nicta advanced course theorem proving principles
play

NICTA Advanced Course Theorem Proving Principles, Techniques, - PowerPoint PPT Presentation

Jan 03, 2023 •130 likes •1.07k views

NICTA Advanced Course Theorem Proving Principles, Techniques, Applications Gerwin Klein Formal Methods 1 O RGANISATORIALS When Mon 14:00 15:30 Wed 10:30 12:00 7 weeks ends Mon, 20.9.2004 Exceptions Mon 6.9., 13.9., 20.9. at

  1. NICTA Advanced Course Theorem Proving Principles, Techniques, Applications Gerwin Klein Formal Methods 1

  2. O RGANISATORIALS When Mon 14:00 – 15:30 Wed 10:30 – 12:00 7 weeks ends Mon, 20.9.2004 Exceptions Mon 6.9., 13.9., 20.9. at 15:00 – 16:30 Web page: http://www.cse.unsw.edu.au/˜kleing/teaching/thprv-04/ free – no credits – no assigments O RGANISATORIALS 2

  3. W HAT YOU WILL LEARN ➜ how to use a theorem prover W HAT YOU WILL LEARN 3

  4. W HAT YOU WILL LEARN ➜ how to use a theorem prover ➜ background, how it works W HAT YOU WILL LEARN 3- A

  5. W HAT YOU WILL LEARN ➜ how to use a theorem prover ➜ background, how it works ➜ how to prove and specify W HAT YOU WILL LEARN 3- B

  6. W HAT YOU WILL LEARN ➜ how to use a theorem prover ➜ background, how it works ➜ how to prove and specify Health Warning Theorem Proving is addictive W HAT YOU WILL LEARN 3- C

  7. W HAT YOU WILL NOT LEARN ➜ semantics / model theory W HAT YOU WILL NOT LEARN 4

  8. W HAT YOU WILL NOT LEARN ➜ semantics / model theory ➜ soundness / completeness proofs W HAT YOU WILL NOT LEARN 4- A

  9. W HAT YOU WILL NOT LEARN ➜ semantics / model theory ➜ soundness / completeness proofs ➜ decision procedures W HAT YOU WILL NOT LEARN 4- B

  10. C ONTENT ➜ Intro & motivation, getting started with Isabelle (today) C ONTENT 5

  11. C ONTENT ➜ Intro & motivation, getting started with Isabelle (today) ➜ Foundations & Principles • Lambda Calculus • Higher Order Logic, natural deduction • Term rewriting C ONTENT 5- A

  12. C ONTENT ➜ Intro & motivation, getting started with Isabelle (today) ➜ Foundations & Principles • Lambda Calculus • Higher Order Logic, natural deduction • Term rewriting ➜ Proof & Specification Techniques • Datatypes, recursion, induction • Inductively defined sets, rule induction • Calculational reasoning, mathematics style proofs • Hoare logic, proofs about programs C ONTENT 5- B

  13. C REDITS material (in part) shamelessly stolen from Tobias Nipkow, Larry Paulson, Markus Wenzel David Basin, Burkhardt Wolff Don’t blame them, errors are mine C REDITS 6

  14. W HAT IS A PROOF ? to prove W HAT IS A PROOF ? 7

  15. W HAT IS A PROOF ? to prove (Marriam-Webster) ➜ from Latin probare (test, approve, prove) W HAT IS A PROOF ? 7- A

  16. W HAT IS A PROOF ? to prove (Marriam-Webster) ➜ from Latin probare (test, approve, prove) ➜ to learn or find out by experience (archaic) W HAT IS A PROOF ? 7- B

  17. W HAT IS A PROOF ? to prove (Marriam-Webster) ➜ from Latin probare (test, approve, prove) ➜ to learn or find out by experience (archaic) ➜ to establish the existence, truth, or validity of (by evidence or logic) prove a theorem, the charges were never proved in court W HAT IS A PROOF ? 7- C

  18. W HAT IS A PROOF ? to prove (Marriam-Webster) ➜ from Latin probare (test, approve, prove) ➜ to learn or find out by experience (archaic) ➜ to establish the existence, truth, or validity of (by evidence or logic) prove a theorem, the charges were never proved in court pops up everywhere ➜ politics (weapons of mass destruction) ➜ courts (beyond reasonable doubt) ➜ religion (god exists) ➜ science (cold fusion works) W HAT IS A PROOF ? 7- D

