overview
play

Overview overview7.5 Introduction Modelling parallel systems - PowerPoint PPT Presentation

Mar 02, 2024 •227 likes •2.06k views

Overview overview7.5 Introduction Modelling parallel systems Linear Time Properties Regular Properties Linear Temporal Logic (LTL) Computation-Tree Logic Equivalences and Abstraction bisimulation CTL, CTL*-equivalence computing the

  1. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda 25 / 336

  2. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : 26 / 336

  3. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 27 / 336

  4. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 simulation for ( T 1 , T 2 ) ( T 1 , T 2 ) ( T 1 , T 2 ): 28 / 336

  5. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 simulation for ( T 1 , T 2 ) ( T 1 , T 2 ) ( T 1 , T 2 ): � � � ( pay , pay ) , ( pay , pay ) , ( pay , pay ) , ( paid 1 , select ) , ( paid 1 , select ) , ( paid 1 , select ) , ( paid 2 , select ) , ( paid 2 , select ) , ( paid 2 , select ) , � � � ( coke , coke ) , ( coke , coke ) , ( coke , coke ) , ( soda , soda ) ( soda , soda ) ( soda , soda ) 29 / 336

  6. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , but T 2 �� T 1 T 2 �� T 1 T 2 �� T 1 simulation for ( T 1 , T 2 ) ( T 1 , T 2 ) ( T 1 , T 2 ): � � � ( pay , pay ) , ( pay , pay ) , ( pay , pay ) , ( paid 1 , select ) , ( paid 1 , select ) , ( paid 1 , select ) , ( paid 2 , select ) , ( paid 2 , select ) , ( paid 2 , select ) , � � � ( coke , coke ) , ( coke , coke ) , ( coke , coke ) , ( soda , soda ) ( soda , soda ) ( soda , soda ) 30 / 336

  7. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , but T 2 �� T 1 T 2 �� T 1 T 2 �� T 1 for AP = { pay , drink } : AP = { pay , drink } : AP = { pay , drink } : 31 / 336

  8. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , but T 2 �� T 1 T 2 �� T 1 T 2 �� T 1 for AP = { pay , drink } : AP = { pay , drink } : AP = { pay , drink } : 32 / 336

  9. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , but T 2 �� T 1 T 2 �� T 1 T 2 �� T 1 for AP = { pay , drink } : AP = { pay , drink } : AP = { pay , drink } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , and T 2 � T 1 T 2 � T 1 T 2 � T 1 33 / 336

  10. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , but T 2 �� T 1 T 2 �� T 1 T 2 �� T 1 for AP = { pay , drink } : AP = { pay , drink } : AP = { pay , drink } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , and T 2 � T 1 T 2 � T 1 T 2 � T 1 ( T 1 , T 2 ) simulation for ( T 1 , T 2 ) ( T 1 , T 2 ): as before 34 / 336

  11. Two beverage machines bseqor5.1-8 T 1 T 1 T 1 T 2 T 2 T 2 pay pay paid 1 paid 2 select coke soda coke soda for AP = { pay , coke , soda } AP = { pay , coke , soda } AP = { pay , coke , soda } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , but T 2 �� T 1 T 2 �� T 1 T 2 �� T 1 for AP = { pay , drink } : AP = { pay , drink } : AP = { pay , drink } : T 1 � T 2 T 1 � T 2 T 1 � T 2 , and T 2 � T 1 T 2 � T 1 T 2 � T 1 simulation for ( T 2 , T 1 ) ( T 2 , T 1 ) ( T 2 , T 1 ): � � � ( pay , pay ) , ( select , paid 1 ) , ( select , paid 2 ) , ( pay , pay ) , ( select , paid 1 ) , ( select , paid 2 ) , ( pay , pay ) , ( select , paid 1 ) , ( select , paid 2 ) , � � � ( coke , coke ) , ( soda , soda ) ( coke , coke ) , ( soda , soda ) ( coke , coke ) , ( soda , soda ) 35 / 336

  12. Simulation condition bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ ↓ ↓ can be completed to ↓ ↓ ↓ ↓ s ′ s ′ s ′ s ′ s ′ s ′ s ′ R – s ′ s ′ R – R 1 1 2 1 1 1 1 2 2 36 / 336

  13. R Path fragment lifting for simulation R R bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ s 1 , 1 s 1 , 1 s 1 , 1 ↓ ↓ ↓ s 1 , 2 s 1 , 2 s 1 , 2 ↓ ↓ ↓ s 1 , 3 s 1 , 3 s 1 , 3 ↓ ↓ ↓ . . . . . . . . . ↓ ↓ ↓ s 1 , n s 1 , n s 1 , n 37 / 336

  14. R Path fragment lifting for simulation R R bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ s 1 , 1 s 1 , 1 s 1 , 1 ↓ ↓ ↓ s 1 , 2 s 1 , 2 s 1 , 2 ↓ ↓ ↓ can be completed to s 1 , 3 s 1 , 3 s 1 , 3 ↓ ↓ ↓ . . . . . . . . . ↓ ↓ ↓ s 1 , n s 1 , n s 1 , n 38 / 336

  15. R Path fragment lifting for simulation R R bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 – R R – s 2 , 1 s 2 , 1 s 2 , 1 ↓ ↓ ↓ ↓ ↓ ↓ s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 ↓ ↓ ↓ ↓ ↓ ↓ can be completed to s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 ↓ ↓ ↓ ↓ ↓ ↓ . . . . . . . . . . . . . . . . . . ↓ ↓ ↓ ↓ ↓ ↓ s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n 39 / 336

  16. R Path fragment lifting for simulation R R bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 – R R – s 2 , 1 s 2 , 1 s 2 , 1 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 – R R – s 2 , 2 s 2 , 2 s 2 , 2 ↓ ↓ ↓ ↓ ↓ ↓ can be completed to s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 ↓ ↓ ↓ ↓ ↓ ↓ . . . . . . . . . . . . . . . . . . ↓ ↓ ↓ ↓ ↓ ↓ s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n 40 / 336

  17. R Path fragment lifting for simulation R R bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 – R R – s 2 , 1 s 2 , 1 s 2 , 1 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 – R R – s 2 , 2 s 2 , 2 s 2 , 2 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ can be completed to – R R R – s 2 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 2 , 3 s 2 , 3 ↓ ↓ ↓ ↓ ↓ ↓ . . . . . . . . . . . . . . . . . . ↓ ↓ ↓ ↓ ↓ ↓ s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n 41 / 336

