Presentation is loading. Please wait.

Presentation is loading. Please wait.

Formal Methods: Three suggestions for rapid adoption Wolfram Schulte RiSE, MSR Workshop on Usable Verification 11/15/2010.

Published byBlaze Nicholson Modified over 9 years ago

Similar presentations

Presentation on theme: "Formal Methods: Three suggestions for rapid adoption Wolfram Schulte RiSE, MSR Workshop on Usable Verification 11/15/2010."— Presentation transcript:

1 Formal Methods: Three suggestions for rapid adoption Wolfram Schulte RiSE, MSR Workshop on Usable Verification 11/15/2010

2 Build on the shoulder of giants: Unify and leverage tool chains First

3 From Program analysis tools in 2000-2003… Slam Model- checker Simple Decision Procedure Fugue Dataflow Analyzer Abstract Domains Prefix/ Prefast Symbolic Interpret. Custom Decision Procedure ESP Dataflow Analyzer Abstract Domains

4 … to formal methods tools in 2004-2010… Z3 Boogie Havoc SymDiff Formula Rex PexCodeContracts Fine Sym Autom VCC Poirot SimplifyIsabelle Spec# Bek Chalice Sage Daphne

5 …. to…

6 Specifications for free: Embrace developer languages Second

7 CodeContracts Use a language agnostic library to author contracts Enables runtime and compile-time checking based on AI Supports full scenario: author, check, view, doc Authoring ships in VS 2010, > 50k downloads for tools, key feature

8 CodeContracts: Code as Specifications Use a language agnostic library to author contracts Enables static and dynamic checking Contracts support “squiggles”, views, doc.- generation Authoring ships in VS 2010, > 50k downloads for tools static int MinIndex(int[] data) { Contract.Requires(data != null); Contract.Ensures(Contract.Result () >= -1); Contract.Ensures(Contract.Result () < data.Length); var result = -1; for (int i = 0; i < data.Length; i++) result = (result<0 || data[i]<data[result]) i: result; return result; }

9 Pex: Tests as Specifications Embrace Unit Tests/Test Driven Development Supports auto. test case gen./environment isolation (Moles) Uses extended reflection and dynamic symbolic execution Pex as powertools for VS 2010, Moles for VS 2012, >70k downloads void ReadWrite(string name, string data) { Assume.IsTrue(name != null && data != null); Write(name, data); var readData = Read(name); Assert.AreEqual(data, readData); } void ReadWrite(string name, string data) { Assume.IsTrue(name != null && data != null); Write(name, data); var readData = Read(name); Assert.AreEqual(data, readData); }  string name, string data: name ≠ null ⋀ data ≠ null ⇒ equals( ReadResource(name,WriteResource(name,data)),data)  string name, string data: name ≠ null ⋀ data ≠ null ⇒ equals( ReadResource(name,WriteResource(name,data)),data)

10 SymDiff: Programs as Specifications Addresses AppCompat/Versioning problem Performs static semantic diff of closely related programs Uses boogie, etc to check where programs are different

11 Pex4Fun: Programs as Puzzles

12 Catch flaws early: from code to design analysis Third

13 Module system for composing specs and crossing abstraction boundaries Formal descriptions of design spaces and reachability problems (in progress) Use-case: Formalize domain- specific abstractions Use-case: Combine/relate specs with help from the language Use-case: Design-space exploration / model synthesis Provide a general/intermediate language for capturing model-based abstractions, and support automated model synthesis in any direction. Core formal specification language (CLP with negation over regular types) Formula for Modeling

14 Formula Specification Symbolic Execution SMT Formula Infer Cardinality bounds on data type instances Add symmetry breaking Z3 Solver Reconstruct FORMULA model Pick next region Encode solution region Try something new Given a spec and a partial model, then symbolic execution constructs a formula representing the design space. Formula’s Model Synthesis

15 Formula: Applications Translate your logic/configuration/constraint /… problem into Formula: Software/Hardware Mappings: Autozar/Muscle controller Architectures for the cloud: ECM Policy management and generic policy engines: Dkal, SecPal, etc VM provisioning for the cloud: Systemcenter UML/DSL mappings…

16 Summary: Usable Verification Build on the shoulder of giants: Unify and leverage tool chains Specifications for free: Embrace developer languages Catch flaws early: From code to design analysis

17 And use modern media to tell about success stories usable verification

Download ppt "Formal Methods: Three suggestions for rapid adoption Wolfram Schulte RiSE, MSR Workshop on Usable Verification 11/15/2010."

