Abstraction-Guided Model Checking Using Symbolic IDA* and Heuristic Synthesis

Qian, Kairong; Nymeyer, Albert; Susanto, Steven

doi:10.1007/11562436_21

Cited by 7 publications

(17 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The distance estimation function is read off the overall merged automaton. Moreover, several distance estimation functions based on pattern databases have been proposed [9,13,17,18]. A pattern database heuristic function abstracts a problem by ignoring some of the relevant symbols, e. g., some of the state variables.…”

Section: Related Workmentioning

confidence: 99%

“…Earlier work on directed model checking was mainly focused on the first point, i. e., in defining abstractions that lead to distance estimation functions d # to guide the state space traversal efficiently towards an error state [3,4,5,9,12,13,17,18]. Considering the second point, there are two predominantly used algorithms of directed model checking, namely A * and greedy search (cf.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Transition-Based Directed Model Checking

Wehrle

Kupferschmid

Podelski

2009

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

Abstract. Directed model checking is a well-established technique that is tailored to fast detection of system states that violate a given safety property. This is achieved by influencing the order in which states are explored during the state space traversal. The order is typically determined by an abstract distance function that estimates a state's distance to a nearest error state. In this paper, we propose a general enhancement to directed model checking based on the evaluation of state transitions. We present a schema, parametrized by an abstract distance function, to evaluate transitions and propose a new method for the state space traversal. Our framework can be applied automatically to a wide range of abstract distance functions. The empirical evaluation impressively shows its practical potential. Apparently, the new method identifies a sweet spot in the trade-off between scalability (memory consumption) and short error traces.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Transition-Based Directed Model Checking

Wehrle

Kupferschmid

Podelski

2009

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

show abstract

“…Groce and Visser [3] define heuristics inspired from the area of testing, with the idea to prefer covering yet unexplored branches in the program. Qian and Nymeyer [4,8] ignore some of the state variables to define heuristics which are then used in a pattern database approach (see below). Kupferschmid et al [5] adapt a heuristic method from the area of AI Planning, based on a notion of "monotonicity" where it is assumed that a state variable accumulates, rather than changes, its values.…”

Section: Introductionmentioning

confidence: 99%

“…In our work, we extend and improve upon a new kind of strategy to choose a PDB abstraction. The strategy is particularly well suited for model checking; a first version of it was explored by Qian and Nymeyer [8]. It is based on what we call a Russian Doll principle.…”

Section: Introductionmentioning

confidence: 99%

“…The basic idea is to do some form of abstract cone-of-influence [11] computation, and ignore those symbols that do not appear in the cone-of-influence. Qian and Nymeyer [8] use a simple syntactic backward chaining process that iteratively collects variable names and requires the user to specify a threshold on the maximal considered "distance" -number of iterations -of the kept variables from the safety property. In our work, we use a more sophisticated procedure based on the abstraction techniques of Kupferschmid et al [5].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Fast Directed Model Checking Via Russian Doll Abstraction

Kupferschmid

Hoffmann

Larsen

Tools and Algorithms for the Construction and Analysis of Systems

View full text Add to dashboard Cite

Directed model checking aims at speeding up the search for bugs in a system through the use of heuristic functions. Such a function maps states to integers, estimating the state's distance to the nearest error state. The search gives a preference to states with lower estimates. The key issue is how to generate good heuristic functions, i. e., functions that guide the search quickly to an error state. An arsenal of heuristic functions has been developed in recent years. Significant progress was made, but many problems still prove to be notoriously hard. In particular, a body of work describes heuristic functions for model checking timed automata in UPPAAL, and tested them on a certain set of benchmarks. Into this arsenal we add another heuristic function. With previous heuristics, for the largest of the benchmarks it was only just possible to find some (unnecessarily long) error path. With the new heuristic, we can find provably shortest error paths for these benchmarks in a matter of seconds. The heuristic function is based on a kind of Russian Doll principle, where the heuristic for a given problem arises through using UPPAAL itself for the complete exploration of a simplified instance of the same problem. The simplification consists in removing those parts from the problem that are distant from the error property. As our empirical results confirm, this simplification often preserves the characteristic structure leading to the error.

show abstract