modelling and verification
play

Modelling and Verification Hennessy-Milner Logic Hennessy-Milner - PowerPoint PPT Presentation

Jul 15, 2023 •474 likes •670 views

Introduction Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Modelling and Verification Hennessy-Milner Logic Hennessy-Milner logic Syntax and semantics Correspondence with strong bisimilarity Examples in CWB

  1. Introduction Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Modelling and Verification Hennessy-Milner Logic Hennessy-Milner logic Syntax and semantics Correspondence with strong bisimilarity Examples in CWB Hennessy-Milner Logic Modelling and Verification

  2. Introduction Equivalence Checking vs. Model Checking Hennessy-Milner Logic Modal and Temporal Properties Correspondence between HM Logic and Strong Bisimilarity Verifying Correctness of Reactive Systems Let Impl be an implementation of a system (e.g. in CCS syntax). Equivalence Checking Approach Impl ≡ Spec ≡ is an abstract equivalence, e.g. ∼ or ≈ Spec is often expressed in the same language as Impl Spec provides the full specification of the intended behaviour Model Checking Approach Impl | = Property | = is the satisfaction relation Property is a particular feature, often expressed via a logic Property is a partial specification of the intended behaviour Hennessy-Milner Logic Modelling and Verification

  3. Introduction Equivalence Checking vs. Model Checking Hennessy-Milner Logic Modal and Temporal Properties Correspondence between HM Logic and Strong Bisimilarity Verifying Correctness of Reactive Systems Let Impl be an implementation of a system (e.g. in CCS syntax). Equivalence Checking Approach Impl ≡ Spec ≡ is an abstract equivalence, e.g. ∼ or ≈ Spec is often expressed in the same language as Impl Spec provides the full specification of the intended behaviour Model Checking Approach Impl | = Property | = is the satisfaction relation Property is a particular feature, often expressed via a logic Property is a partial specification of the intended behaviour Hennessy-Milner Logic Modelling and Verification

  4. Introduction Equivalence Checking vs. Model Checking Hennessy-Milner Logic Modal and Temporal Properties Correspondence between HM Logic and Strong Bisimilarity Model Checking of Reactive Systems Our Aim Develop a logic in which we can express interesting properties of reactive systems. Hennessy-Milner Logic Modelling and Verification

  5. Introduction Equivalence Checking vs. Model Checking Hennessy-Milner Logic Modal and Temporal Properties Correspondence between HM Logic and Strong Bisimilarity Logical Properties of Reactive Systems Modal Properties – what can happen now (possibility, necessity) drink a coffee (can drink a coffee now) does not drink tea drinks both tea and coffee drinks tea after coffee Temporal Properties – behaviour in time never drinks any alcohol (safety property: nothing bad can happen) eventually will have a glass of wine (liveness property: something good will happen) Can these properties be expressed using equivalence checking? Hennessy-Milner Logic Modelling and Verification

  6. Introduction Equivalence Checking vs. Model Checking Hennessy-Milner Logic Modal and Temporal Properties Correspondence between HM Logic and Strong Bisimilarity Logical Properties of Reactive Systems Modal Properties – what can happen now (possibility, necessity) drink a coffee (can drink a coffee now) does not drink tea drinks both tea and coffee drinks tea after coffee Temporal Properties – behaviour in time never drinks any alcohol (safety property: nothing bad can happen) eventually will have a glass of wine (liveness property: something good will happen) Can these properties be expressed using equivalence checking? Hennessy-Milner Logic Modelling and Verification

  7. Introduction Equivalence Checking vs. Model Checking Hennessy-Milner Logic Modal and Temporal Properties Correspondence between HM Logic and Strong Bisimilarity Logical Properties of Reactive Systems Modal Properties – what can happen now (possibility, necessity) drink a coffee (can drink a coffee now) does not drink tea drinks both tea and coffee drinks tea after coffee Temporal Properties – behaviour in time never drinks any alcohol (safety property: nothing bad can happen) eventually will have a glass of wine (liveness property: something good will happen) Can these properties be expressed using equivalence checking? Hennessy-Milner Logic Modelling and Verification

  8. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics Hennessy-Milner Logic – Syntax Syntax of the Formulae ( a ∈ Act ) F , G ::= tt | ff | F ∧ G | F ∨ G | � a � F | [ a ] F Intuition: tt all processes satisfy this property ff no process satisfies this property ∧ , ∨ usual logical AND and OR � a � F there is at least one a -successor that satisfies F [ a ] F all a -successors have to satisfy F Remark Temporal properties like always/never in the future or eventually are not included. Hennessy-Milner Logic Modelling and Verification

