concrete semantics
play

Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f - PowerPoint PPT Presentation

Apr 01, 2024 •266 likes •538 views

Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische Universit at M unchen 2015-9-23 1 Chapter 1 Introduction 2 1 Background 2 This Course 3 1 Background 2 This Course 4 Why Semantics?

  1. Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult¨ at f¨ ur Informatik Technische Universit¨ at M¨ unchen 2015-9-23 1

  2. Chapter 1 Introduction 2

  3. 1 Background 2 This Course 3

  4. 1 Background 2 This Course 4

  5. Why Semantics? Without semantics, we do not really know what our programs mean. We merely have a good intuition and a warm feeling. Like the state of mathematics in the 19th century — before set theory and logic entered the scene. 5

  6. Intuition is important! • You need a good intuition to get your work done efficiently. • To understand the average accounting program, intuition suffices. • To write a bug-free accounting program may require more than intuition! • I assume you have the necessary intuition. • This course is about “beyond intuition”. 6

  7. Intuition is not sufficient! Writing correct language processors (e.g. compilers, refactoring tools, . . . ) requires • a deep understanding of language semantics, • the ability to reason (= perform proofs) about the language and your processor. Example: What does the correctness of a type checker even mean? How is it proved? 7

  8. Why Semantics?? We have a compiler — that is the ultimate semantics!! • A compiler gives each individual program a semantics. • It does not help with reasoning about the PL or individual programs. • Because compilers are far too complicated. • They provide the worst possible semantics. • Moreover: compilers may differ! 8

  9. The sad facts of life • Most languages have one or more compilers. • Most compilers have bugs. • Few languages have a (separate, abstract) semantics. • If they do, it will be informal (English). 9

  10. Bugs • Google “compiler bug” • Google “hostile applet” Early versions of Java had various security holes. Some of them had to do with an incorrect bytecode verifier . GI Dissertationspreis 2003: Gerwin Klein: Verified Java Bytecode Verification 10

  11. Standard ML (SML) First real language with a mathematical semantics: Milner, Tofte, Harper: The Definition of Standard ML. 1990. Robin Milner (1934–2010) Turing Award 1991. Main achievements: LCF (theorem proving) SML (functional programming) CCS, pi (concurrency) 11

  12. The sad fact of life SML semantics hardly used: • too difficult to read to answer simple questions quickly • too much detail to allow reliable informal proof • not processable beyond L A T EX, not even executable 12

  13. More sad facts of life • Real programming languages are complex. • Even if designed by academics, not industry. • Complex designs are error-prone. • Informal mathematical proofs of complex designs are also error-prone. 13

  14. The solution Machine-checked language semantics and proofs • Semantics at least type-correct • Maybe executable • Proofs machine-checked The tool: Proof Assistant (PA) or Interactive Theorem Prover (ITP) 14

  15. Proof Assistants • You give the structure of the proof • The PA checks the correctness of each step • Can prove hard and huge theorems Government health warnings: Time consuming Potentially addictive Undermines your naive trust in informal proofs 15

  16. Terminology This lecture course: Formal = machine-checked Verification = formal correctness proof Traditionally: Formal = mathematical 16

  17. Two landmark verifications C compiler Operating system Competitive with gcc -O1 microkernel (L4) Xavier Leroy Gerwin Klein (& Co) INRIA Paris NICTA Sydney using Coq using Isabelle 17

  18. A happy fact of life Programming language researchers are increasingly using PAs 18

  19. Why verification pays off Short term: The software works! Long term: Tracking effects of changes by rerunning proofs Incremental changes of the software typically require only incremental changes of the proofs Long term much more important than short term: Software Never Dies 19

  20. 1 Background 2 This Course 20

  21. What this course is not about • Hot or trendy PLs • Comparison of PLs or PL paradigms • Compilers (although they will be one application) 21

  22. What this course is about • Techniques for the description and analysis of • PLs • PL tools • Programs • Description techniques: operational semantics • Proof techniques: inductions Both informally and formally (PA!) 22

