on hierarchical communication topologies of concurrent
play

On Hierarchical Communication Topologies of Concurrent - PowerPoint PPT Presentation

Sep 05, 2023 •235 likes •950 views

On Hierarchical Communication Topologies of Concurrent Message-passing Systems Emanuele DOsualdo 1 Luke Ong 2 1 Imperial College London 2 University of Oxford IFIP WG 1.6 Meeting, Oxford, 9 September 2017 Abstract . We introduce a new,

  1. On Hierarchical Communication Topologies of Concurrent Message-passing Systems Emanuele D’Osualdo 1 Luke Ong 2 1 Imperial College London 2 University of Oxford IFIP WG 1.6 Meeting, Oxford, 9 September 2017 Abstract . We introduce a new, expressive class of inductive invariants for concurrent systems (expressed in the π -calculus), called hierarchical; and a type system for proving a system hierarchical, feasibly. Hierarchical systems are of interest to algorithmic verification because they have decidable semantic properties. A key innovation are special rewrite rules that are shape-invariant.

  2. Outline Automatic analysis of concurrency: depth-bounded pi-calculus 1 Hierarchical systems and a decidable type system 2 Results: algorithmics and expressivity 3 Application 1: verification of cryptographic protocols 4 Conclusions and ongoing/future work 5 Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 2 / 47

  3. The general problem Goal: Automatic analysis of concurrent systems. Challenging, because: Unbounded process creation. Message passing leads to dynamic reconfiguration of communication topology. Turing completeness: interesting verification problems are undecidable. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 3 / 47

  4. Motivation: Soter (2013), safety verification tool for Erlang Soter applies abstract interpretation and counter abstraction to transform an input Erlang program to a CCS-like model, which is model-checked using a Petri-net coverability checker. http://mjolnir.cs.ox.ac.uk/soter Limitation (imprecise abstraction): unboundedly many Erlang pids ( p rocess id s) are abstracted into a bounded number of equivalence classes. Soter cannot support analysis requiring precision of process identity. 1 Because mailboxes are merged under the abstraction, certain paterns 2 of communication cannot be analysed accurately. Solution. Use π -calculus to model pids by names – a more accurate model. Qestion. Is there a pi-calculus fragment in which reasoning about process identity (and hence commmunication topology) is precise and decidable? Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 4 / 47

  5. Review: Pi-calculus (Milner, Parrow & Walker 1992) - models communications between processes that exchange messages along channels. Messages and channels are represented uniformly by names. Processes communicate by synchronising on a matching pair of send and receive terms: a � b � . S - sends message b on channel a , then becomes S a ( x ) . R - can receive message m on channel a , then becomes R [ m / x ] . Restriction (or new name) operator: ν a . P - A fresh name is allocated, and its scope is P . Syntax of π -terms: P := ν x . P | P 1 � P 2 | M | ! M process / π -term M := 0 | π. P | M + M choice π := a � b � | a ( x ) | τ prefix Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 5 / 47

  6. Operational semantics of π -calculus Structural congruence , ≡ , is the least relation that respects α -conversion of bound names, where + and � are associative and commutative with neutral element 0 , and satisfying: ν a . 0 ≡ 0 ν a . ν b . P ≡ ν b . ν a . P ! P ≡ P � ! P Replication P � ν a . Q ≡ ν a . ( P � Q ) ( if a �∈ fn ( P )) Scope Extrusion With mobiliy, guarded replication equivalent to recursion. Reaction relation , → , is the least compatible relation satisfying: � a � b � . S + S ′ � � a ( x ) . R + R ′ � � → S � R [ b / x ] (React) τ. P + M → P (Tau) Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 6 / 47

  7. Example: client/server in π -calculus S [ s ] := ! s ( x ) . ( ν d . x � d � ) C [ s , m ] := s � m � � m ( x ) . C [ s , m ] E [ s ] := ! τ . ( ν m . C [ s , m ]) ν s . ( S [ s ] � E [ s ]) Initial term: Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 7 / 47

  8. The client/server example: evolution of communication topology Stargazer π -calculus simulator https://www.tcs.cs.tu-bs.de/group/dosualdo/stargazer/ Correctness property: mailboxes have at most 1 message. - Typical abstractions ignore topology: too imprecise to prove property. - Alternatively prove the property using suitable inductive invariants. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 8 / 47

  9. The picture represents a set of configurations: each bubble can be cloned any number of times * * * * Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 9 / 47

