An equational theory for weak bisimulation via generalized parameterized coinduction

Zakowski, Yannick; He, Paul; Hur, Chung-Kil; Zdancewic, Steve

doi:10.1145/3372885.3373813

Cited by 9 publications

(4 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…GPaco [33,57] is a framework for modular coinductive reasoning in Coq, which supports "up-to" bisimilarity techniques. It is designed for interactive use and focuses on automating low-level proof steps.…”

Section: Related Workmentioning

confidence: 99%

Leapfrog: certified equivalence for protocol parsers

Doenges

Kappé

Sarracino

et al. 2022

Proceedings of the 43rd ACM SIGPLAN International Conference on Programming Language Design and Implementation

View full text Add to dashboard Cite

We present Leapfrog, a Coq-based framework for verifying equivalence of network protocol parsers. Our approach is based on an automata model of P4 parsers, and an algorithm for symbolically computing a compact representation of a bisimulation, using "leaps. " Proofs are powered by a certified compilation chain from first-order entailments to low-level bitvector verification conditions, which are discharged using off-the-shelf SMT solvers. As a result, parser equivalence proofs in Leapfrog are fully automatic and push-button.We mechanically prove the core metatheory that underpins our approach, including the key transformations and several optimizations. We evaluate Leapfrog on a range of practical case studies, all of which require minimal configuration and no manual proof. Our largest case study uses Leapfrog to perform translation validation for a third-party compiler from automata to hardware pipelines. Overall, Leapfrog represents a step towards a world where all parsers for critical network infrastructure are verified. It also suggests directions for follow-on efforts, such as verifying relational properties involving security.CCS Concepts: • Theory of computation → Automata extensions; • Software and its engineering → Software verification.

show abstract

Section: Related Workmentioning

confidence: 99%

Leapfrog: certified equivalence for protocol parsers

Doenges

Kappé

Sarracino

et al. 2022

Proceedings of the 43rd ACM SIGPLAN International Conference on Programming Language Design and Implementation

View full text Add to dashboard Cite

show abstract

“…ITrees [39], and their mechanisation in Coq, have been applied in various projects as a way of defining abstract yet executable semantics [21,40,23,41,42,22,33]. They have been used to verify C programs [21] and a HTTP key-value server [22].…”

Section: Simulation By Code Generationmentioning

confidence: 99%

Formally Verified Simulations of State-Rich Processes using Interaction Trees in Isabelle/HOL

Foster¹,

Hur²,

Woodcock³

2021

Preprint

Self Cite

View full text Add to dashboard Cite

Simulation and formal verification are important complementary techniques necessary in high assurance model-based systems development. In order to support coherent results, it is necessary to provide unifying semantics and automation for both activities. In this paper we apply Interaction Trees in Isabelle/HOL to produce a verification and simulation framework for state-rich process languages. We develop the core theory and verification techniques for Interaction Trees, use them to give a semantics to the CSP and Circus languages, and formally link our new semantics with the failures-divergences semantic model. We also show how the Isabelle code generator can be used to generate verified executable simulations for reactive and concurrent programs.

show abstract

“…Automated provers, to the best of our knowledge, currently do not offer any support for coinduction, and while coinductive data types have been implemented in interactive theorem provers (a.k.a. proof assistants) such as Coq [11,47,83], Nuprl [30], Isabelle [13,81,12,38], Agda [1], Lean [4], and Dafny [54], the treatment of these forms of data is often partial. These formalizations, as well as other formal frameworks that support the combination of induction and coinduction, e.g., [80,61,6,46], generally rely on making (co)invariants explicit within proofs.…”

Section: Introductionmentioning

confidence: 99%

“…Some notable cyclic systems that do support coinduction in various settings include [67,58,72,36,2]. Another related framework is that of Coq's parameterized coinduction [47,83], which offers a different, but highly related, implicit nature of proofs (based on patterns within parameters, rather than within proof sequents). This paper reviews the general method of non-well-founded proof theory, focusing on its use in capturing both implicit inductive and coinductive reasoning.…”

Section: Introductionmentioning

confidence: 99%

Non-well-founded Deduction for Induction and Coinduction

Cohen

2021

Automated Deduction – CADE 28

View full text Add to dashboard Cite

Induction and coinduction are both used extensively within mathematics and computer science. Algebraic formulations of these principles make the duality between them apparent, but do not account well for the way they are commonly used in deduction. Generally, the formalization of these reasoning methods employs inference rules that express a general explicit (co)induction scheme. Non-well-founded proof theory provides an alternative, more robust approach for formalizing implicit (co)inductive reasoning. This approach has been extremely successful in recent years in supporting implicit inductive reasoning, but is not as well-developed in the context of coinductive reasoning. This paper reviews the general method of non-well-founded proofs, and puts forward a concrete natural framework for (co)inductive reasoning, based on (co)closure operators, that offers a concise framework in which inductive and coinductive reasoning are captured as we intuitively understand and use them. Through this framework we demonstrate the enormous potential of non-well-founded deduction, both in the foundational theoretical exploration of (co)inductive reasoning and in the provision of proof support for (co)inductive reasoning within (semi-)automated proof tools.

show abstract

An equational theory for weak bisimulation via generalized parameterized coinduction

Cited by 9 publications

References 18 publications

Leapfrog: certified equivalence for protocol parsers

Leapfrog: certified equivalence for protocol parsers

Formally Verified Simulations of State-Rich Processes using Interaction Trees in Isabelle/HOL

Non-well-founded Deduction for Induction and Coinduction

Contact Info

Product

Resources

About