real world verification
play

Real World Verification Andr Platzer 1 Jan-David Quesel 2 Philipp - PowerPoint PPT Presentation

Aug 13, 2022 •178 likes •567 views

Real World Verification Andr Platzer 1 Jan-David Quesel 2 Philipp Rmmer 3 1 Carnegie Mellon University, Computer Science Department 2 University of Oldenburg, Department of Computing Science 3 Oxford University Computing Laboratory 22nd

  1. Real World Verification André Platzer 1 Jan-David Quesel 2 Philipp Rümmer 3 1 Carnegie Mellon University, Computer Science Department 2 University of Oldenburg, Department of Computing Science 3 Oxford University Computing Laboratory 22nd International Conference on Automated Deduction 7 August 2009 1 / 18

  2. Outline Motivation, real world applications Survey of real world methods New procedure: Gröbner bases for the Real Nullstellensatz decides quantifier-free real arithmetic Empirical evaluation: Comparison of various decision procedures for real arithmetic Conclusion 2 / 18

  3. Motivation + applications Verification in the KeYmaera system: Hybrid systems Mathematical algorithms in real or floating-point arithmetic Geometric problems ¯ ϑ y 2 ̟ ω e x 2 d x 1 y 1 3 / 18

  4. KeYmaera 4 / 18

  5. Overall verification approach 5 / 18

  6. Overall verification approach 5 / 18

  7. Short history of symbolic methods in real arithmetic 1930 First quantifier elimination procedure by Tarski (Non-elementary) 1965 Buchberger introduces Gröbner bases 1973 Real Nullstellensatz and Positivstellensatz by Stengle 1975 Cylindrical algebraic decomposition (CAD) by Collins (Doubly exponential) 1983 Cohen-Hörmander elimination procedure 2003 Parrilo introduces semidefinite programming for the Posi- tivstellensatz (Later refined by Harrison) 2005 Tiwari’s polynomial simplex method 6 / 18

  8. Short history of symbolic methods in real arithmetic 1930 First quantifier elimination procedure by Tarski (Non-elementary) 1965 Buchberger introduces Gröbner bases 1973 Real Nullstellensatz and Positivstellensatz by Stengle 1975 Cylindrical algebraic decomposition (CAD) by Collins (Doubly exponential) 1983 Cohen-Hörmander elimination procedure 2003 Parrilo introduces semidefinite programming for the Posi- tivstellensatz (Later refined by Harrison) 2005 Tiwari’s polynomial simplex method 6 / 18

  9. Gröbner bases for quantifier-free real arithmetic 7 / 18

  10. Gröbner bases for quantifier-free real arithmetic Inequalities and disequations can be eliminated: f � = g ≡ ∃ z . ( f − g ) z = 1 ∃ z . f − g = z 2 f ≥ g ≡ ∃ z . ( f − g ) z 2 = 1 f > g ≡ 7 / 18

  11. Gröbner bases for quantifier-free real arithmetic Goal: prove unsatisfiability of: � t i = 0 i 7 / 18

  12. Gröbner bases for quantifier-free real arithmetic Witnesses for unsatisfiability: � � � � s i t i = 1 = ⇒ t i = 0 unsatisfiable i i How to determine coefficients s i ? 7 / 18

  13. Gröbner bases for quantifier-free real arithmetic Witnesses for unsatisfiability: � � � � s i t i = 1 = ⇒ t i = 0 unsatisfiable i i How to determine coefficients s i ? Need some more notation: Ideal generated by { t 1 , . . . , t n } ⊆ ◗ [ X 1 , . . . , X n ] : � � � ( t 1 , . . . , t n ) = s i t i | s 1 , . . . , s n ∈ ◗ [ X 1 , . . . , X n ] i 7 / 18

  14. Gröbner bases for quantifier-free real arithmetic Gröbner bases to solve the ideal membership problem: Monomial ordering ≺ : admissible total well-founded ordering on monomials Reduction of a polynomial s w.r.t. B = { t 1 , . . . , t n } : s ≻ s + u 1 t i 1 ≻ s + u 1 t i 1 + u 2 t i 2 ≻ · · · ≻ red B s B is called Gröbner basis if red B s = 0 for all s ∈ ( B ) 7 / 18

