parameterised verification of strategic properties in
play

Parameterised Verification of Strategic Properties in Probabilistic - PowerPoint PPT Presentation

Mar 16, 2023 •104 likes •289 views

Parameterised Verification of Strategic Properties in Probabilistic Multi-Agent Systems Alessio Lomuscio and Edoardo Pirovano Verification of Autonomous Systems Group Imperial College London, UK https://vas.doc.ic.ac.uk/ AAMAS 2020

  1. Parameterised Verification of Strategic Properties in Probabilistic Multi-Agent Systems Alessio Lomuscio and Edoardo Pirovano Verification of Autonomous Systems Group Imperial College London, UK https://vas.doc.ic.ac.uk/ AAMAS 2020

  2. Introduction Methods exist to verify multi-agent systems (MAS) with a possibly unbounded number of agents [KL16]; this is known as parameterised verification. Recently this work has been extended to incorporate probabilities [LP19]. However, in some situations (for example, when considering security scenarios) we wish to reason about the abilities of different agents to achieve goals. Aim: To develop a methodology to verify strategic properties in probabilistic multi-agent systems. Introduction Parameterised Verification of Strategic Properties in Probabilistic MAS 2 / 17

  3. Our Contribution 1 We present a novel semantics to reason about strategic properties in probabilistic multi-agent systems . Its parameterised verification problem is undecidable in general. 2 We give a partial decision procedure for the problem, and prove its correctness. We also identify a variant of the specification language on which our procedure is complete. 3 We present an open-source implementation of this procedure and evaluate it against an example scenario. Introduction Parameterised Verification of Strategic Properties in Probabilistic MAS 3 / 17

  4. Probabilistic Multi-Agent Systems Our probabilistic multi-agent systems (PMAS) semantics is based on interpreted systems [Fag+95] and their extension to handle unbounded systems [KL16]. In our system we define the behaviour of an agent (of which there may be arbitrarily many copies) and an environment. We assume that all agents are behaviourally identical. Our results would also hold for a finite number of different agent behaviours. Further, we assume there is a null action that is always available to every agent and cannot be observed by other agents or the environment. Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 4 / 17

  5. Agents and Environments Definition A probabilistic agent template is a tuple T = � S, ι, Act, P, t � where: The finite set S � = ∅ represents the agent’s local states. ι ∈ S is a distinguished initial state. Act � = ∅ is a finite set of possible local actions. The agent’s protocol function P : S → 2 Act gives the set of possible actions in each state. The agent’s transition function t : S × Act E × 2 Act × Act → Dist ( S ) returns a distribution on the agent’s next state given its current state, the environment’s action, the set of actions performed by all the agents (including the one performed by the agent being considered) and the action performed by this agent at this time-step. The environment is similarly defined. Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 5 / 17

  6. Example Agent Figure: An example of an agent template. Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 6 / 17

  7. Probabilistic Multi-Agent Systems We put an agent template and an environment together with a labelling function to give a system, defined below. Definition A probabilistic multi-agent system (PMAS) is a tuple S = � T, E, V� , where T is a probabilistic agent template, E is an environment and V : S × S E → 2 AP is a labelling function on a set of atomic propositions AP . We denote be S ( n ) the system obtained by fixing a number n of agents. Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 7 / 17

  8. P[ATL ∗ ] We consider specifications based on a fragment of PATL ∗ which we call P[ATL ∗ ]. Definition Given a set AP of atomic propositions, P[ATL ∗ ] formulae are defined by the following grammar: φ ::= �� A �� P ⊲ ⊳r [ ψ ] ψ ::= ⊤ | ( p, i ) | ¬ ψ | ψ ∧ ψ | Xψ | ψUψ, where A ⊂ Z + ∪ { E } is a finite set of agents (and possibly the environment), p ∈ AP , i ∈ Z + , ⊲ ⊳ ∈ { <, ≤ , ≥ , > } and r ∈ [0 , 1] . Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 8 / 17

  9. P[ATL ∗ ] Example Example Consider an opinion formation protocol where a group of robots have to agree on some choice of option. Then, the P[ATL ∗ ] formula �� 2 , E �� P ≥ 0 . 5 [ G ¬ ( decisionReached, 1)] represents that agent 2 and the environment have a strategy that ensures with probability at least 0 . 5 that agent 1 does not reach a decision. We say a formula is m -indexed if it refers to agents with index at most m . For example, the above formula is 2 -indexed. Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 9 / 17

