specification and verification for grid component based
play

Specification and Verification for Grid Component-based Applications - PowerPoint PPT Presentation

Jan 13, 2024 •23 likes •403 views

Specification and Verification for Grid Component-based Applications E. Madelaine GridComp project Oasis team INRIA -- CNRS - I3S -- Univ. of Nice Sophia-Antipolis FMCO 08 Sophia-Antipolis oct. 21-23, 2008 Eric MADELAINE --

  1. Specification and Verification for Grid Component-based Applications E. Madelaine GridComp project Oasis team INRIA -- CNRS - I3S -- Univ. of Nice Sophia-Antipolis FMCO ’08 Sophia-Antipolis – oct. 21-23, 2008 Eric MADELAINE -- GridComp -- OASIS 1

  2. Do we need formal methods for developing component-based software ? A B ??? C A B C2 C Safe COTS-based development Safe management for complex => systems Behaviour Specifications (e.g. replacement at runtime) Eric MADELAINE -- GridComp -- OASIS 2

  3. Is it more difficult for distributed, asynchronous components ? Yes ! Asynchrony creates race-conditions, dead-locks, etc. Transparent Futures do not solve all inter-component deadlocks Eric MADELAINE -- GridComp -- OASIS 3

  4. Agenda • Context • Active Objects, Components and Grids • Safe Distributed Components • Definitions • Model generation (= operational semantics) • Checking Properties • Specification and Verification Tools, Case Study • Conclusion & Perspectives Eric MADELAINE -- GridComp -- OASIS 4

  5. Asynchronous and Deterministic Objects [Denis Caromel – Ludovic Henrio] ASP (Asynchronous Sequential Processes) = • Distributed Active Objects • Asynchronous method calls • Futures and Wait-by-necessity � Determinism/Confluence properties � Programming abstractions � Formal Basis for Verification Eric MADELAINE -- GridComp -- OASIS 5

  6. ProActive : Active objects A ag = newActive (“A”, […], VirtualNode) V v1 = ag.foo (param); V v2 = ag.bar (param); ... v1.bar(); //Wait-By-Necessity JVM JVM A ag v2 v1 A WBN! V Wait-By-Necessity Java Object Active Object Req. Queue is a Dataflow Future Object Proxy Thread Request Synchronization Eric MADELAINE -- GridComp -- OASIS 6

  7. Fractal hierarchical model : Attribute Lifecycle Binding Content Controller Controller Controller Controller Controller / membrane • Provided/Required Interfaces • Hierarchy • Separation of concern: functional / non-functional • ADL • Extensible Content composites encapsulate primitives, which encapsulates code Eric MADELAINE -- GridComp -- OASIS 7

  8. GCM [Caromel, FMCO’07] Scopes and Objectives: Grid Component Model Extension of Fractal for programming Grids Innovations: Abstract Deployment Multicast and GatherCast Controller (NF) Components Standardization By the ETSI TC-GRID Eric MADELAINE -- GridComp -- OASIS

  9. Spin-off company 2007 : 9 ProActive Parallel Suite Eric MADELAINE -- GridComp -- OASIS

  10. Agenda • Context • Active Objects, Components and Grids • Safe Distributed Components • Definitions • Model generation • Properties • Specification and Verification Tools, Case Study • Conclusion & Perspectives Eric MADELAINE -- GridComp -- OASIS 10

  11. Software Components My Definition : Software modules, composable, reconfigurable, with well-defined interfaces, and well-defined black box behaviour Our interests : 1. Encapsulation Black boxes, offered and required services 2. Composition Design of complex systems, hierarchical organization into sub-systems 3. Separation of concerns Architecture Description Language (ADL), management components 4. Distribution (e.g. Computational Grid) Interaction at interfaces through asynchronous method calls Eric MADELAINE -- GridComp -- OASIS 11

  12. Behaviour specification and Safe composition Aim : Build reliable components from the composition of smaller pieces, using their formal specification. Component paradigm : only observe activity at interfaces. Behavioural properties: Deadlock freeness, progress/termination, safety and liveness. Applications : • Check behavioural compatibility between sub-components • Check correctness of component deployment • Check correctness of the transformation inside a running application. Eric MADELAINE -- GridComp -- OASIS 12

  13. The pNET model Specification language Instantiation pNets system Abstraction Source code Verification tools Constraint: domains in pNets are “simple types”. The data domains in the source language have to be abstracted beforehand. Eric MADELAINE -- GridComp -- OASIS 13

