self verifying verifying self self verifying dining
play

Self- -Verifying Verifying Self Self-Verifying * * Dining - PowerPoint PPT Presentation

Oct 19, 2022 •233 likes •675 views

Self- -Verifying Verifying Self Self-Verifying * * Dining Philosophers Dining Philosophers Dining Philosophers Peter Welch and Neil Brown Peter Welch and Neil Brown School of Computing, University of Kent, UK School of Computing,

  1. Self- -Verifying Verifying Self Self-Verifying * * Dining Philosophers Dining Philosophers Dining Philosophers Peter Welch and Neil Brown Peter Welch and Neil Brown School of Computing, University of Kent, UK School of Computing, University of Kent, UK IFIP WG2.4, Cape May, 30 th . September, 2011 2000 2000 * About 10 of them … * About 10 of them … 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 1

  2. � � � � The Dining Philosophers The Dining Philosophers � � � � � � The Dining Philosophers is due to The story of The Dining Philosophers is due to Edsger Edsger The story of Dijkstra – – one of the founding fathers of Computer Science. one of the founding fathers of Computer Science. Dijkstra It illustrates a classic problem in concurrency: how to share It illustrates a classic problem in concurrency: how to share resources safely between competing consumers. . resources safely between competing consumers http://www.cs.utexas.edu/users/EWD/ewd03xx/EWD310.PDF http://www.cs.utexas.edu/users/EWD/ewd03xx/EWD310.PDF http://www.cs.utexas.edu/users/EWD/ewd03xx/EWD310.PDF Historical document Historical document 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 2

  3. thinking thinking eatBar eatBar eating eating College College P P F F F F P P P P F F F F F F P P P P A new, really really really neat, solution (Neil Brown / PHW) neat, solution (Neil Brown / PHW) A new, really 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 3

  4. PROC PROC Phil Phil ( (CHAN INT CHAN INT thinking! thinking!, , eating! eating!, , BARRIER BARRIER eatBar eatBar) ) WHILE TRUE WHILE TRUE SEQ SEQ thinking ! 0 thinking ! 0 SYNC eatBar SYNC eatBar eating ! 0 eating ! 0 thinking thinking P P eatBar eatBar SYNC eatBar eatBar SYNC eating eating : : Phil Phil ( (thinking thinking, , eating eating, , eatBar eatBar) = ) = let let Phil_0_ = = Phil_0_ thinking - thinking -> > eatBar eatBar - -> > eating - eating -> > eatBar eatBar - -> > Phil_0_ Phil_0_ within within Phil_0_ Phil_0_ : : 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 4

  5. thinking thinking eatBar eatBar eating eating College College P P F F F F P P P P F F F F F F P P P P 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 5

  6. PROC PROC Fork Fork ( (BARRIER BARRIER eatBarRight eatBarRight, , eatBarLeft eatBarLeft) ) WHILE TRUE WHILE TRUE ALT ALT F F SYNC eatBarRight eatBarRight SYNC eatBarRight eatBarRight SYNC SYNC eatBarRight eatBarRight SYNC eatBarLeft eatBarLeft SYNC SYNC eatBarLeft eatBarLeft SYNC eatBarLeft eatBarLeft : : Fork ( (eatBarRight eatBarRight, , eatBarLeft eatBarLeft) = ) = Fork let let Fork_0_ = Fork_0_ = eatBarRight - eatBarRight -> > eatBarRight eatBarRight - -> > Fork_0_ Fork_0_ [] [] eatBarLeft - -> > eatBarLeft eatBarLeft - -> > Fork_0_ Fork_0_ eatBarLeft within within Fork_0_ Fork_0_ : : 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 6

  7. 0 0 4 4 VAL INT nPhils VAL INT nPhils IS 5: IS 5: 1 1 nPhils = 5 nPhils = 5 3 3 2 2 PROC Philosophers Philosophers ( ([ [nPhils]CHAN nPhils]CHAN INT INT thinking! thinking!, , eating! eating!, , PROC [nPhils]BARRIER nPhils]BARRIER eatBar eatBar) ) [ PAR id = 0 FOR nPhils nPhils PAR id = 0 FOR Phil ( Phil (thinking[id thinking[id]! ]!, , eating[id eating[id]! ]!, , eatBar[id eatBar[id] ]) ) : : Philosophers ( (thinking thinking, , eating eating, , eatBar eatBar) = ) = Philosophers ||| id ||| id : : {0..(nPhils {0..(nPhils – – 1)} @ 1)} @ Phil (thinking.id thinking.id, , eating.id eating.id, , eatBar.id eatBar.id) ) Phil ( 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 7

