real world verification
play

Real World Verification Andr Platzer 1 Jan-David Quesel 2 Philipp - PowerPoint PPT Presentation

Aug 13, 2022 •178 likes •567 views

Real World Verification Andr Platzer 1 Jan-David Quesel 2 Philipp Rmmer 3 1 Carnegie Mellon University, Computer Science Department 2 University of Oldenburg, Department of Computing Science 3 Oxford University Computing Laboratory 22nd

  1. Real World Verification André Platzer 1 Jan-David Quesel 2 Philipp Rümmer 3 1 Carnegie Mellon University, Computer Science Department 2 University of Oldenburg, Department of Computing Science 3 Oxford University Computing Laboratory 22nd International Conference on Automated Deduction 7 August 2009 1 / 18

  2. Outline Motivation, real world applications Survey of real world methods New procedure: Gröbner bases for the Real Nullstellensatz decides quantifier-free real arithmetic Empirical evaluation: Comparison of various decision procedures for real arithmetic Conclusion 2 / 18

  3. Motivation + applications Verification in the KeYmaera system: Hybrid systems Mathematical algorithms in real or floating-point arithmetic Geometric problems ¯ ϑ y 2 ̟ ω e x 2 d x 1 y 1 3 / 18

  4. KeYmaera 4 / 18

  5. Overall verification approach 5 / 18

  6. Overall verification approach 5 / 18

  7. Short history of symbolic methods in real arithmetic 1930 First quantifier elimination procedure by Tarski (Non-elementary) 1965 Buchberger introduces Gröbner bases 1973 Real Nullstellensatz and Positivstellensatz by Stengle 1975 Cylindrical algebraic decomposition (CAD) by Collins (Doubly exponential) 1983 Cohen-Hörmander elimination procedure 2003 Parrilo introduces semidefinite programming for the Posi- tivstellensatz (Later refined by Harrison) 2005 Tiwari’s polynomial simplex method 6 / 18

  8. Short history of symbolic methods in real arithmetic 1930 First quantifier elimination procedure by Tarski (Non-elementary) 1965 Buchberger introduces Gröbner bases 1973 Real Nullstellensatz and Positivstellensatz by Stengle 1975 Cylindrical algebraic decomposition (CAD) by Collins (Doubly exponential) 1983 Cohen-Hörmander elimination procedure 2003 Parrilo introduces semidefinite programming for the Posi- tivstellensatz (Later refined by Harrison) 2005 Tiwari’s polynomial simplex method 6 / 18

  9. Gröbner bases for quantifier-free real arithmetic 7 / 18

  10. Gröbner bases for quantifier-free real arithmetic Inequalities and disequations can be eliminated: f � = g ≡ ∃ z . ( f − g ) z = 1 ∃ z . f − g = z 2 f ≥ g ≡ ∃ z . ( f − g ) z 2 = 1 f > g ≡ 7 / 18

  11. Gröbner bases for quantifier-free real arithmetic Goal: prove unsatisfiability of: � t i = 0 i 7 / 18

  12. Gröbner bases for quantifier-free real arithmetic Witnesses for unsatisfiability: � � � � s i t i = 1 = ⇒ t i = 0 unsatisfiable i i How to determine coefficients s i ? 7 / 18

  13. Gröbner bases for quantifier-free real arithmetic Witnesses for unsatisfiability: � � � � s i t i = 1 = ⇒ t i = 0 unsatisfiable i i How to determine coefficients s i ? Need some more notation: Ideal generated by { t 1 , . . . , t n } ⊆ ◗ [ X 1 , . . . , X n ] : � � � ( t 1 , . . . , t n ) = s i t i | s 1 , . . . , s n ∈ ◗ [ X 1 , . . . , X n ] i 7 / 18