  14. pNets : Hierarchical and Parameterized Models [Arnold, Nivat 92] Synchronization networks [Lin 92] symbolic graphs with assignments [Lakas 96] semantics of Lotos open expressions • Value-passing, Dynamic architectures, etc. • But close to code structure • Instantiation to finite structures (through abstract interpretation) [Forte’04: T. Barros, R. Boulifa, E. Madelaine] [Annals of Telecomunications’08: A. Cansado, L. Henrio, E. Madelaine ] Eric MADELAINE -- GridComp -- OASIS 14

  15. Parameterized LTSs : definition Given : A set of parameters V (with domains in first order “simple types”) An many-sorted term algebra ∑ V, with a distinguished Action sort A parameterized LTS is <V, S, s 0 , L> in which: • Each state s ∈ S has free variables fv(s) ⊆ V • Labels l ∈ L have the form <e B , α , x j := e j > • e B ∈ ∑ V,Bool a guard • α ∈ ∑ V,Action a parameterized action y=x-1 • x j := e j an assignment of the state variables i,y i,x Eric MADELAINE -- GridComp -- OASIS 15

  16. Parameterized Network of Synchronised Automata (pNets) : definition • A pNet is <V, A g , J, p j , O j , T> in which: • A g ⊆ ∑ V is the pNet sort, ie the set of global actions • J is a set of Holes, each of them with a parameter p j and a sort O j • T is the transducer (or control automaton) of the pNet, whose labels are synchronisation vectors : < α g , {a i,j }> that relate actions of some instances of the holes to a global action. PhiloNET : < Philo[k], Fork[k] > k ∈ [1:n] A g = { Think(k), TakeL(k), … } T static (single state), with synchronisation vectors : <Think(k), Think Philo[k] > <TakeL(k), TakeL Philo[k] , Take Fork[k-1] > Eric MADELAINE -- GridComp -- OASIS 16

  17. pNets and Nets : operators • pNets are generalized synchronisation operators at the semantic level, in the spirit of Lotomaton. They address: multiway synchronisation, parameterized topologies, and dynamic topologies. Define: • A System is a tree-like structure with pNets at nodes and pLTS at leaves • Abstraction : given a countable (resp, finite) domain for each parameter of a system, its instantiation is a countable (resp. finite) system. • The synchronisation product is only defined for instantiated systems. Eric MADELAINE -- GridComp -- OASIS 17

  18. Abstractions and Correctness (1) Program semantics = = > Behaviour Model (parameterized) user-specified abstract interpretation (2) Behaviour Model = = > Finite Model Value Passing case : d efine an abstract representation from a finite partition of the value domains, on a per-formula basis ⇒ Preservation of safety and liveness properties [Cleaveland & Riely 93] Families of Processes : no similar generic result (but many results for specific topologies). Counter-example : on parameterized topologies of processes, reachability properties require induction reasoning. Practical approach : • explore small finite configurations in a “bug search” fashion, • use “infinite systems” techniques for decidable domains when available Eric MADELAINE -- GridComp -- OASIS 18

  19. Agenda • Context • Active Objects, Components and Grids • Safe Distributed Components • Definitions • Model generation • Properties • Specification and Verification Tools, Case Study • Conclusion & Perspectives Eric MADELAINE -- GridComp -- OASIS 19

  20. Building Behavioural Models : Principles For a given language/framework, define an operational semantics that builds pNets from the program structure. For GCM components: • Reason separately at each composition level Primitive components : functional behaviour is known • Given by the user (specification language) • Obtained by static analysis (primitive components, e.g. ProActive active objects) • Computed from lower level Composites : structure and non functional behaviour automatically added from the component’s ADL Eric MADELAINE -- GridComp -- OASIS 20

  21. Building pNet models (ex 1) Nets for Active objects communication schema : From the set of public methods, and their signature, build : • The (parameterized) action algebra • The structure of the future proxies and request queue • One synch vector per exchanged message. Buffer(Max,S) Consumer(c) JVM JVM A v2 ag v1 body Proxy body A Queue call(get,f) [f] WBN! […] V return(get,x) Eric MADELAINE -- GridComp -- OASIS 21

  22. Building pNet models (ex 2) Nets and pLTS for ?bind(B,IA) ?unbind(B,IA) Fractal non- functional controllers : • Binding ?bind(B,IF) controllers B • Life-cycle cont. • Content cont. ?unbind(B,IF) B.Call C[c] Q_get() (alarm) bound unbound R_get(v) !Err(unbound,B,IA) Eric MADELAINE -- GridComp -- OASIS 22

