proving transformation functions
play

Proving Transformation Functions Abdessamad Imine, Pascal Molli, - PowerPoint PPT Presentation

Sep 05, 2022 •228 likes •711 views

Proving Transformation Functions Abdessamad Imine, Pascal Molli, Grald Oster, Michal Rusinowitch Project ECOO & CASSIS LORIA INRIA Lorraine Context RT Groupware Algorithm requires properties on Transformation Functions:

  1. Proving Transformation Functions Abdessamad Imine, Pascal Molli, Gérald Oster, Michaël Rusinowitch Project ECOO & CASSIS LORIA – INRIA Lorraine

  2. Context � RT Groupware Algorithm requires properties on Transformation Functions: ≡ op T ( op , op ) o 1 2 1 C1: op T ( op , op ) o 2 1 2 = T ( op op T ( op , op )) o 3 , 1 2 1 C2: T ( op op T ( op , op )) o 3 , 2 1 2

  3. Problem � Proving C1 and C2 is not obvious � For a String Object (insert, delete): � For C2: 123 cases � For a (simple) XML object (6op) � For C2: 6*6*6 =216 base cases + all combination of preconditions… � How to develop SAFE transformation function for complex objects ??

  4. Approach : Automatic proof… � Use an Automatic Theorem Prover to prove C1, C2 on transformation functions… (SPIKE in our case) � Allow to handle more complex typed objects � Discover quickly erroneous executions…

  5. Our XML Object… � CN(int n, String tn) : int nn � DN(int n) : void � CA(int n, String a) � DA(int n String a) � CHA(int n, String a, String v);

  6. Example of use… (CRC Card) CN(1,"Class")->2 Root : 1 CA(2,"Description") CHA(2,"Description","Model in MVC") CN(2,"Responsibility")->3 Description: Class : 2 Model in MVC CA(3,"Description") CHA(3,"Description","Contain data to be displayed") Collaboration : 4 Responsability : 3 CN(2,"Collaborations")->4 CA(4,"Description") Description: Description: CHA(3,"Description","Controller, Views") Contain data to be displayed Controller, Views

  7. Example of SPIKE Feedback T(CHA(n1,a1,v1),CHA(n2,a2,v2)):- if n1=n2 ^ a1=a2 ^ v1=v2 return noop if n1=n2 ^ a1=a2 ^ v1<>v2 return CHA(n1,a1,max(v1,v2)) else return CHA(n1,a1,v1)

  8. C2 violated… � Problematic scenario: S1 S2 S3 CHA(n,a,v1) CHA(n,a,v2) CHA(n,a,v3) With max(v1,v2)=max(v2,v3)…

  10. Corrected transformation functions… T(CHA(n1,a1,v1),CHA(n2,a2,v2)):- if n1=n2 ^ a1=a2 return CHA(n1,a1,max(v1,v2)) else return CHA(n1,a1,v1) ok for C2…

  11. Another example… T(CA(n1,a1),DA(n2,a2)) :- return CA(n1,a1) T(CA(n1,a1),CHA(n2,a2,v2)) :- if n1=n2 ^ a1=a2 return noop else return CA(n1,a1) T(DA(n1,a1),CA(n2,a2)) :- if n1=n2 ^ a1=a2 return noop else return DA(n1,a1) T(DA(n1,a1),CHA(n2,a2,v2)) :- return DA(n1,a1) T(CHA(n1,a1,v1),CA(n2,a2)):- return CHA(n1,a1,v1) T(CHA(n1,a1,v1),DA(n2,a2)):- if n1=n2 ^ a1=a2 return noop else return CHA(n1,a1,v1)

  12. C2 violated ! S1 S2 S3 CA(n,a) CHA(n,a,v) DA(n,a) n and a are linked variables…

  14. Correcting transformation functions… New… Old… T(CA(n1,a1),DA(n2,a2)) : T(CA(n1,a1),DA(n2,a2)) :- if n1=n2 ^ a1=a2 return noop return CA(n1,a1) else return CA(n1,a1) T(DA(n1,a1),CA(n2,a2)) :- T(DA(n1,a1),CA(n2,a2)) :- return DA(n1,a1) if n1=n2 ^ a1=a2 return noop else return DA(n1,a1)