  10. Parameterised Model Checking Problem Definition Given a PMAS S and an m -indexed formula φ , the PMCP is to determine whether S ( n ) | = φ for all n ≥ m . If this is the case we write S | = φ . This problem is undecidable in general. Nonetheless, we aim to develop a partial decision procedure for it. Probabilistic Multi-Agent Systems Parameterised Verification of Strategic Properties in Probabilistic MAS 10 / 17

  11. Maximal Probability Definition Let S be a PMAS, A a coalition of agents and ψ a path formula. Then we use �� A �� P n,max =? [ ψ ] to denote the maximal value of r ∈ [0 , 1] for which it is the case that S ( n ) | = �� A �� P ≥ r [ ψ ] . Intuitively, this is the maximum probability of ψ that the agents A can achieve in a system of size n . Note that if we can compute the range of �� A �� P n,max =? [ ψ ] as n varies then we would have a decision procedure for the PMCP. Model Checking Parameterised Verification of Strategic Properties in Probabilistic MAS 11 / 17

  12. Upper Bound Lemma Let S be a PMAS. Then, for any set of agents A and path formula ψ �� A �� P n,max =? [ ψ ] ≥ �� A �� P n +1 ,max =? [ ψ ] for values of n larger than the index of the formula. Intuitively, adding a new agent that is not referred to in the formula can only make it less likely that ψ is satisfied since the additional agent will be aiming to achieve ¬ ψ . So, the upper bound on the probability for an m -indexed formula is simply �� A �� P m,max =? [ ψ ] , which we can compute. Model Checking Parameterised Verification of Strategic Properties in Probabilistic MAS 12 / 17

  13. Lower Bound For the lower bound, we give a method based on constructing an abstract model, the details of which can be found in the paper. In this model, we have a component that can capture the behaviour of an arbitrarily large number of agents. The bound computed by this method is not tight. Thus, the decision procedure is incomplete. However, it still enables the verification of some systems. We can replace the the ψ 1 Uψ 2 operator in our logic with ψ 1 U ≤ k ψ 2 which is read as“at some point within k time-steps ψ ′ 2 holds and before then ψ ′ 1 is true”. In this case, we can give a complete procedure. Model Checking Parameterised Verification of Strategic Properties in Probabilistic MAS 13 / 17

  14. Implementation Our implementation, called PSV-S , is based on PRISM-games [Che+13]. It is open-source and available to download here: https://vas.doc.ic.ac.uk/software/probabilistic/ In order to verify the functionality and scalability of our tool, we used it to model a channel jamming security protocol [Zhu+10]. In this scenario, users can either jam channels (making it more difficult for other users of that channel to transmit along them) or transmit messages. We studied the property �� 1 �� P ≥ p [ F ≤ 15 ( transmitted 3 , 1)] which represents that agent 1 can ensure with probability at least p that 3 messages are transmitted within the first 15 time steps. Implementation Parameterised Verification of Strategic Properties in Probabilistic MAS 14 / 17

  15. Results 1 0 . 8 Maximum Probability 0 . 6 0 . 4 0 . 2 0 1 2 3 4 5 6 Number of agents ( n ) Figure: Graph showing the probability �� 1 �� P n,max =? [ F ≤ 15 ( transmitted 3 , 1)] for different values of n . The red dashed lines show the expected bounds computed by our procedure. Implementation Parameterised Verification of Strategic Properties in Probabilistic MAS 15 / 17

  16. Conclusions We have proposed a semantics to reason about strategies in probabilistic multi-agent systems with a possibly unbounded number of agents. While our verification problem is undecidable in general, we have presented a partial decision procedure which is complete for a less expressive variant of the specification logic. We plan to continue work in this area by identifying further decidable fragments of the verification problem and building decision procedures for these. Conclusions Parameterised Verification of Strategic Properties in Probabilistic MAS 16 / 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Why Risk Models Should be Why Risk Models Should be Parameterised Parameterised William Marsh,

Why Risk Models Should be Why Risk Models Should be Parameterised Parameterised William Marsh,

Why Risk Models Should be Why Risk Models Should be Parameterised Parameterised William Marsh, william@dcs.qmul.ac.uk Risk Assessment and Decision Analysis Research Group Acknowledgements Acknowledgements Joint work with George

491 views • 47 slides
Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and

Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and

Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and Algorithmic Verification David Basin ETH Zurich Summer School on Verification Technology, Systems &amp; Applications Nancy France August 2018

1.23k views • 78 slides
Outline Introduction Modeling Specifying properties and Verification An example

Outline Introduction Modeling Specifying properties and Verification An example

Outline Introduction Modeling Specifying properties and Verification An example Project assignment References, links Shangzhu Weng Labeled Transition System Analyzer (LTSA) Animate and check the behavior of the overall

