Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lecture 17 March 24, 2011 Formal Methods 2 CS 315 Spring 2011 1 Adapted from slides provided by Jason Hallstrom and Murali Sitaraman (Clemson)

Published byMoses Bryan Modified over 9 years ago

Similar presentations

Presentation on theme: "Lecture 17 March 24, 2011 Formal Methods 2 CS 315 Spring 2011 1 Adapted from slides provided by Jason Hallstrom and Murali Sitaraman (Clemson)"— Presentation transcript:

1 Lecture 17 March 24, 2011 Formal Methods 2 CS 315 Spring 2011 1 Adapted from slides provided by Jason Hallstrom and Murali Sitaraman (Clemson)

2 Some Mathematics is Implicit We view programming integers as though they are mathematical integers (subject to bounds, of course) We associate mathematical operators (e.g., +) with operations we can do on integers in programs (e.g., +) This association can be made explicit CS 315 Spring 2011 2

3 Mathematical Modeling Type Integer is modeled by Z; For all i: Integer, min_int <= i <= max_int; CS 315 Spring 2011 3

4 Alternatively Type Integer is modeled by Z; Let i be an example; Constraints for all i: Integer; min_int <= i <= max_int; CS 315 Spring 2011 4

5 Alternatively Type Integer is modeled by Z; exemplar i; constraints min_int <= i <= max_int; CS 315 Spring 2011 5

6 Initial Value Specification Type Integer is modeled by Z; exemplar i; constraints min_int <= i <= max_int; initialization ensures i = 0; CS 315 Spring 2011 6

7 Specification of Operations Type Integer is modeled by Z; … Specification of operations, e.g., i++ Operation Increment (updates i: Integer) requires i < max_int ensures i = #i +1 CS 315 Spring 2011 7

8 More Examples What is a suitable way to model the state of a lightbulb? CS 315 Spring 2011 8

9 More Examples Type Light_Bulb_State is modeled by B; exemplar b; Initialization ensures b = false; Exercises: specification of operations Turn_on, Turn_off, and Is_On CS 315 Spring 2011 9

10 More Examples How would you model the state of a traffic light? Alternative models and discussion CS 315 Spring 2011 10

11 More Examples How would you model a paper weight? CS 315 Spring 2011 11

12 Data Abstraction Examples How would you mathematically model the contents of a stack? Is a set model appropriate? Why or why not? What about modeling a queue? CS 315 Spring 2011 12

13 Mathematical Modeling Summary To write formal specifications, we need to model the state mathematically Some objects we use in programming, such as Integers and Reals, have implicit models For others, such as stacks, queues, lists, etc., we need to conceive explicit mathematical models CS 315 Spring 2011 13

14 Formal Specification of Java Interfaces CS 315 Spring 2011 14

15 Basics An interface Describes what classes or components do Does not describe how they should do it An interface Is a contract between component users (clients) and developers (implementers) If the users satisfy the requirements for using the component, the component will provide guarantees CS 315 Spring 2011 15

16 Principles of Interface Design Information Hiding Hide details unnecessary to use the component Abstraction Provide a “cover story” or explanation in user- oriented terms so they can understand the interface CS 315 Spring 2011 16

17 Contract Specification Requirements and guarantees Requires clauses are preconditions Ensures clauses are postconditions Who is responsible for requires clauses? What are the consequences of this? CS 315 Spring 2011 17

18 Specification of Stacks Mathematical modeling How can we think of stacks “mathematically”? CS 315 Spring 2011 18

19 Mathematical Strings Unlike sets, strings have order Example: Str(Z) for String of integers Notations Empty string (Written empty_string or  ) Concatenation (alpha o beta) Length ( |alpha| ) String containing one entry ( ) CS 315 Spring 2011 19

20 Specification of IntStack Interface Suppose IntStack is an interface uses Integer_Theory, String_Theory; Think of stacks of Integers as “math strings” of integers this: Str(Z); Specification of Constructor initialization ensures this = empty_string; Exercises: Specification of other stack operations CS 315 Spring 2011 20

21 Specification of IntStack Interface Operation push (int x) updates this; restores x; ensures this = o #this; int Operation pop (); updates this; requires this /= empty_string; ensures #this = o this; bool Operation is_empty(); preserves this; ensures result of is_empty = (this = empty_string) CS 315 Spring 2011 21

22 Java Specification Questions What is the specification of “=“ to assign one IntStack object to another? If you defined a “clone” method, what is its specification? What are the advantages of using “=“ over “clone”? What are the advantages of using “clone” over “=“? CS 315 Spring 2011 22

Download ppt "Lecture 17 March 24, 2011 Formal Methods 2 CS 315 Spring 2011 1 Adapted from slides provided by Jason Hallstrom and Murali Sitaraman (Clemson)"

Similar presentations

Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 18 Program Correctness To treat programming.