  14. Gröbner bases for quantifier-free real arithmetic Gröbner bases to solve the ideal membership problem: Monomial ordering ≺ : admissible total well-founded ordering on monomials Reduction of a polynomial s w.r.t. B = { t 1 , . . . , t n } : s ≻ s + u 1 t i 1 ≻ s + u 1 t i 1 + u 2 t i 2 ≻ · · · ≻ red B s B is called Gröbner basis if red B s = 0 for all s ∈ ( B ) 7 / 18

  15. Gröbner bases for quantifier-free real arithmetic Gröbner bases to solve the ideal membership problem: Monomial ordering ≺ : admissible total well-founded ordering on monomials Reduction of a polynomial s w.r.t. B = { t 1 , . . . , t n } : s ≻ s + u 1 t i 1 ≻ s + u 1 t i 1 + u 2 t i 2 ≻ · · · ≻ red B s B is called Gröbner basis if red B s = 0 for all s ∈ ( B ) 7 / 18

  16. The Nullstellensatz Method is sound and complete over complex numbers: Theorem (Hilbert’s Nullstellensatz) � ¬∃ x ∈ ❈ n : t i ( x ) = 0 iff 1 ∈ ( t 1 , . . . , t n ) i ⇒ Method cannot be complete over reals: x 2 + 1 = 0 e.g. is unsatisfiable ( x 2 + 1 ) but does not contain a unit We present an extension that is complete over the reals 8 / 18

  17. The Real Nullstellensatz Theorem (Stengle’s Real Nullstellensatz, 1973) � ¬∃ x ∈ ❘ n : t i ( x ) = 0 iff i ∃ s 1 , . . . , s k ∈ ❘ [ X 1 , . . . , X m ] : 1 + s 2 1 + · · · + s 2 k ∈ ( t 1 , . . . , t n ) 9 / 18

  18. The Real Nullstellensatz Theorem (Stengle’s Real Nullstellensatz, 1973) � ¬∃ x ∈ ❘ n : t i ( x ) = 0 iff i ∃ s 1 , . . . , s k ∈ ❘ [ X 1 , . . . , X m ] : 1 + s 2 1 + · · · + s 2 k ∈ ( t 1 , . . . , t n ) 9 / 18

  19. The Real Nullstellensatz Theorem (Stengle’s Real Nullstellensatz, 1973) � ¬∃ x ∈ ❘ n : t i ( x ) = 0 iff i ∃ s 1 , . . . , s k ∈ ❘ [ X 1 , . . . , X m ] : 1 + s 2 1 + · · · + s 2 k ∈ ( t 1 , . . . , t n ) How to pick sum of squares s 2 1 + · · · + s 2 n ? 9 / 18

  20. The Real Nullstellensatz Observation: [Parrilo, 2003] Sums of squares can be represented as scalar products E.g. � � t � � � � x 2 − 1 x 2 x 2 − 2 xy + y 2 = x 2 + ( x − y ) 2 = y − 1 1 y 9 / 18

  21. The Real Nullstellensatz Lemma Every sum of squares can be represented as p t Xp, where p ∈ ❘ [ X 1 , . . . , X m ] k and X is positive semi-definite (and vice versa). Matrix X is called positive semi-definite if X is symmetric x t Xx ≥ 0 for all x ∈ ❘ n . 9 / 18

  22. The Real Nullstellensatz Lemma Every sum of squares can be represented as p t Xp, where p ∈ ❘ [ X 1 , . . . , X m ] k and X is positive semi-definite (and vice versa). Matrix X is called positive semi-definite if X is symmetric x t Xx ≥ 0 for all x ∈ ❘ n . 9 / 18

  23. The Real Nullstellensatz Constraint solving by semidefinite programming (convex optimisation): Has been used successfully in combination with Positivstellensatz [Parrilo, 2003; Harrison, 2007] 9 / 18

  24. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz 10 / 18

  25. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz Translated to system of equations: x − y = a 2 , z = b 2 , ( yz − xz ) c 2 = 1 10 / 18

  26. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz Translated to system of equations: x − y = a 2 , z = b 2 , ( yz − xz ) c 2 = 1 Corresponding Gröbner basis: B = { a 2 − x + y , b 2 − z , xzc 2 − yzc 2 + 1 } 10 / 18

