proving probabilistic proving probabilistic properties of
play

Proving Probabilistic Proving Probabilistic Properties of the I tai - PowerPoint PPT Presentation

Jan 08, 2023 •182 likes •597 views

Proving Probabilistic Proving Probabilistic Properties of the I tai I tai Rodeh Rodeh Properties of the leader election protocol for leader election protocol for any Number of Processes any Number of Processes Douglas Graham Douglas

  1. Proving Probabilistic Proving Probabilistic Properties of the I tai I tai Rodeh Rodeh Properties of the leader election protocol for leader election protocol for any Number of Processes any Number of Processes Douglas Graham Douglas Graham Department of Computing Science Department of Computing Science University of Glasgow University of Glasgow

  2. Overview Overview � Parameterised Parameterised model checking model checking � – Classical Classical parameterised parameterised model checking model checking – problem problem – Proof by induction: Proof by induction: Firewire Firewire example example – – Extending Extending Firewire Firewire & proof probabilistically & proof probabilistically – � Itai Itai Rodeh Rodeh leader election protocol leader election protocol � – Application of induction proof to Application of induction proof to Itai Itai Rodeh Rodeh – 30/06/2006 2 30/06/2006 2

  3. Parameterised Model Model Parameterised Checking Checking � For system For system M(N)=p(1) || p(2) || M(N)=p(1) || p(2) || … … || || p(N p(N) ) � can only model check property P P for fixed for fixed can only model check property N N � What if we want to verify for any What if we want to verify for any N N ? ? � � Undecidable Undecidable in general but techniques in general but techniques � apply for subclasses of system apply for subclasses of system � E.g. proof by induction [Miller & Calder] E.g. proof by induction [Miller & Calder] � – Firewire Firewire leader election protocol leader election protocol – 30/06/2006 3 30/06/2006 3

  4. Parameterised Model Model Parameterised Checking Checking 2 0 1 30/06/2006 4 30/06/2006 4

  5. Parameterised Model Model Parameterised Checking Checking 2 0 P 1 30/06/2006 5 30/06/2006 5

  6. Parameterised Model Model Parameterised Checking Checking 2 0 C P 1 30/06/2006 6 30/06/2006 6

  7. Parameterised Model Model Parameterised Checking Checking 2 0 A P 1 30/06/2006 7 30/06/2006 7

  8. Parameterised Model Model Parameterised Checking Checking 0 P 1 30/06/2006 8 30/06/2006 8

  9. Parameterised Model Model Parameterised Checking Checking 0 C 1 30/06/2006 9 30/06/2006 9

  10. Parameterised Model Model Parameterised Checking Checking 0 A 1 30/06/2006 10 30/06/2006 10

  11. Parameterised Model Model Parameterised Checking Checking 0 30/06/2006 11 30/06/2006 11

  12. Parameterised Model Model Parameterised Checking Checking � Notice that once child node has sent Notice that once child node has sent ack ack it it � no longer takes part no longer takes part � System is described as System is described as degenerative degenerative � � Can exploit this Can exploit this behaviour behaviour � � Prove by induction that certain types of Prove by induction that certain types of � property hold for any number of nodes property hold for any number of nodes [Miller & Calder] [Miller & Calder] 30/06/2006 12 30/06/2006 12

  13. Parameterised Model Model Parameterised Checking Checking � Show property holds for `base Show property holds for `base’ ’ system system – – � star topology e.g. “ “leader will always be leader will always be star topology e.g. elected” ” elected � For any configuration and size of system For any configuration and size of system � every execution of model is related ( stutter stutter every execution of model is related ( equivalent) to execution in model of to execution in model of equivalent) smaller system smaller system 30/06/2006 13 30/06/2006 13

  14. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Can we apply degenerative approach to Can we apply degenerative approach to � probabilistic systems? probabilistic systems? � Extend Extend Firewire Firewire probabilistically probabilistically � – Resolve Resolve “ “contention contention” ” situations with coin flip situations with coin flip – – Model as MDP in PRISM Model as MDP in PRISM – � Extend induction proof Extend induction proof � – “ “Executions Executions” ” are are DTMCs DTMCs not paths not paths – – Weak Weak bisimulation bisimulation instead of stutter instead of stutter – equivalence equivalence 30/06/2006 14 30/06/2006 14

  15. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Can we apply induction approach to any Can we apply induction approach to any � other degenerative probabilistic systems? other degenerative probabilistic systems? � Itai Itai Rodeh Rodeh leader election protocol for leader election protocol for � rings? rings? 30/06/2006 15 30/06/2006 15

  16. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Unidirectional ring of processes: Unidirectional ring of processes: � 30/06/2006 16 30/06/2006 16

