Quantitative Verification Arindam Chakrabarti * Krishnendu Chatterjee * Thomas A. Henzinger * Orna Kupferman ** Rupak Majumdar *** * UC Berkeley ** Hebrew.

Slides:



Advertisements
Similar presentations
Avoiding Determinization Orna Kupferman Hebrew University Joint work with Moshe Vardi.
Advertisements

Metodi formali dello sviluppo software a.a.2013/2014 Prof.Anna Labella.
CS 267: Automated Verification Lecture 8: Automata Theoretic Model Checking Instructor: Tevfik Bultan.
Tree Regular Model Checking P. Abdulla, B. Jonsson, P. Mahata and J. d’Orso Uppsala University.
Interface Theories With Component Reuse Laurent DoyenEPFL Thomas HenzingerEPFL Barbara JobstmannEPFL Tatjana PetrovEPFL.
Automatic Verification Book: Chapter 6. What is verification? Traditionally, verification means proof of correctness automatic: model checking deductive:
Budapest University of Technology and EconomicsDagstuhl 2004 Department of Measurement and Information Systems 1 Towards Automated Formal Verification.
Hybrid Systems Presented by: Arnab De Anand S. An Intuitive Introduction to Hybrid Systems Discrete program with an analog environment. What does it mean?
BLAST-A Model Checker for C Developed by Thomas A. Henzinger (EPFL) Rupak Majumdar (UC Los Angeles) Ranjit Jhala (UC San Diego) Dirk Beyer (Simon Fraser.
Multi-agent Planning Amin Atrash. Papers Dynamic Planning for Multiple Mobile Robots –Barry L. Brummit, Anthony Stentz OBDD-based Universal Planning:
Discounting the Future in Systems Theory Chess Review May 11, 2005 Berkeley, CA Luca de Alfaro, UC Santa Cruz Tom Henzinger, UC Berkeley Rupak Majumdar,
Spin Tutorial (some verification options). Assertion is always executable and has no other effect on the state of the system than to change the local.
Convertibility Verification and Converter Synthesis: Two Faces of the Same Coin Jie-Hong Jiang EE249 Discussion 11/21/2002 Passerone et al., ICCAD ’ 02.
61 Nondeterminism and Nodeterministic Automata. 62 The computational machine models that we learned in the class are deterministic in the sense that the.
Games, Times, and Probabilities: Value Iteration in Verification and Control Krishnendu Chatterjee Tom Henzinger.
Solving Partial Order Constraints for LPO termination.
Rich Interface Theories for Component-based Design Dirk Beyer ┼, Arindam Chakrabarti *, Luca de Alfaro **, Thomas A Henzinger * ┼, Marcin Jurdziński *,
EECE Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.
Quantum Automata Formalism. These are general questions related to complexity of quantum algorithms, combinational and sequential.
Specification Formalisms Book: Chapter 5. Properties of formalisms Formal. Unique interpretation. Intuitive. Simple to understand (visual). Succinct.
MinML: an idealized programming language CS 510 David Walker.
Review of the automata-theoretic approach to model-checking.
1 Coverage Metrics in Formal Verification Hana Chockler Hebrew University.
Chess Review November 18, 2004 Berkeley, CA Hybrid Systems Theory Edited and Presented by Thomas A. Henzinger, Co-PI UC Berkeley.
Complexity Issues Mark Allen Weiss: Data Structures and Algorithm Analysis in Java Lydia Sinapova, Simpson College.
Introduction to Finite Automata Adapted from the slides of Stanford CS154.
Automata and Formal Lanugages Büchi Automata and Model Checking Ralf Möller based on slides by Chang-Beom Choi Provable Software Lab, KAIST.
CS 267: Automated Verification Lecture 13: Bounded Model Checking Instructor: Tevfik Bultan.
1 Non-Deterministic Finite Automata. 2 Alphabet = Nondeterministic Finite Automaton (NFA)
Abstract Verification is traditionally done by determining the truth of a temporal formula (the specification) with respect to a timed transition system.
1 3rd of July 2009 CEA LIST Symbolic execution based model checking of open systems with unbounded variables Nicolas RAPIN CEA LIST.
Languages and Machines Unit two: Regular languages and Finite State Automata.
Flavio Lerda 1 LTL Model Checking Flavio Lerda. 2 LTL Model Checking LTL –Subset of CTL* of the form: A f where f is a path formula LTL model checking.
272: Software Engineering Fall 2012 Instructor: Tevfik Bultan Lecture 4: SMT-based Bounded Model Checking of Concurrent Software.
Quantitative Languages Krishnendu Chatterjee, UCSC Laurent Doyen, EPFL Tom Henzinger, EPFL CSL 2008.
Regular Model Checking Ahmed Bouajjani,Benget Jonsson, Marcus Nillson and Tayssir Touili Moran Ben Tulila
Introduction to Software Testing Chapter 9.4 Model-Based Grammars Paul Ammann & Jeff Offutt
Institute for Applied Information Processing and Communications 1 Karin Greimel Semmering, Open Implication.
Model Checking Lecture 3 Tom Henzinger. Model-Checking Problem I |= S System modelSystem property.
Automating Construction of Lexers. Example in javacc TOKEN: { ( | | "_")* > | ( )* > | } SKIP: { " " | "\n" | "\t" } --> get automatically generated code.
CS6133 Software Specification and Verification
1 Computability Five lectures. Slides available from my web page There is some formality, but it is gentle,
Copyright , Doron Peled and Cesare Tinelli. These notes are based on a set of lecture notes originally developed by Doron Peled at the University.
Expressiveness and Closure Properties for Quantitative Languages Krishnendu Chatterjee, IST Austria Laurent Doyen, ULB Belgium Tom Henzinger, EPFL Switzerland.
Software Verification 2 Automated Verification Prof. Dr. Holger Schlingloff Institut für Informatik der Humboldt Universität and Fraunhofer Institut für.
Synchronous Protocol Automata. Formal definitions Definition 1 A synchronous protocol automaton P is defined as a tuple (Q,S,D,V,A,->,clk,q0,qf) Channels.
Recognizing safety and liveness Presented by Qian Huang.
- 1 -  P. Marwedel, Univ. Dortmund, Informatik 12, 05/06 Universität Dortmund Validation - Formal verification -
VIS Technology Transfer Course Session 7 Fairness Constraints and Monitors Serdar Tasiran.
Strings Basic data type in computational biology A string is an ordered succession of characters or symbols from a finite set called an alphabet Sequence.
Symbolic Algorithms for Infinite-state Systems Rupak Majumdar (UC Berkeley) Joint work with Luca de Alfaro (UC Santa Cruz) Thomas A. Henzinger (UC Berkeley)
1 Temporal logic. 2 Prop. logic: model and reason about static situations. Example: Are there truth values that can be assigned to x,y simultaneously.
From Natural Language to LTL: Difficulties Capturing Natural Language Specification in Formal Languages for Automatic Analysis Elsa L Gunter NJIT.
About Alternating Automata Daniel Choi Provable Software Laboratory KAIST.
Today’s Agenda  Quiz 4  Temporal Logic Formal Methods in Software Engineering1.
CSCI 4325 / 6339 Theory of Computation Zhixiang Chen.
Dynamic White-Box Testing What is code coverage? What are the different types of code coverage? How to derive test cases from control flows?
Model Checking Lecture 2 Tom Henzinger. Model-Checking Problem I |= S System modelSystem property.
Nondeterminism The Chinese University of Hong Kong Fall 2011
Graphing Inequalities and Equation Solutions
Jaya Krishna, M.Tech, Assistant Professor
CSE322 Finite Automata Lecture #2.
THEORY OF COMPUTATION Lecture One: Automata Theory Automata Theory.
CSCI1600: Embedded and Real Time Software
Alternating tree Automata and Parity games
CSCI1600: Embedded and Real Time Software
Quantitative Modeling, Verification, and Synthesis
Nondeterminism The Chinese University of Hong Kong Fall 2010
Presentation transcript:

Quantitative Verification Arindam Chakrabarti * Krishnendu Chatterjee * Thomas A. Henzinger * Orna Kupferman ** Rupak Majumdar *** * UC Berkeley ** Hebrew University *** UC Los Angeles

14 May 20044th OSQ Retreat, Santa Cruz, CA2 Outline What is the proposal ? What benefits do we get out of it ? Nailing down some details… Some interesting results. Summary

14 May 20044th OSQ Retreat, Santa Cruz, CA3 Formal Verification: Traditional approach Model: Labelled transition structure. Property: Classification of finite and/or infinite sequences of states into good and bad sets. Model-checking: Verification that all sequences of states generated by model are in good set.

14 May 20044th OSQ Retreat, Santa Cruz, CA4 Traditional approach: Models {a} {c} {b,c} {a,b} {a}

14 May 20044th OSQ Retreat, Santa Cruz, CA5 Traditional approach: Models {a} {c} {b,c} {a,b} {a} Each proposition maps each state to TRUE or FALSE.

14 May 20044th OSQ Retreat, Santa Cruz, CA6 Traditional approach: Models {a} {c} {b,c} {a,b} {a} Each proposition maps each state to TRUE or FALSE. Proposition: a

14 May 20044th OSQ Retreat, Santa Cruz, CA7 Traditional approach: Models {a} {c} {b,c} {a,b} {a} Each proposition maps each state to a boolean. Proposition: b

14 May 20044th OSQ Retreat, Santa Cruz, CA8 Extension 1: Quantitative Propositions, Models 1,3,4 0,2,5 34,23,1 8,4,9 3,2,4 Propositions: Each proposition maps each state to an integer.