928 views • 51 slides
Liveness of Randomised Parameterised Systems under Arbitrary Schedulers Anthony W. Lin and

Liveness of Randomised Parameterised Systems under Arbitrary Schedulers Anthony W. Lin and

Liveness of Randomised Parameterised Systems under Arbitrary Schedulers Anthony W. Lin and Philipp Ruemmer Summary of results Automatic method for proving liveness for randomised parameterised systems, e.g., Randomised Self-Stabilising

484 views • 45 slides
Understanding the Security Properties of Ballot-Based Verification Techniques Eric Rescorla

Understanding the Security Properties of Ballot-Based Verification Techniques Eric Rescorla

Understanding the Security Properties of Ballot-Based Verification Techniques Eric Rescorla ekr@rtfm.com EVT/WOTE 2009 Understanding the Security Properties of Ballot-Based Verification 1 WARNING This talk contains no research content.

284 views • 15 slides
Streaming Verification of Graph Properties Amirali Abdullah 1 Samira Daruki 2 Chitradeep Dutta Roy

Streaming Verification of Graph Properties Amirali Abdullah 1 Samira Daruki 2 Chitradeep Dutta Roy

Streaming Verification of Graph Properties Amirali Abdullah 1 Samira Daruki 2 Chitradeep Dutta Roy 2 Suresh Venkatasubramanian 2 December 11, 2016 1 Qualtrics 2 University of Utah 1 Streaming Verification of Graph Properties Amirali Abdullah 1

983 views • 72 slides
Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Pascal LAFOURCADE

Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Pascal LAFOURCADE

Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Pascal LAFOURCADE , Vanessa Terrade &amp; Sylvain Vigier Universit e Joseph

1.01k views • 49 slides
Verification and Synthesis of Symmetric Uni-Rings for Leads-To Properties Ali Ebnenasir

Verification and Synthesis of Symmetric Uni-Rings for Leads-To Properties Ali Ebnenasir

Verification and Synthesis of Symmetric Uni-Rings for Leads-To Properties Ali Ebnenasir aebnenas@mtu.edu Department of Computer Science College of Computing Michigan Technological University Houghton MI 49931 http://asd.cs.mtu.edu/

584 views • 56 slides
Boosting Verification Scalability via Structural Grouping and Semantic Partitioning of Properties

Boosting Verification Scalability via Structural Grouping and Semantic Partitioning of Properties

Boosting Verification Scalability via Structural Grouping and Semantic Partitioning of Properties Rohit Dureja * , Jason Baumgartner , Alexander Ivrii , Robert Kanzelman , Kristin Y. Rozier * * Iowa State University IBM Corporation

577 views • 46 slides
Can Charlie distinguish Alice and Bob? Automated verification of equivalence properties Steve

Can Charlie distinguish Alice and Bob? Automated verification of equivalence properties Steve

Can Charlie distinguish Alice and Bob? Automated verification of equivalence properties Steve Kremer joint work with: Myrto Arapinis, David Baelde, Rohit Chadha, Vincent Cheval, S tefan Ciob ac a, V eronique Cortier, St ephanie

1.09k views • 87 slides
An Automata Based Approach for Verification of Information Flow Properties Deepak DSouza,

An Automata Based Approach for Verification of Information Flow Properties Deepak DSouza,

An Automata Based Approach for Verification of Information Flow Properties Deepak DSouza, Raghavendra K.R., Barbara Sprick Indian Institute of Science, Bangalore, India An Automata Based Approach for Verification of Information Flow

696 views • 58 slides
Compositional Verification of Security Properties for Embedded Execution Platforms Christoph

Compositional Verification of Security Properties for Embedded Execution Platforms Christoph

Compositional Verification of Security Properties for Embedded Execution Platforms Christoph Baumann , Oliver Schwarz , Mads Dam KTH Royal Institute of Technology, Stockholm, Sweden RISE.SICS, Kista, Sweden cbaumann@kth.se

903 views • 65 slides
Structured graphs and the verification of their monadic second-order properties by means of

Structured graphs and the verification of their monadic second-order properties by means of

Structured graphs and the verification of their monadic second-order properties by means of automata Bruno Courcelle and Irne Durand Bordeaux University, LaBRI (CNRS laboratory) Demonstration of the software TRAG Written by Irne Durand and

754 views • 52 slides
PART FIVE: SOME VERIFICATION CHALLENGES a DFC case study with several verification problems,

PART FIVE: SOME VERIFICATION CHALLENGES a DFC case study with several verification problems,