  17. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Each process flips coin and chooses 0 or 1 with Each process flips coin and chooses 0 or 1 with � equal probability equal probability 0 0 1 0 30/06/2006 17 30/06/2006 17

  18. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Each process then passes choice to Each process then passes choice to neighbour neighbour; if ; if � chosen 0 and receive 1 become passive chosen 0 and receive 1 become passive A A A P 30/06/2006 18 30/06/2006 18

  19. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Counter is then passed around ring by each Counter is then passed around ring by each � active process; counter is incremented by any active process; counter is incremented by any passive process passive process A 0 0 A A 0 P 30/06/2006 19 30/06/2006 19

  20. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Counter is then passed around ring by each Counter is then passed around ring by each � active process; counter is incremented by any active process; counter is incremented by any passive process passive process A A A 1 P 30/06/2006 20 30/06/2006 20

  21. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � If any process receives counter of value N If any process receives counter of value N- -1 then 1 then � he becomes leader, else active processes choose he becomes leader, else active processes choose again again 1 0 1 P 30/06/2006 21 30/06/2006 21

  22. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Itai Itai Rodeh Rodeh is partially degenerative is partially degenerative � – When process becomes passive it only passes on When process becomes passive it only passes on – messages… … messages – … …but it can increment counter, whose max value is but it can increment counter, whose max value is – dependent on N dependent on N � Modelled Modelled in PRISM as an MDP [ in PRISM as an MDP [Kwiatkowska Kwiatkowska et et � al., Fokkink Fokkink et al.] et al.] al., � Our model is variation of these using buffers of Our model is variation of these using buffers of � size N size N 30/06/2006 22 30/06/2006 22

  23. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Apply same approach as for Apply same approach as for Firewire Firewire: : � – Base system is ring of size 3, say (could be Base system is ring of size 3, say (could be – anything that we can model check) anything that we can model check) 1 2 3 30/06/2006 23 30/06/2006 23

  24. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � For N>2 show that For N>2 show that M_N M_N ~ ~ M_N+1 M_N+1 where: where: � – ~ is some ~ is some relationship between executions of relationship between executions of MDPs MDPs – – M_N M_N is model of system of size N is model of system of size N – 1 1 ~ ~ N 2 N+1 2 30/06/2006 24 30/06/2006 24

  25. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Introduce series of Introduce series of “ “intermediate intermediate” ” models models � � Define model Define model Mc_N Mc_N as for as for M_N M_N but with but with � buffer length N+1 buffer length N+1 � For system of size N, never more than N For system of size N, never more than N � messages in buffers [Fokkink Fokkink et al] et al] messages in buffers [ � Mc_N Mc_N isomorphic to isomorphic to M_N M_N � M_N = = Mc_N Mc_N M_N 30/06/2006 25 30/06/2006 25

  26. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking � Define model Define model Mp_N Mp_N � � As for As for M_N+1 M_N+1 except initial except initial � nondeterministic choice over processes nondeterministic choice over processes with one selected as passive with one selected as passive � Passive process does not increment Passive process does not increment � counter counter 30/06/2006 26 30/06/2006 26

  27. Probabilistic Parameterised Parameterised Probabilistic Model Checking Model Checking 30/06/2006 27 30/06/2006 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Proving Differential Privacy via Probabilistic Couplings Gilles Barthe, Marco Gaboardi, Benjamin

Proving Differential Privacy via Probabilistic Couplings Gilles Barthe, Marco Gaboardi, Benjamin

Proving Differential Privacy via Probabilistic Couplings Gilles Barthe, Marco Gaboardi, Benjamin Grgoire, Justin Hsu*, Pierre-Yves Strub IMDEA Software, University at Buffalo, Inria, University of Pennsylvania* July 8, 2016 1 A new approach

518 views • 6 slides
Proving Expected Sensitivity of Probabilistic Programs Gilles Barthe Thomas Espitau Benjamin

Proving Expected Sensitivity of Probabilistic Programs Gilles Barthe Thomas Espitau Benjamin

Proving Expected Sensitivity of Probabilistic Programs Gilles Barthe Thomas Espitau Benjamin Grgoire Justin Hsu Pierre-Yves Strub 1 Program Sensitivity Similar inputs similar outputs Given: distances d in on inputs, d out on

820 views • 48 slides
Proving the Equivalence of Higher-Order Terms by Means of Supercompilation Ilya Klyuchnikov and

Proving the Equivalence of Higher-Order Terms by Means of Supercompilation Ilya Klyuchnikov and

Introduction Proving properties of programs Proving equality and equivalence Applications Summary Proving the Equivalence of Higher-Order Terms by Means of Supercompilation Ilya Klyuchnikov and Sergei Romanenko Keldysh Institute of Applied

