Presentation is loading. Please wait.

Presentation is loading. Please wait.

© Andrew IrelandDependable Systems Group Proof Automation for the SPARK Approach to High Integrity Ada Andrew Ireland Computing & Electrical Engineering.

Published byKenneth Bryant Modified over 8 years ago

Similar presentations

Presentation on theme: "© Andrew IrelandDependable Systems Group Proof Automation for the SPARK Approach to High Integrity Ada Andrew Ireland Computing & Electrical Engineering."— Presentation transcript:

1 © Andrew IrelandDependable Systems Group Proof Automation for the SPARK Approach to High Integrity Ada Andrew Ireland Computing & Electrical Engineering Heriot-Watt University Edinburgh

2 © Andrew IrelandDependable Systems Group Executive Summary Funded by the EPSRC Critical Systems programme ( GR/R24081 ) in collaboration with Praxis Critical Systems Julian Richardson (Co-investigator) and Bill Ellis (Research Associate) Investigate the role of proof planning within the SPARK approach to high integrity Ada

3 © Andrew IrelandDependable Systems Group Progress Report (month 7) Background and basic approach Proposed verification architecture Initial investigation into proof automation Future work

4 © Andrew IrelandDependable Systems Group The SPARK Language A subset of Ada that eliminates potential ambiguities and insecurities (Praxis Critical Systems) Supports code level annotations Static analysis: data flow and information flow analysis and formal verification Correctness-by-construction: Z specifications down to SPARK code Applications include SHOLIS: UK MoD’s first Def Standard 00-55 project

5 © Andrew IrelandDependable Systems Group The SPARK Tools SPADE Simplifier SPARK Examiner SPADE Proof Checker proof code VCs user rules (lemmas) path functions flow analysis feedback

6 © Andrew IrelandDependable Systems Group Benefits: reduces the level of user guided search by automating the “big steps” within proof development Proof Automation Proof Plans: AI technique for mechanizing formal reasoning based upon high-level proof patterns Proof Plan = Tactics + Methods + Critics

7 © Andrew IrelandDependable Systems Group Clam-Oyster plannerchecker tactic conjectures theory proof user

8 © Andrew IrelandDependable Systems Group Mathematical induction: program verification, synthesis, and optimization; hardware verification; correction of faulty specifications. Non-inductive proof: summing series; limit theorems. Automatic proof patching: conjecture generalization, lemma discovery, induction revision, case splitting, loop invariant discovery. Applications of Proof Plans

9 © Andrew IrelandDependable Systems Group Proof Plan Reuse ripple fertilize simplify induction ripple fertilize simplify tautology ind-stratinv-strat

10 © Andrew IrelandDependable Systems Group Automatic Generalization initial conjecture schematic conjecture tactic for generalized conjecture planner

11 © Andrew IrelandDependable Systems Group Productive Use Of Failure Generalization Case split Revise induction Lemma speculation Precondition Patch X X X X 4321

12 © Andrew IrelandDependable Systems Group NuSPADE Architecture plannerchecker cmd s VCs conjectures theory proof user

13 © Andrew IrelandDependable Systems Group Playing Devil’s Advocate Long history dating back to 70s, Wegbreit, German, Katz & Manna, … Early focus on post-hoc verification where theorem proving and heuristic components were kept separate SPARK approach advocates correctness- by-construction and proof planning integrates high-level theorem proving with the heuristic components

14 © Andrew IrelandDependable Systems Group Results of Initial Investigations Previous proof plans for reasoning about imperative code carry across on paper Proofs of the absence of run-time errors exhibit common pattern – ripe for proof plan development (aim to revisit early work of Steven German) Proof patching mechanism requires extensions – constraint solving capability and bottom-up invariant generation techniques

15 © Andrew IrelandDependable Systems Group Future Work Complete first prototype of NuSPADE Conduct initial testing on “real world” applications supplied by Praxis Further investigate new proof plans and proof management issues

Download ppt "© Andrew IrelandDependable Systems Group Proof Automation for the SPARK Approach to High Integrity Ada Andrew Ireland Computing & Electrical Engineering."