  8. 0 0 FDR2 uses 4 except that FDR2 4 … except that FDR2 uses much … except that … uses much much VAL INT nPhils VAL INT nPhils IS 5: IS 5: less memory and time if replicated less memory and time if replicated less memory and time if replicated (or merely repeated) processes (or merely repeated) processes (or merely repeated) processes 1 1 take no parameters nPhils = 5 nPhils no parameters, = 5 , but instead but instead take take no parameters, but instead use event renaming use event renaming to wire up the to wire up the use event renaming to wire up the 3 3 different instances. different instances. different instances. 2 2 channel thinking_r0_ VERIFY PROC Philosophers thinking_r0_, Philosophers ( , eating_r0_ eating_r0_, ([ [nPhils]CHAN nPhils]CHAN INT , eatBar_r0_ eatBar_r0_ INT thinking! thinking!, , eating! eating!, , channel VERIFY PROC [nPhils]BARRIER nPhils]BARRIER eatBar eatBar) ) [ Philosophers ( PAR id = 0 FOR nPhils (thinking thinking, nPhils , eating eating, , eatBar eatBar) = ) = Philosophers PAR id = 0 FOR let let Phil (thinking[id Phil ( thinking[id]! ]!, , eating[id eating[id]! ]!, , eatBar[id eatBar[id] ]) ) : Philosophers_0 = Phil ( (thinking_r0_ thinking_r0_, , eating_r0_ eating_r0_, , eatBar_r0_ eatBar_r0_) ) : Philosophers_0 = Phil within within ||| id id : : {0..(nPhils {0..(nPhils – – 1)} @ 1)} @ ||| Philosophers_0 [[ Philosophers_0 [[ Note: the three the three Note: Philosophers ( (thinking thinking, , eating eating, , eatBar eatBar) = ) = Philosophers thinking_r0_ < <- - thinking.id thinking.id, , thinking_r0_ declared channels are declared channels are ||| id ||| id : : {0..(nPhils {0..(nPhils – – 1)} @ 1)} @ eating_r0_ < <- - eating.id eating.id, , eating_r0_ not actually used !! not actually used !! Phil (thinking.id thinking.id, , eating.id eating.id, , eatBar.id eatBar.id) ) Phil ( eatBar_r0_ < <- - eatBar.id eatBar.id) ) eatBar_r0_ ]] ]] 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 8

  9. 0 0 4 4 VAL INT nPhils VAL INT nPhils IS 5: IS 5: 1 1 nPhils = 5 nPhils = 5 3 3 2 2 PROC Forks PROC Forks ( ([ [nPhils]BARRIER nPhils]BARRIER eatBar eatBar) ) PAR id = 0 FOR nPhils PAR id = 0 FOR nPhils VAL INT right IS id: VAL INT right IS id: VAL INT left IS (id + 1)\ \nPhils: nPhils: VAL INT left IS (id + 1) Fork ( Fork (eatBar[right eatBar[right] ], , eatBar[left eatBar[left] ]) ) : : Forks ( (eatBar eatBar) = ) = Forks || id id : : {0..(nPhils {0..(nPhils – – 1)} @ 1)} @ || [{ eatBar.id eatBar.id, , eatBar.((id eatBar.((id + 1)%nPhils) + 1)%nPhils) }] }] [{ Fork ( Fork (eatBar.id eatBar.id, , eatBar.((id eatBar.((id + 1)%nPhils) + 1)%nPhils)) ) 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 9

