verifying test hypotheses hol testgen
play

Verifying Test Hypotheses - HOL/TestGen An Experiment in Test and - PowerPoint PPT Presentation

Nov 06, 2023 •387 likes •595 views

Verifying Test Hypotheses - HOL/TestGen Verifying Test Hypotheses - HOL/TestGen An Experiment in Test and Proof Thomas Malcher January 20, 2014 1 / 20 Verifying Test Hypotheses - HOL/TestGen HOL/TestGen Outline Introduction Test Hypotheses

  1. Verifying Test Hypotheses - HOL/TestGen Verifying Test Hypotheses - HOL/TestGen An Experiment in Test and Proof Thomas Malcher January 20, 2014 1 / 20

  2. Verifying Test Hypotheses - HOL/TestGen HOL/TestGen Outline Introduction Test Hypotheses HOL/TestGen - Demo Verifying Test Hypotheses Conclusion 2 / 20

  3. Verifying Test Hypotheses - HOL/TestGen HOL/TestGen What it does? builds test case and test data from a formal/logical test specification the Model is a logical expression (test specification) dynamic testing/blackbox testing generates functional test strategy 3 / 20

  4. Verifying Test Hypotheses - HOL/TestGen HOL/TestGen What it is? semi-automated test tool for specification based tests Academic tool to get insight in the connection between test and verification What is the nature of the relation between test and proof? Does a test approximate a verification? Does testing contribute to verification? 4 / 20

  5. Verifying Test Hypotheses - HOL/TestGen HOL/TestGen Foundations Isabelle/HOL Higher-Order-Logic (HOL) like a functional language extended by logical quantifiers Test Hypotheses i s s o r t e d ( [ ] ) = True 1 i s s o r t e d ( x#xs ) = ( case xs of [ ] − − > True | 2 y#ys − − > ( ( x < y ) or ( x=y ) ) and i s s o r t e d ( xs ) ) 3 5 / 20

  6. Verifying Test Hypotheses - HOL/TestGen HOL/TestGen The Core Decompose a test specification (TS), into a semantically equivalent set of Test cases TC i and Test hypotheses H i [ TC 1 . . . TC n , H 1 . . . H m ] = ⇒ TS If the system under test passes all test cases TC i successfully, and if it satisfies all test hypothesis H i , it is correct with respect to the test specification TS. Or: validation by test + proof of test hypotheses → validation by proof 6 / 20

  7. Verifying Test Hypotheses - HOL/TestGen Test Hypotheses[5] What is a Test Hypothesis? if we do tests we set up hypotheses we infer from the behaviour for a specific input to the behaviour for a class of inputs 7 / 20

  8. Verifying Test Hypotheses - HOL/TestGen Test Hypotheses We can distinguish between 2 types of test hypotheses: uniformity hypotheses ∃ x : P ( x ) = ⇒ ∀ x : P ( x ) regularity hypotheses ∀ x : | x | < = k ∧ P ( x ) = ⇒ ∀ x : k < | x | ∧ P ( x ) e.g: input 32bit integer strong uniformity hypothesis: input ”1” passes → its correct for all integers weak uniformity hypothesis: tests for all integers 8 / 20

  9. Verifying Test Hypotheses - HOL/TestGen Test Hypotheses Although we always use Test Hypotheses they are never explicit explicit Test Hypotheses explicit Test Hypotheses formalize common test practices and express the gab beetween test sucess and correctness [4] A test set should never be presented independently of its hypotheses [5] 9 / 20

  10. Verifying Test Hypotheses - HOL/TestGen HOL/TestGen Workflow/System Four phases: writing the test specification TS (e.g: is sorted(SUT(list))) generation of test cases TC and test hyptheses for the TS generation of test data TD (variables replaced by ground instance) the test execution phase 10 / 20

