multi formalism specification and verification in verisoft
play

Multi-Formalism Specification and Verification in Verisoft Thorsten - PowerPoint PPT Presentation

Nov 08, 2022 •197 likes •389 views

Multi-Formalism Specification and Verification in Verisoft Thorsten Bormer Universit at Koblenz-Landau June 15th, 2007 Component Overview Application Email Client Signature Software (User Interface) Module Com piler Networking /

  1. Multi-Formalism Specification and Verification in Verisoft Thorsten Bormer Universit¨ at Koblenz-Landau June 15th, 2007

  2. Component Overview Application Email Client Signature Software (User Interface) Module Com− piler Networking / Mail Server (SMTP) Communication TCP/IP System Operating Micro− Memory Software System kernel Manage− Tools ment Network Hardware Processor Screen Keyboard File System Host System T. Bormer (UKL) June 15th, 2007 2 / 18

  3. Specification/Implementation Layers Requirement Specification System Specification Email SMTP Client T. Bormer (UKL) June 15th, 2007 3 / 18

  4. Top level Specification: One Email Client... screen/kbd events Screen + Keyboard getKey updateScreen Email Email System Client signMail sendMail checkSig getMail Signature SMTP + Module TCP/IP network events T. Bormer (UKL) June 15th, 2007 4 / 18

  5. Top level Specification: One Email Client... screen/kbd events SMTP + TCP/IP network events T. Bormer (UKL) June 15th, 2007 5 / 18

  6. Top level Specification: ... or Two Clients? screen/kbd screen/kbd events events Screen + Screen + Keyboard Keyboard getKey getKey updateScreen updateScreen Two Communicating Email Email Email Systems Client Client signMail sendMail sendMail signMail checkSig getMail getMail checkSig Signature Signature SMTP + Module Module TCP/IP T. Bormer (UKL) June 15th, 2007 6 / 18

  7. Specification using Histories Components communicate using events � . . . ,(sender, receiver, message),. . . � ✻ ✻ ✻ ❄ ❄ ❄ Signature SMTP Client Specification on histories can be combined Computation of component is determined by events received T. Bormer (UKL) June 15th, 2007 7 / 18

  8. Example of Compontent specification Example from the Component Specification of the Email Client: “The User can enter any Email at will.” Let m be a string representing an email message. { h | h = h init ◦ h ′ ∧ ∃ k . ( h ′ ↓ kbd , email = k ∧ mailclientState ( h ′ ) . email = m ) } T. Bormer (UKL) June 15th, 2007 8 / 18

  9. Specification/Implementation Layers Requirement Specification System Specification Email SMTP Client T. Bormer (UKL) June 15th, 2007 9 / 18

  10. Specification/Implementation of the eMail Component Requirement Specification System Specification Email Client Component Spec. Statecharts Event Mail Loop Functions ? A SMTP B Hoare ? Spec. Mail Event Loop Functions C0 Implementation T. Bormer (UKL) June 15th, 2007 10 / 18

  11. Specification/Implementation of the eMail Component Requirement Specification System Specification Email Client Component Spec. Statecharts Event Mail Loop Functions ? A SMTP B Hoare ? Spec. Mail Event Loop Functions C0 Implementation T. Bormer (UKL) June 15th, 2007 11 / 18

  12. Specification with Automata Run Mode Command Mode H sign Send Mode Sent [SUCCESS] send [SUCCESS] Signed Edit Email sign edit|view H [SUCCESS] Not Changed quit viewing insert pub. key Unsigned Changed quit editing generate key pair typing move cursor Receive Mode Checked check Edit Pub. Key [SUCCESS] edit|view Not Changed H Not Checked quit viewing | editing Changed typing poll / new email arrived move cursor T. Bormer (UKL) June 15th, 2007 12 / 18

  13. Relation: Implementation/Automata/Histories Specification with Histories Run Mode Execute Update Command Mode H Command Send Mode Screen Sent send [SUCCESS] Signed Edit Email sign H edit|view [SUCCESS] Not Changed quit viewing insert pub. key Unsigned Changed quit editing generate key pair typing move cursor Receive Mode Checked check Edit Pub. Key [SUCCESS] edit|view Update Get Not Changed H Not Checked quit viewing | editing Changed Command Screen typing poll / new email arrived move cursor {Pre} {Post} main loop Proc C0 Implementation T. Bormer (UKL) June 15th, 2007 13 / 18

  14. Enhancing Automata with Structure sign Signed Unsigned [success] [pre]sign/[post] Unsigned Signed stateInv: stateInv: mailLength>0 isSigned(mail) T. Bormer (UKL) June 15th, 2007 14 / 18

  15. Implementation of the Event Loop Event Loop while (cmd != CMD QUIT) { applicConfUpdateScreen ( applicConf , osConf ) ; osConfGetKeyStroke ( osConf , key ) ; cmd = command( ∗ key , applicConf − > s t a t e ) ; applicConfUpdateScreen ( applicConf , osConf ) ; execute ( applicConf , cmd , ∗ key ) ; } T. Bormer (UKL) June 15th, 2007 15 / 18