  15. Gröbner bases for quantifier-free real arithmetic Gröbner bases to solve the ideal membership problem: Monomial ordering ≺ : admissible total well-founded ordering on monomials Reduction of a polynomial s w.r.t. B = { t 1 , . . . , t n } : s ≻ s + u 1 t i 1 ≻ s + u 1 t i 1 + u 2 t i 2 ≻ · · · ≻ red B s B is called Gröbner basis if red B s = 0 for all s ∈ ( B ) 7 / 18

  16. The Nullstellensatz Method is sound and complete over complex numbers: Theorem (Hilbert’s Nullstellensatz) � ¬∃ x ∈ ❈ n : t i ( x ) = 0 iff 1 ∈ ( t 1 , . . . , t n ) i ⇒ Method cannot be complete over reals: x 2 + 1 = 0 e.g. is unsatisfiable ( x 2 + 1 ) but does not contain a unit We present an extension that is complete over the reals 8 / 18

  17. The Real Nullstellensatz Theorem (Stengle’s Real Nullstellensatz, 1973) � ¬∃ x ∈ ❘ n : t i ( x ) = 0 iff i ∃ s 1 , . . . , s k ∈ ❘ [ X 1 , . . . , X m ] : 1 + s 2 1 + · · · + s 2 k ∈ ( t 1 , . . . , t n ) 9 / 18

  18. The Real Nullstellensatz Theorem (Stengle’s Real Nullstellensatz, 1973) � ¬∃ x ∈ ❘ n : t i ( x ) = 0 iff i ∃ s 1 , . . . , s k ∈ ❘ [ X 1 , . . . , X m ] : 1 + s 2 1 + · · · + s 2 k ∈ ( t 1 , . . . , t n ) 9 / 18

  19. The Real Nullstellensatz Theorem (Stengle’s Real Nullstellensatz, 1973) � ¬∃ x ∈ ❘ n : t i ( x ) = 0 iff i ∃ s 1 , . . . , s k ∈ ❘ [ X 1 , . . . , X m ] : 1 + s 2 1 + · · · + s 2 k ∈ ( t 1 , . . . , t n ) How to pick sum of squares s 2 1 + · · · + s 2 n ? 9 / 18

  20. The Real Nullstellensatz Observation: [Parrilo, 2003] Sums of squares can be represented as scalar products E.g. � � t � � � � x 2 − 1 x 2 x 2 − 2 xy + y 2 = x 2 + ( x − y ) 2 = y − 1 1 y 9 / 18

  21. The Real Nullstellensatz Lemma Every sum of squares can be represented as p t Xp, where p ∈ ❘ [ X 1 , . . . , X m ] k and X is positive semi-definite (and vice versa). Matrix X is called positive semi-definite if X is symmetric x t Xx ≥ 0 for all x ∈ ❘ n . 9 / 18

  22. The Real Nullstellensatz Lemma Every sum of squares can be represented as p t Xp, where p ∈ ❘ [ X 1 , . . . , X m ] k and X is positive semi-definite (and vice versa). Matrix X is called positive semi-definite if X is symmetric x t Xx ≥ 0 for all x ∈ ❘ n . 9 / 18

  23. The Real Nullstellensatz Constraint solving by semidefinite programming (convex optimisation): Has been used successfully in combination with Positivstellensatz [Parrilo, 2003; Harrison, 2007] 9 / 18

  24. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz 10 / 18

  25. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz Translated to system of equations: x − y = a 2 , z = b 2 , ( yz − xz ) c 2 = 1 10 / 18

  26. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz Translated to system of equations: x − y = a 2 , z = b 2 , ( yz − xz ) c 2 = 1 Corresponding Gröbner basis: B = { a 2 − x + y , b 2 − z , xzc 2 − yzc 2 + 1 } 10 / 18