  15. Writing SPIKE specifications… � C1 based on equivalence � Requires to specify state, more difficult… � C2 based on syntactic equality � Only needs definition of operations !! � C2 very easy to prove, C1 requires more work…

  16. Proving C2... Our definition SPIKE Formalism… T(CN(n1,tn1),CN(n2,tn2)):- T(CN(n1,tn1),CN(n2,tn2))=CN(n1,tn1) return CN(n1,tn1) T(CN(n1,tn1),DN(n2)):- Childof(n1,n2)=true -> T(CN(n1,tn1),DN(n2)) = Nop if (n1 childof n2) return noop Childof(n1,n2)=false -> else return CN(n1,tn1) T(CN(n1,tn1),DN(n2)) = CN(n1,tn1)

  17. Proving C2… specification : convergence use : nats ; sorts: Op Tag Node Att SetAtt Val State; constructors : CN__: Node Tag -> Op; DN_: Node -> Op; CA__: Node Att -> Op; DA__: Node Att -> Op; CHA___: Node Att Val -> Op; Nop : -> Op; defined functions : Childof__: Node Node -> Bool;

  18. Proving C2… (end…) conjectures: %C2 T(T(i,k),T(j,k)) = T(T(i,j),T(k,j));

  19. Proving C1 � Requires to specify unordered Trees… � A little more technical… axioms: Eqn(n1,n2)=true => Del(Create(St,n1),n2)=Del(St,n2); Eqn(n1,n2)=false, Childof(n1,n2)=true => Del(Create(St,n1),n2)=Del(St,n2); Eqn(n1,n2)=false, Childof(n1,n2)=false => Del(Create(St,n1),n2)=Create(Del(St,n2),n1); …

  21. User User and project desktop names The switching mode part �

  22. XML Tree Reception Log of operations queue

  23. User : Pol User : Seb

  26. Then, when Pol wants to publish his card, he has to Commit his work. At that moment, the local operations are broadcasted to the other sites. Broadcast Commit

  27. Integration Update

  28. Same state Update

  29. Seb and Pol work in parallel in Multi-Synchronous mode.

  38. User Pol want to switch to synchronous mode

  39. Pol switch to synchronous mode

  40. Broadcast

  41. Seb switch to synchronous mode

  42. Integration

  43. Integration Broadcast

  44. Color Color Both workspaces Pol Seb are merged

  45. Synchronous Synchronous mode mode

  47. Conclusion – Perspectives… � Allow to develop safe transformation Functions… � For more complex typed object… � Find quickly bad scenario… � Writing specifications not very hard… � Plan to build an IDE for developping transformation functions…

Recommend

www.drupaleurope.org Digital Transformation + Enterprise TRACK SUPPORTED BY Successfully Proving

www.drupaleurope.org Digital Transformation + Enterprise TRACK SUPPORTED BY Successfully Proving

www.drupaleurope.org Digital Transformation + Enterprise TRACK SUPPORTED BY Successfully Proving Enterprise Drupal 8 George Steven George Steven Chief Architect (Drupal) @ Bayer curiouslygeorge Successfully Proving Enterprise Drupal 8 The

408 views • 14 slides
Formally Proving a Compiler Transformation Safe Joachim Breitner Haskell Symposium 2015 3 August

Formally Proving a Compiler Transformation Safe Joachim Breitner Haskell Symposium 2015 3 August

Formally Proving a Compiler Transformation Safe Joachim Breitner Haskell Symposium 2015 3 August 2015, Vancouver PROGRAMMING PARADIGMS GROUP 1 2015-09-03 Joachim Breitner - Formally Proving a Compiler Transformation Safe PROGRAMMING

777 views • 43 slides
Proving Churchs Thesis Nachum Dershowitz w/ Yuri Gurevich What is the thesis? Churchs

Proving Churchs Thesis Nachum Dershowitz w/ Yuri Gurevich What is the thesis? Churchs

Proving Churchs Thesis Nachum Dershowitz w/ Yuri Gurevich What is the thesis? Churchs Thesis (1936) Recursive functions capture effective computability Recursive Functions Partial functions on natural numbers Initial

1.69k views • 145 slides
Even and odd functions In this lesson we look at even and odd functions. A symmetry of a function

Even and odd functions In this lesson we look at even and odd functions. A symmetry of a function