  9. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics Hennessy-Milner Logic – Syntax Syntax of the Formulae ( a ∈ Act ) F , G ::= tt | ff | F ∧ G | F ∨ G | � a � F | [ a ] F Intuition: tt all processes satisfy this property ff no process satisfies this property ∧ , ∨ usual logical AND and OR � a � F there is at least one a -successor that satisfies F [ a ] F all a -successors have to satisfy F Remark Temporal properties like always/never in the future or eventually are not included. Hennessy-Milner Logic Modelling and Verification

  10. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics Hennessy-Milner Logic – Syntax Syntax of the Formulae ( a ∈ Act ) F , G ::= tt | ff | F ∧ G | F ∨ G | � a � F | [ a ] F Intuition: tt all processes satisfy this property ff no process satisfies this property ∧ , ∨ usual logical AND and OR � a � F there is at least one a -successor that satisfies F [ a ] F all a -successors have to satisfy F Remark Temporal properties like always/never in the future or eventually are not included. Hennessy-Milner Logic Modelling and Verification

  11. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics Hennessy-Milner Logic – Semantics a Let ( Proc , Act , { − →| a ∈ Act } ) be an LTS. Validity of the logical triple p | = F ( p ∈ Proc , F a HM formula) p | = tt for each p ∈ Proc p | = ff for no p (we also write p �| = ff ) p | = F ∧ G iff p | = F and p | = G p | = F ∨ G iff p | = F or p | = G a → p ′ for some p ′ ∈ Proc such that p ′ | p | = � a � F iff p − = F = [ a ] F iff p ′ | = F ,for all p ′ ∈ Proc such that p a p | − → p ′ We write p �| = F whenever p does not satisfy F . Hennessy-Milner Logic Modelling and Verification

  12. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics What about Negation? For every formula F we define the formula F c as follows: tt c = ff ff c = tt ( F ∧ G ) c = F c ∨ G c ( F ∨ G ) c = F c ∧ G c ( � a � F ) c = [ a ] F c ([ a ] F ) c = � a � F c Theorem ( F c is equivalent to the negation of F ) For any p ∈ Proc and any HM formula F 1 p | = F c = F = ⇒ p �| 2 p �| = F c = F = ⇒ p | Hennessy-Milner Logic Modelling and Verification

  13. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics What about Negation? For every formula F we define the formula F c as follows: tt c = ff ff c = tt ( F ∧ G ) c = F c ∨ G c ( F ∨ G ) c = F c ∧ G c ( � a � F ) c = [ a ] F c ([ a ] F ) c = � a � F c Theorem ( F c is equivalent to the negation of F ) For any p ∈ Proc and any HM formula F 1 p | = F c = F = ⇒ p �| 2 p �| = F c = F = ⇒ p | Hennessy-Milner Logic Modelling and Verification

  14. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics Hennessy-Milner Logic – Denotational Semantics ] ⊆ Proc contain all states that satisfy F . For a formula F let [ [ F ] ] : Formulae → 2 Proc Denotational Semantics: [ [ ] [ [ tt ] ] = Proc [ [ ff ] ] = ∅ [ [ F ∨ G ] ] = [ [ F ] ] ∪ [ [ G ] ] [ [ F ∧ G ] ] = [ [ F ] ] ∩ [ [ G ] ] [ � a � F ] ] = �· a ·� [ [ [ F ] ] [ [[ a ] F ] ] = [ · a · ][ [ F ] ] where �· a ·� , [ · a · ] : 2 ( Proc ) → 2 ( Proc ) are defined by → p ′ and p ′ ∈ S } a �· a ·� S = { p ∈ Proc | ∃ p ′ . p − → p ′ = ⇒ p ′ ∈ S } . a [ · a · ] S = { p ∈ Proc | ∀ p ′ . p − Hennessy-Milner Logic Modelling and Verification

  15. Syntax Introduction Semantics Hennessy-Milner Logic Negation in Hennessy-Milner Logic Correspondence between HM Logic and Strong Bisimilarity Denotational Semantics The Correspondence Theorem Theorem a Let ( Proc , Act , { − →| a ∈ Act } ) be an LTS, p ∈ Proc and F a formula of Hennessy-Milner logic. Then p | = F if and only if p ∈ [ [ F ] ] . Proof: by structural induction on the structure of the formula F . Hennessy-Milner Logic Modelling and Verification

Recommend

CLASSI C CLASSI C CLASSI C Modelling , Specification , and Verification using UPPAAL Kim

CLASSI C CLASSI C CLASSI C Modelling , Specification , and Verification using UPPAAL Kim

CLASSI C CLASSI C CLASSI C Modelling , Specification , and Verification using UPPAAL Kim Guldstrand Larsen Finite State Machines Modelling using UC UC b Modelling processes A process is the execution of a sequential program.