  10. Client/server example: inductive invariant An property (of terms) Inv is an inductive invariant of P just if * * P satisfies Inv 1 Inv is closed under the transition relation. 2 Thus, an inductive invariant of P is a property of * * Reach ( P ) . Want to prove: “each mailbox has at most 1 mes- sage” is inductive invariant of c/s system. Problem: such (safety) properties are not inductive invariants of arbitrary π -terms. Solution: there is a fragment of π -calculus for which such properties are invariants – depth-bounded fragment. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 10 / 47

  11. Depth boundedness (Roland Meyer 2008) Def. A term is depth-bounded if there is some d ≥ 1 such that all reachable terms from it have nested restriction depths ≤ d . � � � � E.g. ν a . · · · ν b . · · · ( ν c . · · · ) · · · · · · has nested restriction depth ≥ 3. Remarkably some semantic properties of depth-bounded terms are decidable: termination – an important liveness property coverability – weak form of reachability, hence safety. Proof. Depth-bounded terms are a well-structured transition system (Finkel & Schnoebelen; Abdulla et al. Winner of 2017 CAV Award). Depth boundedness is one of the most expressive fragments of π - calculus with decidable semantic properties. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 11 / 47

  12. Examples 1. Let S = τ. ν b . a � b � , and R = a ( x ) . x � c � . → ∗ ! S � ! R ν b 1 . b 1 � c � � ! S � ! R → ∗ ν b 1 . b 1 � c � � ν b 2 . b 2 � c � � ! S � ! R → ∗ ν b 1 . b 1 � c � � ν b 2 . b 2 � c � � · · · � ν b n . b n � c � � ! S � ! R Thus ! S � ! R is: depth bounded: every reachable term has nested-restriction depth of 1 (every subterm is in the scope of at most 1 restriction). name unbounded: for each n ≥ 1 , a term is reachable that uses n channels (i.e., b 1 , · · · , b n ) concurrently. 2. The client/server example is also depth-bounded. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 12 / 47

  13. Example: depth-unbounded Let θ = a ( x ) . ν c . ( c � x � � a � c � ) . a � c 0 � � ! θ ≡ a � c 0 � � a ( x ) . ν c 1 . ( c 1 � x � � a � c 1 � ) � ! θ → ν c 1 . ( c 1 � c 0 � � a � c 1 � � ! θ ) � � ≡ ν c 1 . c 1 � c 0 � � a � c 1 � � a ( x ) . ν c 2 . ( c 2 � x � � a � c 2 � ) � ! θ � � → ν c 1 . c 1 � c 0 � � ν c 2 . ( c 2 � c 1 � � a � c 2 � � ! θ ) � �� � → ∗ ν c 1 . c 1 � c 0 � � ν c 2 . c 2 � c 1 � � · · · � ν c n . ( c n � c n − 2 � � a � c n � � ! θ ) - The subterm a � c n � is in the scope of n restrictions. - For each n ≥ 1 , a term with nested restriction of depth n is reachable. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 13 / 47

  14. Problem: undecidability Membership of depth boundedness is undecidable! - Checking if a term is bounded in depth by a given number k is non-primitive-recursive. (Hütchting & Meyer 2014) - We want a more structured measure for resources. Our approach: trees rather than numbers (for depth), leading to hierarchical systems. Key contributions : (1) hierarchical systems have decidable semantic properties, (2) a (feasibly) decidable type system for proving a system hierarchical. Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 14 / 47

  15. Outline 1 Automatic analysis of concurrency: depth-bounded pi-calculus 2 Hierarchical systems and a decidable type system 3 Results: algorithmics and expressivity 4 Application 1: verification of cryptographic protocols 5 Conclusions and ongoing/future work Emanuele D’Osualdo, Luke Ong (Imperial College London University of Oxford ) Hierarchical Communication Topologies 9 Sep 2017, WG 1.6 Mtg 15 / 47

Recommend

Virtual Topologies Virtual Topologies Convenient process naming. Naming scheme to fit the

Virtual Topologies Virtual Topologies Convenient process naming. Naming scheme to fit the

Virtual Topologies Virtual Topologies Convenient process naming. Naming scheme to fit the communication pattern. Simplifies writing of code. Can allow MPI to optimise communications. 2 How to use a Virtual Topology Creating a

296 views • 15 slides
Specialized Network Topologies for Efficient Communication in Computer Clusters Urban Bor

Specialized Network Topologies for Efficient Communication in Computer Clusters Urban Bor

Specialized Network Topologies for Efficient Communication in Computer Clusters Urban Bor stnik, Milan Hodo s cek, and Du sanka Jane zi c urban@cmm.ki.si National Institute of Chemistry Ljubljana, Slovenia Specialized