  27. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz Translated to system of equations: x − y = a 2 , z = b 2 , ( yz − xz ) c 2 = 1 Corresponding Gröbner basis: B = { a 2 − x + y , b 2 − z , xzc 2 − yzc 2 + 1 } Pick basis monomials and symmetric matrix Q :     1 q 1 , 1 q 1 , 2 q 1 , 3  a 2    p = Q = q 1 , 2 q 2 , 2 q 2 , 3     abc q 1 , 3 q 2 , 3 q 3 , 3 p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 10 / 18

  28. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 11 / 18

  29. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 Reduce 1 + p t Qp w.r.t. B : red B ( 1 + p t Qp ) = 1 + q 1 , 1 − q 3 , 3 + 2 q 1 , 2 x − 2 q 1 , 2 y + 2 q 1 , 3 abc + 2 q 2 , 3 abcx − 2 q 2 , 3 abcy 11 / 18

  30. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 Reduce 1 + p t Qp w.r.t. B : red B ( 1 + p t Qp ) = 1 + q 1 , 1 − q 3 , 3 + 2 q 1 , 2 x − 2 q 1 , 2 y + 2 q 1 , 3 abc + 2 q 2 , 3 abcx − 2 q 2 , 3 abcy Set up semidefinite program red B ( 1 + p t Qp ) = 0: 1 + q 1 , 1 − q 3 , 3 = 0 − 2 q 1 , 2 = 0 2 q 2 , 3 = 0 2 q 1 , 2 = 0 2 q 1 , 3 = 0 − 2 q 2 , 3 = 0 11 / 18

  31. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 Reduce 1 + p t Qp w.r.t. B : red B ( 1 + p t Qp ) = 1 + q 1 , 1 − q 3 , 3 + 2 q 1 , 2 x − 2 q 1 , 2 y + 2 q 1 , 3 abc + 2 q 2 , 3 abcx − 2 q 2 , 3 abcy Set up semidefinite program red B ( 1 + p t Qp ) = 0: 1 + q 1 , 1 − q 3 , 3 = 0 − 2 q 1 , 2 = 0 2 q 2 , 3 = 0 2 q 1 , 2 = 0 2 q 1 , 3 = 0 − 2 q 2 , 3 = 0 Solve the program: q 3 , 3 = 1 and q i , j = 0 for all ( i , j ) � = ( 3 , 3 ) 1 + p t Qp = 1 + ( abc ) 2 ∈ ( B ) � �� � Witness for unsatisfiability 11 / 18

  32. Gröbner bases for the Real Nullstellensatz (GRN) Properties of the procedure Sound + complete method for quantifier-free real arithmetic Sums of squares as certificates (“proof producing”) Termination criteria can be given → decision procedure In practice: We enumerate basis monomials with ascending degree Numerical issues Existing solvers for semidefinite programming are numeric (we use CSDP) Solution: Solve program numerically, then round to exact solution [Harrison, 2007] 12 / 18

  33. Optimisations Pre-processing of Gröbner basis is a good idea: Rewriting with polynomials x + t Rewriting with polynomials x 2 − α 1 m 2 1 − · · · − α n m 2 n (with α i > 0) Elimination of polynomials xy − 1, x n + t Splitting polynomials α 1 m 2 1 + · · · + α n m 2 n ∈ B with α i > 0 13 / 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Climate-FEVER: A Dataset for Verification of Real-World Climate Claims Thomas Diggelmann, Jordan

Climate-FEVER: A Dataset for Verification of Real-World Climate Claims Thomas Diggelmann, Jordan

Tackling Climate Change with Machine Learning workshop at NeurIPS 2020 Climate-FEVER: A Dataset for Verification of Real-World Climate Claims Thomas Diggelmann, Jordan Boyd-Graber, Jannis Bulian, Massimiliano Ciaramita, Markus Leippold Figure

350 views • 10 slides
XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( ) 2006.10 RSS is cool ! RSS RSS Really Simple Syndication Tired of checking your favorite news and blogs sites everyday?