  18. R Path fragment lifting for simulation R R bseqor5.1-9 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 s 1 – R R R – s 2 s 2 s 2 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 – R R – s 2 , 1 s 2 , 1 s 2 , 1 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ R s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 – R R – s 2 , 2 s 2 , 2 s 2 , 2 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ can be completed to – R R R – s 2 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 2 , 3 s 2 , 3 ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ . . . . . . . . . . . . . . . . . . . . . . . . . . . ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ ↓ s 1 , n s 1 , n – R R R – s 2 , n s 2 , n s 1 , n s 1 , n s 1 , n s 1 , n s 2 , n 42 / 336

  19. Correct or wrong? bseqor5.1-12 � � � 43 / 336

  20. Correct or wrong? bseqor5.1-12 s 1 s 2 s 1 s 1 s 2 s 2 � � � s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 correct. 44 / 336

  21. Correct or wrong? bseqor5.1-12 s 1 s 2 s 1 s 1 s 2 s 2 � � � s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 � ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ � � � � � correct. simulation: 2 ) 2 ) 2 ) 45 / 336

  22. Correct or wrong? bseqor5.1-12 s 1 s 2 s 1 s 1 s 2 s 2 � � � s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 � ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ � � � � � correct. simulation: 2 ) 2 ) 2 ) � � � 46 / 336

  23. Correct or wrong? bseqor5.1-12 s 1 s 2 s 1 s 1 s 2 s 2 � � � s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 � ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ � � � � � correct. simulation: 2 ) 2 ) 2 ) s 2 s 2 s 2 s 1 s 1 s 1 � � � s ′ s ′ s ′ s ′ s ′ s ′ 2 2 2 1 1 1 wrong. there is no path fragment in T 2 T 2 T 2 corresponding to the path fragment s 1 s ′ s 1 s ′ s 1 s ′ 1 s ′ 1 s ′ 1 s ′ 1 1 1 47 / 336

  24. Correct or wrong? bseqor5.1-13 � � � 48 / 336

  25. Correct or wrong? bseqor5.1-13 s 2 s 2 s 2 s 1 s 1 s 1 s ′ s ′ s ′ � 2 � � 2 2 s ′ s ′ s ′ s ′′ s ′′ s ′′ 1 1 1 2 2 2 ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ 2 ) , ( s ′ 2 ) , ( s ′ 2 ) , ( s ′ 1 , s ′′ 1 , s ′′ 1 , s ′′ � � � � � � correct. simulation: 2 ) 2 ) 2 ) 49 / 336

  26. Correct or wrong? bseqor5.1-13 s 2 s 2 s 2 s 1 s 1 s 1 s ′ s ′ s ′ � 2 � � 2 2 s ′ s ′ s ′ s ′′ s ′′ s ′′ 1 1 1 2 2 2 ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ 2 ) , ( s ′ 2 ) , ( s ′ 2 ) , ( s ′ 1 , s ′′ 1 , s ′′ 1 , s ′′ � � � � � � correct. simulation: 2 ) 2 ) 2 ) � � � 50 / 336

  27. Correct or wrong? bseqor5.1-13 s 2 s 2 s 2 s 1 s 1 s 1 s ′ s ′ s ′ � 2 � � 2 2 s ′ s ′ s ′ s ′′ s ′′ s ′′ 1 1 1 2 2 2 ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ 2 ) , ( s ′ 2 ) , ( s ′ 2 ) , ( s ′ 1 , s ′′ 1 , s ′′ 1 , s ′′ � � � � � � correct. simulation: 2 ) 2 ) 2 ) s ′ s ′ s ′ t ′ t ′ t ′ � � � 1 1 1 2 2 2 s ′ s ′ s ′ 2 2 2 wrong. s ′ s ′ s ′ 1 �� s ′ 1 �� s ′ 1 �� s ′ 2 and s ′ s ′ s ′ 1 �� t ′ 1 �� t ′ 1 �� t ′ 2 2 2 2 2 51 / 336

  28. Simulation preorder ... bseqor5.1-29 • as a relation that compares two transition systems 52 / 336

  29. Simulation preorder ... bseqor5.1-29 • as a relation that compares two transition systems T 1 T 1 T 1 T 2 T 2 T 2 53 / 336

  30. Simulation preorder ... bseqor5.1-29 • as a relation that compares two transition systems • as a relation on the states of one transition system 54 / 336

  31. Simulation preorder ... bseqor5.1-29 • as a relation that compares two transition systems • as a relation on the states of one transition system T T T s 1 s 1 s 1 s 2 s 2 s 2 iff ? s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 55 / 336

  32. Simulation preorder ... bseqor5.1-29 • as a relation that compares two transition systems • as a relation on the states of one transition system T s 1 T s 2 T s 1 T s 1 T s 2 T s 2 T T T s 1 s 1 s 1 s 1 s 1 s 1 s 2 s 2 s 2 s 2 s 2 s 2 s 1 � T s 2 T s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 iff T s 1 � T s 2 T s 1 � T s 2 56 / 336

  33. Simulation preorder ... bseqor5.1-29 • as a relation that compares two transition systems • as a relation on the states of one transition system T s 1 T s 2 T s 1 T s 1 T s 2 T s 2 T T T s 1 s 1 s 1 s 1 s 1 s 1 s 2 s 2 s 2 s 2 s 2 s 2 s 1 � T s 2 T s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 iff T s 1 � T s 2 T s 1 � T s 2 iff there exists a simulation R R R T ( s 1 , s 2 ) ∈ R for T T with ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R 57 / 336

  34. Simulation preorder for a single TS bseqor5.1-30 Let T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) be a transition system. The simulation preorder � T � T � T is the coarsest relation on S S such that for all states s 1 S s 1 s 1 , s 2 ∈ S s 2 ∈ S s 2 ∈ S with s 1 � T s 1 � T s 1 � T s 2 s 2 : s 2 58 / 336

  35. Simulation preorder for a single TS bseqor5.1-30 Let T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) be a transition system. The simulation preorder � T � T � T is the coarsest relation on S S S such that for all states s 1 s 1 s 1 , s 2 ∈ S s 2 ∈ S s 2 ∈ S with s 1 � T s 1 � T s 1 � T s 2 s 2 : s 2 L ( s 1 ) = L ( s 2 ) (1) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) (2) . . . . . . . . . 59 / 336