588 views • 31 slides
Automated method in proving graph properties Kailiang Ji INRIA & Universit e Paris

Automated method in proving graph properties Kailiang Ji INRIA & Universit e Paris

Automated method in proving graph properties Kailiang Ji INRIA & Universit e Paris Diderot-Paris 7 October 31, 2013 Outline Background Expressions of graph properties Automated theorem proving Implementation Motivation

1.08k views • 65 slides
On Theorem Proving for Program Checking Historical perspective and recent developments Maria

On Theorem Proving for Program Checking Historical perspective and recent developments Maria

Outline Introduction Where is theorem proving in program checking Inside theorem proving Big and little engines together: a new theorem proving style Decision procedures with speculative inferences Current and future challenges On Theorem

944 views • 69 slides
Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without

Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without

Interactive Theorem Proving, Nancy August 22, 2016 Joachim Breitner Karlsruhe Institute of Technology University of Pennsylvania, Philadelphia Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without Syntax

579 views • 43 slides
Proving Properties of Security Protocols by Induction Lawrence C. Paulson Computer Laboratory

Proving Properties of Security Protocols by Induction Lawrence C. Paulson Computer Laboratory

Proving Security Protocols 1 L. C. Paulson Proving Properties of Security Protocols by Induction Lawrence C. Paulson Computer Laboratory University of Cambridge Proving Security Protocols 2 L. C. Paulson Cryptographic Protocol Analysis

389 views • 24 slides
Learning theorem proving through self-play Stanisaw Purga Overview AlphaZero Proving

Learning theorem proving through self-play Stanisaw Purga Overview AlphaZero Proving

Learning theorem proving through self-play Stanisaw Purga Overview AlphaZero Proving game adjusting MCTS for proving game some results 2019-10 1 Neural black box game state S move policy expected outcome R n v

455 views • 45 slides
4.5: Proving the Correctness of Grammars In this section, we consider techniques for proving the

4.5: Proving the Correctness of Grammars In this section, we consider techniques for proving the

4.5: Proving the Correctness of Grammars In this section, we consider techniques for proving the correctness of grammars, i.e., for proving that grammars generate the languages we want them to. 1 / 21 Definition of Suppose G is a grammar and

324 views • 21 slides
Groundwater Contamination Litigation: Proving Groundwater Contamination Litigation: Proving And

Groundwater Contamination Litigation: Proving Groundwater Contamination Litigation: Proving And

Presenting a live 90 minute webinar with interactive Q&A Groundwater Contamination Litigation: Proving Groundwater Contamination Litigation: Proving And Defending Against Liability for Clean Up Costs Demonstrating Nexus, Causation and

940 views • 62 slides
Table of Contents I Probabilistic Reasoning Classical Probabilistic Models Basic Probabilistic

Table of Contents I Probabilistic Reasoning Classical Probabilistic Models Basic Probabilistic

Table of Contents I Probabilistic Reasoning Classical Probabilistic Models Basic Probabilistic Reasoning: The Jungle Story Multiple Random Selection Rules: Dice New Constructs Causal Probability Observations and Intentions Dynamic Range

1.08k views • 73 slides
On proving liveness properties of programs Alexey Gotsman University of Cambridge joint work

On proving liveness properties of programs Alexey Gotsman University of Cambridge joint work

On proving liveness properties of programs Alexey Gotsman University of Cambridge joint work with Byron Cook, Andreas Podelski, and Andrey Rybalchenko BCTCS06, 6 April 2006 State-of-the-art Systems Model checking Abstraction Properties

484 views • 13 slides
Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in

Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in

Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in Hierarchic Combinations of Speci fi cations Dis Background theory linear integer arithmetic Data structures ? Conjecture list axioms/arrays

443 views • 15 slides
Automated Theorem Proving 1/4: Introduction and Propositional Theorem Proving A.L. Lamprecht

Automated Theorem Proving 1/4: Introduction and Propositional Theorem Proving A.L. Lamprecht

Automated Theorem Proving 1/4: Introduction and Propositional Theorem Proving A.L. Lamprecht Course Program Semantics and Verfication 2020, Utrecht University September 21, 2020 Lecture Notes Automated Reasoning by Gerard A.W. Vreeswijk.