  11. Verifying Test Hypotheses - HOL/TestGen test case generation with explicit Test Hypotheses HOL/TestGen generates test cases toghether with the explicit hypotheses They give information about the quality of the test cases Test Hypotheses can be seen as a proof obligation for verification validation by test + proof of test hypotheses = ⇒ validation by proof 11 / 20

  12. Verifying Test Hypotheses - HOL/TestGen test case generation with explicit Test Hypotheses uniformity hypothesis TS : if 0 ≤ x then SUT(x) else SUT(-x) test theorem 1 : 0 ≤ ? X 1 → SUT (? X 1) 2: THYP: ( ∃ x . 0 ≤ x → SUT ( x )) = ⇒ ( ∀ x . 0 ≤ x → SUT ( x )) 3: ? X 2 < 0 → SUT ( − ? X 2) 4: THYP: ( ∃ x . x < 0 → SUT ( − x )) = ⇒ ( ∀ x . x < 0 → SUT ( − x )) data generation phase will easily generate instances of the test cases e.g., SUT (3) and SUT ( − ( − 4)), (satisfying the constraints) 12 / 20

  13. Verifying Test Hypotheses - HOL/TestGen test case generation with explicit Test Hypotheses regularity hypothesis TS : SUT ( list l ) test theorem 1 : SUT ([]) 2: SUT([?X1]) 3: SUT([?X2,?X3]) 4: THYP: ∀ x . 2 < | x | = ⇒ SUT ( x ) depth is user defined; in this example 2 uniformity hypotheses omitted 13 / 20

  14. Verifying Test Hypotheses - HOL/TestGen DEMO DEMO TIME! example ”List” from HOL/TestGen 14 / 20

  15. Verifying Test Hypotheses - HOL/TestGen testing Test Hypotheses increases quality of test cases weakens the hypothesis refeed test hypothesis into HOL/Testgen again generates more testcases and weakens the hypothesis. if we get rid of all hypotheses we would have to test the program with all possible inputs. 15 / 20

  16. Verifying Test Hypotheses - HOL/TestGen proofing Test Hypotheses uniformity hypotheses proofed over real code all test cases passed + all hypotheses proofed → SUT verified uniformity hypothesis. ∃ x , xa . is sorted ( SUT ([ xa , x ])) = ⇒ ∀ x , xa . is sorted ( SUT ([ xa , x ])) SUT replaced by program sort, can be written as: � x , xa , x ′ , xa ′′ : is sorted ( sort ([ xa ′ , x ′ ])) = ⇒ is sorted ( sort ([ xa , x ])) The only way to proceed is by discarding the assumption � x , xa : is sorted ( sort ([ xa , x ])) ..... 16 / 20

  17. Verifying Test Hypotheses - HOL/TestGen proofing Test Hypotheses uniformity hypotheses This shows that the test case is irrelevant for the proof of uniformity as the assumption (=test case) of the hypothesis had to be discharged test contributes to the proof only if it covers input space then the test is the verification 17 / 20

  18. Verifying Test Hypotheses - HOL/TestGen proofing Test Hypotheses regularity hypotheses The uniformity hypotheses can be combined to ∀ l . | l | ≤ 3 = ⇒ is sorted ( sort ( l )) is sorted ( l ) → is sorted ( ins ( a , l )) regularity hypothesis by induction. anchor : � a , l . | l | = 3 = ⇒ is sorted ( ins ( a , sort ( l ))) step : � a , l . is sorted ( sort ( l )) = ⇒ is sorted ( ins ( a , sort ( l ))) 18 / 20

  19. Verifying Test Hypotheses - HOL/TestGen Conclusion tests and (post-hoc) verifications can work together Test hypotheses can be seen as proof obligation that is proven in later stages of validation if needed Test hypotheses give information about the quality of tests testing test hypotheses can be used to approximate verification (covering input space) no hope for the desire to use tests to simplify proofs 19 / 20