  10. 0 0 FDR2 uses 4 except that FDR2 4 … except that FDR2 uses much … except that … uses much much VAL INT nPhils VAL INT nPhils IS 5: IS 5: less memory and time if replicated less memory and time if replicated less memory and time if replicated (or merely repeated) processes (or merely repeated) processes (or merely repeated) processes 1 1 take no parameters nPhils = 5 nPhils no parameters, = 5 , but instead but instead take take no parameters, but instead use event renaming use event renaming to wire up the to wire up the use event renaming to wire up the 3 3 different instances. different instances. different instances. 2 2 Note: the two the two Note: channel eatBarRight_r2_ eatBarRight_r2_, , eatBarLeft_r2_ eatBarLeft_r2_ channel VERIFY PROC Forks VERIFY PROC Forks ( ([ [nPhils]BARRIER nPhils]BARRIER eatBar eatBar) ) declared channels are declared channels are PAR id = 0 FOR nPhils PAR id = 0 FOR nPhils not actually used !! not actually used !! Forks ( (eatBar eatBar) = ) = Forks VAL INT right IS id: VAL INT right IS id: let let VAL INT left IS (id + 1)\ \nPhils: nPhils: VAL INT left IS (id + 1) Forks_0 = Fork ( (eatBarRight_r2_ eatBarRight_r2_, , eatBarLeft_r2_ eatBarLeft_r2_) ) Forks_0 = Fork Fork Fork ( (eatBar[right eatBar[right] ], , eatBar[left eatBar[left] ]) ) within : : within || id id : : {0..(nPhils {0..(nPhils – – 1)} @ 1)} @ || [{ eatBar.id [{ eatBar.id, , eatBar.((id eatBar.((id + 1)%nPhils) + 1)%nPhils) }] }] Forks ( (eatBar eatBar) = ) = Forks Forks_0 [[ [[ Forks_0 || id id : : {0..(nPhils {0..(nPhils – – 1)} @ 1)} @ || eatBarRight_r2_ < <- - eatBar.id eatBar.id, , eatBarRight_r2_ [{ eatBar.id eatBar.id, , eatBar.((id eatBar.((id + 1)%nPhils) + 1)%nPhils) }] }] [{ eatBarLeft_r2_ < <- - eatBar.((id eatBar.((id + 1)%nPhils) + 1)%nPhils) eatBarLeft_r2_ Fork ( Fork (eatBar.id eatBar.id, , eatBar.((id eatBar.((id + 1)%nPhils) + 1)%nPhils)) ) ]] ]] 15-Oct-11 Copyleft (GPL) P.H.Welch and J.B.Pedersen 10

Recommend

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of Computer Science University of Texas at Austin mihir@cs.utexas.edu 10 November, 2017 1/34 Outline Motivation and related work Our approach

681 views • 34 slides
Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of

Verifying filesystems in ACL2 Towards verifying file recovery tools Mihir Mehta Department of Computer Science University of Texas at Austin mihir@cs.utexas.edu 09 March, 2017 Overview 1. Why we need a verified filesystem 2. Our approach

514 views • 29 slides
Specifying and Verifying Concurrent Algorithms with Histories and Subjectivity Ilya

Specifying and Verifying Concurrent Algorithms with Histories and Subjectivity Ilya

Specifying and Verifying Concurrent Algorithms with Histories and Subjectivity Ilya Sergey Aleks Nanevski Anindya Banerjee ESOP 2015 A logic-based approach for Specifying and Verifying Concurrent Algorithms An

2.36k views • 186 slides
Verifying Trigonometric Identities A trigonometric identity is simply an identity involving

Verifying Trigonometric Identities A trigonometric identity is simply an identity involving

Verifying Trigonometric Identities A trigonometric identity is simply an identity involving trigonometric functions. We learn to verify and spend time verifying trigonometric identities because the practice we get verifying trigonometric

661 views • 46 slides
Verifying the SET Protocol: Overview Lawrence C Paulson, Computer Laboratory, University of

Verifying the SET Protocol: Overview Lawrence C Paulson, Computer Laboratory, University of

Verifying the SET Protocol: Overview Lawrence C Paulson, Computer Laboratory, University of Cambridge (Joint with Giampaolo Bella and Fabio Massacci) Plan of Talk The SET Protocol Defining the Formal Models Verifying the

570 views • 24 slides
Verifying Authentication Properties of C Protocol Code Using VCC Franois Dupressoir (Open

Verifying Authentication Properties of C Protocol Code Using VCC Franois Dupressoir (Open

Verifying Authentication Properties of C Protocol Code Using VCC Franois Dupressoir (Open University) Andrew D. Gordon (MSR Cambridge) Jan Jrjens (TU Dortmund) Verifying Security Code Assume a security API specification.