  16. Connection Automaton ↔ C0 Current Status verified that C0 implementation performs single transition in the statechart have to show that ’event loop’ implements automaton Verification of ’event loop’ prove using Hoare-logic that one iteration always performs a valid transition prove using temporal logic that event loop implements automaton T. Bormer (UKL) June 15th, 2007 16 / 18

  17. Conclusion integration of specification/verification non-trivial task But: we’re almost done! verification of the ’event loop’ will be covered by my diploma thesis grateful for comments! T. Bormer (UKL) June 15th, 2007 17 / 18

  18. Thank you for your attention! T. Bormer (UKL) June 15th, 2007 18 / 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Verisoft Verification as Engineering Gerd Beuster gb@uni-koblenz.de Universitt Koblenz-Landau

Verisoft Verification as Engineering Gerd Beuster gb@uni-koblenz.de Universitt Koblenz-Landau

Verisoft Verification as Engineering Gerd Beuster gb@uni-koblenz.de Universitt Koblenz-Landau Overview Part 1: Verisoft Part 2: Formalizing Input and Output Verisoft p. 2/15 Part 1 Part 1: Verisoft Verisoft p. 3/15 Verisoft

589 views • 37 slides
V E R I S O F T G R O U P I N N O VAT I O N D E L I V E R E D L e t s t a l k i n n o v a t

V E R I S O F T G R O U P I N N O VAT I O N D E L I V E R E D L e t s t a l k i n n o v a t

V E R I S O F T G R O U P I N N O VAT I O N D E L I V E R E D L e t s t a l k i n n o v a t i o n At Verisoft innovation is a way of life. Verisoft is a company who is always seeking for better and faster systems which will simplify and

479 views • 28 slides
Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification Transition systems 2

798 views • 62 slides
Formal Specification and Verification Formal specification Temporal logic 12.06.2012

Formal Specification and Verification Formal specification Temporal logic 12.06.2012

Formal Specification and Verification Formal specification Temporal logic 12.06.2012 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Formal specification Specification for program/system Specification for

443 views • 21 slides
Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification 2 Formal

627 views • 19 slides
Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus

Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus

Introduction Specification of the Java Flight Manager Runtime Assertion Checking and Verification Conclusions Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus Wonnemann Formal Specification and

708 views • 54 slides
Multi-Valued Verification 7 th International Verification Methods Workshop VKU Forum, Berlin Tim

Multi-Valued Verification 7 th International Verification Methods Workshop VKU Forum, Berlin Tim

Multi-Valued Verification 7 th International Verification Methods Workshop VKU Forum, Berlin Tim Bullock & Nelson Shum Meteorological Service of Canada (MSC) 2017-05-09 Contents The Case for Multi-valued Verification (MVV)

278 views • 23 slides
Electronic Visit Verification File Specification: Visit Interface Electronic Visit Verification

Electronic Visit Verification File Specification: Visit Interface Electronic Visit Verification

Electronic Visit Verification File Specification: Visit Interface Electronic Visit Verification Project February 26, 2020 Welcome HMOs, MCOs, IRIS FEAs Sandata team (EVV vendor) Wisconsin Department of Health Services team

941 views • 47 slides
Verifying the entire hardware of distributed real time systems W. Paul Universitt Saarbrcken

Verifying the entire hardware of distributed real time systems W. Paul Universitt Saarbrcken

Verifying the entire hardware of distributed real time systems W. Paul Universitt Saarbrcken wiss. Gesamtprojektleiter bmb+f Projekt Verisoft www.verisoft.de You all know how to design hardware... Hardware verification is the process

472 views • 44 slides
specification free monitoring CS 119 can we avoid writing specs? specification and programming

specification free monitoring CS 119 can we avoid writing specs? specification and programming

specification free monitoring CS 119 can we avoid writing specs? specification and programming specification runtime verification program input output 2 properties can be hard to write To quote quite excellent NASA software engineer

987 views • 65 slides
MULTIFLEX - a Formalism and a Tool for the Computational Morphology of Multi-Word Units Agata

MULTIFLEX - a Formalism and a Tool for the Computational Morphology of Multi-Word Units Agata

MULTIFLEX - a Formalism and a Tool for the Computational Morphology of Multi-Word Units Agata SAVARY Universit Franois Rabelais Laboratoire dInformatique IUT de Blois IPI PAN Seminar Warszawa, Jan 5, 2007 Multi-Word Units (MWUs)

595 views • 34 slides
INF5140 Specification and Verification of Parallel Systems Spring 2018 Institutt for

INF5140 Specification and Verification of Parallel Systems Spring 2018 Institutt for

INF5140 Specification and Verification of Parallel Systems Spring 2018 Institutt for informatikk, Universitetet i Oslo January 26, 2018 1 / 102 Introduction INF5140 Specification and Verification of Parallel Systems Overview,

1.14k views • 79 slides
INF5140 Specification and Verification of Parallel Systems Spring 2017 Institutt for

INF5140 Specification and Verification of Parallel Systems Spring 2017 Institutt for

