the siren song of temporal synthesis
play

The Siren Song of Temporal Synthesis Moshe Y. Vardi Rice - PDF document

Sep 01, 2022 •24 likes •414 views

The Siren Song of Temporal Synthesis Moshe Y. Vardi Rice University Verification Model Checking : Given : Program P , Specification . Task : Check that P satisfies Success : Algorithmic methods : temporal specifications and

  1. The Siren Song of Temporal Synthesis Moshe Y. Vardi Rice University

  2. Verification Model Checking : • Given : Program P , Specification ϕ . • Task : Check that P satisfies ϕ Success : • Algorithmic methods : temporal specifications and finite-state programs. • Also : Certain classes of infinite-state programs • Tools : SMV, SPIN, SLAM, etc. • Impact on industrial design practice is increasing. Problems : • Designing P is hard and expensive. • Redesigning P when P does not model ϕ is hard and expensive. 1

  3. Automated Design Basic Idea : • Start from spec ϕ , design P s.t. P satisfies ϕ . Advantage : – No verification – No re-design • Derive P from ϕ algorithmically. Advantage : – No design In essenece : Declarative programming taken to the limit. Harel, 2008: “Can Programming be Liberated, Period?” 2

  4. Program Synthesis The Basic Idea : “Mechanical translation of human-understandable task specifications to a program that is known to meet the specifications.” Deductive Approach (Green, 1969, Waldinger and Lee, 1969, Manna and Waldinger, 1980) • Prove realizability of function, e.g., ( ∀ x )( ∃ y )( Pre ( x ) → Post ( x, y )) • Extract program from realizability proof. Classical vs. Temporal Synthesis : • Classical : Synthesize transformational programs • Temporal : Synthesize programs for ongoing computations (protocols, operating systems, controllers, robots, etc.) 3

  5. Temporal Logic Linear Temporal logic (LTL): logic of temporal sequences (Pnueli, 1977) Main feature : time is implicit • next ϕ : ϕ holds in the next state. • eventually ϕ : ϕ holds eventually • always ϕ : ϕ holds from now on • ϕ until ψ : ϕ holds until ψ holds. Semantics : over infinite traces • π, w | = next ϕ if w • ✲ • ✲ • ✲ • ✲ • . . . ϕ • π, w | = ϕ until ψ if w • ✲ • ✲ • ✲ • ✲ • . . . ϕ ϕ ϕ ψ 4

  6. Examples • always not (CS 1 and CS 2 ): mutual exclusion (safety) • always (Request implies eventually Grant): liveness • always (Request implies (Request until Grant)): liveness 5

  7. Synthesis of Ongoing Programs Spec : Temporal logic formulas Early 1980s : Satisfiability approach (Wolper, Clarke+Emerson, 1981) • Given : ϕ • Satisfiability : Construct model M of ϕ • Synthesis : Extract P from M . Example : always ( odd → next ¬ odd ) ∧ always ( ¬ odd → next odd ) ✛ ✘ ✛ ✘ ✲ odd odd ✛ ✚ ✙ ✚ ✙ 6

  8. Reactive Systems Reactivity : Ongoing interaction with environment (Harel+Pnueli, 1985), e.g., hardware, operating systems, communication protocols, robots, etc. (also, open systems ). Example : Printer specification – J i - job i submitted, P i - job i printing. • Safety : two jobs are not printing together always ¬ ( P 1 ∧ P 2 ) • Liveness : every jobs is eventually printed always � 2 j =1 ( J i → eventually P i ) 7

  9. Satisfiability and Synthesis Specification Satisfiable? Yes! Model M : A single state where J 1 , J 2 , P 1 , and P 2 are all false. Extract program from M ? No! Why? Because M handles only one input sequence. • J 1 , J 2 : input variables, controlled by environment • P 1 , P 2 : output variables, controlled by system Desired : a system that handles all input sequences. Conclusion : Satisfiability is inadequate for synthesis. 8

  10. Realizability I : input variables O : output variables Game : • System : choose from 2 O • Env : choose from 2 I Infinite Play : i 0 , i 1 , i 2 , . . . 0 0 , 0 1 , 0 2 , . . . Infinite Behavior : i 0 ∪ o 0 , i 1 ∪ o 1 , i 2 ∪ o 2 , . . . Win : Behavior satisfies spec. Specifications : LTL formula on I ∪ O Strategy : Function f : (2 I ) ∗ → 2 O Realizability : Abadi+Lamport+Wolper, 1989 Pnueli+Rosner, 1989 Existence of winning strategy for specification. Desideratum : A universal plan! Why : Autonomy! 9