1.41k views • 108 slides
Modelling and Verification of Component Compatibility by Composition MOCA'04 Third Workshop on

Modelling and Verification of Component Compatibility by Composition MOCA'04 Third Workshop on

Modelling and Verification of Component Compatibility by Composition MOCA'04 Third Workshop on Modelling of Objects, Components and Agents Aarhus, Denmark October 11-13, 2004 Donald C. Craig and Wlodek M. Zuberek Department of Computer

293 views • 14 slides
Modelling and Verification of a Distributed Interlocking System using UPPAAL and UMC Van Anh Thi

Modelling and Verification of a Distributed Interlocking System using UPPAAL and UMC Van Anh Thi

Modelling and Verification of a Distributed Interlocking System using UPPAAL and UMC Van Anh Thi Trinh & Per Lange Laursen DTU Compute, Technical University of Denmark 22. maj 2019 DTU Compute Outline Objectives Modelling with

418 views • 11 slides
Probabilistic Modelling and Verification of Introduction Biological Systems Biological Systems

Probabilistic Modelling and Verification of Introduction Biological Systems Biological Systems

Probabilistic Modelling and Verification of Biological Systems Paolo Milazzo Outline Probabilistic Modelling and Verification of Introduction Biological Systems Biological Systems as Concurrent Systems Examples of Models Discussion on

840 views • 34 slides
Authenticated Encryption in TLS Same modelling Poor TLS track record & verification

Authenticated Encryption in TLS Same modelling Poor TLS track record & verification

Authenticated Encryption in TLS Same modelling Poor TLS track record & verification approach - Many implementation flaws - Attacks on weak cryptography concrete security: each lossy step (MD5, SHA1, ) documented by a game and a

514 views • 27 slides
Modelling and Verification Lecture 1 Lecturer: Luca Aceto luca@ru.is or luca.aceto@gmail.com

Modelling and Verification Lecture 1 Lecturer: Luca Aceto luca@ru.is or luca.aceto@gmail.com

Organization of the Course Introduction Formal Models for Reactive Systems Introduction to CCS Modelling and Verification Lecture 1 Lecturer: Luca Aceto luca@ru.is or luca.aceto@gmail.com Lecture 1 Modelling and Verification Organization

840 views • 36 slides
Modelling, Specification and Verification of Reactive Systems Milners Calculus of

Modelling, Specification and Verification of Reactive Systems Milners Calculus of

Introduction to CCS Syntax of CCS Semantics of CCS Value Passing CCS Modelling, Specification and Verification of Reactive Systems Milners Calculus of Communicating Systems (CCS) Plan for this part of the course: Informal introduction to

763 views • 50 slides
A unified approach to performance modelling and verification Stephen Gilmore and Le la Kloul

A unified approach to performance modelling and verification Stephen Gilmore and Le la Kloul

A unified approach to performance modelling and verification Stephen Gilmore and Le la Kloul Laboratory for Foundations of Computer Science The University of Edinburgh SAFECOMP, Sept 2003 Stephen Gilmore DEGAS project, LFCS, Edinburgh 1

761 views • 47 slides
Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of

Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Weak bisimilarity and weak bisimulation games Properties of weak bisimilarity Example: a

587 views • 24 slides
Modelling, Specification and Verification of Reactive Systems Introduction to the Course

Modelling, Specification and Verification of Reactive Systems Introduction to the Course

Organization of the Course Introduction Formal Models for Reactive Systems Modelling, Specification and Verification of Reactive Systems Introduction to the Course Lecturer: Luca Aceto Email: luca@ru.is or luca.aceto@gmail.com Course web

449 views • 25 slides
Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation

Strong Bisimilarity (Reprise) Weak Bisimilarity Case Study: Communication Protocol Congruence Problems Modelling and Verification Lecture 4 Properties of strong bisimilarity (reprise) Bisimulation games Weak bisimilarity and weak

872 views • 47 slides
Modelling and Verification Hennessy-Milner Logic An introduction to Hennessy-Milner logic (HML)