  36. Simulation preorder for a single TS bseqor5.1-30 Let T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) be a transition system. The simulation preorder � T � T � T is the coarsest relation on S S S such that for all states s 1 s 1 s 1 , s 2 ∈ S s 2 ∈ S s 2 ∈ S with s 1 � T s 1 � T s 1 � T s 2 : s 2 s 2 L ( s 1 ) = L ( s 2 ) (1) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) (2) each transition of s 1 s 1 s 1 can be mimicked by a transition of s 2 s 2 s 2 60 / 336

  37. Simulation preorder for a single TS bseqor5.1-30 Let T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) be a transition system. The simulation preorder � T � T � T is the coarsest relation on S S S such that for all states s 1 s 1 s 1 , s 2 ∈ S s 2 ∈ S s 2 ∈ S with s 1 � T s 1 � T s 1 � T s 2 s 2 : s 2 L ( s 1 ) = L ( s 2 ) (1) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) (2) each transition of s 1 s 1 s 1 can be mimicked by a transition of s 2 s 2 s 2 � T � T s 1 s 1 s 1 � T � T s 2 s 2 s 2 s 1 s 1 s 1 � T � T s 2 s 2 s 2 can be          � � � � � � � � � completed to s ′ s ′ s ′ s ′ s ′ s ′ s ′ s ′ s ′ � T � T � T 1 1 2 1 1 1 1 2 2 61 / 336

  38. Simulation preorder for a single TS bseqor5.1-30 Let T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) T = ( S , Act , → , . . . ) be a transition system. The simulation preorder � T � T � T is the coarsest relation on S S such that for all states s 1 S s 1 s 1 , s 2 ∈ S s 2 ∈ S s 2 ∈ S with s 1 � T s 1 � T s 1 � T s 2 : s 2 s 2 L ( s 1 ) = L ( s 2 ) (1) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) (2) each transition of s 1 s 1 s 1 can be mimicked by a transition of s 2 s 2 s 2 � T � T � T is a preorder, i.e., transitive and reflexive. 62 / 336

  39. Simulation for a TS bseqor5.1-10a Let T T T be a transition system with state space S S S . A simulation for T T T is a binary relation R ⊆ S × S R ⊆ S × S R ⊆ S × S s.t. 63 / 336

  40. Simulation for a TS bseqor5.1-10a Let T T T be a transition system with state space S S S . A simulation for T T T is a binary relation R ⊆ S × S R ⊆ S × S s.t. R ⊆ S × S (1) if ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R then L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) (2) . . . . . . . . . 64 / 336

  41. Simulation for a TS bseqor5.1-10a Let T T T be a transition system with state space S S S . A simulation for T T T is a binary relation R ⊆ S × S R ⊆ S × S R ⊆ S × S s.t. (1) if ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R then L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) ( s 1 , s 2 ) ∈ R (2) for all ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R : ∀ s ′ ∀ s ′ ∀ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 2 ∈ Post ( s 2 ) s.t. ( s ′ ( s ′ ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ 2 ∈ Post ( s 2 ) 2 ∈ Post ( s 2 ) 2 ) ∈ R 2 ) ∈ R 2 ) ∈ R 65 / 336

  42. Simulation for a TS bseqor5.1-10a Let T T T be a transition system with state space S S S . A simulation for T T T is a binary relation R ⊆ S × S R ⊆ S × S R ⊆ S × S s.t. (1) if ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R then L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) ( s 1 , s 2 ) ∈ R (2) for all ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R : ∀ s ′ ∀ s ′ ∀ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 2 ∈ Post ( s 2 ) s.t. ( s ′ ( s ′ ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ 2 ∈ Post ( s 2 ) 2 ∈ Post ( s 2 ) 2 ) ∈ R 2 ) ∈ R 2 ) ∈ R – R R – s 2 R – R R R – s 2 s 1 s 1 s 1 s 2 s 2 s 1 s 1 s 1 s 2 s 2 can be          � � � � � � � � � completed to s ′ s ′ s ′ s ′ s ′ s ′ R – s ′ s ′ s ′ – R R 1 1 1 1 1 1 2 2 2 66 / 336

  43. � T Simulation preorder � T � T bseqor5.1-10a Let T T T be a transition system with state space S S S . A simulation for T T T is a binary relation R ⊆ S × S R ⊆ S × S R ⊆ S × S s.t. (1) if ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R then L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) L ( s 1 ) = L ( s 2 ) ( s 1 , s 2 ) ∈ R (2) for all ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R : ∀ s ′ ∀ s ′ ∀ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 1 ∈ Post ( s 1 ) ∃ s ′ 2 ∈ Post ( s 2 ) s.t. ( s ′ ( s ′ ( s ′ 1 , s ′ 1 , s ′ 1 , s ′ 2 ∈ Post ( s 2 ) 2 ∈ Post ( s 2 ) 2 ) ∈ R 2 ) ∈ R 2 ) ∈ R � T simulation preorder � T � T : s 1 � T s 2 R T s 1 � T s 2 s 1 � T s 2 iff there exists a simulation R R for T T ( s 1 , s 2 ) ∈ R s.t. ( s 1 , s 2 ) ∈ R ( s 1 , s 2 ) ∈ R 67 / 336

  44. � T Path fragment lifting for � T � T bseqor5.1-23 � T � T � T s 1 s 1 s 1 s 2 s 2 s 2    � � � s 1 , 1 s 1 , 1 s 1 , 1    � � � s 1 , 2 s 1 , 2 s 1 , 2    � � � s 1 , 3 s 1 , 3 s 1 , 3    � � � . . . . . . . . .    � � � s 1 , n s 1 , n s 1 , n 68 / 336

  45. � T Path fragment lifting for � T � T bseqor5.1-23 � T � T � T s 1 s 1 s 1 s 2 s 2 s 2    � � � s 1 , 1 s 1 , 1 s 1 , 1    � � � s 1 , 2 s 1 , 2 s 1 , 2    can be completed to � � � s 1 , 3 s 1 , 3 s 1 , 3    � � � . . . . . . . . .    � � � s 1 , n s 1 , n s 1 , n 69 / 336

  46. � T Path fragment lifting for � T � T bseqor5.1-23 � T � T � T s 1 s 1 s 1 s 2 s 2 s 2 s 1 s 1 s 1 � T � T � T s 2 s 2 s 2          � � � � � � � � � s 1 , 1 � T s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 � T � T s 2 , 1 s 2 , 1 s 2 , 1       � � � � � � s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2       can be completed to � � � � � � s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3       � � � � � � . . . . . . . . . . . . . . . . . .       � � � � � � s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n 70 / 336