  23. Our PA: Isabelle/HOL • Started 1986 in Cambridge (Paulson) • Later development mainly in Munich (Nipkow & Co) and Paris (Wenzel) • The logic HOL is ordinary mathematics Learning to use Isabelle/HOL is an integral part of the course All exercises require the use of Isabelle/HOL 23

  24. Why I am so passionate about the PA part • It is the future • It is the only way to deal with complex languages reliably • I want students to learn how to write correct proofs • I have seen too many proofs that look more like LSD trips than coherent mathematical arguments 24

  25. Overview of course • Introduction to Isabelle/HOL • IMP (assignment and while loops) and its semantics • A compiler for IMP • Hoare logic for IMP • Type systems for IMP • Program analysis for IMP 25

  26. The semantics part of the course is mostly traditional The use of a PA is leading edge A growing number of universities offer related course 26

  27. What you learn in this course goes far beyond PLs It has applications in compilers, security, software engineering etc. It is a new approach to informatics 27

Recommend

Shape Analysis Alon Milchgrub Overview Lisp review The concrete semantics The

Shape Analysis Alon Milchgrub Overview Lisp review The concrete semantics The

Shape Analysis Alon Milchgrub Overview Lisp review The concrete semantics The abstractions function The abstract semantics Discussion Lisp review In Lisp everything is a list The command cons concatenates two objects

840 views • 20 slides
Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische

Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische

Concrete Semantics with Isabelle/HOL Tobias Nipkow Fakult at f ur Informatik Technische Universit at M unchen 2017-3-8 1 Part I Isabelle 2 Chapter 2 Programming and Proving 3 1 Overview of Isabelle/HOL 2 Type and function

2.13k views • 186 slides
Semantics 1 / 21 Outline What is semantics? Denotational semantics Semantics of naming What

Semantics 1 / 21 Outline What is semantics? Denotational semantics Semantics of naming What

Semantics 1 / 21 Outline What is semantics? Denotational semantics Semantics of naming What is semantics? 2 / 21 What is the meaning of a program? Recall: aspects of a language syntax : the structure of its programs semantics : the

551 views • 21 slides
A Concrete Presentation of Game Semantics William Blum Joint work with C.-H. Luke Ong School of

A Concrete Presentation of Game Semantics William Blum Joint work with C.-H. Luke Ong School of

A Concrete Presentation of Game Semantics William Blum Joint work with C.-H. Luke Ong School of Informatics, University of Edinburgh Oxford University Computing Laboratory Galop, 5 April 2008 Overview Game-semantic models are abstract

744 views • 49 slides
A Concrete Presentation of Game Semantics William Blum Joint work with C.-H. Luke Ong School of

A Concrete Presentation of Game Semantics William Blum Joint work with C.-H. Luke Ong School of

A Concrete Presentation of Game Semantics William Blum Joint work with C.-H. Luke Ong School of Informatics, University of Edinburgh Oxford University Computing Laboratory BCTCS, 8 April 2008 Overview Game-semantic models are abstract

457 views • 41 slides
Modelling Languages: (mostly) Concrete (Visual) Syntax Hans Vangheluwe Antwerp 26 August 2014 2

Modelling Languages: (mostly) Concrete (Visual) Syntax Hans Vangheluwe Antwerp 26 August 2014 2

Modelling Languages: (mostly) Concrete (Visual) Syntax Hans Vangheluwe Antwerp 26 August 2014 2 3 4 5 6 Causal Block Diagrams (syntax) 7 Causal Block Diagrams (semantics) 8 Operational Semantics 9 Causal Block Diagrams (semantics)

756 views • 58 slides
Operational Semantics 1 / 14 Outline What is semantics? Operational Semantics What is

Operational Semantics 1 / 14 Outline What is semantics? Operational Semantics What is

Operational Semantics 1 / 14 Outline What is semantics? Operational Semantics What is semantics? 2 / 14 What is the meaning of a program? Recall: aspects of a language syntax : the structure of its programs semantics : the meaning of