Even and odd functions In this lesson we look at even and odd functions. A symmetry of a function is a transformation that leaves the graph unchanged. Consider the functions f ( x ) = x 2 and g ( x ) = | x | whose graphs are drawn Elementary

534 views • 7 slides
DD-finite functions in Sage 2 Using the package Computing beyond holonomic functions 3 Computing

DD-finite functions in Sage 2 Using the package Computing beyond holonomic functions 3 Computing

Installation and usage Computing and proving Conclusions Installation and usage Computing and proving Conclusions Outline 1 Installing the package DD-finite functions in Sage 2 Using the package Computing beyond holonomic functions 3

367 views • 3 slides
On Theorem Proving for Program Checking Historical perspective and recent developments Maria

On Theorem Proving for Program Checking Historical perspective and recent developments Maria

Outline Introduction Where is theorem proving in program checking Inside theorem proving Big and little engines together: a new theorem proving style Decision procedures with speculative inferences Current and future challenges On Theorem

944 views • 69 slides
Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without

Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without

Interactive Theorem Proving, Nancy August 22, 2016 Joachim Breitner Karlsruhe Institute of Technology University of Pennsylvania, Philadelphia Visual theorem proving with the Incredible Proof Machine The idea Theorem Proving without Syntax

579 views • 43 slides
1 Vertical shifts Types of Transformations Moves the graph up or down Impacts only

1 Vertical shifts Types of Transformations Moves the graph up or down Impacts only

Transformation of Functions Recognize graphs of common functions Use vertical shifts to graph functions Symmetry &amp; Use horizontal shifts to graph functions Use horizontal shifts to graph functions Transformations Use

491 views • 5 slides
Proving Value in Face of Constant Change Presented by MGen ( Retd ) Daniel Benjamin, VP

Proving Value in Face of Constant Change Presented by MGen ( Retd ) Daniel Benjamin, VP

DCC Transformation &amp; Innovation Proving Value in Face of Constant Change Presented by MGen ( Retd ) Daniel Benjamin, VP Operations CMEA National Conference Ottawa, ON 26 Nov 2015 DCCs Evolution Vision 2011-12 Impact of Government

512 views • 28 slides
Selective Java Code Transformation into AWS Lambda Functions Serhii Dorodko and Josef Spillner

Selective Java Code Transformation into AWS Lambda Functions Serhii Dorodko and Josef Spillner

Selective Java Code Transformation into AWS Lambda Functions Serhii Dorodko and Josef Spillner Zurich University of Applied Sciences, School of Engineering, Service Prototyping Lab (blog.zhaw.ch/splab), Switzerland

388 views • 13 slides
Learning theorem proving through self-play Stanisaw Purga Overview AlphaZero Proving

Learning theorem proving through self-play Stanisaw Purga Overview AlphaZero Proving

Learning theorem proving through self-play Stanisaw Purga Overview AlphaZero Proving game adjusting MCTS for proving game some results 2019-10 1 Neural black box game state S move policy expected outcome R n v

455 views • 45 slides
4.5: Proving the Correctness of Grammars In this section, we consider techniques for proving the

4.5: Proving the Correctness of Grammars In this section, we consider techniques for proving the

4.5: Proving the Correctness of Grammars In this section, we consider techniques for proving the correctness of grammars, i.e., for proving that grammars generate the languages we want them to. 1 / 21 Definition of Suppose G is a grammar and

324 views • 21 slides
D3 Tutorial Data Transformation and Scale Functions Edit by Jiayi Xu and Han-Wei Shen, The Ohio

D3 Tutorial Data Transformation and Scale Functions Edit by Jiayi Xu and Han-Wei Shen, The Ohio

D3 Tutorial Data Transformation and Scale Functions Edit by Jiayi Xu and Han-Wei Shen, The Ohio State University Populations of cities - Scaling Scale populations so that we can display bars within the screen London: 86.74 pixels

529 views • 26 slides
Groundwater Contamination Litigation: Proving Groundwater Contamination Litigation: Proving And

Groundwater Contamination Litigation: Proving Groundwater Contamination Litigation: Proving And

Presenting a live 90 minute webinar with interactive Q&amp;A Groundwater Contamination Litigation: Proving Groundwater Contamination Litigation: Proving And Defending Against Liability for Clean Up Costs Demonstrating Nexus, Causation and