397 views • 24 slides
Verification Games Verifying Fire Hydrants 10 mins http://pygy.co/bQn

Verification Games Verifying Fire Hydrants 10 mins http://pygy.co/bQn

Street-level Imagery Collection - HackMD https://hackmd.io/HjjiW4msTXKghSEzs5NNZw?view Intro to Mapillary Verification Games Verifying Fire Hydrants 10 mins http://pygy.co/bQn (http://pygy.co/bQn) Verifying Crossings 10

354 views • 10 slides
Xerox/DOM Presentation Fall 2016 CONTENTS 1. Verifying Eligibility 2. Taxonomy Code Placement

Xerox/DOM Presentation Fall 2016 CONTENTS 1. Verifying Eligibility 2. Taxonomy Code Placement

Xerox/DOM Presentation Fall 2016 CONTENTS 1. Verifying Eligibility 2. Taxonomy Code Placement 3. Prior Authorization 4. Timely Filing Limits 5. Envision Web Portal Verifying Eligibility It is the responsibility of the Medicaid Provider to

602 views • 21 slides
A heuristic method for formally verifying real inequalities Robert Y. Lewis Vrije Universiteit

A heuristic method for formally verifying real inequalities Robert Y. Lewis Vrije Universiteit

A heuristic method for formally verifying real inequalities Robert Y. Lewis Vrije Universiteit Amsterdam June 27, 2018 Motivation Specific topic for today: verifying systems of nonlinear inequalities over R 0 n , n &lt; ( K /

1.02k views • 39 slides
+ The HARPO Verifier Status 2018 October 15 Verifying the Correctness of HARPO Programs 1

+ The HARPO Verifier Status 2018 October 15 Verifying the Correctness of HARPO Programs 1

+ The HARPO Verifier Status 2018 October 15 Verifying the Correctness of HARPO Programs 1 Verifying the Correctness of HARPO Programs Presented at NECEC 2018, St. Johns NL Inaam Ahmed Computer Engineering Research Labs, Dept. ECE, MUN

492 views • 23 slides
Verifying Properties of Robot Swarms Clare Dixon Dept. of Computer Science University of

Verifying Properties of Robot Swarms Clare Dixon Dept. of Computer Science University of

Introduction Verifying a Robot Swarm Algorithm Dealing with Uncertainty Conclusions Verifying Properties of Robot Swarms Clare Dixon Dept. of Computer Science University of Liverpool, UK cldixon@liverpool.ac.uk in collaboration with

289 views • 25 slides
Randomness in Computing L ECTURE 2 Last time Verifying polynomial identities Probability

Randomness in Computing L ECTURE 2 Last time Verifying polynomial identities Probability

Randomness in Computing L ECTURE 2 Last time Verifying polynomial identities Probability amplification Probability review Discussions Law of Total Probability Bayeslaw Today More probability amplification Verifying

615 views • 8 slides
Verifying a Commercial Microprocessor Design at the RTL level Ken McMillan Cadence Berkeley

Verifying a Commercial Microprocessor Design at the RTL level Ken McMillan Cadence Berkeley

Verifying a Commercial Microprocessor Design at the RTL level Ken McMillan Cadence Berkeley Labs mcmillan@cadence.com We will consider some of the problems involved in verifying the actual RTL code of a commercial processor design, as

480 views • 37 slides
Verifying the Adaptation Behavior of Embedded Systems Klaus Schneider 1 Tobias Schuele 1 Mario

Verifying the Adaptation Behavior of Embedded Systems Klaus Schneider 1 Tobias Schuele 1 Mario

Introduction Modeling Adaptation Behavior Verifying Adaptation Behavior Tool Demonstration Summary and Conclusion Verifying the Adaptation Behavior of Embedded Systems Klaus Schneider 1 Tobias Schuele 1 Mario Trapp 2 1 Reactive Systems Group,

438 views • 14 slides
Verifying Finality for Blockchain Systems Karl Palmskog Milos Gligoric Lucas Pe na

Verifying Finality for Blockchain Systems Karl Palmskog Milos Gligoric Lucas Pe na

Verifying Finality for Blockchain Systems Verifying Finality for Blockchain Systems Karl Palmskog Milos Gligoric Lucas Pe na Grigore Ro su The University of Texas at Austin University of Illinois at Urbana-Champaign

739 views • 30 slides
The Coinductive Approach to Verifying Cryptographic Protocols Jesse Hughes joint work with

The Coinductive Approach to Verifying Cryptographic Protocols Jesse Hughes joint work with

The Coinductive Approach to Verifying Cryptographic Protocols Jesse Hughes joint work with Martijn Warnier jesseh@cs.kun.nl University of Nijmegen The Coinductive Approach to Verifying Cryptographic Protocols p.1/27 Outline I.