Similar presentations

The design process IACT 403 IACT 931 CSCI 324 Human Computer Interface Lecturer:Gene Awyzio Room:3.117 Phone:4221 4090

The design process IACT 403 IACT 931 CSCI 324 Human Computer Interface Lecturer:Gene Awyzio Room:3.117 Phone:
CSE 470 : Software Engineering The Software Process.

CSE 470 : Software Engineering The Software Process.
CS 325: Software Engineering January 13, 2015 Introduction Defining Software Engineering SWE vs. CS Software Life-Cycle Software Processes Waterfall Process.

CS 325: Software Engineering January 13, 2015 Introduction Defining Software Engineering SWE vs. CS Software Life-Cycle Software Processes Waterfall Process.
B. Sharma, S.D. Dhodapkar, S. Ramesh 1 Assertion Checking Environment (ACE) for Formal Verification of C Programs Babita Sharma, S.D.Dhodapkar RCnD, BARC,

B. Sharma, S.D. Dhodapkar, S. Ramesh 1 Assertion Checking Environment (ACE) for Formal Verification of C Programs Babita Sharma, S.D.Dhodapkar RCnD, BARC,
Software Failure: Reasons Incorrect, missing, impossible requirements * Requirement validation. Incorrect specification * Specification verification. Faulty.

Software Failure: Reasons Incorrect, missing, impossible requirements * Requirement validation. Incorrect specification * Specification verification. Faulty.
Background information Formal verification methods based on theorem proving techniques and model­checking –to prove the absence of errors (in the formal.

Background information Formal verification methods based on theorem proving techniques and model­checking –to prove the absence of errors (in the formal.
Presenter: PCLee – 2011.03.02. This paper outlines the MBAC tool for the generation of assertion checkers in hardware. We begin with a high-level presentation.

Presenter: PCLee – This paper outlines the MBAC tool for the generation of assertion checkers in hardware. We begin with a high-level presentation.
1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.

1 Semantic Description of Programming languages. 2 Static versus Dynamic Semantics n Static Semantics represents legal forms of programs that cannot be.
CS 355 – Programming Languages

CS 355 – Programming Languages
PROBLEMSOLUTION TECHNOLOGY Traceability relations between requirements and code are generally derived manually, and must be manually updated when software.

PROBLEMSOLUTION TECHNOLOGY Traceability relations between requirements and code are generally derived manually, and must be manually updated when software.
An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.

An Integration of Program Analysis and Automated Theorem Proving Bill J. Ellis & Andrew Ireland School of Mathematical & Computer Sciences Heriot-Watt.
Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.

Formal Methods in Software Engineering Credit Hours: 3+0 By: Qaisar Javaid Assistant Professor Formal Methods in Software Engineering1.
Knowledge Acquisitioning. Definition The transfer and transformation of potential problem solving expertise from some knowledge source to a program.

Knowledge Acquisitioning. Definition The transfer and transformation of potential problem solving expertise from some knowledge source to a program.
Automated V&V for High Integrity Systems A Targeted Formal Methods Approach Simon Burton Research Associate Rolls-Royce University Technology Centre University.

Automated V&V for High Integrity Systems A Targeted Formal Methods Approach Simon Burton Research Associate Rolls-Royce University Technology Centre University.
Fundamentals of Information Systems, Second Edition

Fundamentals of Information Systems, Second Edition
A Type System for Expressive Security Policies David Walker Cornell University.

A Type System for Expressive Security Policies David Walker Cornell University.
CSC 402, Fall 20001 Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)

CSC 402, Fall Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)
Overview of the Multos construction process Chad R. Meiners.

Overview of the Multos construction process Chad R. Meiners.
End-to-End Design of Embedded Real-Time Systems Kang G. Shin Real-Time Computing Laboratory EECS Department The University of Michigan Ann Arbor, MI 48019-2122.

End-to-End Design of Embedded Real-Time Systems Kang G. Shin Real-Time Computing Laboratory EECS Department The University of Michigan Ann Arbor, MI
Software Testing Name: Madam Currie Course: Swen5431 Semester: Summer 2K.

Software Testing Name: Madam Currie Course: Swen5431 Semester: Summer 2K.

Similar presentations

Ads by Google