588 views • 14 slides
twenty one service loads x load factors concrete holds no tension failure criteria is

twenty one service loads x load factors concrete holds no tension failure criteria is

E LEMENTS OF A RCHITECTURAL S TRUCTURES : Concrete Beam Design F ORM, B EHAVIOR, AND D ESIGN composite of concrete and steel ARCH 614 D R. A NNE N ICHOLS American Concrete Institute (ACI) S PRING 2019 design for maximum stresses

253 views • 6 slides
nineteen service loads x load factors concrete holds no tension failure criteria is

nineteen service loads x load factors concrete holds no tension failure criteria is

A RCHITECTURAL S TRUCTURES : Concrete Beam Design F ORM, B EHAVIOR, AND D ESIGN composite of concrete and steel A RCH 331 D R. A NNE N ICHOLS American Concrete Institute (ACI) S UMMER 2018 design for maximum stresses lecture limit

641 views • 9 slides
twenty two service loads x load factors concrete holds no tension failure criteria is

twenty two service loads x load factors concrete holds no tension failure criteria is

A RCHITECTURAL S TRUCTURES : Concrete Beam Design F ORM, B EHAVIOR, AND D ESIGN composite of concrete and steel ARCH 331 D R. A NNE N ICHOLS American Concrete Institute (ACI) S PRING 2018 design for maximum stresses lecture limit

346 views • 9 slides
Concrete Recycling in Pavement Applications Update on the FHWA Concrete Recycling Initiative

Concrete Recycling in Pavement Applications Update on the FHWA Concrete Recycling Initiative

Concrete Recycling in Pavement Applications Update on the FHWA Concrete Recycling Initiative Tara Cavalline, Ph.D., P.E. UNC Charlotte tcavalline@uncc.edu Presentation to National Concrete consortium September 20, 2017 Concrete Recycling

618 views • 26 slides
Semantics so far in course Lexical Semantics, Distributions, Previous semantics lectures

Semantics so far in course Lexical Semantics, Distributions, Previous semantics lectures

11/13/18 Semantics so far in course Lexical Semantics, Distributions, Previous semantics lectures discussed Predicate-Argument Structure, and composing meanings of parts to produce the correct global sentence meaning Frame Semantic Parsing

460 views • 14 slides
Use of Concrete Maturity For Use of Concrete Maturity For Measuring In-Place Strength of

Use of Concrete Maturity For Use of Concrete Maturity For Measuring In-Place Strength of

Use of Concrete Maturity For Use of Concrete Maturity For Measuring In-Place Strength of Measuring In-Place Strength of Concrete Concrete Prasad Rangaraju, Ph.D., P.E. Assistant Professor Department of Civil Engineering Clemson University

1.08k views • 63 slides
ABC Webinar at FIU Concrete Bridges Concrete Bridges William Nickas, P.E. Managing Director,

ABC Webinar at FIU Concrete Bridges Concrete Bridges William Nickas, P.E. Managing Director,

ABC Webinar at FIU Concrete Bridges Concrete Bridges William Nickas, P.E. Managing Director, Transportation Systems Precast/Prestressed Concrete Institute 2 National Concrete Bridge Council American Coal Ash Association American

1.25k views • 104 slides
10/17/2011 Dynamic Semantics Definition of a (programming) language involves: Generic Language

10/17/2011 Dynamic Semantics Definition of a (programming) language involves: Generic Language

10/17/2011 Dynamic Semantics Definition of a (programming) language involves: Generic Language Technology (2IS15) abstract syntax, so-called signature concrete syntax: Dynamic Semantics textual syntax graphical syntax dr. Suzana

262 views • 4 slides
Non-uniform Concrete security: an example cracks in the concrete: What is the best NIST P-256

Non-uniform Concrete security: an example cracks in the concrete: What is the best NIST P-256

Non-uniform Concrete security: an example cracks in the concrete: What is the best NIST P-256 the power of free precomputation discrete-log attack algorithm? D. J. Bernstein ECDL input: P-256 points P , University of Illinois at

