-checking Charles Grellois (joint work with Paul-Andr e Melli` es) PPS & LIAFA Universit e Paris 7 TYPES conference May 18th, 2015 Charles

549 views • 35 slides
The ABCDs of Paxos Consensus: a set of processes decide on an input value Main application:

The ABCDs of Paxos Consensus: a set of processes decide on an input value Main application:

The ABCDs of Paxos Consensus: a set of processes decide on an input value Main application: Replicated state machines Paxos asynchronous consensus algorithm AP Abstract Paxos: generic, non-local version CP Classic Paxos: stopping failures,

402 views • 25 slides
Semantics and Verification 2005 Lecture 2 informal introduction to CCS syntax of CCS semantics

Semantics and Verification 2005 Lecture 2 informal introduction to CCS syntax of CCS semantics

Introduction to CCS Syntax of CCS Semantics of CCS Semantics and Verification 2005 Lecture 2 informal introduction to CCS syntax of CCS semantics of CCS Lecture 2 Semantics and Verification 2005 Introduction to CCS Sequential Fragment

304 views • 12 slides
Conditions for Efficiency Improvement by Tree Transducer Composition Janis Voigtl ander

Conditions for Efficiency Improvement by Tree Transducer Composition Janis Voigtl ander

RTA, July 23, 2002 Conditions for Efficiency Improvement by Tree Transducer Composition Janis Voigtl ander Dresden University of Technology voigt@tcs.inf.tu-dresden.de Supported by the Deutsche Forschungsgemeinschaft under grant KU

185 views • 16 slides
Dynamic Programming Carola Wenk Slides courtesy of Charles Leiserson with changes and additions

Dynamic Programming Carola Wenk Slides courtesy of Charles Leiserson with changes and additions

CS 3343 Fall 2007 Dynamic Programming Carola Wenk Slides courtesy of Charles Leiserson with changes and additions by Carola Wenk 10/18/07 CS 334 Analysis of Algorithms 1 Dynamic programming Algorithm design technique (like divide and

593 views • 17 slides
Property lists York University CSE 3401 Vida Movahedi 1 York University CSE 3401 V.

Property lists York University CSE 3401 Vida Movahedi 1 York University CSE 3401 V.

Property lists York University CSE 3401 Vida Movahedi 1 York University CSE 3401 V. Movahedi 14_PropertyLists Overview Overview Properties for symbols P ti f b l Library example Components of a symbol Using setf with

597 views • 14 slides
Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in

Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in

Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in Hierarchic Combinations of Speci fi cations Dis Background theory linear integer arithmetic Data structures ? Conjecture list axioms/arrays

443 views • 15 slides
Expected Calibration Perform ance of the NPP Cross-track I nfrared Sounder ( CrI S) Hank

Expected Calibration Perform ance of the NPP Cross-track I nfrared Sounder ( CrI S) Hank

Expected Calibration Perform ance of the NPP Cross-track I nfrared Sounder ( CrI S) Hank Revercomb David C Tobin, Robert O. Knuteson, Joe K Taylor, Lori Borg, Fred A Best University of Wisconsin-Madison, Space Science and Engineering Center

450 views • 32 slides

More recommend