  47. � T Path fragment lifting for � T � T bseqor5.1-23 � T � T � T s 1 s 1 s 1 s 2 s 2 s 2 s 1 s 1 s 1 � T � T � T s 2 s 2 s 2          � � � � � � � � � s 1 , 1 � T s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 � T � T s 2 , 1 s 2 , 1 s 2 , 1          � � � � � � � � � s 1 , 2 � T s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 � T � T s 2 , 2 s 2 , 2 s 2 , 2       can be completed to � � � � � � s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3       � � � � � � . . . . . . . . . . . . . . . . . .       � � � � � � s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n s 1 , n 71 / 336

  48. � T Path fragment lifting for � T � T bseqor5.1-23 � T � T � T s 1 s 1 s 1 s 2 s 2 s 2 s 1 s 1 s 1 � T � T � T s 2 s 2 s 2          � � � � � � � � � s 1 , 1 � T s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 s 1 , 1 � T � T s 2 , 1 s 2 , 1 s 2 , 1          � � � � � � � � � s 1 , 2 � T s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 s 1 , 2 � T � T s 2 , 2 s 2 , 2 s 2 , 2          can be completed to � � � � � � � � � s 1 , 3 � T s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 s 1 , 3 � T � T s 2 , 3 s 2 , 3 s 2 , 3          � � � � � � � � � . . . . . . . . . . . . . . . . . . . . . . . . . . .          � � � � � � � � � s 1 , n s 1 , n s 1 , n � T � T � T s 1 , n s 1 , n s 1 , n s 2 , n s 2 , n s 2 , n 72 / 336

  49. � T Example: simulation preorder � T � T bseqor5.1-33 s 1 s 1 s 1 s 2 s 2 s 2 { a } { a } { a } { a } { a } { a } s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 ∅ ∅ ∅ ∅ ∅ ∅ s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 73 / 336

  50. � T Example: simulation preorder � T � T bseqor5.1-33 s 1 s 1 s 1 s 2 s 2 s 2 { a } { a } { a } { a } { a } { a } s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 ∅ ∅ ∅ ∅ ∅ ∅ s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 as ( s 1 , s 2 ) , ( s ′ 1 , s ′ 2 ) , ( s ′ 1 , s ′ � � � ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 2 ) , ( s ′ 2 ) , ( s ′ 1 , s ′ 1 , s ′ � � � 1 ) T 1 ) 1 ) is a simulation for T T 74 / 336

  51. � T Example: simulation preorder � T � T bseqor5.1-33 T s 1 T s 1 T s 1 T s 2 T s 2 T s 2 s 1 s 1 s 1 s 2 s 2 s 2 { a } { a } { a } { a } { a } { a } � � � s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 ∅ ∅ ∅ ∅ ∅ ∅ s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 as ( s 1 , s 2 ) , ( s ′ 1 , s ′ 2 ) , ( s ′ 1 , s ′ � � � ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 2 ) , ( s ′ 2 ) , ( s ′ 1 , s ′ 1 , s ′ � � � 1 ) T 1 ) 1 ) is a simulation for T T 75 / 336

  52. � T Example: simulation preorder � T � T bseqor5.1-33 T s 1 T s 1 T s 1 T s 2 T s 2 T s 2 s 1 s 1 s 1 s 2 s 2 s 2 { a } { a } { a } { a } { a } { a } � � � s ′ s ′ s ′ s ′ s ′ s ′ 1 1 1 2 2 2 ∅ ∅ ∅ ∅ ∅ ∅ s 1 � T s 2 s 1 � T s 2 s 1 � T s 2 as ( s 1 , s 2 ) , ( s ′ 1 , s ′ 2 ) , ( s ′ 1 , s ′ � � � ( s 1 , s 2 ) , ( s ′ ( s 1 , s 2 ) , ( s ′ 1 , s ′ 1 , s ′ 2 ) , ( s ′ 2 ) , ( s ′ 1 , s ′ 1 , s ′ � � � 1 ) T 1 ) 1 ) is a simulation for T T s 1 → s ′ s 1 → s ′ s 1 → s ′ 1 → s ′ 1 → s ′ 1 → s ′ 1 → s ′ 1 → s ′ 1 → s ′ 1 → ... 1 → ... 1 → ... is simulated by s 2 → s ′ s 2 → s ′ s 2 → s ′ 2 → s ′ 2 → s ′ 2 → s ′ 1 → s ′ 1 → s ′ 1 → s ′ 1 → ... 1 → ... 1 → ... 76 / 336

  53. Abstraction and simulation grm5.5-6 77 / 336

  54. Abstraction and simulation grm5.5-6 transition system T T T with state space S S S 78 / 336

  55. Abstraction and simulation grm5.5-6 transition system T T T “small” abstract S ′ state space S ′ S ′ with state space S S S 79 / 336

  56. Abstraction and simulation grm5.5-6 abstraction function f f f s s s f ( s ) f ( s ) f ( s ) transition system T T T abstract transition system S ′ T f with state space S ′ S ′ T f with state space S S S T f 80 / 336

  57. Abstraction and simulation grm5.5-6 abstraction function f f f s s s f ( s ) f ( s ) f ( s ) transition system T T T abstract transition system S ′ T f with state space S ′ S ′ T f with state space S S S T f lifting of transitions: → s ′ → s ′ → s ′ s − s − s − → f ( s ′ ) → f ( s ′ ) → f ( s ′ ) f ( s ) − f ( s ) − f ( s ) − 81 / 336

  58. Abstraction and simulation grm5.5-6 abstraction function f f f s s s f ( s ) f ( s ) f ( s ) s ′ s ′ s ′ f ( s ′ ) f ( s ′ ) f ( s ′ ) transition system T T T abstract transition system S ′ T f with state space S ′ S ′ T f with state space S S S T f lifting of transitions: → s ′ → s ′ → s ′ s − s − s − → f ( s ′ ) → f ( s ′ ) → f ( s ′ ) f ( s ) − f ( s ) − f ( s ) − 82 / 336

  59. Abstraction and simulation grm5.5-6a given: transition system T = ( S , Act , − T = ( S , Act , − T = ( S , Act , − → , S 0 , AP , L ) → , S 0 , AP , L ) → , S 0 , AP , L ) S ′ and abstraction function f : S → S ′ S ′ f : S → S ′ set S ′ f : S → S ′ L ( s ) = L ( t ) f ( s ) = f ( t ) s , t ∈ S s.t. L ( s ) = L ( t ) L ( s ) = L ( t ) if f ( s ) = f ( t ) f ( s ) = f ( t ) for all s , t ∈ S s , t ∈ S 83 / 336