  11. Church’s Problem Church, 1957: Realizability problem wrt specification expressed in MSO (monadic second-order theory of one successor function) B¨ uchi+Landweber, 1969: • Realizability is decidable. • If a winning strategy exists, then a finite-state winning strategy exists. • Realizability algorithm produces finite-state strategy. Rabin, 1972: Simpler solution via Rabin tree automata. Question : LTL is subsumed by MSO, so what did Pnueli and Rosner do? Answer : better algorithms! 10

  12. Strategy Trees Infinite Tree : D ∗ ( D - directions) • Root : ε ; Children : xd , x ∈ D ∗ , d ∈ D Labeled Infinite Tree : τ : D ∗ → Σ Strategy : f : (2 I ) ∗ → 2 O Rabin’s insight : A strategy is a labeled tree with directions D = 2 I and alphabet Σ = 2 O . Example : I = { p } , O = { q } q � ❅ p p � ❅ � ❅ � ❅ q q � ❅ � ❅ � ❅ � ❅ � ❅ � ❅ � � ❅ ❅ Winning : Every branch satisfies spec. Rabin, 1972: Finite-state automata on infinite trees 11

  13. Emptiness of Tree Automata Emptiness : L ( A ) = ∅ Emptiness of Automata on Finite Trees : PTIME test (Doner, 1965) Emptiness of Automata on Infinite Trees : Difficult • Rabin, 1969: non-elementary • Hossley+Rackoff, 1972: 2EXPTIME • Rabin, 1972: EXPTIME • Emerson, V.+Stockmeyer, 1985: In NP • Emerson+Jutla, 1991: NP-complete 12

  14. Rabin’s Realizability Algorithm REAL( ϕ ) : • Construct Rabin tree automaton A ϕ that accepts all winning strategy trees for spec ϕ . • Check non-emptiness of A ϕ . • If nonempty, then we have realizability; extract strategy from non-emptiness witness. Complexity : non-elementary Reason : A ϕ is of non-elementary size for spec ϕ in MSO. 13

  15. Post-1972 Developments • Pnueli, 1977: Use LTL rather than MSO as spec language. • V.+Wolper, 1983: Elementary (exponential) translation from LTL to automata. • Safra, 1988: Doubly exponential construction of tree automata for strategy trees wrt LTL spec (using V.+Wolper). • Rosner+Pnueli, 1989: 2EXPTIME realizability algorithm wrt LTL spec (using Safra). • Rosner, 1990: Realizability is 2EXPTIME- complete. 14

  16. Standard Critique Impractical! 2EXPTIME is a horrible complexity. Response : • 2EXPTIME is just worst-case complexity. • 2EXPTIME lower bound implies a doubly exponential bound on the size of the smallest strategy; thus, hand design cannot do better in the worst case. Real Challenge : very difficult algorithmics! 15

  17. Classical AI Planning Deterministic Finite Automaton (DFA) A = (Σ , S, s 0 , ρ, F ) • Alphabet : Σ • States : S • Initial state : s 0 ∈ S • Transition function : ρ : S × Σ → S • Accepting states : F ⊆ S Input word : a 0 , a 1 , . . . , a n − 1 Run : s 0 , s 1 , . . . , s n • s i +1 = ρ ( s i , a i ) for i ≥ 0 Acceptance : s n ∈ F . Planning Problem : Find word leading from s 0 to F . • Realizability : L ( A ) � = ∅ • Program : w ∈ L ( A ) 16

  18. Dealing with Nondeterminism Nondeterministic Finite Automaton (NFA) A = (Σ , S, s 0 , ρ, F ) • Alphabet : Σ • States : S • Initial state : s 0 ∈ S • Transition function : ρ : S × Σ → 2 S • Accepting states : F ⊆ S Input word : a 0 , a 1 , . . . , a n − 1 Run : s 0 , s 1 , . . . , s n • s i +1 ∈ ρ ( s i , a i ) for i ≥ 0 Acceptance : s n ∈ F . Planning Problem : Find word leading from s 0 to F . • Realizability : L ( A ) � = ∅ • Program : w ∈ L ( A ) 17

  19. Automata on Infinite Words Nondeterministic B¨ uchi Automaton (NBW) A = (Σ , S, s 0 , ρ, F ) • Alphabet : Σ • States : S • Initial state : s 0 ∈ S • Transition function : ρ : S × Σ → 2 S • Accepting states : F ⊆ S Input word : a 0 , a 1 , . . . Run : s 0 , s 1 , . . . • s i +1 ∈ ρ ( s i , a i ) for i ≥ 0 Acceptance : F visited infinitely often Motivation : • characterizes ω - regular languages • equally expressive to MSO (B¨ uchi 1962) • more expressive than LTL 18