  19. W HAT IS A MATHEMATICAL PROOF ? In mathematics, a proof is a demonstration that, given certain axioms, some statement of interest is necessarily true. (Wikipedia) √ Example: 2 is not rational. Proof: W HAT IS A MATHEMATICAL PROOF ? 8

  20. W HAT IS A MATHEMATICAL PROOF ? In mathematics, a proof is a demonstration that, given certain axioms, some statement of interest is necessarily true. (Wikipedia) √ Example: 2 is not rational. Proof: assume there is r ∈ Q such that r 2 = 2 . Hence there are mutually prime p and q with r = p q . Thus 2 q 2 = p 2 , i.e. p 2 is divisible by 2 . 2 is prime, hence it also divides p , i.e. p = 2 s . Substituting this into 2 q 2 = p 2 and dividing by 2 gives q 2 = 2 s 2 . Hence, q is also divisible by 2 . Contradiction. Qed. W HAT IS A MATHEMATICAL PROOF ? 8- A

  21. N ICE , BUT .. ➜ still not rigorous enough for some • what are the rules? • what are the axioms? • how big can the steps be? • what is obvious or trivial? ➜ informal language, easy to get wrong ➜ easy to miss something, easy to cheat N ICE , BUT .. 9

  22. N ICE , BUT .. ➜ still not rigorous enough for some • what are the rules? • what are the axioms? • how big can the steps be? • what is obvious or trivial? ➜ informal language, easy to get wrong ➜ easy to miss something, easy to cheat Theorem. A cat has nine tails. Proof. No cat has eight tails. Since one cat has one more tail than no cat, it must have nine tails. N ICE , BUT .. 9- A

  23. W HAT IS A FORMAL PROOF ? A derivation in a formal calculus W HAT IS A FORMAL PROOF ? 10

  24. W HAT IS A FORMAL PROOF ? A derivation in a formal calculus Example: A ∧ B − → B ∧ A derivable in the following system S ∪ { X } ⊢ Y X ∈ S S ⊢ X (assumption) → Y (impI) Rules: S ⊢ X − S ∪ { X, Y } ⊢ Z S ⊢ X S ⊢ Y S ∪ { X ∧ Y } ⊢ Z (conjE) (conjI) S ⊢ X ∧ Y W HAT IS A FORMAL PROOF ? 10- A

  25. W HAT IS A FORMAL PROOF ? A derivation in a formal calculus Example: A ∧ B − → B ∧ A derivable in the following system S ∪ { X } ⊢ Y X ∈ S S ⊢ X (assumption) → Y (impI) Rules: S ⊢ X − S ∪ { X, Y } ⊢ Z S ⊢ X S ⊢ Y S ∪ { X ∧ Y } ⊢ Z (conjE) (conjI) S ⊢ X ∧ Y Proof: 1. { A, B } ⊢ B (by assumption) 2. { A, B } ⊢ A (by assumption) 3. { A, B } ⊢ B ∧ A (by conjI with 1 and 2) 4. { A ∧ B } ⊢ B ∧ A (by conjE with 3) 5. {} ⊢ A ∧ B − → B ∧ A (by impI with 4) W HAT IS A FORMAL PROOF ? 10- B

  26. W HAT IS A THEOREM PROVER ? Implementation of a formal logic on a computer. ➜ fully automated (propositional logic) ➜ automated, but not necessarily terminating (first order logic) ➜ with automation, but mainly interactive (higher order logic) W HAT IS A THEOREM PROVER ? 11

  27. W HAT IS A THEOREM PROVER ? Implementation of a formal logic on a computer. ➜ fully automated (propositional logic) ➜ automated, but not necessarily terminating (first order logic) ➜ with automation, but mainly interactive (higher order logic) ➜ based on rules and axioms ➜ can deliver proofs W HAT IS A THEOREM PROVER ? 11- A