  60. Abstraction and simulation grm5.5-6a given: transition system T = ( S , Act , − T = ( S , Act , − T = ( S , Act , − → , S 0 , AP , L ) → , S 0 , AP , L ) → , S 0 , AP , L ) S ′ and abstraction function f : S → S ′ S ′ f : S → S ′ set S ′ f : S → S ′ L ( s ) = L ( t ) f ( s ) = f ( t ) s , t ∈ S s.t. L ( s ) = L ( t ) L ( s ) = L ( t ) if f ( s ) = f ( t ) f ( s ) = f ( t ) for all s , t ∈ S s , t ∈ S goal: define abstract transition system T f T f T f S ′ s.t. T � T f S ′ with state space S ′ T � T f T � T f 84 / 336

  61. Abstraction and simulation grm5.5-6a f : S → S ′ s.t. abstraction function f : S → S ′ f : S → S ′ L ( s ) = L ( t ) f ( s ) = f ( t ) s , t ∈ S L ( s ) = L ( t ) L ( s ) = L ( t ) if f ( s ) = f ( t ) f ( s ) = f ( t ) for all s , t ∈ S s , t ∈ S transition system T = ( S , Act , − → , S 0 , AP , L ) T = ( S , Act , − T = ( S , Act , − → , S 0 , AP , L ) → , S 0 , AP , L ) � � � � � � � � � abstract transition system T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − → f , S ′ 0 , AP , L ′ ) → f , S ′ → f , S ′ 0 , AP , L ′ ) 0 , AP , L ′ ) 85 / 336

  62. Abstraction and simulation grm5.5-6a f : S → S ′ s.t. abstraction function f : S → S ′ f : S → S ′ L ( s ) = L ( t ) f ( s ) = f ( t ) s , t ∈ S L ( s ) = L ( t ) L ( s ) = L ( t ) if f ( s ) = f ( t ) f ( s ) = f ( t ) for all s , t ∈ S s , t ∈ S transition system T = ( S , Act , − → , S 0 , AP , L ) T = ( S , Act , − T = ( S , Act , − → , S 0 , AP , L ) → , S 0 , AP , L ) � � � � � � � � � abstract transition system T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − → f , S ′ 0 , AP , L ′ ) → f , S ′ → f , S ′ 0 , AP , L ′ ) 0 , AP , L ′ ) S ′ L ′ ( f ( s )) = L ( s ) where S ′ S ′ � � � � � � and L ′ ( f ( s )) = L ( s ) L ′ ( f ( s )) = L ( s ) 0 = f ( s 0 ) : s 0 ∈ S 0 0 = 0 = f ( s 0 ) : s 0 ∈ S 0 f ( s 0 ) : s 0 ∈ S 0 → s ′ → s ′ → s ′ s − s − s − → f f ( s ′ ) → f f ( s ′ ) → f f ( s ′ ) f ( s ) − f ( s ) − f ( s ) − 86 / 336

  63. Abstraction and simulation grm5.5-6a f : S → S ′ s.t. abstraction function f : S → S ′ f : S → S ′ L ( s ) = L ( t ) f ( s ) = f ( t ) s , t ∈ S L ( s ) = L ( t ) L ( s ) = L ( t ) if f ( s ) = f ( t ) f ( s ) = f ( t ) for all s , t ∈ S s , t ∈ S transition system T = ( S , Act , − → , S 0 , AP , L ) T = ( S , Act , − T = ( S , Act , − → , S 0 , AP , L ) → , S 0 , AP , L ) � � � � � � � � � abstract transition system T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − → f , S ′ 0 , AP , L ′ ) → f , S ′ → f , S ′ 0 , AP , L ′ ) 0 , AP , L ′ ) Then T � T f T � T f T � T f 87 / 336

  64. Abstraction and simulation grm5.5-6a f : S → S ′ s.t. abstraction function f : S → S ′ f : S → S ′ L ( s ) = L ( t ) f ( s ) = f ( t ) s , t ∈ S L ( s ) = L ( t ) L ( s ) = L ( t ) if f ( s ) = f ( t ) f ( s ) = f ( t ) for all s , t ∈ S s , t ∈ S transition system T = ( S , Act , − → , S 0 , AP , L ) T = ( S , Act , − T = ( S , Act , − → , S 0 , AP , L ) → , S 0 , AP , L ) � � � � � � � � � abstract transition system T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − T f = ( S ′ , Act ′ , − → f , S ′ 0 , AP , L ′ ) → f , S ′ → f , S ′ 0 , AP , L ′ ) 0 , AP , L ′ ) � � � � � � R = R = R = � s , f ( s ) � : s ∈ S � s , f ( s ) � : s ∈ S � s , f ( s ) � : s ∈ S is a Then T � T f T � T f T � T f ← ← ← − − − simulation for ( T , T f ) ( T , T f ) ( T , T f ) 88 / 336

  65. Data abstraction grm5.5-7 WHILE x > 0 x > 0 x > 0 DO x := x − 1; x := x − 1; x := x − 1; y := y +1 y := y +1 y := y +1 OD IF even ( y ) even ( y ) even ( y ) THEN return “1 1 1” ELSE return “0 0 0” FI x ∈ N x ∈ N x ∈ N y ∈ N y ∈ N y ∈ N 89 / 336

  66. Data abstraction grm5.5-7 WHILE x > 0 x > 0 x > 0 DO x := x − 1; x := x − 1; x := x − 1; y := y +1 y := y +1 y := y +1 data OD abstr. IF even ( y ) even ( y ) even ( y ) − → − − → → THEN return “1 1 1” ELSE return “0 0 0” FI x ∈ N x ∈ N x ∈ N − − − → → → x x ∈ ∈ { gzero , zero } ∈ { gzero , zero } { gzero , zero } x y ∈ N y ∈ N y ∈ N − − − → → → y y ∈ ∈ ∈ { even , odd } { even , odd } { even , odd } y 90 / 336