  27. Example Prove unsatisfiability of: x ≥ y , z ≥ 0 , yz > xz Translated to system of equations: x − y = a 2 , z = b 2 , ( yz − xz ) c 2 = 1 Corresponding Gröbner basis: B = { a 2 − x + y , b 2 − z , xzc 2 − yzc 2 + 1 } Pick basis monomials and symmetric matrix Q :     1 q 1 , 1 q 1 , 2 q 1 , 3  a 2    p = Q = q 1 , 2 q 2 , 2 q 2 , 3     abc q 1 , 3 q 2 , 3 q 3 , 3 p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 10 / 18

  28. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 11 / 18

  29. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 Reduce 1 + p t Qp w.r.t. B : red B ( 1 + p t Qp ) = 1 + q 1 , 1 − q 3 , 3 + 2 q 1 , 2 x − 2 q 1 , 2 y + 2 q 1 , 3 abc + 2 q 2 , 3 abcx − 2 q 2 , 3 abcy 11 / 18

  30. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 Reduce 1 + p t Qp w.r.t. B : red B ( 1 + p t Qp ) = 1 + q 1 , 1 − q 3 , 3 + 2 q 1 , 2 x − 2 q 1 , 2 y + 2 q 1 , 3 abc + 2 q 2 , 3 abcx − 2 q 2 , 3 abcy Set up semidefinite program red B ( 1 + p t Qp ) = 0: 1 + q 1 , 1 − q 3 , 3 = 0 − 2 q 1 , 2 = 0 2 q 2 , 3 = 0 2 q 1 , 2 = 0 2 q 1 , 3 = 0 − 2 q 2 , 3 = 0 11 / 18

  31. Example (2) p t Qp = q 1 , 1 1 2 + 2 q 1 , 2 a 2 + 2 q 1 , 3 abc + 2 q 2 , 3 a 3 bc + q 3 , 3 a 2 b 2 c 2 Reduce 1 + p t Qp w.r.t. B : red B ( 1 + p t Qp ) = 1 + q 1 , 1 − q 3 , 3 + 2 q 1 , 2 x − 2 q 1 , 2 y + 2 q 1 , 3 abc + 2 q 2 , 3 abcx − 2 q 2 , 3 abcy Set up semidefinite program red B ( 1 + p t Qp ) = 0: 1 + q 1 , 1 − q 3 , 3 = 0 − 2 q 1 , 2 = 0 2 q 2 , 3 = 0 2 q 1 , 2 = 0 2 q 1 , 3 = 0 − 2 q 2 , 3 = 0 Solve the program: q 3 , 3 = 1 and q i , j = 0 for all ( i , j ) � = ( 3 , 3 ) 1 + p t Qp = 1 + ( abc ) 2 ∈ ( B ) � �� � Witness for unsatisfiability 11 / 18

  32. Gröbner bases for the Real Nullstellensatz (GRN) Properties of the procedure Sound + complete method for quantifier-free real arithmetic Sums of squares as certificates (“proof producing”) Termination criteria can be given → decision procedure In practice: We enumerate basis monomials with ascending degree Numerical issues Existing solvers for semidefinite programming are numeric (we use CSDP) Solution: Solve program numerically, then round to exact solution [Harrison, 2007] 12 / 18

  33. Optimisations Pre-processing of Gröbner basis is a good idea: Rewriting with polynomials x + t Rewriting with polynomials x 2 − α 1 m 2 1 − · · · − α n m 2 n (with α i > 0) Elimination of polynomials xy − 1, x n + t Splitting polynomials α 1 m 2 1 + · · · + α n m 2 n ∈ B with α i > 0 13 / 18

Recommend

Climate-FEVER: A Dataset for Verification of Real-World Climate Claims Thomas Diggelmann, Jordan

Climate-FEVER: A Dataset for Verification of Real-World Climate Claims Thomas Diggelmann, Jordan

Tackling Climate Change with Machine Learning workshop at NeurIPS 2020 Climate-FEVER: A Dataset for Verification of Real-World Climate Claims Thomas Diggelmann, Jordan Boyd-Graber, Jannis Bulian, Massimiliano Ciaramita, Markus Leippold Figure

350 views • 10 slides
XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( )

XML in the real world XML in the real world XML agentzh ( ) 2006.10 RSS is cool ! RSS RSS Really Simple Syndication Tired of checking your favorite news and blogs sites everyday?