  20. Examples ((0 + 1) ∗ 1) ω : 1 ✲ ✓✏ ✲ • • ✛ 0 – infinitely many 1 ’s ✒✑ ✻ ✻ ✂ ✁ ✂ ✁ 0 1 (0 + 1) ∗ 1 ω : 1 ✓✏ ✲ • ✲ • – finitely many 0 ’s ✒✑ ✻ ✻ ✂ ✁ ✂ ✁ 0 , 1 1 19

  21. Infinitary Planning Planning Problem : Given NBW A = (Σ , S, s 0 , ρ, F ) , find infinite word w ∈ L ( A ) From Automata to Graphs : G A = ( S, E A ) , E A = { ( s, t ) : t ∈ ρ ( s, a ) for some a ∈ Σ } . Lemma : L ( A ) � = ∅ iff there is a a state f ∈ F such that G A contains a path from s 0 to f and a cycle from f to itself. Corollary : L ( A ) � = ∅ iff there are finite words u, v ∈ Σ ∗ such that uv ω ∈ L ( A ) . Bonus : Finite-state program. Synthesized Program : Do u and then repeatedly do v . 20

  22. Temporal Logic vs. B¨ uchi Automata Paradigm : Compile high-level logical specifications into low-level finite-state language The Compilation Theorem : V.-Wolper, 1983 Given an LTL formula ϕ , one can construct an NBW A ϕ such that a computation σ satisfies ϕ if and only if σ is accepted by A ϕ . Furthermore, the size of A ϕ is at most exponential in the length of ϕ . always eventually p: p ✲ ✓✏ ✲ • • – infinitely many p ’s ✛ p ✒✑ ✻ ✻ ✂ ✁ ✂ ✁ p p eventually always p: p ✓✏ ✲ • ✲ • – finitely many p ’s ✒✑ ✻ ✻ ✂ ✁ ✂ ✁ p, p p 21

  23. LTL Planning • Input : LTL formula ϕ • Planning Problem : Find word w | = ϕ • Realizability : ϕ is satisfiable. • Solution : Solve infinitary planning with A ϕ 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Realistic Image Synthesis - Spatio-temporal Sampling and Reconstruction. Exploiting Temporal

Realistic Image Synthesis - Spatio-temporal Sampling and Reconstruction. Exploiting Temporal

Realistic Image Synthesis - Spatio-temporal Sampling and Reconstruction. Exploiting Temporal Coherence. Motion Blur . - Philipp Slusallek Karol Myszkowski Gurprit Singh Realistic Image Synthesis SS18 Spatio-temporal Sampling &

975 views • 80 slides
3 3 Siren en Song of Lebanon anon Solomon & Delilah: Characters Solomon the King

3 3 Siren en Song of Lebanon anon Solomon & Delilah: Characters Solomon the King

The Kin Th e King Who Fel g Who Fell l 3 3 Siren en Song of Lebanon anon Solomon & Delilah: Characters Solomon the King Lebanese Bride Heb literally THE King Bloch, p120 1:1,5; 3:7,9,11; 8:11,12 4:8; 4:11,15; 7:4 2 / 23

806 views • 26 slides
Guided Reactive Synthesis with Soft Requirements Reactive Synthesis from QDDC Specify the

Guided Reactive Synthesis with Soft Requirements Reactive Synthesis from QDDC Specify the

Guided Reactive Synthesis with Soft Requirements Reactive Synthesis from QDDC Specify the input-output behaviour in a high-level language e.g. a temporal logic (QDDC) Problem Statement : Given an interface definition and temporal spec

434 views • 18 slides
Di Discovering Graph Temporal Association Rules Qi Song Mohammad Hossein Namaki Yinghui Wu

Di Discovering Graph Temporal Association Rules Qi Song Mohammad Hossein Namaki Yinghui Wu

Di Discovering Graph Temporal Association Rules Qi Song Mohammad Hossein Namaki Yinghui Wu Peng Lin Tingjian Ge* Washington State University, *UMass Lowell Temporal association rules in networks Time-aware POI recommendation check-in z

606 views • 19 slides
Greek myth of the Cyclops and the Sirens Heeding to the boat. Odysseus got attacked by a siren

Greek myth of the Cyclops and the Sirens Heeding to the boat. Odysseus got attacked by a siren