178 views • 14 slides
Endowing Concurrent Kleene Algebra with Communication Actions 14th International Conference on

Endowing Concurrent Kleene Algebra with Communication Actions 14th International Conference on

Outline Introduction and Motivation The Proposed Framework Conclusion and Outlook Questions Endowing Concurrent Kleene Algebra with Communication Actions 14th International Conference on Relational and Algebraic Methods in Computer Science

834 views • 42 slides
Communication Models for Resource Constrained Hierarchical Ethernet Networks Speaker: Konstantinos

Communication Models for Resource Constrained Hierarchical Ethernet Networks Speaker: Konstantinos

Communication Models for Resource Constrained Hierarchical Ethernet Networks Speaker: Konstantinos Katrinis # Jun Zhu + , Alexey Lastovetsky * , Shoukat Ali # , Rolf Riesen # + Technical University of Eindhoven, Netherlands * University College

352 views • 18 slides
CO406H: Concurrent Processes -calculus: dynamic reconfiguration of communication links

CO406H: Concurrent Processes -calculus: dynamic reconfiguration of communication links

CO406H: Concurrent Processes -calculus: dynamic reconfiguration of communication links Session types for distributed protocols Plan of Lectures and Tutorials Lectures, Tutorials and Coursework Room 342, Monday, 16.0018.00

811 views • 39 slides
Locking Synchronization in Hierarchical Multicore Computer Systems Paznikov Alexey The first

Locking Synchronization in Hierarchical Multicore Computer Systems Paznikov Alexey The first

Algorithms for Optimization of Remote Core Locking Synchronization in Hierarchical Multicore Computer Systems Paznikov Alexey The first summer school apaznikov@gmail.com on practice and theory of concurrent computing Saint Petersburg

597 views • 48 slides
CONCURRENT COLLECTIONS 2 5/24/11 Concurrent Collec9ons

CONCURRENT COLLECTIONS 2 5/24/11 Concurrent Collec9ons

1 5/24/11 Concurrent Collec9ons CONCURRENT COLLECTIONS 2 5/24/11 Concurrent Collec9ons Acknowledgements Slides and material from Kathleen Knobe (Intel)

865 views • 20 slides
On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order

On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order

On Congruence Property of Scope Equivalence for Concurrent Programs with Higher-Order Communication Masaki Murakami Okayama University JAPAN A Formal Model of Concurrent Systems the model presented here is a translation of asynchronous

847 views • 31 slides
SK Telecom 1 U U U U U U U- U - - communication - - - - - communication

SK Telecom 1 U U U U U U U- U - - communication - - - - - communication

U U U U U U U- U - - communication - - - - - communication communication communication communication communication communication communication Korea Mobile Market Trend for Convergence & Ubiquitous Communication 2004.

400 views • 16 slides
Concurrent programming Multiple threads working together to achieve a common goal These threads

Concurrent programming Multiple threads working together to achieve a common goal These threads

Concurrent programming slides T.S. Norvell (c) 2001 Concurrent programming Multiple threads working together to achieve a common goal These threads may share memory Communication is via shared variables. Care is required to ensure

392 views • 11 slides
Concurrent Enrollment A Guide for Parents and Students What is Concurrent Enrollment? Concurrent

Concurrent Enrollment A Guide for Parents and Students What is Concurrent Enrollment? Concurrent

Concurrent Enrollment A Guide for Parents and Students What is Concurrent Enrollment? Concurrent enrollment allows high school students to enroll in college courses and receive college credit. The College and Career Access Pathways (CCAP) program

555 views • 21 slides
Frame Relay Topologies and Designs Frame Relay Topologies and Design As we learned in the Frame

Frame Relay Topologies and Designs Frame Relay Topologies and Design As we learned in the Frame

Frame Relay Topologies and Designs Frame Relay Topologies and Design As we learned in the Frame Relay - Introduction and Concepts lesson, Frame Relay introduces some cost savings benefits over point-to-point leased lines. This lesson will

397 views • 14 slides
Tree-like automata synchronisation topologies and their reductions Micha l Knapik , Laure

Tree-like automata synchronisation topologies and their reductions Micha l Knapik , Laure

Tree-like automata synchronisation topologies and their reductions Micha l Knapik , Laure Petrucci TDCS seminar, 16th July 2020 ICS PAS/LIPN, CNRS Outline Motivations and Contributions Asynchronous Products, Synchronisation Topologies

621 views • 39 slides
Liebert GXT3 Solution by GSE UPS Topologies Stand-by / Offline Line Interactive