  20. Verifying Test Hypotheses - HOL/TestGen References Brucker, Br¨ ugger, Krieger, and Wolff. Hol-testgen 1.7.0 user guide. Laboratoire en Recherche en Infromatique (LRI),Universit e Paris-Sud , 2012. Brucker, Br¨ ugger, and Wolff. Verifying test-hypotheses - an experiment in test and proof. In Proceedings of the Fourth Workshop on Model Based Testing (MBT 2008) , 2008. Brucker and Wolff. Interactive testing with hol-testgen. Formal Approaches to Software Testing 5th International Workshop, FATES , 2005. M.-C. Gaudel G. Bernot and B. Marre. Software testing based on formal specifications: a theory and a tool. Software Engineering Journal, 6(6):387-405 , 1991. Marie-Claude Gaudel. Testing can be formal, too. Laboratoire en Recherche en Infromatique (LRI),Universit e Paris-Sud , 1995. 20 / 20

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Business Statistics CONTENTS A hypothesis test Hypotheses Rejection region and significance

Business Statistics CONTENTS A hypothesis test Hypotheses Rejection region and significance

HYPOTHESES: LOGIC AND FRAMEWORK Business Statistics CONTENTS A hypothesis test Hypotheses Rejection region and significance level Five-step procedure for hypothesis tests More on hypotheses Old exam question Further study A HYPOTHESIS TEST

980 views • 40 slides
Engineering Best Practices Test, test, test, and test some more; test as you go Start from a

Engineering Best Practices Test, test, test, and test some more; test as you go Start from a

Engineering Best Practices Test, test, test, and test some more; test as you go Start from a known working state, take small steps Make things visible (gdb, printf, logic analyzer) Methodical, systematic approach. Form hypotheses and perform

755 views • 38 slides
1 Z-Score Test for Comparing One-sided vs Two-sided Tests Learned Hypotheses Assumes h 1 is

1 Z-Score Test for Comparing One-sided vs Two-sided Tests Learned Hypotheses Assumes h 1 is

Evaluating Inductive Hypotheses Accuracy of hypotheses on training data is obviously biased since the hypothesis was CS 391L: Machine Learning: constructed to fit this data. Experimental Evaluation Accuracy must be evaluated on an

357 views • 4 slides
Business Statistics CONTENTS Hypotheses on the median The sign test The Wilcoxon signed ranks

Business Statistics CONTENTS Hypotheses on the median The sign test The Wilcoxon signed ranks

MEDIAN: NON-PARAMETRIC TESTS Business Statistics CONTENTS Hypotheses on the median The sign test The Wilcoxon signed ranks test Old exam question Further study HYPOTHESES ON THE MEDIAN The median is a central value that may be more

327 views • 19 slides
On the Optimum Number of Hypotheses to Test when the Number of Observations is Limited A.

On the Optimum Number of Hypotheses to Test when the Number of Observations is Limited A.

On the Optimum Number of Hypotheses to Test when the Number of Observations is Limited A. Futschik and M. Posch Vienna University &amp; Medical Univ. of Vienna On the Optimum Number of Hypotheses to Test when the Number of Observations is

581 views • 28 slides
Hypotheses with two variates Two sample hypotheses R.W. Oldford Common hypotheses Recall some

Hypotheses with two variates Two sample hypotheses R.W. Oldford Common hypotheses Recall some

Hypotheses with two variates Two sample hypotheses R.W. Oldford Common hypotheses Recall some common circumstances and hypotheses: Hypotheses about the distribution of a single random variable Y for which we have sample values y 1 , y 2 , .