940 views • 62 slides
CHAPTER 11: MODEL TRANSFORMATION Transformation Definition Transformation Tool 2 Agenda

CHAPTER 11: MODEL TRANSFORMATION Transformation Definition Transformation Tool 2 Agenda

Architecture and Modelling of Information Systems (D0I71A) Prof. dr. Monique Snoeck CHAPTER 11: MODEL TRANSFORMATION Transformation Definition Transformation Tool 2 Agenda Model Transformations General approach Transformation

985 views • 59 slides
Logic Programming 1 Logic Programming Instead of using functions as in imperative and

Logic Programming 1 Logic Programming Instead of using functions as in imperative and

Logic Programming 1 Logic Programming Instead of using functions as in imperative and functional programs We use predicates, as in predicate calculus Interpretation = proving theorems 2 Prolog Developed at Univ. of

663 views • 7 slides
More on Functions Thomas Schwarz, SJ Marquette University Functions of Functions Functions

More on Functions Thomas Schwarz, SJ Marquette University Functions of Functions Functions

More on Functions Thomas Schwarz, SJ Marquette University Functions of Functions Functions are full-fledged objects in Python This means you can pass functions as parameters Example: Calculate the average of the values of a function at

332 views • 12 slides
Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in

Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in

Proving In fi nite Satis fi ability Peter Baumgartner Joshua Bax Goal Theorem Proving in Hierarchic Combinations of Speci fi cations Dis Background theory linear integer arithmetic Data structures ? Conjecture list axioms/arrays

443 views • 15 slides
Automated Theorem Proving 1/4: Introduction and Propositional Theorem Proving A.L. Lamprecht

Automated Theorem Proving 1/4: Introduction and Propositional Theorem Proving A.L. Lamprecht

Automated Theorem Proving 1/4: Introduction and Propositional Theorem Proving A.L. Lamprecht Course Program Semantics and Verfication 2020, Utrecht University September 21, 2020 Lecture Notes Automated Reasoning by Gerard A.W. Vreeswijk.

609 views • 40 slides
Automated Theorem Proving 2/4: First-Order Theorem Proving A.L. Lamprecht Course Program

Automated Theorem Proving 2/4: First-Order Theorem Proving A.L. Lamprecht Course Program

Automated Theorem Proving 2/4: First-Order Theorem Proving A.L. Lamprecht Course Program Semantics and Verfication 2020, Utrecht University September 23, 2020 Lecture Notes Automated Reasoning by Gerard A.W. Vreeswijk. Available for

1.03k views • 54 slides
Proving that Artinian implies Noetherian without proving that Artinian implies finite length

Proving that Artinian implies Noetherian without proving that Artinian implies finite length

Proving that Artinian implies Noetherian without proving that Artinian implies finite length Chris Conidis University of Waterloo April 1, 2012 Chris Conidis Proving that Artinian implies Noetherian without proving that Artinian Background

1.01k views • 76 slides
Composing Transformation Composing Transformation Composing Transformation the process of

Composing Transformation Composing Transformation Composing Transformation the process of

Composing Transformation Composing Transformation Composing Transformation the process of applying Matrix multiplication is associative several transformation in succession to form one M3 x M2 x M1 = (M3 x M2) x M1 = M3 x (M2 x

485 views • 9 slides
The algebra of functions Given two functions, say f ( x ) = x 2 and g ( x ) = x + 1 , we can, in

The algebra of functions Given two functions, say f ( x ) = x 2 and g ( x ) = x + 1 , we can, in

The algebra of functions Given two functions, say f ( x ) = x 2 and g ( x ) = x + 1 , we can, in obvious ways, add, subtract, multiply and divide these functions. For example, the function f + g is defined simply by Elementary Functions ( f + g )(

404 views • 5 slides
Proving the Equivalence of Higher-Order Terms by Means of Supercompilation Ilya Klyuchnikov and

Proving the Equivalence of Higher-Order Terms by Means of Supercompilation Ilya Klyuchnikov and

Introduction Proving properties of programs Proving equality and equivalence Applications Summary Proving the Equivalence of Higher-Order Terms by Means of Supercompilation Ilya Klyuchnikov and Sergei Romanenko Keldysh Institute of Applied

588 views • 31 slides

More recommend