14 May 20044th OSQ Retreat, Santa Cruz, CA9 Traditional approach: Properties A(a U c) {a} {c} {b,c} {a,b} {a}

14 May 20044th OSQ Retreat, Santa Cruz, CA10 Traditional approach: Properties A(a U c) {a} {c} {b,c} {a,b} {a} A property maps each path to TRUE or FALSE.

14 May 20044th OSQ Retreat, Santa Cruz, CA11 Extension 2: Quantitative Properties 1,3,4 0,2,5 34,23,1 8,4,9 3,2,4 max(sum(a)) while (sum(b) < 100)

14 May 20044th OSQ Retreat, Santa Cruz, CA12 Extension 2: Quantitative Properties max(sum(a)) while (sum(b) < 100) 1,3,4 0,2,5 34,23,1 8,4,9 3,2,4 112

14 May 20044th OSQ Retreat, Santa Cruz, CA13 Extension 2: Quantitative Properties max(sum(a)) while (sum(b) < 100) 1,3,4 0,2,5 34,23,1 8,4,9 3,2,4 115

14 May 20044th OSQ Retreat, Santa Cruz, CA14 Extension 2: Quantitative Properties max(sum(a)) while (sum(b) < 100) 1,3,4 0,2,5 34,23,1 8,4,9 3,2,4 188 A property maps each path to an integer.

14 May 20044th OSQ Retreat, Santa Cruz, CA15 Traditional approach: Model-checking problem {a} {c} {b,c} {a,b} {a} A(a U c) Check if any path in model violates the property (is mapped to FALSE).

14 May 20044th OSQ Retreat, Santa Cruz, CA16 Extension 3: Quantitative Model- checking problem 1,3,4 0,2,5 34,23,1 8,4,9 3,2,4 188 max(sum(a)) while (sum(b) < 100) Find the maximum (or minimum) value of the property on any path in the model.

14 May 20044th OSQ Retreat, Santa Cruz, CA17 Outline What is the proposal ? What benefits do we get out of it ? Nailing down some details… Some interesting results. Summary

14 May 20044th OSQ Retreat, Santa Cruz, CA18 Motor driver in a robot 0 stopslowfast 12 fast? slow?stop? slow? fast? stop? slow? fast?

14 May 20044th OSQ Retreat, Santa Cruz, CA19 Sensornet node with buffer of size 3 0 receivesend 1 send? receive? 2 send? receive? 3 send? receive?

14 May 20044th OSQ Retreat, Santa Cruz, CA20 Outline What is the proposal ? What benefits do we get out of it ? Nailing down some details… Some interesting results. Summary

14 May 20044th OSQ Retreat, Santa Cruz, CA21 Specifying properties using quantitative automata Property: maps each sequence of states to an integer. Quantitative automaton: States, input symbols, counters, guarded instructions on transitions, nondeterminism. Value of a run is given by limsup of values of a designated counter R0.

14 May 20044th OSQ Retreat, Santa Cruz, CA22 A Quantitative Automaton R1 := R1 + a R2 := R2 - b if R1 = R2 then R0 := c R1 := R1 + a R2 := R2 + b if R1 = R2 then R0 := c Maps each infinite sequence  = h a i,b i,c i i … to limsup c i such that  a i =  (-1) i ¢ b i

14 May 20044th OSQ Retreat, Santa Cruz, CA23 Outline What is the proposal ? What benefits do we get out of it ? Nailing down some details… Some interesting results. Summary

14 May 20044th OSQ Retreat, Santa Cruz, CA24 Some interesting results Infinite det- and nondet- hierarchies. Power of non-determinism. Undecidability of model-checking. Absence of finite-memory determinacy. Parametric-bounds, decidability, complexity. Parameter-finding cannot be automated. Quantitative  -calculus, correlations.

14 May 20044th OSQ Retreat, Santa Cruz, CA25 Some interesting results Infinite det- and nondet- hierarchies. Power of non-determinism. Undecidability of model-checking. Absence of finite-memory determinacy. Parametric-bounds, decidability, complexity. Parameter-finding cannot be automated. Quantitative  -calculus, correlations.

14 May 20044th OSQ Retreat, Santa Cruz, CA26 Examples Response time Fair maximum Resoure lifetime

14 May 20044th OSQ Retreat, Santa Cruz, CA27 Summary Quantitative extension to boolean verification framework. Motivation for doing so. Extended definitions for propositions, properties, and the model-checking problem. Some results (+ problems, solutions), examples.

14 May 20044th OSQ Retreat, Santa Cruz, CA28 Thanks for listening ! Questions, Comments, Suggestions ?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.