  23. pNet Models for a GCM composite 1) Assemble sub- Queue Proxy Body components (f) ?Serve(M,…) Call(M,…) 2) add non-functional controls: 1) Bindings Request… Response… LF 2) Start/Stop 3) … ?bind(…) 3) Add Interceptors : !start() ?unbind(…) !stop() P(p) 1) Body B 2) Queue, LF and proxies C(c) !Err(unbound,…) Eric MADELAINE -- GridComp -- OASIS 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Multi-Formalism Specification and Verification in Verisoft Thorsten Bormer Universit at

Multi-Formalism Specification and Verification in Verisoft Thorsten Bormer Universit at

Multi-Formalism Specification and Verification in Verisoft Thorsten Bormer Universit at Koblenz-Landau June 15th, 2007 Component Overview Application Email Client Signature Software (User Interface) Module Com piler Networking /

389 views • 18 slides
Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification Transition systems 2

798 views • 62 slides
Formal and Incremental Verification of SysML Specifications for the Design of Component-Based

Formal and Incremental Verification of SysML Specifications for the Design of Component-Based

Formal and Incremental Verification of SysML Specifications for the Design of Component-Based Systems Oscar Carrillo Dpartement dInformatique des Systmes Complexes (DISC), Femto-ST UMR 6174 CNRS Encadrement : Hassan Mountassir et Samir

972 views • 65 slides
Formal Specification and Verification Formal specification Temporal logic 12.06.2012

Formal Specification and Verification Formal specification Temporal logic 12.06.2012

Formal Specification and Verification Formal specification Temporal logic 12.06.2012 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Formal specification Specification for program/system Specification for

443 views • 21 slides
Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification 2 Formal

627 views • 19 slides
Contract-based Specification and Verification of Dataflow Programs Jonatan Wiik Pontus Bostrm

Contract-based Specification and Verification of Dataflow Programs Jonatan Wiik Pontus Bostrm

Contract-based Specification and Verification of Dataflow Programs Jonatan Wiik Pontus Bostrm bo Akademi University, Finland Nordic Workshop on Programming Theory 2015 1 / 20 Introduction Modern software systems are increasingly

612 views • 25 slides
A component-based approach for Context-Aware Systems specification Brahim Djoudi , Chafia

A component-based approach for Context-Aware Systems specification Brahim Djoudi , Chafia

Constantine 2 University LIRE laboratory Team Software Engineering and Distributed Systems A component-based approach for Context-Aware Systems specification Brahim Djoudi , Chafia Bouanaka, Nadia Zeghib Plan Introduction Context-Aware

477 views • 35 slides
Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de Some of the slides are based on or inspired by material by Wolfgang Ahrendt, Bernhard Beckert, Reiner H ahnle, Andreas Podelski 1 Motivation

899 views • 54 slides
Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de Some of the slides are based on or inspired by material by Wolfgang Ahrendt, Bernhard Beckert, Reiner H ahnle, Andreas Podelski 1 Motivation

1.11k views • 55 slides
Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de Some of the slides are based on or inspired by material by Wolfgang Ahrendt, Bernhard Beckert, Reiner H ahnle, Andreas Podelski 1 Motivation

715 views • 45 slides
An Assume-Guarantee Method for Modular An Assume-Guarantee Method for Modular Verification of

An Assume-Guarantee Method for Modular An Assume-Guarantee Method for Modular Verification of

An Assume-Guarantee Method for Modular An Assume-Guarantee Method for Modular Verification of Evolving Component-Based Software Verification of Evolving Component-Based Software Pham Ngoc Hung, Nguyen Truong Thang, and Takuya Katayama Japan

544 views • 21 slides
Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus

Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus

Introduction Specification of the Java Flight Manager Runtime Assertion Checking and Verification Conclusions Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus Wonnemann Formal Specification and

708 views • 54 slides
IST-2001 - Project 33522 IST-2001-33522 Animation and formal verification of a component-based

IST-2001 - Project 33522 IST-2001-33522 Animation and formal verification of a component-based

OMEGA OMEGA IST-2001 - Project 33522 IST-2001-33522 Animation and formal verification of a component-based application using live sequence charts (LSCs) and the Play-Engine Omega workshop Grenoble February 17, 2005 Pierre Combes

488 views • 27 slides
Component-based Verification of Cyber-Physical Flow Systems Andreas Mller

Component-based Verification of Cyber-Physical Flow Systems Andreas Mller

Verified Traffic Networks: Component-based Verification of Cyber-Physical Flow Systems Andreas Mller andreas.mueller@jku.at Stefan Mitsch - stefan.mitsch@jku.at Andr Platzer - aplatzer@cs.cmu.edu Johannes Kepler University, Linz

711 views • 68 slides
Off-line Signature Verification: A Circular Outline Grid-Based Feature Extraction Approach