786 views • 75 slides
Real World Embedded DSLs Scottish Programming Languages and Verification Summer School 2019 Rob

Real World Embedded DSLs Scottish Programming Languages and Verification Summer School 2019 Rob

Real World Embedded DSLs Scottish Programming Languages and Verification Summer School 2019 Rob Stewart (R.Stewart@hw.ac.uk) August 2019 Heriot-Watt University, Edinburgh What is a DSL What is a DSL Paul Hudak: A DSL is

1.96k views • 151 slides
Real numbers in the real world Industrial applications of theorem proving John Harrison Intel

Real numbers in the real world Industrial applications of theorem proving John Harrison Intel

Real numbers in the real world Industrial applications of theorem proving John Harrison Intel Corporation 30th May 2006 0 Overview Famous computer arithmetic failures Formal verification and theorem proving Floating-point

627 views • 34 slides
Age Age Age Age E out ( h 1 ) E out ( h 2 ) E out ( h 3 ) E out ( h M )

Age Age Age Age E out ( h 1 ) E out ( h 2 ) E out ( h 3 ) E out ( h M )

recap: Verification h Income Learning From Data Lecture 4 Real Learning is Feasible Age Hoeffding: E out ( h ) E in ( h ) (with high probability) E out ( h ) Real Learning vs. Verification The Two Step Solution to Learning D Closer

240 views • 5 slides
Real Time Video & Driver ID Verification From Vehicles Context is Everything Just like

Real Time Video & Driver ID Verification From Vehicles Context is Everything Just like

Real Time Video & Driver ID Verification From Vehicles Context is Everything Just like Mission Impossible, but real We develop TRUE real-time wireless video surveillance solutions to some of the worlds most demanding customers, where

562 views • 18 slides
Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on

Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on

Bounded Model Checking of Software for Real-World Applications Parts 1-3 UniGR Summer School on Verification Technology, Systems & Applications VTSA 2018 Nancy, France Carsten Sinz Institute for Theoretical Informatics (ITI) Karlsruhe

569 views • 45 slides
A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of

A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of

A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of Computer Science Oxford University Quantitative Model Checking Winter School, February 2012 The Classical Theory of Verification Automata e T t a

1.6k views • 137 slides
How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive

How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive

How Real-World Evidence Is Playing Out In The Real World Moderator Mary Jo Laffler Executive Editor Scrip Bridget Silverman Presenters Managing Editor Pink Sheet Ben Gutierrez Head, US Value Evidence & Outcomes GlaxoSmithKline

371 views • 33 slides
Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting

Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting

Real Students Real World Real Work Real Life: A Plan for a Holistic Approach to Supporting Students to and Through Market Value Asset Attainment 4th highest-ranked Strategic Plan Alignment Every student will demonstrate global

499 views • 24 slides
Eventual Consistency Eventual Consistency In the real world In the real world or Why you

Eventual Consistency Eventual Consistency In the real world In the real world or Why you

Eventual Consistency Eventual Consistency In the real world In the real world or Why you already know Eventual Consistency /usr/bin/whoami Chris Molozian Client Services Engineer, Basho EMEA Basho Technologies cmolozian@basho.com 03

371 views • 34 slides
Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

9/22/20 DCS/CSCI 2350 Social & Economic Networks What does a real-world network look like? Reading: Ch 2 of EK, Ch 2 & 3 of Jackson Graph visualization using Gephi Mohammad T . Irfan Email: mirfan@bowdoin.edu 1 Real-World Networks

749 views • 26 slides
Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

Real-World Networks And their common properties 1. Macro-level (graph-level) 2. Micro-level

9/25/19 DCS/CSCI 2350 Social & Economic Networks What does a real-world network look like? Reading: Ch 2 of EK, Ch 2 & 3 of Jackson Graph visualization using Gephi Mohammad T . Irfan Email: mirfan@bowdoin.edu Real-World Networks

659 views • 24 slides
Welcome to the REAL World REAL Disruption: The Shared Economy, The Workforce and Real Estate

Welcome to the REAL World REAL Disruption: The Shared Economy, The Workforce and Real Estate