Similar presentations

Advanced programming tools at Microsoft

Advanced programming tools at Microsoft
The Spec# programming system K. Rustan M. Leino Microsoft Research, Redmond, WA, USA Lunch seminar, Praxis Bath, UK 6 Dec 2005 joint work with Mike Barnett,

The Spec# programming system K. Rustan M. Leino Microsoft Research, Redmond, WA, USA Lunch seminar, Praxis Bath, UK 6 Dec 2005 joint work with Mike Barnett,
Demand-driven inference of loop invariants in a theorem prover

Demand-driven inference of loop invariants in a theorem prover
Spec# K. Rustan M. Leino Senior Researcher Programming Languages and Methods Microsoft Research, Redmond, WA, USA Microsoft Research faculty summit, Redmond,

Spec# K. Rustan M. Leino Senior Researcher Programming Languages and Methods Microsoft Research, Redmond, WA, USA Microsoft Research faculty summit, Redmond,
Challenges in increasing tool support for programming K. Rustan M. Leino Microsoft Research, Redmond, WA, USA 23 Sep 2004 ICTAC Guiyang, Guizhou, PRC joint.

Challenges in increasing tool support for programming K. Rustan M. Leino Microsoft Research, Redmond, WA, USA 23 Sep 2004 ICTAC Guiyang, Guizhou, PRC joint.
Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.

Auto-Generation of Test Cases for Infinite States Reactive Systems Based on Symbolic Execution and Formula Rewriting Donghuo Chen School of Computer Science.
Leonardo de Moura Microsoft Research. Z3 is a new solver developed at Microsoft Research. Development/Research driven by internal customers. Free for.

Leonardo de Moura Microsoft Research. Z3 is a new solver developed at Microsoft Research. Development/Research driven by internal customers. Free for.
Toward Innovative Model based Enterprise IT Outsourcing NGEBIS Workshop at CAISE 2013 Vinay Kulkarni and Sagar Sunkle.

Toward Innovative Model based Enterprise IT Outsourcing NGEBIS Workshop at CAISE 2013 Vinay Kulkarni and Sagar Sunkle.
Modular and Verified Automatic Program Repair Francesco Logozzo, Thomas Ball RiSE - Microsoft Research Redmond.

Modular and Verified Automatic Program Repair Francesco Logozzo, Thomas Ball RiSE - Microsoft Research Redmond.
K. Rustan M. Leino Research in Software Engineering (RiSE) Microsoft Research, Redmond, WA, USA 15 January 2009 Séminaire Digiteo Orsay, France.

K. Rustan M. Leino Research in Software Engineering (RiSE) Microsoft Research, Redmond, WA, USA 15 January 2009 Séminaire Digiteo Orsay, France.
The Spec# programming system K. Rustan M. Leino Microsoft Research, Redmond, WA, USA Distinguished Lecture Series Max Planck Institute for Software Systems.

The Spec# programming system K. Rustan M. Leino Microsoft Research, Redmond, WA, USA Distinguished Lecture Series Max Planck Institute for Software Systems.
Using SMT solvers for program analysis Shaz Qadeer Research in Software Engineering Microsoft Research.

Using SMT solvers for program analysis Shaz Qadeer Research in Software Engineering Microsoft Research.
Introducing Formal Methods, Module 1, Version 1.1, Oct., 1998 1 Formal Specification and Analytical Verification L 5.

Introducing Formal Methods, Module 1, Version 1.1, Oct., Formal Specification and Analytical Verification L 5.
Programming Languages and Paradigms

Programming Languages and Paradigms
Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.

Abstraction and Modular Reasoning for the Verification of Software Corina Pasareanu NASA Ames Research Center.
CodeContracts & Clousot Francesco Logozzo - Microsoft Mehdi Bouaziz – ENS.

CodeContracts & Clousot Francesco Logozzo - Microsoft Mehdi Bouaziz – ENS.
Automated Software Verification with a Permission-Based Logic 20 th June 2014, Zürich Malte Schwerhoff, ETH Zürich.

Automated Software Verification with a Permission-Based Logic 20 th June 2014, Zürich Malte Schwerhoff, ETH Zürich.
1 1 Regression Verification for Multi-Threaded Programs Sagar Chaki, SEI-Pittsburgh Arie Gurfinkel, SEI-Pittsburgh Ofer Strichman, Technion-Haifa Originally.

1 1 Regression Verification for Multi-Threaded Programs Sagar Chaki, SEI-Pittsburgh Arie Gurfinkel, SEI-Pittsburgh Ofer Strichman, Technion-Haifa Originally.
Software Engineering & Automated Deduction Willem Visser Stellenbosch University With Nikolaj Bjorner (Microsoft Research, Redmond) Natarajan Shankar (SRI.

Software Engineering & Automated Deduction Willem Visser Stellenbosch University With Nikolaj Bjorner (Microsoft Research, Redmond) Natarajan Shankar (SRI.
SymDiff: Leveraging Program Verification for Comparing Programs Shuvendu Lahiri Research in Software Engineering (RiSE), Microsoft Research, Redmond Contributors:

SymDiff: Leveraging Program Verification for Comparing Programs Shuvendu Lahiri Research in Software Engineering (RiSE), Microsoft Research, Redmond Contributors:

Similar presentations

Ads by Google