Off-line Signature Verification: A Circular Outline Grid-Based Feature Extraction Approach

8vas. Jornadas de Ciencias de la Computaci on (XIII JCC) XIII JCC Off-line Signature Verification: A Circular Outline Grid-Based Feature Extraction Approach Motivation Contributions Feature Marianela Parodi Extraction SVM-based &lt;

652 views • 28 slides
The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph

The ESC/Java2 Calculi and Object Logics Implications on Specification and Verification Joseph Kiniry Department of Computer Science University College Dublin ESC/Java2 ESC/Java2 is an extended static checker based upon DEC/Compaq SRC

278 views • 27 slides
Petri Net-Flavored Places An Advanced Transition System for Distributed Computing in Racket J

Petri Net-Flavored Places An Advanced Transition System for Distributed Computing in Racket J

Petri Net-Flavored Places An Advanced Transition System for Distributed Computing in Racket J orgen Brandt 2018-09-29 Software Engineering Petri Nets Visually understandable Defined semantics (properties, invariants, correctness)

493 views • 33 slides
Self-improving Learners Min Sun National Tsing Hua University @2 nd AII Workshop Ch Challen

Self-improving Learners Min Sun National Tsing Hua University @2 nd AII Workshop Ch Challen

VS Lab Self-improving Learners Min Sun National Tsing Hua University @2 nd AII Workshop Ch Challen enges es of Moder ern AI Large-scale labelled dataset Ch Challen enges es of Moder ern AI Large-scale labelled dataset Talent

549 views • 28 slides
Privacy-preserving Neural Representations of Text Maximin Coavoux Shashi Narayan Shay B.

Privacy-preserving Neural Representations of Text Maximin Coavoux Shashi Narayan Shay B.

Privacy-preserving Neural Representations of Text Maximin Coavoux Shashi Narayan Shay B. Cohen University of Edinburgh ILCC EMNLP 2018 Brussels 1 / 15 Context: Privacy and Neural Networks Machine learning uses data (e.g. UGC)

481 views • 19 slides
Deformation-Aware 3D Model Embedding and Retrieval Mikaela Uy 1 Jingwei Huang 1 Minhyuk Sung 2

Deformation-Aware 3D Model Embedding and Retrieval Mikaela Uy 1 Jingwei Huang 1 Minhyuk Sung 2

Stanford University 1 Adobe Research 2 Deformation-Aware 3D Model Embedding and Retrieval Mikaela Uy 1 Jingwei Huang 1 Minhyuk Sung 2 Tolga Birdal 1 Leo Guibas 1 Motivation (a) Real Scan (b) CAD Model (c) Overlay Photo taken from [1] 2 [1]

854 views • 32 slides
Event Reconstruction Event Reconstruction i in High Energy Physics Experiments in High Energy

Event Reconstruction Event Reconstruction i in High Energy Physics Experiments in High Energy

Event Reconstruction Event Reconstruction i in High Energy Physics Experiments in High Energy Physics Experiments I. Kisel I. Kisel GSI/Uni GSI/Uni- -Heidelberg, Germany Heidelberg, Germany CERN, February 07, 2008 CERN, February 07,

359 views • 32 slides
Asymptotic equivalence of pure quantum state estimation and Gaussian white noise M. Nussbaum

Asymptotic equivalence of pure quantum state estimation and Gaussian white noise M. Nussbaum

Asymptotic equivalence of pure quantum state estimation and Gaussian white noise M. Nussbaum Cornell University joint work with C. Butucea and M. Guta High-dimensional Problems and Quantum Physics Marne-la-Valle, June 2015 ( ) Quantum

272 views • 16 slides
rt trs P ( X vi = 1 v , i ) = 1 0 1 1 3 1 +

rt trs P ( X vi = 1 v , i ) = 1 0 1 1 3 1 +

rt trs t tsts s s 0 0 1 0 2 1 0 0 1 2 exp ( v i ) 1 0 0 0 1 rt

213 views • 6 slides
An Energy-aware Scheduling Algorithm in DVFS-enabled Networked Data Centers CLOSER 2016 - TEEC

An Energy-aware Scheduling Algorithm in DVFS-enabled Networked Data Centers CLOSER 2016 - TEEC

An Energy-aware Scheduling Algorithm in DVFS-enabled Networked Data Centers CLOSER 2016 - TEEC Session Mohammad Shojafar , Claudia Canali, Riccardo Lancellotti, and Saeid Abolfazli Department of Engineering Enzo Ferrari, University of Modena and

1.18k views • 34 slides

More recommend