Communication-Closed Asynchronous Protocols

Damian, Andrei; Drăgoi, Cezara; Militaru, Alexandru; Widder, Josef

doi:10.1007/978-3-030-25543-5_20

Cited by 18 publications

(35 citation statements)

References 45 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Practical approaches to computer-aided verification of distributed algorithms and systems is a lively research area as well: Approaches range from mechanized verification [48,90,80] over deductive verification [35,9,73,38,32] to automated techniques [17,60,5,44]. In our work, we follow the idea of identifying fragments of automata and logic that are sufficiently expressive for capturing interesting algorithms and specifications, as well as amenable for completely automated verification.…”

Section: Discussionmentioning

confidence: 99%

“…Observe that the algorithm only operates on messages from the current round (the guards only count messages tagged with r ). Asynchronous algorithms with this feature are called communication closed [40,32]. In the case of Ben-Or's algorithm, each round consists of two stages where the processes first exchange messages tagged with R, wait until the number of received messages reaches a certain threshold (the expression over parameters in line 5) and then exchange messages tagged with P .…”

Section: Randomized Algorithmsmentioning

confidence: 99%

See 1 more Smart Citation

Tutorial: Parameterized Verification with Byzantine Model Checker

Konnov¹,

Lazić²,

Stoilkovska

et al. 2020

Formal Techniques for Distributed Objects, Components, and Systems

Self Cite

View full text Add to dashboard Cite

Threshold guards are a basic primitive of many fault-tolerant algorithms that solve classical problems of distributed computing, such as reliable broadcast, two-phase commit, and consensus. Moreover, threshold guards can be found in recent blockchain algorithms such as Tendermint consensus. In this article, we give an overview of the techniques implemented in Byzantine Model Checker (ByMC). ByMC implements several techniques for automatic verification of threshold-guarded distributed algorithms. These algorithms have the following features: (1) up to t of processes may crash or behave Byzantine; (2) the correct processes count messages and make progress when they receive sufficiently many messages, e.g., at least t + 1; (3) the number n of processes in the system is a parameter, as well as t; (4) and the parameters are restricted by a resilience condition, e.g., n > 3t. Traditionally, these algorithms were implemented in distributed systems with up to ten participating processes. Nowadays, they are implemented in distributed systems that involve hundreds or thousands of processes. To make sure that these algorithms are still correct for that scale, it is imperative to verify them for all possible values of the parameters.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Randomized Algorithmsmentioning

confidence: 99%

Tutorial: Parameterized Verification with Byzantine Model Checker

Konnov¹,

Lazić²,

Stoilkovska

et al. 2020

Formal Techniques for Distributed Objects, Components, and Systems

Self Cite

View full text Add to dashboard Cite

show abstract

“…More importantly, our framework opens the door for applying more advanced techniques such as abstraction [Ball et al 2001;Clarke et al 2003] and reduction [Cohen and Lamport 1998;Lipton 1975]. Reductions were shown to be efficient for special classes of fault-tolerant distributed algorithms by [Damian et al 2019;Konnov et al 2017b;von Gleissenthall et al 2019]. We are going to explore similar techniques, in order to check complex TLA + specifications of Raft by [Ongaro 2014], Disk Paxos [Gafni and Lamport 2003], and Egalitarian Paxos by [Moraru et al 2013].…”

Section: Discussionmentioning

confidence: 99%

TLA+ model checking made symbolic

Konnov

Kukovec²,

Tran³

2019

Proc. ACM Program. Lang.

View full text Add to dashboard Cite

TLA + is a language for formal specification of all kinds of computer systems. System designers use this language to specify concurrent, distributed, and fault-tolerant protocols, which are traditionally presented in pseudo-code. TLA + is extremely concise yet expressive: The language primitives include Booleans, integers, functions, tuples, records, sequences, and sets thereof, which can be also nested. This is probably why the only model checker for TLA + (called TLC) relies on explicit enumeration of values and states. In this paper, we present APALACHE Ð a first symbolic model checker for TLA +. Like TLC, it assumes that all specification parameters are fixed and all states are finite structures. Unlike TLC, APALACHE translates the underlying transition relation into quantifier-free SMT constraints, which allows us to exploit the power of SMT solvers. Designing this translation is the central challenge that we address in this paper. Our experiments show that APALACHE outperforms TLC on examples with large state spaces. CCS Concepts: • Theory of computation → Logic and verification; • Software and its engineering → Model checking; Specification languages.

show abstract

“…They show that many textbook protocols can be modeled under the following restrictions: (i) every state is assumed to have an unguarded internal transition to the initial state Init, and (ii) the only conjunctive guard is {Init}. Clearly, every action in a process that satisfies these conditions will also satisfy condition (C1w), and therefore well-behaved systems subsume and significantly generalize the types of protocols considered by Emerson and Kahlon. Moreover, there has recently been much research on the verification of roundbased distributed systems [14,34,37], where processes can move independently to some extent, with the restriction that transitions between rounds can only be done synchronously for all processes. When abstracting from certain features (e.g.…”

Section: Examplementioning

confidence: 99%

“…Distributed applications are notoriously difficult to implement and reason about, primarily due to the combinatorial explosion of behaviors resulting from the interleaving of computation and communication. Naturally, they have received a lot of attention from the formal methods community to facilitate reasoning about correctness properties that are too complex to reason about informally or manually [3,7,14,15,34,36,42,46,50,52,55].…”

Section: Introductionmentioning

confidence: 99%

Parameterized Verification of Systems with Global Synchronization and Guards

Jaber

Jacobs

Wagner

et al. 2020

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Inspired by distributed applications that use consensus or other agreement protocols for global coordination, we define a new computational model for parameterized systems that is based on a general global synchronization primitive and allows for global transition guards. Our model generalizes many existing models in the literature, including broadcast protocols and guarded protocols. We show that reachability properties are decidable for systems without guards, and give sufficient conditions under which they remain decidable in the presence of guards. Furthermore, we investigate cutoffs for reachability properties and provide sufficient conditions for small cutoffs in a number of cases that are inspired by our target applications.

show abstract

Communication-Closed Asynchronous Protocols

Cited by 18 publications

References 45 publications

Tutorial: Parameterized Verification with Byzantine Model Checker

Tutorial: Parameterized Verification with Byzantine Model Checker

TLA+ model checking made symbolic

Parameterized Verification of Systems with Global Synchronization and Guards

Contact Info

Product

Resources

About