Liebert GXT3 Solution by GSE UPS Topologies Stand-by / Offline Line Interactive

Liebert GXT3 Solution by GSE UPS Topologies Stand-by / Offline Line Interactive On-Line Double Conversion UPS Topologies Stand-by Inexpensive, economical Effective Power Conditioner TRANSFER TVSS & SWITCH EMI /

1.03k views • 40 slides
V-topologies, t-Henselian Fields and Definable Valuations Katharina Dupont Department of

V-topologies, t-Henselian Fields and Definable Valuations Katharina Dupont Department of

1 V-topologies, t-Henselian Fields and Definable Valuations Katharina Dupont Department of Mathematics University of Constance British Postgraduate Model Theorie Conference, 2011 2 Outline V-Topologies and t-Henselian Fields 1

783 views • 28 slides
Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton and Dominique Lecomte JAF 2018 Florence Outline The Cantor topology on a space of infinite words Other topologies Main Results Consequences

424 views • 26 slides
UT DA Hierarchical and Analytical Hierarchical and Analytical Pla Placement T cement

UT DA Hierarchical and Analytical Hierarchical and Analytical Pla Placement T cement

UT DA Hierarchical and Analytical Hierarchical and Analytical Pla Placement T cement Technique echniques for s for High High- Performa Performance A nce Analog C nalog Circuit ircuits Biying Xu, Shaolan Li, Xiaoqing Xu, Nan Sun, and

506 views • 29 slides
Concurrent Programming in Scala 1 / 7 Concurrent Programming 1 Concurrent programming:

Concurrent Programming in Scala 1 / 7 Concurrent Programming 1 Concurrent programming:

Concurrent Programming in Scala 1 / 7 Concurrent Programming 1 Concurrent programming: separate overlapping threads of execution, not necessarily run on separate processors/cores Parallel programming: separate threads of execution running

257 views • 7 slides
Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton

Polishness of some topologies related to automata Olivier Finkel Joint work with Olivier Carton and Dominique Lecomte Wadge Theory and Automata Torino, June 8, 2018 Outline The Cantor topology on a space of infinite words Other topologies

1.16k views • 31 slides
Proposal of a Hierarchical Proposal of a Hierarchical Architecture for Multimodal Architecture for

Proposal of a Hierarchical Proposal of a Hierarchical Architecture for Multimodal Architecture for

Proposal of a Hierarchical Proposal of a Hierarchical Architecture for Multimodal Architecture for Multimodal Interactive Systems y Masahiro Araki* 1 Tsuneo Nitta* 2 Kouichi Katsurada* 2 Takuya Nishimoto* 3 Tetsuo Amakasu* 4 Shinnichi Kawamoto* 5

546 views • 35 slides
Server types concurrent, connectionless very uncommon a process is created for each

Server types concurrent, connectionless very uncommon a process is created for each

TCP week 8 5/12/02 1 Clients & Servers Client: in general, an application that initiates a peer-to-peer communication end users usually invoke client software Server: waits for incoming communication requests from a client

552 views • 7 slides
Minimal Disclosure in Hierarchical Hippocratic Databases with Delegation Nicola Zannone Dep. of

Minimal Disclosure in Hierarchical Hippocratic Databases with Delegation Nicola Zannone Dep. of

Minimal Disclosure in Hierarchical Hippocratic Databases with Delegation Nicola Zannone Dep. of Information and Communication Technology University of Trento joint work with Fabio Massacci and John Mylopoulos N. Zannone, ESORICS05

536 views • 29 slides
Wednesday, May 15 Concurrent Sessions Concurrent Session #1 1A Birds of a Feather -

Wednesday, May 15 Concurrent Sessions Concurrent Session #1 1A Birds of a Feather -

Wednesday, May 15 Concurrent Sessions Concurrent Session #1 1A Birds of a Feather - Admissions, Recruitment & International Facilitator: Gordon Pellerin (Grande Prairie Regional College) 1B Birds of a Feather - General/Front Line/

439 views • 14 slides
HiPS Hierarchical Parameter Synchronization in Large-Scale Distributed Machine Learning

HiPS Hierarchical Parameter Synchronization in Large-Scale Distributed Machine Learning

HiPS Hierarchical Parameter Synchronization in Large-Scale Distributed Machine Learning Jinkun Geng, Dan Li, Yang Cheng, Shuai Wang, and Junfeng Li 1 ACM SIGCOMM Workshop on NetAI Net AI for 2 Background Computation Communication

542 views • 33 slides

More recommend