Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to Mathematical techniques Formal Methods Limits of Formal Methods.

Published byDuane Carter Modified over 9 years ago

Similar presentations

Presentation on theme: "Introduction to Mathematical techniques Formal Methods Limits of Formal Methods."— Presentation transcript:

1

2 Introduction to Mathematical techniques Formal Methods Limits of Formal Methods

3 Traditional design validation = Simulation – Choose test cases wisely, measure coverage – But still principally depend on selection of cases Formal Methods = Proof of Correctness – Methods with well-defined syntactical and semantical levels. – Both levels are based on mathematical theories (logic, algebra, set theory, etc.) – It is used in areas where errors can cause loss of life or significant financial damage. It is used much in floating point arithmetic.

4 Real-world numerical catastrophes – Intel FDIV Bug Error in Pentium hardwire floating point divide circuit. Intel recall in December 1994 & 1997 cost $300 million. – Patriot missile accident. 26 people were killed because of inaccurate calculation of the time. – Ariane 5 rocket. Ariane 5 rocket exploded 40 seconds after being launched by European Space Agency.

5 Verification Coverage Formal Methods real life Full coverage of some areas Full coverage Formal Methods – ideal case simulation Spot coverage

6 Use of Formal Methods by Projects

7 Use of Formal Methods by type of Application

8 Did the use of formal methods have an effect on time, cost, and quality? No effect Improvement worsening TimeCostQuality

9 Using Formal Methods – The conventional way of indicating a precondition and a postcondition for a statement S is {P} S {Q} where P is the precondition, and Q is the postcondition “ Hoare triple” e.g. { x = 0 } x:= x + 1 { x > 0 } is valid iff execution of x := x+1 in any state which x is 0 terminates in a state in which x > 0 Definition of assignment: { E[x := R] } x := E {R}, where R is postcondition, E is expression.

10 The use of formal methods

11 To apply Formal Methods in Scientific Computing, the domain of a relation must be valid, with respect to the design of logic. – E[ x := R ] ∧ domain( R ) – Domain(R) = { x|  (y | : (x,y)  R) } – e.g. x  { x |  (y | : -2^16 < x + y < 2 ^ 16)}   ( y | : -2^16 < x + y < 2^16)

12 For any operation in floating point, the result must be valid for the floating point specification. Floating Point x = (−1)^s ×2^e × m, when rounding x’ a rounding error happens, it must be |x – x’/x| <= 2^-p Floating-point computations depend on the architecture

13 Use formal methods as supplements to quality assurance methods not a replacement for them Formal methods can increase confidence in a product’s reliability if they are applied skillfully Useful for consistency checks, but formal methods cannot guarantee the completeness of a specifications. Formal methods must be fully integrated with domain knowledge to achieve positive results.

14 End

15 Hardware-independent proofs of numerical programs, Sylvie Boldo, Thi Minh Tuyen Nguyen. 2010 Formal Methods Applied to a Floating-Point Number System, Geoff Barrett, 1989, IEEE Formal Methods: Practice and Experience, Jim Woodcock, University of York Stochastic Formal Methods: An application to accuracy of numeric software. Limits of Formal Methods, Ralf Kneuper

Download ppt "Introduction to Mathematical techniques Formal Methods Limits of Formal Methods."

Similar presentations

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?
Copyright 2003-04, Doron Peled and Cesare Tinelli. These notes are based on a set of lecture notes originally developed by Doron Peled at the University.

Copyright , Doron Peled and Cesare Tinelli. These notes are based on a set of lecture notes originally developed by Doron Peled at the University.
ICE1341 Programming Languages Spring 2005 Lecture #6 Lecture #6 In-Young Ko iko.AT. icu.ac.kr iko.AT. icu.ac.kr Information and Communications University.

ICE1341 Programming Languages Spring 2005 Lecture #6 Lecture #6 In-Young Ko iko.AT. icu.ac.kr iko.AT. icu.ac.kr Information and Communications University.
Reasoning About Code; Hoare Logic, continued

Reasoning About Code; Hoare Logic, continued
Hoare’s Correctness Triplets Dijkstra’s Predicate Transformers

Hoare’s Correctness Triplets Dijkstra’s Predicate Transformers
Rigorous Software Development CSCI-GA 3033-011 Instructor: Thomas Wies Spring 2012 Lecture 11.

Rigorous Software Development CSCI-GA Instructor: Thomas Wies Spring 2012 Lecture 11.
B. Sharma, S.D. Dhodapkar, S. Ramesh 1 Assertion Checking Environment (ACE) for Formal Verification of C Programs Babita Sharma, S.D.Dhodapkar RCnD, BARC,

B. Sharma, S.D. Dhodapkar, S. Ramesh 1 Assertion Checking Environment (ACE) for Formal Verification of C Programs Babita Sharma, S.D.Dhodapkar RCnD, BARC,
1 University of Toronto Department of Computer Science © 2001, Steve Easterbrook Lecture 10: Formal Verification Formal Methods Basics of Logic first order.

1 University of Toronto Department of Computer Science © 2001, Steve Easterbrook Lecture 10: Formal Verification Formal Methods Basics of Logic first order.
Chapter 8 Representing Information Digitally.

Chapter 8 Representing Information Digitally.
Copyright © 2006 Addison-Wesley. All rights reserved. 3.5 Dynamic Semantics Meanings of expressions, statements, and program units Static semantics – type.

Copyright © 2006 Addison-Wesley. All rights reserved. 3.5 Dynamic Semantics Meanings of expressions, statements, and program units Static semantics – type.
1 Discrete Structures Lecture 29 Predicates and Programming Read Ch. 10.1 - 10.2.

1 Discrete Structures Lecture 29 Predicates and Programming Read Ch
1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.

1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.
1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.

1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.
1/22 Programs : Semantics and Verification Charngki PSWLAB Programs: Semantics and Verification Mordechai Ben-Ari Mathematical Logic for Computer.

1/22 Programs : Semantics and Verification Charngki PSWLAB Programs: Semantics and Verification Mordechai Ben-Ari Mathematical Logic for Computer.
CS 355 – Programming Languages

CS 355 – Programming Languages
SD3049 Formal Methods Module Leader Dr Aaron Kans Module website www.homepages.uel.ac.uk/A.Kans/sd3049.

SD3049 Formal Methods Module Leader Dr Aaron Kans Module website
15 November 2010. Essay 1  Methodologies Points on the spectrum All can adapt to changes Required vs. permitted  Releases vs. iterations  Spool’s.

15 November Essay 1  Methodologies Points on the spectrum All can adapt to changes Required vs. permitted  Releases vs. iterations  Spool’s.
1 Verification, validation and testing Chapter 12, Storey.

1 Verification, validation and testing Chapter 12, Storey.
ESC Java. Static Analysis Spectrum Power Cost Type checking Data-flow analysis Model checking Program verification AutomatedManual ESC.

ESC Java. Static Analysis Spectrum Power Cost Type checking Data-flow analysis Model checking Program verification AutomatedManual ESC.
Computing Fundamentals 1 Lecture 1 Lecturer: Patrick Browne Room K308 Based on Chapter 1. A Logical approach to Discrete.

Computing Fundamentals 1 Lecture 1 Lecturer: Patrick Browne Room K308 Based on Chapter 1. A Logical approach to Discrete.

Similar presentations

Ads by Google