  67. Data abstraction grm5.5-7 WHILE x = gzero x = gzero DO x = gzero x := gzero x := gzero x := gzero or x := zero x := zero x := zero WHILE x > 0 x > 0 DO x > 0 x := x − 1; x := x − 1; x := x − 1; IF y = even y = even y = even THEN y := odd y := odd y := odd y := y +1 y := y +1 y := y +1 data y := even ELSE y := even y := even OD abstr. FI IF even ( y ) even ( y ) even ( y ) − → − − → → OD THEN return “1 1 1” IF y = even y = even y = even ELSE return “0 0 0” THEN return “1 1 1” FI 0 ELSE return “0 0” FI x ∈ N x ∈ N x ∈ N − − − → → → x x ∈ ∈ { gzero , zero } ∈ { gzero , zero } { gzero , zero } x y ∈ N y ∈ N y ∈ N − − − → → → y y ∈ ∈ ∈ { even , odd } { even , odd } { even , odd } y 91 / 336

  68. Data abstraction grm5.5-7 WHILE x = gzero x = gzero x = gzero DO x := gzero x := gzero x := gzero or x := zero x := zero x := zero WHILE x > 0 x > 0 DO x > 0 x := x − 1; x := x − 1; x := x − 1; IF y = even y = even y = even THEN y := odd y := odd y := odd y := y +1 y := y +1 y := y +1 data y := even ELSE y := even y := even OD abstr. FI IF even ( y ) even ( y ) even ( y ) − → − − → → OD THEN return “1 1 1” IF y = even y = even y = even ELSE return “0 0 0” THEN return “1 1” 1 FI 0 ELSE return “0 0” FI concrete operation abstract operation � � � 92 / 336

  69. Data abstraction grm5.5-7 WHILE x = gzero x = gzero DO x = gzero x := gzero x := gzero x := gzero or x := zero x := zero x := zero WHILE x > 0 x > 0 x > 0 DO x := x − 1; x := x − 1; x := x − 1; IF y = even y = even y = even THEN y := odd y := odd y := odd y := y +1 y := y +1 y := y +1 data y := even ELSE y := even y := even OD abstr. FI IF even ( y ) even ( y ) even ( y ) − → − − → → OD THEN return “1 1 1” IF y = even y = even y = even ELSE return “0 0 0” THEN return “1 1” 1 FI 0 ELSE return “0 0” FI concrete operation abstract operation, e.g., � � � x := x − 1 x := x − 1 x := x − 1 gzero �→ gzero or zero gzero �→ gzero or zero gzero �→ gzero or zero 93 / 336

  70. Abstraction and simulation grm5.5-8 abstract TS simulates the concrete one 94 / 336

  71. WHILE x = gzero x = gzero DO x = gzero x > 0 WHILE x > 0 x > 0 DO x := gzero x := gzero x := gzero or x := zero x := zero x := zero x := x − 1 x := x − 1 x := x − 1 IF y = even y = even y = even y := y +1 y := y +1 y := y +1 THEN y := odd y := odd y := odd OD ELSE y := even y := even y := even FI OD even ( y ) IF even ( y ) even ( y ) IF y = even y = even y = even THEN return 1 1 1 1 THEN return 1 1 ELSE return 0 0 0 0 ELSE return 0 0 FI 95 / 336

  72. ℓ 0 WHILE x = gzero x = gzero DO x = gzero ℓ 0 ℓ 0 x > 0 ℓ 0 ℓ 0 ℓ 0 WHILE x > 0 x > 0 DO x := gzero x := gzero or x := zero x := gzero x := zero x := zero ℓ 1 ℓ 1 ℓ 1 x := x − 1 ℓ 1 ℓ 1 ℓ 1 x := x − 1 x := x − 1 ℓ 2 IF y = even y = even y = even ℓ 2 ℓ 2 y := y +1 y := y +1 y := y +1 ℓ 2 ℓ 2 ℓ 2 THEN y := odd y := odd y := odd OD ELSE y := even y := even y := even FI OD even ( y ) ℓ 3 ℓ 3 ℓ 3 IF even ( y ) even ( y ) ℓ 3 IF y = even ℓ 3 y = even y = even ℓ 3 THEN return 1 1 1 ℓ 4 ℓ 4 ℓ 4 1 ℓ 4 ℓ 4 ℓ 4 THEN return 1 1 ELSE return 0 0 0 ℓ 5 ℓ 5 ℓ 5 0 ℓ 5 ℓ 5 ℓ 5 ELSE return 0 0 FI ... ... ℓ 0 ℓ 0 x =2 x =2 x =2 y =0 y =0 y =0 ℓ 0 gzero ℓ 0 gzero gzero even even even ℓ 0 ℓ 0 x =2 y =0 ℓ 1 ℓ 1 ℓ 1 x =2 x =2 y =0 y =0 ℓ 1 ℓ 1 gzero ℓ 1 gzero gzero even even even ℓ 2 x =1 x =1 x =1 y =0 y =0 y =0 ℓ 2 ℓ 2 ℓ 2 ℓ 2 gzero ℓ 2 gzero even gzero even even ℓ 2 ℓ 2 ℓ 2 zero zero zero even even even ℓ 0 ℓ 0 x =1 x =1 x =1 y =1 y =1 y =1 ℓ 0 gzero odd ℓ 0 ℓ 0 ℓ 0 gzero gzero odd odd ℓ 0 zero ℓ 0 ℓ 0 zero odd zero odd odd ... x =1 y =1 ℓ 1 ℓ 1 ℓ 1 x =1 x =1 y =1 y =1 ℓ 1 ℓ 1 gzero ℓ 1 gzero odd gzero odd odd ℓ 3 ℓ 3 ...... ℓ 3 96 / 336

