Reasoning about GSTE Assertion Graphs

Hu, Alan J.; Casas, Jeremy; Yang, Jin

doi:10.1007/978-3-540-39724-3_17

Cited by 10 publications

(18 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Because the GSTE model-checking algorithm verifies a relationship between a circuit and a specification, the ability to convert specifications into monitor circuits creates the possibility of using GSTE to verify relationships involving multiple specifications (e.g., assume one assertion graph while verifying another). We have preliminary results along these lines, showing that the construction presented here is a valuable building block toward efficient compositional verification with GSTE [9].…”

Section: Discussionmentioning

confidence: 75%

See 1 more Smart Citation

Efficient generation of monitor circuits for GSTE assertion graphs

Cases

Yang

2003

ICCAD-2003. International Conference on Computer Aided Design (IEEE Cat. No.03CH37486)

View full text Add to dashboard Cite

Generalized symbolic trajectory evaluation (GSTE) is a powerful, new method for formal verification that combines the industriallyproven scalability and capacity of classical symbolic trajectory evaluation with the expressive power of temporal-logic model checking. GSTE was originally developed at Intel and has been used successfully on Intel's next-generation microprocessors. However, the supporting algorithms and tools for GSTE are still relatively immature.GSTE specifications are given as assertion graphs, an extension of ∀-automata. This paper presents a linear-time, linear-size translation from GSTE assertion graphs into monitor circuits, which can be used with dynamic verification both as a quick "sanity check" of the specification before effort is invested in abstraction and formal verification, and also as means to reuse GSTE specifications with other validations methods. We present experimental results using real GSTE assertion graphs for real industrial circuits, showing that the circuit construction procedure is efficient in practice and that the monitor circuits impose minimal simulation overhead.

show abstract

Section: Discussionmentioning

confidence: 75%

“…We also envision the generated monitors connecting GSTE-based and monitor-based verification methodologies. In addition, our monitor construction is a building block for initial work on compositional verification with GSTE [9]. …”

Section: Introductionmentioning

confidence: 99%

Efficient generation of monitor circuits for GSTE assertion graphs

Cases

Yang

2003

ICCAD-2003. International Conference on Computer Aided Design (IEEE Cat. No.03CH37486)

View full text Add to dashboard Cite

show abstract

“…The fundamental relation between GSTE and SMC, however, has not been completely clarified. The basic relationship between AGs and BAs is sketched in (Hu et al, 2003), but the algorithmic relationship between GSTE and SMC has not been studied.…”

Section: Introductionmentioning

confidence: 99%

“…(We deal neither with abstraction nor with the state main.tex; 18/10/2005; 9:02; p.2 representation, which are orthogonal issues.) We first fill in the details not given in (Hu et al, 2003) to show that assertion graphs are essentially universal ω-automata (Manna and Pnueli, 1987), which require all runs to be accepting. Universal automata enjoy the advantage of easy complementation; in fact, they can be viewed as nondeterministic automata for the complementary property (this feature is attained in the COSPAN system by using deterministic automata (Hardin et al, 1996)).…”

Section: Introductionmentioning

confidence: 99%

GSTE is partitioned model checking

Sebastiani

Singerman

Tonetta

et al. 2007

Form Methods Syst Des

View full text Add to dashboard Cite

Abstract. Verifying whether an ω-regular property is satisfied by a finite-state system is a core problem in model checking. Standard techniques build an automaton with the complementary language, compute its product with the system, and then check for emptiness. Generalized symbolic trajectory evaluation (GSTE) has been recently proposed as an alternative approach, extending the computationally efficient symbolic trajectory evaluation (STE) to general ω-regular properties. In this paper, we show that the GSTE algorithms are essentially a partitioned version of standard symbolic model-checking (SMC) algorithms, where the partitioning is driven by the property under verification. We export this technique of property-driven partitioning to SMC and show that it typically does speed up SMC algorithms.

show abstract

“…Here the property under verification is specified as assertion graph and is used for decomposing the problem [18], [19], [20], [21]. As highlighted in [19], the GSTE algorithm decomposes the set of states satisfying the property using the assertion graph.…”

Section: B Related Workmentioning

confidence: 99%

Transition-by-transition FSM traversal for reachability analysis in bounded model checking

Nguyen

Stoffel

Wedler

et al.

ICCAD-2005. IEEE/ACM International Conference on Computer-Aided Design, 2005.

View full text Add to dashboard Cite

In bounded model checking (BMC)-based verification flows lack of reachability constraints often leads to false negatives. At present, it is daily practice of a verification engineer to identify the missing reachability constraints by manually inspecting the design code and by analyzing counterexamples. This, unfortunately, requires a lot of effort and is prone to errors. We propose an algorithm to determine reachability constraints automatically. The proposed approach applies to a design style where the operation of the design is controlled by a main FSM which can easily be extracted from the RTL description of the circuit. The algorithm decomposes and analyzes the state space of the circuit by considering transitions of the main FSM. Experimental results show that the proposed method can considerably reduce the manual work of verification engineers.

show abstract

Reasoning about GSTE Assertion Graphs

Cited by 10 publications

References 21 publications

Efficient generation of monitor circuits for GSTE assertion graphs

Efficient generation of monitor circuits for GSTE assertion graphs

GSTE is partitioned model checking

Transition-by-transition FSM traversal for reachability analysis in bounded model checking

Contact Info

Product

Resources

About