Symbolic Verification of Epistemic Properties in Programs Ioana - PowerPoint PPT Presentation

Symbolic Verification of Epistemic Properties in Programs Ioana Boureanu (Univ. of Surrey, SCCS) joint work @ IJCAI 2017, with N. Gorogiannis (Middlesex, Facebook) and F . Raimondi (Middelsex, Amazon)

Asking you...

Motivation & Aim Program-Epistemic Logic Verification of Program-Epistemic Logic Practical Experimentation Conclusions

Motivation ◮ epistemic logics, i.e., logics of knowledge – “knowing logical facts” → expressions of rich properties (e.g., unlinkability, anonymity) ◮ widely used in verification of general-purpose concurrent & distributed SYSTEMS (e.g., Byzantine agreement) via epistemic model checkers such as MCMAS, Verics, MCK, etc....

Motivation ... ◮ epistemic logics widely used in systems’ model checkers systems BUT... ◮ :( these are not epistemic specifications on program code ◮ :( it is hard to capture rich (e.g., first-order) state specifications, since the base logic of most temporal-epistemic verifiers is propositional ◮ !!? ... meanwhile, base logics of programs are very expressive + predicate transformers are used to reduce verification to FO queries to SMT solvers ...

Aim ◮ be able to verify epistemic properties of programs ◮ agents can OBSERVE certain program variables ◮ the program (i.e., state-transition relation) is KNOWN to all agents ◮ focus on S5 -like epistemic properties about program states “ agent observer1 knows that variable x is equal to y + 5” “ agent observer2 does not know that variable x is equal to y + 5”

Syntax Setup ◮ A a finite set of agents or program-observers ◮ V a countable set of variables ◮ p ⊆ V a non-empty set of program variables ◮ o A ⊆ p the variables the agent A ∈ A can observe ◮ n A = p \ o A variables agent A ∈ A cannot observe

Syntax Epistemic Language L K ◮ L QF base language = a quantifier-free, FO language ◮ L FO extension of L QF with quantifiers φ :: = π | ¬ φ | φ 1 ∧ φ 2 | φ 1 ∨ φ 2 | φ 1 ⇒ φ 2 | ∀ x . φ | ∃ x . φ ◮ L K extension of L QF with epistemic modalities K A α ::= π | ¬ α | α 1 ∧ α 2 | α 1 ∨ α 2 | α 1 ⇒ α 2 | K A α

Program-Epistemic Specifications L � K ◮ C a (possibly infinite) set of commands ◮ L � K extends L K with every formula β = � C α , meaning “ at all final states of C, α holds ” Example “at the end of the vote-counting, a partial observer (who can see certain aspects of the program) does not know that voter 1 vote for candidate 1”: � EVotingProgram ¬ K public − observer V 1 , 1 , where V 1 , 1 is a formula in L QF which here is linear integer arithmetic.

First-order Semantics ◮ state s : V → D . ◮ set of all states U s | = π ⇐ ⇒ in accordance to interpretation I s | = φ 1 ◦ φ 2 ⇐ ⇒ ( s | = φ 1 ) ◦ ( s | = φ 2 ) s | = ¬ φ ⇐ ⇒ s �| = φ s | = ∃ x .φ ⇐ ⇒ ∃ c ∈ D . s [ x �→ c ] | = φ s | = ∀ x .φ ⇐ ⇒ ∀ c ∈ D . s [ x �→ c ] | = φ. where ◦ is ∧ , ∨ or ⇒ , and I is an interpretation of constants, functions and predicates in L QF over the domain D . The interpretation � φ � of a first-order formula φ is the set of states satisfying it, i.e., � φ � = { s ∈ U | s | = φ }

Towards a Program-Epistemic Semantics ◮ Indistinguishability relation ∼ X over states s ∼ X s ′ ⇐ ⇒ ∀ x ∈ X . ( s ( x ) = s ′ ( x )) , where X ⊆ V ◮ Transition relation (over states) of any command C R C ( s ) = { s ′ | ( s , s ′ ) ∈ R C } R C ( W ) = � s ∈ W R C ( s ) ◮ strongest postcondition operator is a partial function SP ( − , − ) : L FO × C ⇀ L FO SP ( φ, C ) = ψ iff � ψ � = R C ( � φ � )