PART FIVE: SOME VERIFICATION CHALLENGES a DFC case study with several verification problems, all concerning signaling properties and event-based feature interactions SIGNALING INTERACTIONS transparency: a box behaves transparently autonomy:

321 views • 12 slides
Scalable Software Testing and Verification of Non-Functional Properties through Heuristic Search

Scalable Software Testing and Verification of Non-Functional Properties through Heuristic Search

Scalable Software Testing and Verification of Non-Functional Properties through Heuristic Search and Optimization Lionel Briand Interdisciplinary Centre for ICT Security, Reliability, and Trust (SnT) University of Luxembourg, Luxembourg ITEQS,

1.41k views • 113 slides
based Hardware Verification Makai Mann, Clark Barrett Hardware Verification SAT is king

based Hardware Verification Makai Mann, Clark Barrett Hardware Verification SAT is king

Finding Critical Clauses in SMT- based Hardware Verification Makai Mann, Clark Barrett Hardware Verification SAT is king Still faces scaling issues, particularly for data-path properties Satisfiability Modulo Theories (SMT) can

605 views • 5 slides
Computational Social Choice: Spring 2015 Ulle Endriss Institute for Logic, Language and

Computational Social Choice: Spring 2015 Ulle Endriss Institute for Logic, Language and

Strategic Behaviour COMSOC 2015 Computational Social Choice: Spring 2015 Ulle Endriss Institute for Logic, Language and Computation University of Amsterdam Ulle Endriss 1 Strategic Behaviour COMSOC 2015 Plan for Today So far we have

474 views • 16 slides
Business Opportunities workshop for consultants Michael Davis, Division Director Human Resource

Business Opportunities workshop for consultants Michael Davis, Division Director Human Resource

Business Opportunities workshop for consultants Michael Davis, Division Director Human Resource and Service Equity Branch Environmental Justice and Service Equity Master of Ceremonies Welcome Linda De Boldt, Deputy Director Project Delivery

694 views • 45 slides
Infrastructure Service Delivery Marty Rowland NYC Department of Parks and Recreation October

Infrastructure Service Delivery Marty Rowland NYC Department of Parks and Recreation October

Infrastructure Service Delivery Marty Rowland NYC Department of Parks and Recreation October 7, 2020 ISO 55000 Asset Management ASTM E3210 Infrastructure Management ISO 37120 Sustainable cities and communities indicators for

406 views • 7 slides
Global Webinar on Recommenda0ons from Consulta0on on Modern

Global Webinar on Recommenda0ons from Consulta0on on Modern

Global Webinar on Recommenda0ons from Consulta0on on Modern Slavery / Human Trafficking Rome: 3-7 November 2014 Dr Fulata Moyo Personal and

814 views • 20 slides
Game Engine Pull-Back Micro Behaviour AI Agent Global State Macro Strategy Values Planner

Game Engine Pull-Back Micro Behaviour AI Agent Global State Macro Strategy Values Planner

Macro (Strategy) Layer Level AI High Micro (Tactical) Layer Gameplay Layer Game Engine Pull-Back Micro Behaviour AI Agent Global State Macro Strategy Values Planner Local State Micro Behaviour Values Selection AI Game Game Actions

612 views • 46 slides
Organizing For Growth: Creating Natural Business Units Presented to: Aerospace and Defense Forum

Organizing For Growth: Creating Natural Business Units Presented to: Aerospace and Defense Forum

The Aerospace &amp; Defense Forum San Diego Chapter April 22, 2014 Organizing For Growth: Creating Natural Business Units Presented to: Aerospace and Defense Forum April 22, 2014 San Diego, California Purpose: To define your

510 views • 10 slides
Confessions of an RPG Programmer: Why use Zend Framework? Mike Pavlak Solutions Consultant, Zend

Confessions of an RPG Programmer: Why use Zend Framework? Mike Pavlak Solutions Consultant, Zend

Confessions of an RPG Programmer: Why use Zend Framework? Mike Pavlak Solutions Consultant, Zend Alan Seiden Consultant/developer, Strategic Business Systems June 17, 2009 About Strategic Business Systems, Inc. IBM partner since 1982

973 views • 71 slides
August 25 2015 Rich Tetreault, Chief Engineer 2 q Asset Sustainability q Fiscal

August 25 2015 Rich Tetreault, Chief Engineer 2 q Asset Sustainability q Fiscal

Risk-Based Asset Management Programs can catalyze ERM Rich Tetreault Vermont DOT Experience August 25 2015 Rich Tetreault, Chief Engineer 2 q Asset Sustainability q Fiscal Accountability q Organizational Alignment q Credible

727 views • 13 slides

More recommend