Greek myth of the Cyclops and the Sirens Heeding to the boat. Odysseus got attacked by a siren then a ten heeded siren appeared. Going home. Wen Odysseus went home he got attack by sirens and Odysseus kilt a ten headed siren then he got

379 views • 3 slides
Community resource referral platforms - Lessons from early health care adopters SIREN Webinar

Community resource referral platforms - Lessons from early health care adopters SIREN Webinar

Community resource referral platforms - Lessons from early health care adopters SIREN Webinar April 18, 2019 siren Social Interventions Research & Evaluation Network SIRENs mission is to catalyze and disseminate high quality research

1.34k views • 66 slides
Synthesis of Programs from Temporal Property Specifications Amir Pnueli New York University and

Synthesis of Programs from Temporal Property Specifications Amir Pnueli New York University and

Synthesis of Programs from Temporal Property Specifications Amir Pnueli New York University and Weizmann Institute of Sciences (Emeritus) Seminar on Verification, Distributed Computing, and Computing Sciences Ben Gurion University, June, 2009

467 views • 27 slides
Syntroids Synthesizing a Game for FPGAs using Temporal Logic Specifications Gideon Geier,

Syntroids Synthesizing a Game for FPGAs using Temporal Logic Specifications Gideon Geier,

Syntroids Synthesizing a Game for FPGAs using Temporal Logic Specifications Gideon Geier, Philippe Heim , Felix Klein and Bernd Finkbeiner 24th October 2019 Saarland University OSARES Reactive Synthesis What requirements temporal

546 views • 30 slides
Song of Songs Song of Solomon Song of Songs 5 (NIV) He I have come into my garden, my sister,

Song of Songs Song of Solomon Song of Songs 5 (NIV) He I have come into my garden, my sister,

Song of Songs Song of Solomon Song of Songs 5 (NIV) He I have come into my garden, my sister, my bride; I have gathered my myrrh with my spice. I have eaten my honeycomb and my honey; I have drunk my wine and my milk. Song of Songs 5 (NIV)

415 views • 24 slides
Bayesian Statistical Parameter Synthesis for Linear Temporal Properties of Stochastic Models Luca

Bayesian Statistical Parameter Synthesis for Linear Temporal Properties of Stochastic Models Luca

Bayesian Statistical Parameter Synthesis for Linear Temporal Properties of Stochastic Models Luca Bortolussi 1 Simone Silvetti 2,3 1DMG, University of Trieste, Trieste, Italy lbortolussi@units.it 2DIMA, University of Udine, Udine, Italy 3Esteco

1.01k views • 48 slides
NEED FOR GOVERNMENT INTERVENTION TO CHECK THE FLAGRANT ABUSE OF THE LAW ON THE USE OF SIREN

NEED FOR GOVERNMENT INTERVENTION TO CHECK THE FLAGRANT ABUSE OF THE LAW ON THE USE OF SIREN

NEED FOR GOVERNMENT INTERVENTION TO CHECK THE FLAGRANT ABUSE OF THE LAW ON THE USE OF SIREN Presented at the FEC Meeting of 17 Jan 2018 by: Boboye oyeyemi, Ph.D MFR, mni, NPoM, FNIM,FCIPM,FCILT Corps Marshal, Federal Road Safety Corps 1

483 views • 21 slides
TEA IN THE SONG PERIOD History of the Song Tea Development in the Song Period Teaware

TEA IN THE SONG PERIOD History of the Song Tea Development in the Song Period Teaware

TEA IN THE SONG PERIOD History of the Song Tea Development in the Song Period Teaware of the Song Period Art and Tea in the Song Period Grinding Song Period-Style Mch Song dynasty ( ; Sng cho ) 960 1279

593 views • 34 slides
Temporal Partioning Temporal

Temporal Partioning Temporal

Temporal Partioning Temporal Partioning with Partial Mikael Olausson Reconfiguration Embedded Reconfigurable Computer Engineering Architectures Department of Electrical

195 views • 8 slides
Spatio-Temporal Statistics with R Chapter Two: Exploring Spatio-Temporal Data Spatio-Temporal

Spatio-Temporal Statistics with R Chapter Two: Exploring Spatio-Temporal Data Spatio-Temporal

Spatio-Temporal Statistics with R Chapter Two: Exploring Spatio-Temporal Data Spatio-Temporal Data Spatio-Temporal Data Geostatistical : continuous spatial index Areal (lattice): defined on finite/countable subset in space Point

895 views • 25 slides
via Three Component Ring Transformation Le Thi Song and Nagatoshi Nishiwaki* School of

via Three Component Ring Transformation Le Thi Song and Nagatoshi Nishiwaki* School of