1.13k views • 86 slides
Modelling Languages: (mostly) Concrete (Visual) Syntax Hans Vangheluwe http://msdl.cs.mcgill.ca/

Modelling Languages: (mostly) Concrete (Visual) Syntax Hans Vangheluwe http://msdl.cs.mcgill.ca/

Modelling Languages: (mostly) Concrete (Visual) Syntax Hans Vangheluwe http://msdl.cs.mcgill.ca/ Modelling Languages/Formalisms Syntax and Semantics Modelling Languages/Formalisms Syntax and Semantics Model of Graph 3 Textual Languages

915 views • 53 slides
Portland Cement Concrete Portland Cement Concrete Portland cement concrete consists of a mixture

Portland Cement Concrete Portland Cement Concrete Portland cement concrete consists of a mixture

Portland Cement Concrete Portland Cement Concrete Portland cement concrete consists of a mixture of portland cement, coarse and fine aggregates, and water. It may be amended with admixtures, fibers, or certain supplementary cementitious

1.26k views • 78 slides
Basic Concrete Tests Hardened Concrete Basic Concrete Tests Cylinder Compression Splitting

Basic Concrete Tests Hardened Concrete Basic Concrete Tests Cylinder Compression Splitting

Basic Concrete Tests Hardened Concrete Basic Concrete Tests Cylinder Compression Splitting Tension Beam Flexure Elastic Modulus Slump Unit Weight Air Content CIVL 3137 2 Cylinder Compression What do we mean when we say I need 10 yd 3

516 views • 51 slides
Engineering Fly Ash-based Geopolymer Concrete Geopolymer Concrete E. Ivan Diaz-Loya Ph.D.

Engineering Fly Ash-based Geopolymer Concrete Geopolymer Concrete E. Ivan Diaz-Loya Ph.D.

Engineering Fly Ash-based Geopolymer Concrete Geopolymer Concrete E. Ivan Diaz-Loya Ph.D. Candidate Erez N. Allouche Ph.D., P.E. 1 2010 International Concrete Sustainability Conference, Dubai, UAE Engineering fly ash-based geopolymer concrete

713 views • 35 slides
2012 EXCELLENCE IN CONCRETE AWARD Virginia Chapter - American Concrete Institute Hank Keiper,

2012 EXCELLENCE IN CONCRETE AWARD Virginia Chapter - American Concrete Institute Hank Keiper,

2012 EXCELLENCE IN CONCRETE AWARD Virginia Chapter - American Concrete Institute Hank Keiper, P.E. March 7, 2013 Virginia Concrete The SEFA Group Conference Aw ard Criteria Essentially completed in 2012 Concrete a major part of

257 views • 25 slides
BEST Reinforced Concrete Column Reinforced concrete design according to DIN, EN with

BEST Reinforced Concrete Column Reinforced concrete design according to DIN, EN with

BEST Reinforced Concrete Column Reinforced concrete design according to DIN, EN with national annexes for DE, AT, SK/CZ and UK Calculation according to the linear and nonlinear theory under consideration of effective stiffness in

118 views • 8 slides
YOUR ASSETS Precast Concrete Product Solutions Manufacturing precast concrete products since

YOUR ASSETS Precast Concrete Product Solutions Manufacturing precast concrete products since

PROTECT YOUR ASSETS Precast Concrete Product Solutions Manufacturing precast concrete products since 1960 Utility Sector Product Lines: SoftSound Absorptive & SMC Reflective Noise Barriers Easi-Set All-Precast Concrete Shelters -

677 views • 20 slides
Preparatory course WS2011 - Semantics The job of semantics Referential theories Conceptual

Preparatory course WS2011 - Semantics The job of semantics Referential theories Conceptual

Semantics J. Ruppenhofer, A. Palmer Preliminaries Preparatory course WS2011 - Semantics The job of semantics Referential theories Conceptual Alexis Palmer semantics Some core problems Lexical analysis Sense and word October 10,

1.53k views • 133 slides

More recommend