Download presentation

Presentation is loading. Please wait.

Published byFrancis Knight Modified about 1 year ago

1
Unifying Theories of Concurrency: CCSandCSP He Jifeng and Tony Hoare BCTCSApril 6, 2006

2
Why? just for the sake of it –as a scientific achievement to explain differences between theories –and what they are good for to integrate more general toolsets –for coherence and consistency –in system design, implementation,...

3
A Transition System a set P of processes: nil, p, q, Lp,… a set A of observations: a, b, … –communications: x, y,... –hidden events: , ,... –meaningful barbs: ref(X), δ … a relation T P × A × P a {(p,q) | (p,a,q) T}

4
a b a c ref(X) x b

5
Traces p q p = q p s r q. p a q & q s r p s _ q. p s q traces(p) { s | p s _ }

6
(Strong) Simulation ≤ is the weakest x P×P such that a:A, x ; a a ; x –describes efficient model checking algorithm ≡ ≤ ∩ ≥ Theorem: ≤ and ≡ are pre-orders – Id and ≤ ; ≤ satisfy the defining equation

7
Refinement ⊑ is the weakest x P×P such that s:A*, x ; s s ; U Theorem: ≤ ⊑ –one defining equation implies the other Theorem: p ⊑ q iff traces(q) traces(p)

8
L : P → P is a link if it maps all processes of its source theory to all processes of its target theory. ≤ L L ; ≤ ; L –i.e.,p ≤ L qiffLp ≤ Lq ⊑ L L ; ⊑ ; L Theorem: ≤ L, ⊑ L are preorders – L ; L = Id

9
L is monotonic ≤ ≤ L or equivalently: – p ≤ q Lp ≤ Lq, all p, q – ≤ ; L L ; ≤ consequently: –all order-theorems of source theory are valid in the target theory

10
L is idempotent L ; L ; ≤ = L ; ≤ or equivalently: –L(Lp) ≡ Lp,all p consequently: –≤ L =≤ (restricted to target theory) –Lp ≡ p iff p is in target theory

11
L is decreasing L ≤ or equivalently: –Lp ≤ p,for all p – ≤ L ; ≤ consequently: –the target theory is more abstract –Lp is the closest abstraction of p within the target theory.

12
L is efficient L ; ≤= ≤ L or equivalently: –Lp ≤ qiffLp ≤ Lq,all p, q consequently: –to test : spec ≤ L imp, model-check : L(spec) ≤ imp, –(as is done in FDR)

13
L is a retraction iff it is decreasing ≤ L ; ≤ it is idempotentL ; L ; ≤ L ; ≤ it is monotonic ≤ ; L L ; ≤ Theorem: L is a retraction iffL is efficient iffL ; ≤ is a preorder

14
quarter of the proof L is a retraction (L ; ≤) is a preorder –Id (≤) (L ; ≤) {L dec} –(L ; ≤ ; L ; ≤) (L ; L ; ≤ ; ≤) {L mon} L ; ≤ {L idem}

15
Weak Simulation p =a=> q Wp Wq where = => * and =a=> * * for a and * … Theorem: W is a retraction

16
The original graph a b

17
W only adds transitions so it is decreasing a b W W W W a a a W

18
W W adds no more so it is idempotent a b W WW a a a W

19
(W; ≤ ) is weak simulation Theorem: it is the weakest solution of the defining equations –x ; * * ; x, for a – x ; * ; x CCS/weak simulation is a retract (by W) of CCS/strong simulation

20
After p / sis the most general behaviour of p after performing all of trace s p s _ p/s a p/(s )

21
The original graph b c a a p

22
The effect of _ /a b b c c a a p/a p/ac p p/ab

23
Trace refinement _ & p/a = q p a _ & p/a = q Tp a Tq Theorem: T is a retraction and (T ; ≤ ) = ⊑

24
The original graph b b c c a a p/a p/ac p p/ab

25
The effect of T b b c c a a T(p/a) T(p/ac) TpTp T(p/ab) a

26
CSP is a retract of CCS Theorem: (W;T) is a retraction and (W; T; ≤ ) is CSP trace refinement Conclusion: CSP/trace refinement is a retract of CCS/weak simulation.

27
ref(X) is a refusal where X is a set of communications x X { } p x _ p x q Rp ref(X) Rp Rp x Rq Theorem: (R ; ≤ ; R ) is ⅔ simulation

28
Divergences p p' p'' … forever Dp δ Dr & Dp a Dr p a q Dp a Dq Theorem: D is a retraction

29
CSP/FDR = L(CCS / ≤ ) where L = D ; R ; W ; T is a retraction –with respect to ≤ D;R L is defined by SOS transition rules. CSP healthiness conditions are expressed p ≡ L(p) CSP refinement coincides with simulation variations of CSP and CCS defined by selection from: T, D, R, W,…

30
CCS is more general –applies to all edge-labelled graphs has less laws –the minimum reasonable set is less expressive –uses equivalence rather than ordering

31
CSP describes distributed computing –graphs restricted by healthiness conditions has more laws –for optimisation and reasoning –the maximum reasonable set respecting deadlock and divergence is more expressive –ordering represents correctness –and refinement of system from specification

Similar presentations

© 2017 SlidePlayer.com Inc.

All rights reserved.

Ads by Google