1.62k views • 110 slides
Course 02402 Overview, Hypotheses Concerning Means Introduction to Statistics Motivating Example

Course 02402 Overview, Hypotheses Concerning Means Introduction to Statistics Motivating Example

Course 02402 Overview, Hypotheses Concerning Means Introduction to Statistics Motivating Example 1 Hypotheses and tests of these 2 Lecture 6: Chapter 7: Hypothesis Test for means One- or Two-Sided Alternative (one-sample setup), 7.4-7.6

567 views • 7 slides
Business Statistics CONTENTS The one-sample -test for Hypotheses and SPSS Old exam

Business Statistics CONTENTS The one-sample -test for Hypotheses and SPSS Old exam

: THE ONE-SAMPLE -TEST AND SPSS Business Statistics CONTENTS The one-sample -test for Hypotheses and SPSS Old exam question Further study THE ONE-SAMPLE -TEST FOR When to use the one-sample -test? It

332 views • 22 slides
Course 02402 Overview, Hypotheses Tests Concerning Two Means Introduction to Statistics

Course 02402 Overview, Hypotheses Tests Concerning Two Means Introduction to Statistics

Course 02402 Overview, Hypotheses Tests Concerning Two Means Introduction to Statistics Hypothesis test - a repetition 1 Hypothesis tests and confidence intervals Lecture 7: Chapter 7 and 8: Hypotheses Tests Concerning Power and sample size

320 views • 9 slides
Hypotheses with two variates Paired data R.W. Oldford Common hypotheses Recall some common

Hypotheses with two variates Paired data R.W. Oldford Common hypotheses Recall some common

Hypotheses with two variates Paired data R.W. Oldford Common hypotheses Recall some common circumstances and hypotheses: Hypotheses about the distribution of a single random variable Y for which we have sample values y 1 , y 2 , . . . y n .

1.34k views • 111 slides
Develop social psychological theories Test hypotheses and techniques derived from these

Develop social psychological theories Test hypotheses and techniques derived from these

Develop social psychological theories Test hypotheses and techniques derived from these theories Develop techniques for measuring and improving the interaction between the respondent and the interviewer Dissertation research

375 views • 12 slides
Applied Political Research Session 5: Tests of Hypotheses The Student t-test Lecturer: Prof. A.

Applied Political Research Session 5: Tests of Hypotheses The Student t-test Lecturer: Prof. A.

POLI 443 Applied Political Research Session 5: Tests of Hypotheses The Student t-test Lecturer: Prof. A. Essuman-Johnson , Dept. of Political Science Contact Information: aessuman-johnson@ug.edu.gh College of Education School of Continuing

349 views • 11 slides
13. hypothesis testing 1 competing hypotheses 2 competing hypotheses 3 competing hypotheses

13. hypothesis testing 1 competing hypotheses 2 competing hypotheses 3 competing hypotheses

CSE 312, Winter 2011, W.L.Ruzzo 13. hypothesis testing 1 competing hypotheses 2 competing hypotheses 3 competing hypotheses 4 competing hypotheses 5 hypothesis testing E.g.: By convention, the null hypothesis is usually the

578 views • 21 slides
Chapter 5.5: Hypothesis Tests 1. What is a hypothesis test? 2. The elements of a test: null and

Chapter 5.5: Hypothesis Tests 1. What is a hypothesis test? 2. The elements of a test: null and

Introduction to Statistics Chapter 5.5: Hypothesis Tests 1. What is a hypothesis test? 2. The elements of a test: null and alternative hypotheses, types of error, significance level, critical region 3. Tests for the mean of a normal population

598 views • 27 slides
Chapter 5.5: Hypothesis Tests 1. What is a hypothesis test? 2. The elements of a test: null and

Chapter 5.5: Hypothesis Tests 1. What is a hypothesis test? 2. The elements of a test: null and

Applied Statistics Chapter 5.5: Hypothesis Tests 1. What is a hypothesis test? 2. The elements of a test: null and alternative hypotheses, types of error, significance level, critical region 3. Tests for the mean of a normal population 4. Tests

679 views • 28 slides
12/30/2012 Hypotheses Prepared by: Amanda J. Rockinson-Szapkiw Liberty University Hypothesis:

12/30/2012 Hypotheses Prepared by: Amanda J. Rockinson-Szapkiw Liberty University Hypothesis:

12/30/2012 Hypotheses Prepared by: Amanda J. Rockinson-Szapkiw Liberty University Hypothesis: Purpose To determine if a theory has the ability to explain, predict, or describe, you conduct experimentation and observation to test inferences

232 views • 7 slides
Unification in a context of postponed equations Jesper Cockx DistriNet KU Leuven 4 June

Unification in a context of postponed equations Jesper Cockx DistriNet KU Leuven 4 June

Unification in a context of postponed equations Jesper Cockx DistriNet KU Leuven 4 June 2015 Postponed equations cause problems Issue 292: Heterogenous equality is crippled by the Bool = Fin 2 fix Issue 1071: Regression in unifier,

556 views • 40 slides
SYSTEMS USING SOFTWARE VERIFICATION Parasara Sridhar Duggirala UConn Mahesh Viswanathan

SYSTEMS USING SOFTWARE VERIFICATION Parasara Sridhar Duggirala UConn Mahesh Viswanathan

ANALYZING REAL TIME LINEAR CONTROL SYSTEMS USING SOFTWARE VERIFICATION Parasara Sridhar Duggirala UConn Mahesh Viswanathan UIUC Real-Time Systems + Linear Control Systems + Verification Verification Control systems Real Time Systems

452 views • 43 slides
Efficient Algorithm for Serial Data Fusion in Wireless Sensor

Efficient Algorithm for Serial Data Fusion in Wireless Sensor

Efficient Algorithm for Serial Data Fusion in Wireless Sensor Networks A. Mostefaoui 1 , M. Melkemi 2 and A. Boukerche 3 1 University of Franche-Comt, France

701 views • 51 slides
Curve25519: Proving datatypes with a rooster Beno t Viguier MSc ( x y. x@y.nl ) benoit

Curve25519: Proving datatypes with a rooster Beno t Viguier MSc ( x y. x@y.nl ) benoit

Curve25519: Proving datatypes with a rooster Beno t Viguier MSc ( x y. x@y.nl ) benoit viguier https://www.viguier.nl DS Lunch talk 9th December 2016 Institute for Computing and Information Sciences Digital Security Radboud

761 views • 29 slides
CENTRAL PUBLIC ANTI-CORRUPTION PROCUREMENT BUREAU OFFICE Public procurement

CENTRAL PUBLIC ANTI-CORRUPTION PROCUREMENT BUREAU OFFICE Public procurement

CENTRAL PUBLIC ANTI-CORRUPTION PROCUREMENT BUREAU OFFICE Public procurement anti-corruption regulations. Polish experiences. Hubert Nowak Vice President, Public Procurement Office Wojciech migielski Depute Director of Control

508 views • 40 slides
Client Alert Contact Attorneys Exemplary cooperation, enhanced compliance program, and

Client Alert Contact Attorneys Exemplary cooperation, enhanced compliance program, and

Client Alert Contact Attorneys Exemplary cooperation, enhanced compliance program, and Regarding This Matter: independent monitor protect company from criminal prosecution for FCPA violations On May 14, 2008, the Department of Justice

292 views • 5 slides
Fraud and Corruption Control Local Government Tabled on 19 June 2019 This presentation

Fraud and Corruption Control Local Government Tabled on 19 June 2019 This presentation

Slide 1 Fraud and Corruption Control Local Government Tabled on 19 June 2019 This presentation provides an overview of the Victorian Auditor-Generals report Fraud and Corruption ControlLocal Government. Slide 2 Background Fraud

481 views • 10 slides
The Gavel Volume 3 THE LATEST ON THE FCPA Companies need to maintain vigilance in

The Gavel Volume 3 THE LATEST ON THE FCPA Companies need to maintain vigilance in

The Gavel Volume 3 THE LATEST ON THE FCPA Companies need to maintain vigilance in weeding out bribery and corruption in order to stay compliant with The Foreign Corrupt Practices Act of 1977, as amended (hereinafter FCPA),

285 views • 3 slides

More recommend