INF5140 Specification and Verification of Parallel Systems Spring 2017 Institutt for informatikk, Universitetet i Oslo April 28, 2017 1 / 82 INF5140 Specification and Verification of Parallel Systems Lecture 5 - Introduction to

970 views • 82 slides
INF5140 Specification and Verification of Parallel Systems Logics, lecture 2 Spring 2015

INF5140 Specification and Verification of Parallel Systems Logics, lecture 2 Spring 2015

INF5140 Specification and Verification of Parallel Systems Logics, lecture 2 Spring 2015 February 20, 2015 1 / 37 Introduction Today: we start with the specification language Logic is the specification language for us. There are many

1.04k views • 37 slides
Specification and Verification for distributed applications running on heterogeneous

Specification and Verification for distributed applications running on heterogeneous

Specification and Verification for distributed applications running on heterogeneous infrastructures E. Madelaine Oasis team INRIA -- CNRS - I3S -- Univ. of Nice Sophia-Antipolis ECNU Dept of Software Engineering October 2010 Eric

683 views • 49 slides
Multi-Time Formalism in Quantum Field Theory Sascha Lill sascha.lill@online.de University T

Multi-Time Formalism in Quantum Field Theory Sascha Lill sascha.lill@online.de University T

Multi-Time wave functions The consistency condition Quantum Multi-time models Proof of existence and uniqueness Open questions Multi-Time Formalism in Quantum Field Theory Sascha Lill sascha.lill@online.de University T ubingen October

731 views • 23 slides
Context: States as graphs heap stack Objects & method frames as nodes Graph-Based State

Context: States as graphs heap stack Objects & method frames as nodes Graph-Based State

Context: States as graphs heap stack Objects & method frames as nodes Graph-Based State Spaces Relations & variables as (labelled) edges Cell Object val next Arend Rensink next first last University of Twente Cell

317 views • 10 slides
structures. New features Juan Rodrguez-Carvajal Institut Laue-Langevin, Grenoble, France

structures. New features Juan Rodrguez-Carvajal Institut Laue-Langevin, Grenoble, France

FullProf for magnetic structures. New features Juan Rodrguez-Carvajal Institut Laue-Langevin, Grenoble, France E-mail: jrc@ill.eu 1 Programs for handling Magnetic Structures Physica B 192, 55 (1993) 2 Programs for handling Magnetic

560 views • 52 slides
Quantum formalism for systems with temporally varying discretization Philipp H ohn Perimeter

Quantum formalism for systems with temporally varying discretization Philipp H ohn Perimeter

Quantum formalism for systems with temporally varying discretization Philipp H ohn Perimeter Institute FFP14 @ Marseille July 18th, 2014 based on PH arXiv:1401.6062, 1401.7731 and to appear and B. Dittrich, PH, T. Jacobson wip (classical

777 views • 42 slides
Realistic shell model and chiral three-body force Tokuro Fukui Yukawa Institute for

Realistic shell model and chiral three-body force Tokuro Fukui Yukawa Institute for

Realistic shell model and chiral three-body force Tokuro Fukui Yukawa Institute for Theoretical Physics, Kyoto University 22/October/2020 Biography 1 Apr. 2012-Mar. 2015 Ph. D. Apr.

592 views • 44 slides
EtR Framework: Public Health Problem, Resource Use and Equity Domains Sara Oliver MD, MSPH ACIP

EtR Framework: Public Health Problem, Resource Use and Equity Domains Sara Oliver MD, MSPH ACIP

ACIP COVID-19 Vaccines EtR Framework: Public Health Problem, Resource Use and Equity Domains Sara Oliver MD, MSPH ACIP Meeting For more information: www.cdc.gov/COVID19 November 23, 2020 Evidence to Recommendations Framework Evidence to

414 views • 40 slides
ANLP Lecture 28: What is a discourse model and what are discourse entities? Coreference

ANLP Lecture 28: What is a discourse model and what are discourse entities? Coreference

Todays lecture What is co-reference, what makes co-reference resolution hard, and what sources of information are relevant? ANLP Lecture 28: What is a discourse model and what are discourse entities? Coreference What are some

873 views • 9 slides
CMPSC 597G Module: Stack Overflows Ryan Sheatsley Professor Patrick McDaniel Fall 2015 Agenda

CMPSC 597G Module: Stack Overflows Ryan Sheatsley Professor Patrick McDaniel Fall 2015 Agenda

CMPSC 597G Module: Stack Overflows Ryan Sheatsley Professor Patrick McDaniel Fall 2015 Agenda Reading Virtual Memory Attack vector Obtaining a root shell Utilizing NOP Sleds Mitigation techniques Practice Page Virtual

263 views • 9 slides
Chapter 5: The Data Link Layer Our goals: r understand principles behind data link layer

Chapter 5: The Data Link Layer Our goals: r understand principles behind data link layer

Chapter 5: The Data Link Layer Our goals: r understand principles behind data link layer services: m error detection, correction m sharing a broadcast channel: multiple access m link layer addressing m reliable data transfer, flow control: done! r

603 views • 37 slides

More recommend