Welcome to the REAL World REAL Disruption: The Shared Economy, The Workforce and Real Estate Presented by Chris Hood Meet Our Speaker Chris Hood Advanced Workplace Associates Ltd 40 Gracechurch Street, London EC3V 0BT UK Telephone: +44

505 views • 37 slides
Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After

Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After

Authentication in real world: Kerberos, SSH and SSL Zheng Ma Apr 19, 2005 Where are we? After learning all the foundation of modern cryptography, we are ready to see some real world applications based on them. What happened when you

592 views • 33 slides
To truly know the world, look deeply within your own being; to truly know yourself, take real

To truly know the world, look deeply within your own being; to truly know yourself, take real

To truly know the world, look deeply within your own being; to truly know yourself, take real interest in the world. Rudolf Steiner INFO Waldorf Exchange Seasonal Program by Adazi Free Waldorf School this summer provides well-rounded, healthy

493 views • 32 slides
Real-Time in the Real World: Building a State of the Art Real-Time Analytics Platform INFORMS

Real-Time in the Real World: Building a State of the Art Real-Time Analytics Platform INFORMS

Real-Time in the Real World: Building a State of the Art Real-Time Analytics Platform INFORMS Analytics Conference April 14 th , 2015 Joe DeCosmo Chief Analytics Officer Enova International We are a growing global online Lender Founded

229 views • 18 slides
Study Design & Quality Measures Real World Evidence Demonstrates Real Results Valeritas has

Study Design & Quality Measures Real World Evidence Demonstrates Real Results Valeritas has

Study Design & Quality Measures Real World Evidence Demonstrates Real Results Valeritas has focused on providing data that demonstrates clinical and economic benefits in a real-world setting Based on standard clinical practice

453 views • 5 slides
Real Numbers in Real Applications John Harrison Intel Corporation Real numbers for fun and

Real Numbers in Real Applications John Harrison Intel Corporation Real numbers for fun and

Real numbers in Real Applications 1 Real Numbers in Real Applications John Harrison Intel Corporation Real numbers for fun and profit The phenomenon of transcendence Floating-point verification Context of the work HOL

481 views • 26 slides
Real-time Replication in the Real World Richard E. Baum C. Thomas Tyler 2 Agenda Provide an

Real-time Replication in the Real World Richard E. Baum C. Thomas Tyler 2 Agenda Provide an

Real-time Replication in the Real World Richard E. Baum C. Thomas Tyler 2 Agenda Provide an overview of replication solutions Discuss relevant new 2009.2 features Review some real-world solutions 3 Terminology High

481 views • 45 slides
Parameterized Systems (via Effectively Propositional Reasoning) Oded Padon Joint work with: Ken

Parameterized Systems (via Effectively Propositional Reasoning) Oded Padon Joint work with: Ken

Ivy: Interactive Verification of Parameterized Systems (via Effectively Propositional Reasoning) Oded Padon Joint work with: Ken McMillan and Mooly Sagiv Dagstuhl Seminar, 3-Nov-2015 Motivation Many real-world verification efforts use

1.03k views • 26 slides
Policy and Management Typical P&M majors What do they do? Analyze real-world problems

Policy and Management Typical P&M majors What do they do? Analyze real-world problems

Policy and Management Typical P&M majors What do they do? Analyze real-world problems and propose solutions Use a unique blend of skill and expertize in real-world problem solving to launch a meaningful career How do they do

545 views • 17 slides
Graphs in the Real* World * real as in virtual Examples? Already seen a few:

Graphs in the Real* World * real as in virtual Examples? Already seen a few:

Graphs in the Real* World * real as in virtual Examples? Already seen a few: Cities & Roads Airports & Flight paths Others? 2 Web as a graph Node in the graph: a web page Edge in the graph: an

658 views • 32 slides
Real-World Protocols Prof. Tom Austin San Jos State University Real-World Protocols Next,

Real-World Protocols Prof. Tom Austin San Jos State University Real-World Protocols Next,

CS 166: Information Security Real-World Protocols Prof. Tom Austin San Jos State University Real-World Protocols Next, we look at real protocols SSH a simple & useful security protocol SSL practical security on the Web

1.27k views • 112 slides

More recommend