An Introduction to the Synthesis of Nitroanilines and Nitropyridines via Three Component Ring Transformation Le Thi Song and Nagatoshi Nishiwaki* School of Environmental Science and Engineering, Kochi University of Technology Tosayamada, Kami,

754 views • 28 slides
Improving Neural Program Synthesis with Inferred Execution Traces Richard Shin 1 Illia Polosukhin

Improving Neural Program Synthesis with Inferred Execution Traces Richard Shin 1 Illia Polosukhin

Improving Neural Program Synthesis with Inferred Execution Traces Richard Shin 1 Illia Polosukhin 2 Dawn Song 1 1 UC Berkeley 2 NEAR Protocol Poster: Room 210 & 230 AB #31 Background For program synthesis from input-output examples ,

393 views • 16 slides
Tactics for Global Software Development: When to Do What? James Herbsleb Carnegie Mellon

Tactics for Global Software Development: When to Do What? James Herbsleb Carnegie Mellon

Tactics for Global Software Development: When to Do What? James Herbsleb Carnegie Mellon University 1 Multi-site Delay Modification Request (MR) interval Work Last Modification - First Modification Days All changes over 2 year period 30

564 views • 24 slides
How to capture, analyse and react on IoT generated sensor data in real time Romeo Kienzler, Chief

How to capture, analyse and react on IoT generated sensor data in real time Romeo Kienzler, Chief

How to capture, analyse and react on IoT generated sensor data in real time Romeo Kienzler, Chief Data Scientist, IBM Watson IoT, WW Why IoT (now) ? 15 Billion connected devices in 2015 40 Billion connected devices in 2020 World

610 views • 44 slides
Michael Bahr Siemens AG Chairman of WG 1 5G ACIA Workshop, Coventry, Jan 2020 WG1 General Scope

Michael Bahr Siemens AG Chairman of WG 1 5G ACIA Workshop, Coventry, Jan 2020 WG1 General Scope

Michael Bahr Siemens AG Chairman of WG 1 5G ACIA Workshop, Coventry, Jan 2020 WG1 General Scope Use Cases Real Life Re Cu Current Future Fu Industrial automation use cases from real life utilizing (5G) communication Current

345 views • 10 slides
physics of the big bang! Image from: http://abyss.uoregon.edu/~js/images/cmb_scatter.jpg Work

physics of the big bang! Image from: http://abyss.uoregon.edu/~js/images/cmb_scatter.jpg Work

CMB limits our (EM) view on the early universe Using gravitational waves we can peer through the fog of the CMB to probe the physics of the big bang! Image from: http://abyss.uoregon.edu/~js/images/cmb_scatter.jpg Work at first order

379 views • 13 slides
EURECOM @ SemStats 2019 Challenge Thibault Ehrhart and Raphal Troncy Sirene Track French

EURECOM @ SemStats 2019 Challenge Thibault Ehrhart and Raphal Troncy Sirene Track French

EURECOM @ SemStats 2019 Challenge Thibault Ehrhart and Raphal Troncy Sirene Track French directory managed by INSEE which assigns a SIREN number to French enterprises, and and a SIRET number to their establishments Goal: proposing a

428 views • 16 slides
Recruiter Safety: Tips to Stay Safe in the Field FL ID&R Office April 2019 Objective

Recruiter Safety: Tips to Stay Safe in the Field FL ID&R Office April 2019 Objective

Recruiter Safety: Tips to Stay Safe in the Field FL ID&R Office April 2019 Objective Provide tips and tools to manage safety 2 Recruiter Safety: Tips to Stay Safe in the Field Recruitment Goals Staff

595 views • 22 slides
GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 10 th TF NOC meeting

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 10 th TF NOC meeting

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 10 th TF NOC meeting (Cambridge) Friday, 21 March 2014 Xavier Jeannin / RENATER, SA3T3 Task Leader Miguel Angel Sotos / RedIRIS Bojan Jakovljevic / AMRES Agenda What is

517 views • 15 slides
Joint ICTP-IAEA School on LoRa Enabled Radiation and Environmental M o n i t o r i n g S

Joint ICTP-IAEA School on LoRa Enabled Radiation and Environmental M o n i t o r i n g S

Joint ICTP-IAEA School on LoRa Enabled Radiation and Environmental M o n i t o r i n g S e n s o r s Kicad, Tutorial with LORA module Example In this tutorial we will design a lora_module pcb with Arduino UNO form factor using the

360 views • 6 slides

More recommend