  73. ℓ 0 WHILE x = gzero x = gzero x = gzero DO ℓ 0 ℓ 0 x > 0 ℓ 0 ℓ 0 ℓ 0 WHILE x > 0 x > 0 DO x := gzero x := gzero or x := zero x := gzero x := zero x := zero ℓ 1 ℓ 1 ℓ 1 x := x − 1 ℓ 1 ℓ 1 ℓ 1 x := x − 1 x := x − 1 ℓ 2 IF y = even y = even y = even ℓ 2 ℓ 2 y := y +1 y := y +1 y := y +1 ℓ 2 ℓ 2 ℓ 2 THEN y := odd y := odd y := odd OD ELSE y := even y := even y := even FI OD even ( y ) ℓ 3 ℓ 3 ℓ 3 IF even ( y ) even ( y ) ℓ 3 IF y = even ℓ 3 y = even y = even ℓ 3 THEN return 1 1 1 ℓ 4 ℓ 4 ℓ 4 1 ℓ 4 ℓ 4 ℓ 4 THEN return 1 1 ELSE return 0 0 0 ℓ 5 ℓ 5 ℓ 5 0 ℓ 5 ℓ 5 ℓ 5 ELSE return 0 0 FI ... ... ℓ 0 ℓ 0 x =2 x =2 x =2 y =0 y =0 y =0 ℓ 0 ℓ 0 gzero gzero gzero even even even ℓ 0 ℓ 0 x =2 y =0 � ℓ 1 ℓ 1 x =2 ℓ 1 x =2 y =0 y =0 � � ℓ 1 ℓ 1 gzero ℓ 1 gzero even gzero even even ℓ 2 x =1 x =1 x =1 y =0 y =0 y =0 ℓ 2 ℓ 2 ℓ 2 ℓ 2 gzero ℓ 2 gzero even gzero even even ℓ 2 ℓ 2 ℓ 2 zero zero zero even even even ℓ 0 ℓ 0 x =1 x =1 x =1 y =1 y =1 y =1 ℓ 0 gzero odd ℓ 0 ℓ 0 ℓ 0 gzero gzero odd odd ℓ 0 zero ℓ 0 ℓ 0 zero odd zero odd odd ... x =1 y =1 ℓ 1 x =1 ℓ 1 ℓ 1 x =1 y =1 y =1 ℓ 1 ℓ 1 gzero ℓ 1 gzero odd gzero odd odd ℓ 3 ℓ 3 ...... ℓ 3 97 / 336

  74. Simulation preorder vs. and trace inclusion bseqor5.1-25 98 / 336

  75. Simulation preorder vs. and trace inclusion bseqor5.1-25 T 1 � T 2 T 1 � T 2 T 1 � T 2 = = = ⇒ ⇒ ⇒ Tracesfin ( T 1 ) ⊆ Tracesfin ( T 2 ) Tracesfin ( T 1 ) ⊆ Tracesfin ( T 2 ) Tracesfin ( T 1 ) ⊆ Tracesfin ( T 2 ) 99 / 336

  76. Simulation preorder vs. and trace inclusion bseqor5.1-25 T 1 � T 2 T 1 � T 2 T 1 � T 2 = = = ⇒ ⇒ ⇒ Tracesfin ( T 1 ) ⊆ Tracesfin ( T 2 ) Tracesfin ( T 1 ) ⊆ Tracesfin ( T 2 ) Tracesfin ( T 1 ) ⊆ Tracesfin ( T 2 ) reason: path fragment lifting for � � � 100 / 336

Recommend

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 SF park overview OVERVIEW PRESENTATION / 2

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 SF park overview OVERVIEW PRESENTATION / 2

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 SF park overview OVERVIEW PRESENTATION / 2 Coin and card meters OVERVIEW PRESENTATION / 3 Making garages work better OVERVIEW PRESENTATION / 4 User interface and customer experience OVERVIEW

1.3k views • 24 slides
OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 Acknowledgements OVERVIEW PRESENTATION / 2 SF

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 Acknowledgements OVERVIEW PRESENTATION / 2 SF

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 Acknowledgements OVERVIEW PRESENTATION / 2 SF park overview OVERVIEW PRESENTATION / 3 Coin and card meters OVERVIEW PRESENTATION / 4 Improving the customer experience at garages OVERVIEW

567 views • 25 slides
GSM System Overview GSM System Overview GSM System Overview GSM System Overview Phone Lin

GSM System Overview GSM System Overview GSM System Overview GSM System Overview Phone Lin

National Taiwan University Department of Computer Science and Information Engineering GSM System Overview GSM System Overview GSM System Overview GSM System Overview Phone Lin Phone Lin Ph.D. Ph.D. Email: plin@csie.ntu.edu.tw Email:

686 views • 41 slides
i c r o g u a r d s OVERVIEW The m i c r o g u a r d BIOFUELS s OVERVIEW

i c r o g u a r d s OVERVIEW The m i c r o g u a r d BIOFUELS s OVERVIEW

LGE UNICAMP The m i c r o g u a r d s OVERVIEW The m i c r o g u a r d BIOFUELS s OVERVIEW The m i c r o g u a r d ETHANOL s OVERVIEW The m i c Ideal conditions r o g Costs-benefits u a r d

1.39k views • 59 slides
Football First Aid: Football First Aid: An Overview An Overview Steven Richmond 95#

Football First Aid: Football First Aid: An Overview An Overview Steven Richmond 95#

Football First Aid: Football First Aid: An Overview An Overview Steven Richmond 95# Commissioner --BRYC Firefighter II, EMT-B, HTR & HZMT Tech City of Alexandria Fire and EMS Overview Overview Hyperthermia (Heat Related Injuries)

2.61k views • 31 slides
1 Corporate Overview Transaction 1 Corporate Overview Overview of Libre Group Structure

1 Corporate Overview Transaction 1 Corporate Overview Overview of Libre Group Structure

1 Corporate Overview Transaction 1 Corporate Overview Overview of Libre Group Structure Industry Business Model Hotels Overview Disclaimer This presentation does not constitute, or form any part of any offer for sale or subscription

808 views • 32 slides
HabaPalooza T EA M HYPERION COM M 362 A PRIL 29 T H 201 2 Overview Team Overview

HabaPalooza T EA M HYPERION COM M 362 A PRIL 29 T H 201 2 Overview Team Overview

HabaPalooza T EA M HYPERION COM M 362 A PRIL 29 T H 201 2 Overview Team Overview Project Overview Analysis Active Experimentation Question & Answer Team Overview Our Logo Our Tagline Our Mission Statement

1.09k views • 15 slides
Outbound Logistics Overview 1 Outbound Logistics Overview Outbound Overview Four

Outbound Logistics Overview 1 Outbound Logistics Overview Outbound Overview Four

Outbound Logistics Overview 1 Outbound Logistics Overview Outbound Overview Four Dedicated Outbound Carriers MPF Meijer Private Fleet 111 stores serviced in Michigan, northern Ohio, and Indiana. NTB Nationwide Truck

865 views • 15 slides
HabaPalooza T E A M H Y P E R I O N C O M M 3 6 2 A P R I L 2 9 TH 2 0 1 2 Overview Team

HabaPalooza T E A M H Y P E R I O N C O M M 3 6 2 A P R I L 2 9 TH 2 0 1 2 Overview Team