786 views • 75 slides
Real World Embedded DSLs Scottish Programming Languages and Verification Summer School 2019 Rob

Real World Embedded DSLs Scottish Programming Languages and Verification Summer School 2019 Rob

Real World Embedded DSLs Scottish Programming Languages and Verification Summer School 2019 Rob Stewart (R.Stewart@hw.ac.uk) August 2019 Heriot-Watt University, Edinburgh What is a DSL What is a DSL Paul Hudak: A DSL is

1.96k views • 151 slides
Real numbers in the real world Industrial applications of theorem proving John Harrison Intel

Real numbers in the real world Industrial applications of theorem proving John Harrison Intel

Real numbers in the real world Industrial applications of theorem proving John Harrison Intel Corporation 30th May 2006 0 Overview Famous computer arithmetic failures Formal verification and theorem proving Floating-point

627 views • 34 slides
Age Age Age Age E out ( h 1 ) E out ( h 2 ) E out ( h 3 ) E out ( h M )

Age Age Age Age E out ( h 1 ) E out ( h 2 ) E out ( h 3 ) E out ( h M )

recap: Verification h Income Learning From Data Lecture 4 Real Learning is Feasible Age Hoeffding: E out ( h ) E in ( h ) (with high probability) E out ( h ) Real Learning vs. Verification The Two Step Solution to Learning D Closer

240 views • 5 slides
Real Time Video & Driver ID Verification From Vehicles Context is Everything Just like

Real Time Video & Driver ID Verification From Vehicles Context is Everything Just like

Real Time Video & Driver ID Verification From Vehicles Context is Everything Just like Mission Impossible, but real We develop TRUE real-time wireless video surveillance solutions to some of the worlds most demanding customers, where

562 views • 18 slides
Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on

Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on

Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on Verification Technology, Systems & Applications VTSA 2018 Nancy, France Carsten Sinz Institute for Theoretical Informatics (ITI) Karlsruhe

569 views • 45 slides
A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of

A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of

A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of Computer Science Oxford University Quantitative Model Checking Winter School, February 2012 The Classical Theory of Verification Automata e T t a

1.6k views • 137 slides
How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive

How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive

How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive Editor Scrip Bridget Silverman Presenters Managing Editor Pink Sheet Ben Gutierrez Head, US Value Evidence & Outcomes GlaxoSmithKline

371 views • 33 slides
Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting

Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting

Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting Students to and Through Market Value Asset Attainment 4th highest-ranked Strategic Plan Alignment Every student will demonstrate global

499 views • 24 slides
Eventual Consistency Eventual Consistency In the real world In the real world or Why you

Eventual Consistency Eventual Consistency In the real world In the real world or Why you

Eventual Consistency Eventual Consistency In the real world In the real world or Why you already know Eventual Consistency /usr/bin/whoami Chris Molozian Client Services Engineer, Basho EMEA Basho Technologies cmolozian@basho.com 03

371 views • 34 slides
Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

9/22/20 DCS/CSCI 2350 Social & Economic Networks What does a real-world network look like? Reading: Ch 2 of EK, Ch 2 & 3 of Jackson Graph visualization using Gephi Mohammad T . Irfan Email: mirfan@bowdoin.edu 1 Real-World Networks

749 views • 26 slides
Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

9/25/19 DCS/CSCI 2350 Social & Economic Networks What does a real-world network look like? Reading: Ch 2 of EK, Ch 2 & 3 of Jackson Graph visualization using Gephi Mohammad T . Irfan Email: mirfan@bowdoin.edu Real-World Networks

659 views • 24 slides
Welcome to the REAL World REAL Disruption: The Shared Economy, The Workforce and Real Estate

Welcome to the REAL World REAL Disruption: The Shared Economy, The Workforce and Real Estate