609 views • 40 slides
Automated Theorem Proving 2/4: First-Order Theorem Proving A.L. Lamprecht Course Program

Automated Theorem Proving 2/4: First-Order Theorem Proving A.L. Lamprecht Course Program

Automated Theorem Proving 2/4: First-Order Theorem Proving A.L. Lamprecht Course Program Semantics and Verfication 2020, Utrecht University September 23, 2020 Lecture Notes Automated Reasoning by Gerard A.W. Vreeswijk. Available for

1.03k views • 54 slides
Proving that Artinian implies Noetherian without proving that Artinian implies finite length

Proving that Artinian implies Noetherian without proving that Artinian implies finite length

Proving that Artinian implies Noetherian without proving that Artinian implies finite length Chris Conidis University of Waterloo April 1, 2012 Chris Conidis Proving that Artinian implies Noetherian without proving that Artinian Background

1.01k views • 76 slides
Peculiar velocities with type Ia supernovae from the Nearby Supernova Factory XII th Rencontres du

Peculiar velocities with type Ia supernovae from the Nearby Supernova Factory XII th Rencontres du

Peculiar velocities with type Ia supernovae from the Nearby Supernova Factory XII th Rencontres du Vietnam - Large Scale Structure and Galaxy Flows Ulrich Feindt, Oskar Klein Centre, Stockholm July 4th 2016 on the behalf of SNfactory SNfactory

595 views • 22 slides
Partition Cast - Modelling and Optimizing the Distribution of Large Data Sets in PC Clusters

Partition Cast - Modelling and Optimizing the Distribution of Large Data Sets in PC Clusters

Partition Cast - Modelling and Optimizing the Distribution of Large Data Sets in PC Clusters Felix Rauch Christian Kurmann, Thomas M. Stricker Laboratory for Computer Systems, ETH Zrich CoPs project: http://www.cs.inf.ethz.ch/CoPs/

444 views • 32 slides
The FlexRay Protocol Peter Bhm 27.9.05 Overview 1. Introduction 2. Network Topology 3.

The FlexRay Protocol Peter Bhm 27.9.05 Overview 1. Introduction 2. Network Topology 3.

The FlexRay Protocol Peter Bhm 27.9.05 Overview 1. Introduction 2. Network Topology 3. Nodes 4. Communication Controller 5. Schedule 6. Message Processing 7. Clock Synchronization 8. Wake-up/Start-up 9. Summary Peter Bhm 27.09.05

769 views • 15 slides
EISCAT_3D EISCAT_3D EISCAT Radars Kiruna, Sweden Troms, Norway Sodankyl, Finland

EISCAT_3D EISCAT_3D EISCAT Radars Kiruna, Sweden Troms, Norway Sodankyl, Finland

EISCAT_3D EISCAT_3D EISCAT Radars Kiruna, Sweden Troms, Norway Sodankyl, Finland Longyearbyen, Svalbard EISCAT Science How is Earths atmosphere coupled to space? The Near-Earth Space Environment Space weather effects Ionosphere,

507 views • 16 slides
Vector Semantics, Part 3 Re-cap: Skip-Gram Training Training sentence: ... lemon, a tablespoon of

Vector Semantics, Part 3 Re-cap: Skip-Gram Training Training sentence: ... lemon, a tablespoon of

Dan Jurafsky and James Martin Speech and Language Processing Chapter 6 Vector Semantics, Part 3 Re-cap: Skip-Gram Training Training sentence: ... lemon, a tablespoon of apricot jam a pinch ... c1 c2 t c3 c4 positive

508 views • 34 slides
Safe passwords made easy to use Nicolas K. Blanchard 1 , Leila Gabasova 2 , Clment Malaingre 3 ,

Safe passwords made easy to use Nicolas K. Blanchard 1 , Leila Gabasova 2 , Clment Malaingre 3 ,

Safe passwords made easy to use Nicolas K. Blanchard 1 , Leila Gabasova 2 , Clment Malaingre 3 , Ted Selker 4 , Eli Sennesh 5 1 IRIF, Universit Paris Diderot 2 Institut de Plantologie et dAstrophysique de Grenoble 3 Teads France 4

747 views • 40 slides
Password, Authentication, Password Managers Week 4 Frank Chen | Spring 2017 Frank Chen | Spring

Password, Authentication, Password Managers Week 4 Frank Chen | Spring 2017 Frank Chen | Spring

LastPass, a Password Manager Application CS 88S Password, Authentication, Password Managers Week 4 Frank Chen | Spring 2017 Frank Chen | Spring 2017 Agenda Review last weeks material Some Definitions Password in the Cloud

584 views • 47 slides
CS 337 Project 2 Human-To-Host Simulator Instructor: Plaxton Judah De Paula Greg Plaxton Due

CS 337 Project 2 Human-To-Host Simulator Instructor: Plaxton Judah De Paula Greg Plaxton Due

CS 337 Project 2 Human-To-Host Simulator Instructor: Plaxton Judah De Paula Greg Plaxton Due March 8 (Monday) at 8:00pm 1 Overview Your task is to simulate a system in which a dynamic collection of humans access a dynamic collection of

388 views • 6 slides

More recommend