HabaPalooza T E A M H Y P E R I O N C O M M 3 6 2 A P R I L 2 9 TH 2 0 1 2 Overview Team Overview Project Overview Analysis Active Experimentation Question & Answer Team Overview Our Logo Our Tagline Our

934 views • 15 slides
An overview to Maltese An overview to Maltese An overview to Maltese An overview to Maltese

An overview to Maltese An overview to Maltese An overview to Maltese An overview to Maltese

An overview to Maltese An overview to Maltese An overview to Maltese An overview to Maltese Agriculture Agriculture Agriculture characteristics S mall holdings L imited resources and L and Fragmentation. 2 Maltese agriculture in figures

1.04k views • 15 slides
Library Conversations: Talking with Users University of Rochester Overview Overview Used

Library Conversations: Talking with Users University of Rochester Overview Overview Used

Rebecca Bichel December 7, 2007 Library Conversations: Talking with Users University of Rochester Overview Overview Used anthropological & ethnographic Overview Overview methods Guiding research question: What do students

941 views • 44 slides
.NET Overview Objectives Introduce .NET overview languages libraries

.NET Overview Objectives Introduce .NET overview languages libraries

.NET Overview Objectives Introduce .NET overview languages libraries development and execution model Examine simple C# program 2 .NET Overview .NET is a sweeping marketing term for a family of products

388 views • 23 slides
1 Overview Overview Regional demographic overview Regional demographic overview Workforce

1 Overview Overview Regional demographic overview Regional demographic overview Workforce

1 Overview Overview Regional demographic overview Regional demographic overview Workforce supply analysis Regional demand for workers i l d d f k Balancing supply and demand Reviewing key cluster trends Key challenges

533 views • 39 slides
EZ Overview EZ Overview The Rapid Development Platform p p Muse EZ is a

EZ Overview EZ Overview The Rapid Development Platform p p Muse EZ is a

EZ Overview EZ Overview The Rapid Development Platform p p Muse EZ is a registered trademark of Future Designs, Inc . 1 Overview What is EZ? EZ RTOS Engine EZ Four Tier Hierarchy Reusable HAL and Device

600 views • 32 slides
Overview of the Reconstruction Overview of the Reconstruction Overview of Some Legal Issues

Overview of the Reconstruction Overview of the Reconstruction Overview of Some Legal Issues

Overview of the Reconstruction Overview of the Reconstruction Overview of Some Legal Issues Related to Puerto Ricos Debt Restructuring by Sergio M. Marxuach Center for a New Economy February 25, 2020 CNE Puerto Ricos Think Tank

347 views • 13 slides
Overview & Development Table of Contents 1 Simon Owen, CEO Business Overview

Overview & Development Table of Contents 1 Simon Owen, CEO Business Overview

2018 Investor Tour INGENIA COMMUNITIES GROUP Overview & Development Table of Contents 1 Simon Owen, CEO Business Overview Guidance Update Development Overview Latitude One Overview 2 Craig Shepherd, Project

247 views • 22 slides
CSE 291E / EE260C Spring 2002 Overview Overview of Tensilica Overview of XTensa

CSE 291E / EE260C Spring 2002 Overview Overview of Tensilica Overview of XTensa

Configurable Cores: XTensa CSE 291E / EE260C Spring 2002 Overview Overview of Tensilica Overview of XTensa Design Flow Base ISA Optional Components TIE Challenges for Customized Processors What are the

612 views • 25 slides
CSE143 Au04 00-1 Content Overview (1) Content Overview (2) Programming language and libraries

CSE143 Au04 00-1 Content Overview (1) Content Overview (2) Programming language and libraries

Outline for Today Course Overview Goals Administrative details CSE 143 Workload and grading Computer Programming II Resources Background Welcome! Course Overview and Administrivia This information is largely included in

293 views • 5 slides
do: New to BOS? 1. Why BOS? Overview and practical tips for 2. Overview of BOS set-up

do: New to BOS? 1. Why BOS? Overview and practical tips for 2. Overview of BOS set-up

28/02/2017 Overview do: New to BOS? 1. Why BOS? Overview and practical tips for 2. Overview of BOS set-up conducting your survey 3. Creating a questionnaire 4. Distributing the questionnaire - options Joana Lopes 5. Launching the survey

252 views • 3 slides
Covid-19 and Business Interruption: Maximizing Insurance Coverage and Federal Grants Counsel

Covid-19 and Business Interruption: Maximizing Insurance Coverage and Federal Grants Counsel

Covid-19 and Business Interruption: Maximizing Insurance Coverage and Federal Grants Counsel wmclaw.com Overview Overview Overview Overview Catastrophic Losses Overview Overview Overview Overview 95% of Americans Subject to

434 views • 30 slides
Introduction and Process Overview Agenda Introduction Process Overview and Logistics

Introduction and Process Overview Agenda Introduction Process Overview and Logistics

Introduction and Process Overview Agenda Introduction Process Overview and Logistics Capital Plan Overview and Highlights Operating Plan General Fund Overview Department Manager Area Review Existing service level

514 views • 27 slides
COMPANY PRESENTATION MAY 2017 AGENDA 1. Company overview 2. Market overview 3. Operations in

COMPANY PRESENTATION MAY 2017 AGENDA 1. Company overview 2. Market overview 3. Operations in

BofAML EMERGING MARKETS CORPORATE CREDIT CONFERENCE COMPANY PRESENTATION MAY 2017 AGENDA 1. Company overview 2. Market overview 3. Operations in Chile & Peru 4. Growth opportunities 2 1. COMPANY OVERVIEW 3 Company overview Leading

701 views • 26 slides
Agenda 1. Introduction and overview of TPA changes 2. Terminology changes 3. Overview of changes

Agenda 1. Introduction and overview of TPA changes 2. Terminology changes 3. Overview of changes

Ticket Program Agreement (TPA) Call July 20, 2017 3:00 5:00 pm ET Participant Dial-in: (888) 394-8218 | Conference ID: 827-9297 Agenda 1. Introduction and overview of TPA changes 2. Terminology changes 3. Overview of changes to: Part I:

336 views • 20 slides
Overview n Perception for robotics Page 1 Overview n Perception for robotics Overview

Overview n Perception for robotics Page 1 Overview n Perception for robotics Overview

Perception for Robotics: Instance Detection Pieter Abbeel UC Berkeley EECS Overview n Perception for robotics Page 1 Overview n Perception for robotics Overview n Perception for robotics n Accurately localizing (specific)

532 views • 22 slides

More recommend