  28. W HAT IS A THEOREM PROVER ? Implementation of a formal logic on a computer. ➜ fully automated (propositional logic) ➜ automated, but not necessarily terminating (first order logic) ➜ with automation, but mainly interactive (higher order logic) ➜ based on rules and axioms ➜ can deliver proofs There are other (algorithmic) verifi cation tools: ➜ model checking, static analysis, ... ➜ usually do not deliver proofs W HAT IS A THEOREM PROVER ? 11- B

  29. W HY THEOREM PROVING ? ➜ Analysing systems/programs thoroughly W HY THEOREM PROVING ? 12

  30. W HY THEOREM PROVING ? ➜ Analysing systems/programs thoroughly ➜ Finding design and specification errors early W HY THEOREM PROVING ? 12- A

  31. W HY THEOREM PROVING ? ➜ Analysing systems/programs thoroughly ➜ Finding design and specification errors early ➜ High assurance (mathematical, machine checked proof) W HY THEOREM PROVING ? 12- B

  32. W HY THEOREM PROVING ? ➜ Analysing systems/programs thoroughly ➜ Finding design and specification errors early ➜ High assurance (mathematical, machine checked proof) ➜ it’s not always easy ➜ it’s fun W HY THEOREM PROVING ? 12- C

  33. Main theorem proving system for this course: Isabelle ∀ = α λ β → 13

  34. W HAT IS I SABELLE ? A generic interactive proof assistant W HAT IS I SABELLE ? 14

  35. W HAT IS I SABELLE ? A generic interactive proof assistant ➜ generic: not specialised to one particular logic (two large developments: HOL and ZF, will mainly use HOL) W HAT IS I SABELLE ? 14- A

  36. W HAT IS I SABELLE ? A generic interactive proof assistant ➜ generic: not specialised to one particular logic (two large developments: HOL and ZF, will mainly use HOL) ➜ interactive: more than just yes/no, you can interactively guide the system W HAT IS I SABELLE ? 14- B

  37. W HAT IS I SABELLE ? A generic interactive proof assistant ➜ generic: not specialised to one particular logic (two large developments: HOL and ZF, will mainly use HOL) ➜ interactive: more than just yes/no, you can interactively guide the system ➜ proof assistant: helps to explore, find, and maintain proofs W HAT IS I SABELLE ? 14- C

  38. W HY I SABELLE ? ➜ free ➜ widely used system ➜ active development ➜ high expressiveness and automation ➜ reasonably easy to use W HY I SABELLE ? 15

  39. W HY I SABELLE ? ➜ free ➜ widely used system ➜ active development ➜ high expressiveness and automation ➜ reasonably easy to use ➜ (and because I know it best ;-)) W HY I SABELLE ? 15- A

  40. W HY I SABELLE ? ➜ free ➜ widely used system ➜ active development ➜ high expressiveness and automation ➜ reasonably easy to use ➜ (and because I know it best ;-)) We will see other systems, too: HOL4, Coq, Waldmeister W HY I SABELLE ? 15- B

  41. If I prove it on the computer, it is correct, right? 16

  42. I F I PROVE IT ON THE COMPUTER , IT IS CORRECT , RIGHT ? No, because: I F I PROVE IT ON THE COMPUTER , IT IS CORRECT , RIGHT ? 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Health Warning Principles, Techniques, Applications Theorem Proving is addictive Gerwin Klein

Health Warning Principles, Techniques, Applications Theorem Proving is addictive Gerwin Klein

W HAT YOU WILL LEARN how to use a theorem prover background, how it works how to prove and specify NICTA Advanced Course Slide 1 Slide 3 Theorem Proving Health Warning Principles, Techniques, Applications Theorem Proving is

262 views • 9 slides
a = b c . . . 1 C ONTENT Intro & motivation, getting started with Isabelle

a = b c . . . 1 C ONTENT Intro & motivation, getting started with Isabelle

NICTA Advanced Course Theorem Proving Principles, Techniques, Applications a = b c . . . 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations & Principles Lambda Calculus Higher Order Logic,

1.26k views • 93 slides
Automated Theorem Proving Peter Baumgartner Peter.Baumgartner@nicta.com.au