Welcome to the REAL World REAL Disruption: The Shared Economy, The Workforce and Real Estate Presented by Chris Hood Meet Our Speaker Chris Hood Advanced Workplace Associates Ltd 40 Gracechurch Street, London EC3V 0BT UK Telephone: +44

505 views • 37 slides
Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After

Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After

Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After learning all the foundation of modern cryptography, we are ready to see some real world applications based on them. What happened when you

592 views • 33 slides
To truly know the world, look deeply within your own being; to truly know yourself, take real

To truly know the world, look deeply within your own being; to truly know yourself, take real

To truly know the world, look deeply within your own being; to truly know yourself, take real interest in the world. Rudolf Steiner INFO Waldorf Exchange Seasonal Program by Adazi Free Waldorf School this summer provides well-rounded, healthy

493 views • 32 slides
Mining, Indexing, and Similarity Search in Graphs and Complex Structures Jiawei Han Xifeng Yan

Mining, Indexing, and Similarity Search in Graphs and Complex Structures Jiawei Han Xifeng Yan

794 views • 53 slides
ODU/JLAB PARALLEL-BAR CAVITY DEVELOPMENT Jean Delayen Subashini de Silva Center for Accelerator

ODU/JLAB PARALLEL-BAR CAVITY DEVELOPMENT Jean Delayen Subashini de Silva Center for Accelerator

16-18 May 2011 LARP CM16 ODU/JLAB PARALLEL-BAR CAVITY DEVELOPMENT Jean Delayen Subashini de Silva Center for Accelerator Science Old Dominion University and Thomas Jefferson National Accelerator Facility Page 1 Parallel Bar Cavity

1.62k views • 33 slides
Undecidability of FL e in the presence of structural rules Gavin St.John In collaboration with

Undecidability of FL e in the presence of structural rules Gavin St.John In collaboration with

Undecidability of FL e in the presence of structural rules Gavin St.John In collaboration with Nikolaos Galatos Contact: gavin.stjohn@du.edu University of Denver Department of Mathematics 4th SYSMICS Workshop Chapman University Orange,

1.46k views • 115 slides
Data Stream Management Systems - for Sensor Networks Vera Goebel Department of Informatics,

Data Stream Management Systems - for Sensor Networks Vera Goebel Department of Informatics,

Data Stream Management Systems - for Sensor Networks Vera Goebel Department of Informatics, University of Oslo New Computing Paradigm? Sensor Networks What are DSMSs? (terms) Why do we need DSMSs? (applications)

828 views • 58 slides
Dynamic Epistemic Logic of Questions Johan van Benthem and S tefan Minic a Institute of

Dynamic Epistemic Logic of Questions Johan van Benthem and S tefan Minic a Institute of

Dynamic Epistemic Logic of Questions Johan van Benthem and S tefan Minic a Institute of Logic, Language and Computation University of Amsterdam Logics for Dynamics of Information and Preferences 9 November 2009, Amsterdam Introduction

485 views • 45 slides
! -g

! -g

-o > g++ -o hello hello.C > ./hello CS2141 Software Development

712 views • 6 slides
Compiling a C++ Program g++ g++ is the GNU C++ compiler. A program in a file called

Compiling a C++ Program g++ g++ is the GNU C++ compiler. A program in a file called

CS2141 Software Development using C/C++ Compiling a C++ Program g++ g++ is the GNU C++ compiler. A program in a file called hello.C: #include <iostream> using namespace std; int main( ) { cout << Hello world!

679 views • 21 slides
Speeding Ducks Avi Bryant Meta Heckling welcomed. Ruby is slow So what? Of

Speeding Ducks Avi Bryant Meta Heckling welcomed. Ruby is slow So what? Of

Speeding Ducks Avi Bryant Meta Heckling welcomed. Ruby is slow So what? Of course! So what? The Ruby language may be slow, but my app runs plenty fast True. Ruby ary.pop C VALUE rb_ary_pop(ary) VALUE ary; {

627 views • 34 slides

More recommend