1.95k views • 184 slides
Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis &amp; Verification Group

Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis &amp; Verification Group

Verifying Concurrent Programs (Tutorial) Aarti Gupta Systems Analysis &amp; Verification Group NEC Labs America, Princeton, USA www.nec-labs.com Tutorial: Verifying Concurrent Programs Oct 2011 Acknowledgements Malay Ganai, Vineet

982 views • 72 slides
Alive2 Verifying existing optimizations Nuno Lopes John Regehr Microsoft Research University

Alive2 Verifying existing optimizations Nuno Lopes John Regehr Microsoft Research University

Alive2 Verifying existing optimizations Nuno Lopes John Regehr Microsoft Research University of Utah Alive Found dozens of bugs in LLVM Avoided many other bugs due to use before commit Verifying peephole optimizations $ alive

863 views • 28 slides
Verifying Test Hypotheses - HOL/TestGen An Experiment in Test and Proof Thomas Malcher January

Verifying Test Hypotheses - HOL/TestGen An Experiment in Test and Proof Thomas Malcher January

Verifying Test Hypotheses - HOL/TestGen Verifying Test Hypotheses - HOL/TestGen An Experiment in Test and Proof Thomas Malcher January 20, 2014 1 / 20 Verifying Test Hypotheses - HOL/TestGen HOL/TestGen Outline Introduction Test Hypotheses

595 views • 20 slides
Vellvm: Verifying Transforma2ons of the LLVM IR Steve Zdancewic

Vellvm: Verifying Transforma2ons of the LLVM IR Steve Zdancewic

Vellvm: Verifying Transforma2ons of the LLVM IR Steve Zdancewic Jianzhou Zhao Milo M.K. Mar2n Santosh NagarakaGe University of Pennsylvania Rutgers

830 views • 67 slides
Verifying distributed systems with unbounded channels egis Gascon &amp; R Eric Madelaine

Verifying distributed systems with unbounded channels egis Gascon &amp; R Eric Madelaine

Verifying distributed systems with unbounded channels egis Gascon &amp; R Eric Madelaine INRIA Sophia Antipolis SAFA Workshop - September 23rd, 2009 egis Gascon &amp; Verifying distributed systems with unbounded channels R Eric

601 views • 46 slides
Verifying a Lustre Compiler Part 2 Llio Brun PARKAS (Inria - ENS) Timothy Bourke,

Verifying a Lustre Compiler Part 2 Llio Brun PARKAS (Inria - ENS) Timothy Bourke,

Verifying a Lustre Compiler Part 2 Llio Brun PARKAS (Inria - ENS) Timothy Bourke, Pierre-variste Dagand, Xavier Leroy, Marc Pouzet, Lionel Rieg SYNCHRON 2016 December 7, 2016 Llio Brun Verifying a Lustre Compiler Part 2 December 7,

907 views • 47 slides
The Computational SLR: A Calculus for Verifying Cryptographic Proofs Yu Zhang Institute of

The Computational SLR: A Calculus for Verifying Cryptographic Proofs Yu Zhang Institute of

The Computational SLR: A Calculus for Verifying Cryptographic Proofs Yu Zhang Institute of Software Chinese Academy of Sciences BASICS09, Shanghai, China October 13, 2009 Background Formal verification of security protocols from

312 views • 28 slides
Mistakes Are Proof That You Are Trying: On Verifying Software Encoding Schemes Resistance to

Mistakes Are Proof That You Are Trying: On Verifying Software Encoding Schemes Resistance to

Mistakes Are Proof That You Are Trying: On Verifying Software Encoding Schemes Resistance to Fault Injection Attacks Jakub Breier, Dirmanto Jap, and Shivam Bhasin Presenter: Wei He Physical Analysis and Cryptographic Engineering Nanyang

525 views • 26 slides

More recommend