Automated Theorem Proving Peter Baumgartner Peter.Baumgartner@nicta.com.au

Automated Theorem Proving Peter Baumgartner Peter.Baumgartner@nicta.com.au http://users.rsise.anu.edu.au/baumgart/ Slides partially based on material by Alexander Fuchs, Harald Ganzinger, John Slaney, Viorica Sofronie-Stockermans and Uwe

1.22k views • 93 slides
a = b c . . . C ONTENT G ENERAL R ECURSION Intro & motivation, getting started with

a = b c . . . C ONTENT G ENERAL R ECURSION Intro & motivation, getting started with

L AST W EEK Constructive Logic & Curry-Howard-Isomorphism The Coq System NICTA Advanced Course The HOL4 system Before that: datatypes, recursion, induction Theorem Proving Slide 1 Slide 3 Principles, Techniques, Applications

898 views • 7 slides
The HOL theorem-proving system Michael Norrish Michael.Norrish@nicta.com.au National ICT

The HOL theorem-proving system Michael Norrish Michael.Norrish@nicta.com.au National ICT

HOL The HOL theorem-proving system Michael Norrish Michael.Norrish@nicta.com.au National ICT Australia 8 September 2004 HOL Outline Introduction History High-level description Build a HOL kernel Design philosophy Basic types Logic

1.29k views • 64 slides
HOL 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations &

HOL 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations &

NICTA Advanced Course Theorem Proving Principles, Techniques, Applications HOL 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations & Principles Lambda Calculus Higher Order Logic, natural deduction

995 views • 95 slides
1 C ONTENT Intro & motivation, getting started with Isabelle Foundations

1 C ONTENT Intro & motivation, getting started with Isabelle Foundations

NICTA Advanced Course Theorem Proving Principles, Techniques, Applications 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations & Principles Lambda Calculus Higher Order Logic, natural

1.61k views • 124 slides
C ONTENT A PPLYING A R EWRITE R ULE l Intro & motivation, getting started

C ONTENT A PPLYING A R EWRITE R ULE l Intro & motivation, getting started

L AST T IME Introducing new Types Equations and Term Rewriting Confluence and Termination of reduction systems NICTA Advanced Course Term Rewriting in Isabelle Slide 1 Slide 3 Theorem Proving Principles, Techniques, Applications

374 views • 8 slides
HOL C ONTENT Intro & motivation, getting started with Isabelle Foundations &

HOL C ONTENT Intro & motivation, getting started with Isabelle Foundations &

L AST T IME ON HOL Proof rules for propositional and predicate logic Safe and unsafe rules NICTA Advanced Course Forward Proof Theorem Proving The Epsilon Operator Slide 1 Slide 3 Principles, Techniques, Applications Some

292 views • 7 slides
locales C ONTENT I SAR I S B ASED O N C ONTEXTS Intro & motivation, getting started with

locales C ONTENT I SAR I S B ASED O N C ONTEXTS Intro & motivation, getting started with

L AST T IME Syntax and semantics of IMP Hoare logic rules Soundness of Hoare logic NICTA Advanced Course Verification conditions Slide 1 Theorem Proving Slide 3 Principles, Techniques, Applications Example program proofs

322 views • 8 slides
locales 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations &

locales 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations &

NICTA Advanced Course Theorem Proving Principles, Techniques, Applications locales 1 C ONTENT Intro & motivation, getting started with Isabelle Foundations & Principles Lambda Calculus Higher Order Logic, natural

1.42k views • 92 slides
C ONTENT T HE T HREE B ASIC W AYS OF I NTRODUCING T HEOREMS Axioms : Intro &

C ONTENT T HE T HREE B ASIC W AYS OF I NTRODUCING T HEOREMS Axioms : Intro &

L AST T IME ON HOL Defining HOL Higher Order Abstract Syntax Deriving proof rules NICTA Advanced Course More automation Slide 1 Slide 3 Theorem Proving Principles, Techniques, Applications C ONTENT T HE T HREE B ASIC W

568 views • 8 slides
-calculus originally meant as foundation of mathematics important applications in

-calculus originally meant as foundation of mathematics important applications in

- CALCULUS Alonzo Church lived 19031995 supervised people like Alan Turing, Stephen Kleene NICTA Advanced Course famous for Church-Turing thesis, lambda calculus, Theorem Proving first undecidability results Principles,