Modelling and Verification Hennessy-Milner Logic An introduction to Hennessy-Milner logic (HML)

Introduction to Model Checking Hennessy-Milner Logic Hennessy-Milner Logic with One Recursive Definition Selection of Temporal Properties Modelling and Verification Hennessy-Milner Logic An introduction to Hennessy-Milner logic (HML) Syntax

1.2k views • 44 slides
Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the

Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the

Equivalence Checking Problems Regions Region Graph Networks of Timed Automata Modelling and Verification 2006 Lecture 13 Untimed bisimilarity Region graph and the reachability problem Networks of timed automata Model checking of timed

628 views • 30 slides
The Modelling and Simulation Process 1. History of Modelling and Simulation 2. Modelling and

The Modelling and Simulation Process 1. History of Modelling and Simulation 2. Modelling and

The Modelling and Simulation Process 1. History of Modelling and Simulation 2. Modelling and Simulation Concepts 3. Levels of Abstraction 4. Experimental Frame 5. Validation 6. Studying a mass-spring system 7. The Modelling and Simulation

692 views • 34 slides
Introduction to Electronic Verification Electronic Verification of Educational Records

Introduction to Electronic Verification Electronic Verification of Educational Records

Introduction to Electronic Verification Electronic Verification of Educational Records OVERVIEW 01 04 Scope of Verification Peggys Picks Types of verification, Verifying exam results or parameters, privacy graduation using databases

1.25k views • 81 slides
Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Timed Transition Systems Timed Automata Networks of Timed Automata Equivalence Checking Problems Regions and Region Graph Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition systems with time

1.21k views • 62 slides
DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification

DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification

DIVS DL/ID Verification Systems Verification of Legal Status DIVS Passport Verification Projects Birth Record Verification State to State Verification DIVS State to State Verification Service (S2S) Program Benefits Mission

349 views • 8 slides
Preparing for Re-Verification Brief Mr. Terrence Moultrie Chief, Verification and Executive

Preparing for Re-Verification Brief Mr. Terrence Moultrie Chief, Verification and Executive

The Center for Verification and Evaluation (CVE) Preparing for Re-Verification Brief Mr. Terrence Moultrie Chief, Verification and Executive Support Services Agenda What is Re-Verification? o Simplified Reverification Program VIP

320 views • 21 slides
Verification & Validation Verification is getting the system right : Verification and

Verification & Validation Verification is getting the system right : Verification and

Verification & Validation Verification is getting the system right : Verification and Validation Does the program you built do what you designed it to do? Dr. James A. Bednar Validation is getting the right system : jbednar@inf.ed.ac.uk

331 views • 8 slides
Verification and Validation Steven Zeil February 13, 2013 Verification and Validation

Verification and Validation Steven Zeil February 13, 2013 Verification and Validation

Verification and Validation Verification and Validation Steven Zeil February 13, 2013 Verification and Validation Outline The Process 1 Non-Testing V&V 2 Code Review Mathematically-based verification Static analysis tools

790 views • 55 slides
COMP2111 System Modelling and Design 1 Who are we? Lecturer in Charge: I am Dr. Christine

COMP2111 System Modelling and Design 1 Who are we? Lecturer in Charge: I am Dr. Christine

COMP2111 System Modelling and Design 1 Who are we? Lecturer in Charge: I am Dr. Christine Rizkallah, a lecturer at UNSW who works on, among other things, formal verification and programming languages. I work on several projects with Data61.

394 views • 7 slides
Semantics & Verification Lecture 13 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 13 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 13 Gerd Behrmann Outline of remaining lectures Lecture 9: Modelling real time system Lecture 10: More on Uppaal + mini projects Lecture 11: Mini projects Lecture 12: Verification of timed

589 views • 31 slides
Semantics & Verification Lecture 14 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 14 Gerd Behrmann Outline of remaining lectures Lecture

Semantics & Verification Lecture 14 Gerd Behrmann Outline of remaining lectures Lecture 9: Modelling real time system Lecture 10: More on Uppaal + mini projects Lecture 11: Mini projects Lecture 12: Verification of timed

779 views • 42 slides
Verification regulations: Description Draft to define model for meeting verification

Verification regulations: Description Draft to define model for meeting verification

Verification regulations: Description Draft to define model for meeting verification regulations Verification Code Extension (draft-gould-eppext-verificationcode) Purpose Separate verification details from registry interface

167 views • 6 slides

More recommend