Interpretation of a program specification β The satisfaction relation W , s � β W , s � π ⇐ ⇒ s | = π W , s � ¬ α ⇐ ⇒ W , s � � α W , s � α 1 ◦ α 2 ⇐ ⇒ ( W , s � α 1 ) ◦ ( W , s � α 2 ) ⇒ ∀ s ′ ∈ W . ( s ∼ o A s ′ = ⇒ W , s ′ � α ) W , s � K A α ⇐ ⇒ ∀ s ′ ∈ R C ( s ) . ( R C ( W ) , s ′ � α ) W , s � � C α ⇐ where ◦ is ∧ , ∨ , or ⇒ , and C ∈ C is a command. ◮ Validity of program specifications φ � β for all s ∈ � φ � , we have that � φ � , s � β . φ � K A π means that in all states satisfying φ , agent A knows π φ � � C ¬ K A π means: if command C starts at a state satisfying φ , then in all states where the execution finishes, agent A does not know π

Reducing to First-Order Validity ◮ Recall: strongest postcondition operator is a partial function SP ( − , − ) : L FO × C ⇀ L FO SP ( φ, C ) = ψ � ψ � = R C ( � φ � ) iff If the strongest postcondition operator is computable for the chosen base logic/programming language, then validity of program-epistemic specifications reduces to validity in first-order fragments (such as QBF and Presburger arithmetic). ... a translation τ : L K → L FO of epistemic formulas into the first-order language. τ ( φ, π ) = π τ ( φ, α 1 ◦ α 2 )= τ ( φ, α 1 ) ◦ τ ( φ, α 2 ) τ ( φ, ¬ α )= ¬ τ ( φ, α ) τ ( φ, K A α ) = ∀ n A . ( φ ⇒ τ ( φ, α ))

Over-approximation ◮ Recall: strongest postcondition operator is a partial function SP ( − , − ) : L FO × C ⇀ L FO SP ( φ, C ) = ψ iff � ψ � = R C ( � φ � ) ◮ a function f : L FO × C → L FO over-approximates the strongest postcondition iff ... � f ( φ, C ) � ⊇ R C ( � φ � ) for all φ ∈ L FO and C ∈ C When the strongest postcondition can only be over-approximated (such as in programming languages with unbounded loops), we show that the validity of positive epistemic specifications reduces to that of first-order fragments, in a sound but incomplete way.

Symbolic Verification of Epistemic Properties in Programs Ioana - PowerPoint PPT Presentation

Symbolic Verification of Epistemic Properties in Programs Ioana Boureanu (Univ. of Surrey, SCCS) joint work @ IJCAI 2017, with N. Gorogiannis (Middlesex, Facebook) and F . Raimondi (Middelsex, Amazon) Asking you... Motivation & Aim

Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and

Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification

Symbolic Verification of Programs with Pointers using Tree Automata Ji r Sim a

ProPed Tool for Symbolic Verification of Probablistic Recursive Programs Rohit Chadha 1 Umang

Formal Verification Methods 2: Symbolic Simulation John Harrison Intel Corporation

Symbolic Polytopes for Quantitative Interpolation and Verification Klaus v. Gleissenthall, TU

Decidability Decidability and Symbolic Symbolic Verification Symbolic Symbolic Verification

Symbolic String Verification: An Automata-based Approach Fang Yu Tevfik Bultan Marco Cova

Verification of String Manipulating Programs Fang Yu Software Security Lab. Department of

Epistemic Network Analysis Todays Class Epistemic Network Analysis Epistemic Network

Introduction to Symbolic Verification Methods David Basin Institute of Information Security ETH

Symbolic verification of cryptographic protocols using Tamarin Part 1 : Introduction David Basin

Proofs about Programs Why make you study logic? Program Verification Why make you do

Outline Static Analysis: Symbolic Execution and Inductive Verification Methods Overview TDDC90:

Linear types : A simple way to derive safety properties of programs Software Analysis and

Static Analysis: Symbolic Execution and Inductive Verification Methods TDDC90: Software Security

Formal Verification Methods 2: Symbolic Simulation John Harrison Intel Corporation

Symbolic String Verification: Combining String Analysis and Size Analysis Fang Yu Tevfik Bultan

Security Protocol Verification: Symbolic and Computational Models Bruno Blanchet INRIA,

Formal verification of numerical programs: from C annotated programs to Coq proofs Sylvie Boldo

Symbolic Verification in Synchronous Constraint Programming (Work in progress) Synchronous

Leonardo de Moura Microsoft Research Verification/Analysis tools need some form of Symbolic

Leonardo de Moura Microsoft Research Verification/Analysis tools need some form of Symbolic

Divisibility properties of sporadic Ap ery-like numbers Symbolic Computation and Special