247 views • 8 slides
On Theorem Proving for Program Checking Historical perspective and recent developments Maria

On Theorem Proving for Program Checking Historical perspective and recent developments Maria

Outline Introduction Where is theorem proving in program checking Inside theorem proving Big and little engines together: a new theorem proving style Decision procedures with speculative inferences Current and future challenges On Theorem

944 views • 69 slides
Recursion C ONTENT D ATATYPES Intro & motivation, getting started with Isabelle Example:

Recursion C ONTENT D ATATYPES Intro & motivation, getting started with Isabelle Example:

L AST T IME Sets in Isabelle Inductive Definitions Rule induction NICTA Advanced Course Fixpoints Slide 1 Theorem Proving Slide 3 Principles, Techniques, Applications Isar: induct and cases Recursion C ONTENT D ATATYPES

507 views • 9 slides
Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without

Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without

Interactive Theorem Proving, Nancy August 22, 2016 Joachim Breitner Karlsruhe Institute of Technology University of Pennsylvania, Philadelphia Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without Syntax

579 views • 43 slides
Why Formal q Reasoning Informally q Hoare Logic q Weaker and Stronger Statements Reasoning q

Why Formal q Reasoning Informally q Hoare Logic q Weaker and Stronger Statements Reasoning q

CSE 331 Announcements Software Design and Implementation First section tomorrow! Homework 0 due today (Wednesday) at 10 pm Heads up: no late days for this one! Lecture 2 Quiz 1 due tomorrow (Thursday) at 10 pm Homework 1 due

166 views • 14 slides
Traditional Logic Martin Cothran Instructor What we will do Go over the lesson Explain

Traditional Logic Martin Cothran Instructor What we will do Go over the lesson Explain

Traditional Logic Martin Cothran Instructor What we will do Go over the lesson Explain representative exercises Slide I-1 1 Four things we will cover in this lesson: Two branches of logic Three important terms Structure of arguments

398 views • 4 slides
Statements, Implication, Equivalence Martin Licht, Ph.D. January 10, 2018 UC San Diego

Statements, Implication, Equivalence Martin Licht, Ph.D. January 10, 2018 UC San Diego

Part 1: Formal Logic Statements, Implication, Equivalence Martin Licht, Ph.D. January 10, 2018 UC San Diego Department of Mathematics Math 109 A statement is either true or false. We also call true or false the truth values of a

599 views • 25 slides
Big Ideas for CS 251 Theory of Programming Languages Principles of Programming Languages

Big Ideas for CS 251 Theory of Programming Languages Principles of Programming Languages

Big Ideas for CS 251 Theory of Programming Languages Principles of Programming Languages CS251&Programming&Languages& Spring&2016,&Lyn&Turbak& ! Department!of!Computer!Science! Wellesley!College! Discussion:

933 views • 27 slides
There exists today a very elaborate system of formal logic, and specifically, of logic as

There exists today a very elaborate system of formal logic, and specifically, of logic as

There exists today a very elaborate system of formal logic, and specifically, of logic as applied to mathematics. This is a discipline with many good sides, but also with certain serious weaknesses. . . . Everybody who has worked in formal

567 views • 46 slides
Understanding Computation 1 Mathematics & Computation -Mathematics has been around for a

Understanding Computation 1 Mathematics & Computation -Mathematics has been around for a

Understanding Computation 1 Mathematics & Computation -Mathematics has been around for a long time as a method of computing. -Efforts to find canonical way of computations. -Machines have helped with calculations. Can we use

745 views • 28 slides
Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3.

Lecture Outline 1. The lecturer 2. Introduction to Formal Methods DD2452 Formal Methods 3. Course syllabus 4. Course objectives Introductory Lecture 5. Course organization 1. Lecturer 2. Formal Methods Name: Dilian Gurov Formal

56 views • 3 slides
Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process

Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process

Requirements and Formal Methods Softw are Engineering Overview Overview on the RE process What are Formal Methods? Advantages and Disadvantages of Formal Methods Formal Methods in the Requirement Process Mathematical Formulas

561 views • 20 slides

More recommend