Copyright © 2006 The McGraw-Hill Companies, Inc. Programming Languages 2nd edition Tucker and Noonan Chapter 18 Program Correctness To treat programming.
Formal Methods in Software Engineering

Formal Methods in Software Engineering
Type Systems and Object- Oriented Programming (III) John C. Mitchell Stanford University.

Type Systems and Object- Oriented Programming (III) John C. Mitchell Stanford University.
Karlstad University Computer Science Design Contracts and Error Management Design Contracts and Errors A Software Development Strategy Eivind J. Nordby.

Karlstad University Computer Science Design Contracts and Error Management Design Contracts and Errors A Software Development Strategy Eivind J. Nordby.
Reading Mathematical Contracts

Reading Mathematical Contracts
Computer Science School of Computing Clemson University Introduction to Mathematical Reasoning Jason Hallstrom and Murali Sitaraman Clemson University.

Computer Science School of Computing Clemson University Introduction to Mathematical Reasoning Jason Hallstrom and Murali Sitaraman Clemson University.
Addressing the Challenges of Current Software. Questions to Address Why? What? Where? How?

Addressing the Challenges of Current Software. Questions to Address Why? What? Where? How?
Chair of Software Engineering OOSC - Summer Semester 2005 1 Object-Oriented Software Construction Bertrand Meyer Lecture 3: Abstract Data Types.

Chair of Software Engineering OOSC - Summer Semester Object-Oriented Software Construction Bertrand Meyer Lecture 3: Abstract Data Types.
Computer Science and Engineering College of Engineering The Ohio State University Classes and Objects: Members, Visibility The credit for these slides.

Computer Science and Engineering College of Engineering The Ohio State University Classes and Objects: Members, Visibility The credit for these slides.
Abstract Data Types Data abstraction, or abstract data types, is a programming methodology where one defines not only the data structure to be used, but.

Abstract Data Types Data abstraction, or abstract data types, is a programming methodology where one defines not only the data structure to be used, but.
Abstraction Functions. Announcements Exam 1 on Tuesday March 3 rd Closed book/phone/laptop 2 cheat pages allowed (handwritten or typed) 1 double-sided.

Abstraction Functions. Announcements Exam 1 on Tuesday March 3 rd Closed book/phone/laptop 2 cheat pages allowed (handwritten or typed) 1 double-sided.
Introduction to Software Engineering Lecture 7 André van der Hoek.

Introduction to Software Engineering Lecture 7 André van der Hoek.
1 Specifying Object Interfaces. 2 Major tasks in this stage: --are there any missing attributes or operations? --how can we reduce coupling, make interface.

1 Specifying Object Interfaces. 2 Major tasks in this stage: --are there any missing attributes or operations? --how can we reduce coupling, make interface.
Chair of Software Engineering OOSC - Lecture 4 1 Object-Oriented Software Construction Bertrand Meyer.

Chair of Software Engineering OOSC - Lecture 4 1 Object-Oriented Software Construction Bertrand Meyer.
Computer Science School of Computing Clemson University Mathematical Modeling Murali Sitaraman Clemson University.

Computer Science School of Computing Clemson University Mathematical Modeling Murali Sitaraman Clemson University.
Mathematics throughout the CS Curriculum Support by NSF #

Mathematics throughout the CS Curriculum Support by NSF #
Jason Hallstrom (Clemson), Joan Krone (Denison), Joseph E. Hollingsworth (IU Southeast), and Murali Sitaraman(Clemson) This workshop is funded in part.

Jason Hallstrom (Clemson), Joan Krone (Denison), Joseph E. Hollingsworth (IU Southeast), and Murali Sitaraman(Clemson) This workshop is funded in part.
Ranga Rodrigo. Class is central to object oriented programming.

Ranga Rodrigo. Class is central to object oriented programming.
Computer Science School of Computing Clemson University Discrete Math and Reasoning about Software Correctness Murali Sitaraman

Computer Science School of Computing Clemson University Discrete Math and Reasoning about Software Correctness Murali Sitaraman
Computer Science School of Computing Clemson University Specification and Reasoning in SE Projects Using a Web IDE Charles T. Cook (Clemson) Svetlana V.

Computer Science School of Computing Clemson University Specification and Reasoning in SE Projects Using a Web IDE Charles T. Cook (Clemson) Svetlana V.

Similar presentations

Ads by Google