Automated Circular Assume-Guarantee Reasoning

Elkader, Karam Abd; Grumberg, Orna; Păsăreanu, Corina S.; Shoham, Sharon

doi:10.1007/978-3-319-19249-9_3

Cited by 13 publications

(7 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Once the learner reaches a stable assumption A i j , it passes it to the equivalence phase (lines [12][13][14][15][16][17][18][19][20][21][22][23][24][25][26][27].…”

Section: The Assume-guarantee-repair (Agr) Algorithmmentioning

confidence: 99%

See 1 more Smart Citation

Assume, Guarantee or Repair

Frenkel

Grumberg

Păsăreanu

et al. 2020

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

We present Assume-Guarantee-Repair (AGR)-a novel framework which not only verifies that a program satisfies a set of properties, but also repairs the program in case the verification fails. We consider communicating programs-these are simple C-like programs, extended with synchronous communication actions over communication channels. Our method, which consists of a learning-based approach to assume-guarantee reasoning, performs verification and repair simultaneously: in every iteration, AGR either makes another step towards proving that the (current) system satisfies the specification, or alters the system in a way that brings it closer to satisfying the specification. We manage handling infinite-state systems by using a finite abstract representation, and reduce the semantic problems in hand-satisfying complex specifications that also contain first-order constraints-to syntactic ones, namely membership and equivalence queries for regular languages. We implemented our algorithm and evaluated it on various examples. Our experiments present compact proofs of correctness and quick repairs.

show abstract

“…Once the learner reaches a stable assumption A i j , it passes it to the equivalence phase (lines [12][13][14][15][16][17][18][19][20][21][22][23][24][25][26][27].…”

Section: The Assume-guarantee-repair (Agr) Algorithmmentioning

confidence: 99%

“…All these works address non-circular rules and are limited to finite state systems. Automatic assumption generation for circular rules is presented in [12,13], using compositional rules similar to the ones studied in [21,23].…”

Section: Introductionmentioning

confidence: 99%

Assume, Guarantee or Repair

Frenkel

Grumberg

Păsăreanu

et al. 2020

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

show abstract

“…This would entail extending the verification procedure to include the use of probabilistic timed automata, which amounts to being a real‐time extension of the Markov decision process. Another possible research direction would be to employ techniques such as assume‐guarantee to perform compositional model checking, or abstraction‐refinement to verify larger and more complex versions of the model.…”

Section: Resultsmentioning

confidence: 99%

Performance analysis of Israeli‐Jalfon's algorithm using probabilistic model checking

2018

Concurrency and Computation

View full text Add to dashboard Cite

Summary Israeli‐Jalfon's self‐stabilization algorithm provides a solution to the problem of fault tolerance in distributed systems. To quantitatively evaluate the algorithm and discover the factors contributing to its performance, we used a probabilistic model checking technique to study the algorithm across different configurations. The mainstream probabilistic model checker PRISM assisted with our final assessment. We focus here on three aspects of the algorithm's performance: convergence, time complexity, and maximum execution time. Our experimental results show that time complexity is O (N^2) when N is less than 23, and we examine the factors contributing to this performance. These prove to be: the number of tokens, the number of processes, the probability of token transmission, and how tokens are spaced. Performance degrades as the number of tokens grows. For a certain number of processes, better performance can be obtained when the probability of token transmission is 0.5. Three tokens spaced evenly, meanwhile, yields the worst performance. The main contribution of this paper is its exhaustive quantitative performance analysis of Israeli‐Jalfon's algorithm and the presentation of accurate rather than approximate numerical results. Moreover, our assessment was undertaken in a reducible fashion, with stable states being set against a proper subset of the set of possible configurations rather than allowing two sets to coincide.

show abstract

“…First works in this area go back to Pnueli's work about modular model checking [36] and Clarke's work on compositional model checking [14], in which they investigated possibilities to leverage assumptions about a component's environment for the verification of its implementation. Later on, attempts were made to automatically synthesize minimal assumptions from a component's implementation [7,19,20,35]. In all these studies, the focus is mainly on the verification of component implementations under the presence of assumptions about its environment.…”

Section: Related Workmentioning

confidence: 99%

APML: An Architecture Proof Modeling Language

Marmsoler

Blakqori

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

To address the increasing size and complexity of modern software systems, compositional verification separates the verification of single components from the verification of their composition. In architecture-based verification, the former is done using Model Checking, while the latter is done using interactive theorem proving (ITP). As of today, however, architects are usually not trained in using a full-fledged interactive theorem prover. Thus, to bridge the gap between ITP and the architecture domain, we developed APML: an architecture proof modeling language. APML allows one to sketch proofs about component composition at the level of architecture using notations similar to Message Sequence Charts. With this paper, we introduce APML: We describe the language, show its soundness and completeness for the verification of architecture contracts, and provide an algorithm to map an APML proof to a corresponding proof for the interactive theorem prover Isabelle. Moreover, we describe its implementation in terms of an Eclipse/EMF modeling application, demonstrate it by means of a running example, and evaluate it in terms of a larger case study. Although our results are promising, the case study also reveals some limitations, which lead to new directions for future work.

show abstract

Automated Circular Assume-Guarantee Reasoning

Cited by 13 publications

References 21 publications

Assume, Guarantee or Repair

Assume, Guarantee or Repair

Performance analysis of Israeli‐Jalfon's algorithm using probabilistic model checking

APML: An Architecture Proof Modeling Language

Contact Info

Product

Resources

About