Formal Specification and Verification of Dynamic Parametrized Architectures

Cimatti, Alessandro; Stojic, Ivan; Tonetta, Stefano

doi:10.1007/978-3-319-95582-7_37

Cited by 6 publications

(10 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…All in all, the present contribution is deeply rooted in the long-standing tradition of the application of model theory in computer science, as witnessed by notable approaches like the one in Ghilardi (2004), Baader et al (2006), Ghilardi et al (2008b), Ghilardi and van Gool (2017), Nicolini et al (2009aNicolini et al ( ,b, 2010, Sofronie-Stokkermans (2008, 2016, Ghilardi andGianola (2017, 2018). In particular, this paper applies these ideas in a genuinely novel mathematical context and shows how these techniques can be used for the first time to empower algorithmic techniques for the verification of infinite-state systems based on arrays in the style of Ghilardi et al (2008a), Ghilardi and Ranise (2010a,b), Alberti et al (2014aAlberti et al ( ,b, 2017, Conchon et al (2012Conchon et al ( , 2015Conchon et al ( , 2018a, Delzanno (2018), Cimatti et al (2018), so as to make such techniques applicable to the timely, challenging settings of data-aware processes (Calvanese et al 2019d). For an explicit linking between the use of model completeness in computer science and our application to verification, see in particular the survey (Calvanese et al 2019b).…”

Section: Main Contributionsmentioning

confidence: 99%

SMT-based verification of data-aware processes: a model-theoretic approach

Calvanese

Ghilardi

Gianola

et al. 2020

Math. Struct. Comp. Sci.

View full text Add to dashboard Cite

In recent times, satisfiability modulo theories (SMT) techniques gained increasing attention and obtained remarkable success in model-checking infinite-state systems. Still, we believe that whenever more expressivity is needed in order to specify the systems to be verified, more and more support is needed from mathematical logic and model theory. This is the case of the applications considered in this paper: we study verification over a general model of relational, data-aware processes, to assess (parameterized) safety properties irrespectively of the initial database (DB) instance. Toward this goal, we take inspiration from array-based systems and tackle safety algorithmically via backward reachability. To enable the adoption of this technique in our rich setting, we make use of the model-theoretic machinery of model completion, which surprisingly turns out to be an effective tool for verification of relational systems and represents the main original contribution of this paper. In this way, we pursue a twofold purpose. On the one hand, we isolate three notable classes for which backward reachability terminates, in turn witnessing decidability. Two of such classes relate our approach to conditions singled out in the literature, whereas the third one is genuinely novel. On the other hand, we are able to exploit SMT technology in implementations, building on the well-known MCMT (Model Checker Modulo Theories) model checker for array-based systems and extending it to make all our foundational results fully operational. All in all, the present contribution is deeply rooted in the long-standing tradition of the application of model theory in computer science. In particular, this paper applies these ideas in an original mathematical context and shows how these techniques can be used for the first time to empower algorithmic techniques for the verification of infinite-state systems based on arrays, so as to make such techniques applicable to the timely, challenging settings of data-aware processes.

show abstract

Section: Main Contributionsmentioning

confidence: 99%

SMT-based verification of data-aware processes: a model-theoretic approach

Calvanese

Ghilardi

Gianola

et al. 2020

Math. Struct. Comp. Sci.

View full text Add to dashboard Cite

show abstract

“…Lambda is written in Python, and uses the SMT-based IC3 with implicit predicate abstraction of [4] as underlying quantifier-free verification engine. 6 Lambda accepts as input array-based systems specified either in the language of MCMT [11] or in VMT format (a light-weight extension of SMT-LIB to model transition systems [25]). In case of successful termination, Lambda generates either a counterexample trace (for violated properties) in a concrete instance of the parametric system, or a quantified inductive invariant that proves the property for any instance of the system.…”

Section: Experimental Evaluationmentioning

confidence: 99%

“…We have used all the instances which were available in both input formats, and we have split benchmarks containing multiple properties into different files. DynArch consists of 57 instances of verification problems of dynamic architectures, taken from [6]. These benchmarks make use of arithmetic constraints on Trains consists of 17 instances derived by (a simplified version of) verification problems on railway interlocking logics [1].…”

Section: Experimental Evaluationmentioning

confidence: 99%

Universal Invariant Checking of Parametric Systems with Quantifier-free SMT Reasoning

Cimatti

Griggio

Redondi

2021

Automated Deduction – CADE 28

Self Cite

View full text Add to dashboard Cite

The problem of invariant checking in parametric systems – which are required to operate correctly regardless of the number and connections of their components – is gaining increasing importance in various sectors, such as communication protocols and control software. Such systems are typically modeled using quantified formulae, describing the behaviour of an unbounded number of (identical) components, and their automatic verification often relies on the use of decidable fragments of first-order logic in order to effectively deal with the challenges of quantified reasoning.In this paper, we propose a fully automatic technique for invariant checking of parametric systems which does not rely on quantified reasoning. Parametric systems are modeled with array-based transition systems, and our method iteratively constructs a quantifier-free abstraction by analyzing, with SMT-based invariant checking algorithms for non-parametric systems, increasingly-larger finite instances of the parametric system. Depending on the verification result in the concrete instance, the abstraction is automatically refined by leveraging canditate lemmas from inductive invariants, or by discarding previously computed lemmas.We implemented the method using a quantifier-free SMT-based IC3 as underlying verification engine. Our experimental evaluation demonstrates that the approach is competitive with the state of the art, solving several benchmarks that are out of reach for other tools.

show abstract

“…In these languages, "parameters representing the infinite-state space of possible configurations, and first-order formulas represent the sets of initial configurations and reconfiguration transitions." (CIMATTI et al, 2018). Because they are languages based on mathematical formalism, its semantics is well defined, which entails the absence of ambiguities.…”

Section: Approaches To Represent Dynamic Software Architecturesmentioning

confidence: 99%

“…We observed that the highly number of formal approaches for representing dynamic architectures are due the following factors: (i) dynamic software architectures had their inspiration in distributed systems architectures (MAGEE et al, 1995) and these architectures were represented by formal models process-algebras, so it is natural that most authors tend to continue using these approaches, adapting it to the context is being applied. Dynamic Wright (ALLEN et al, 1998), for example, was first proposed to lead with dynamic structures in concurrent and distributed systems and are used in dynamic software architectures; and (ii) the use of formal languages makes possible the automatic validation of the described architectures, and the main validated points are related to availability and reliability (ALLEN et al, 1998;HIRSCH;MONTANARI, 2002;OQUENDO, 2016;CIMATTI et al, 2018;WERMELINGER;FIADEIRO, 2002); Another important aspect related to formal representations is the possibility of architecture simulation, a very important factor while several architectural decisions can only be evaluated at run-time (F. Oquendo, 2008). Allen et al (1998) give an example of reconfiguration that we will consider to explain simulation advantages: consider a client-server system that receives requests for e-mail firing, where the router must be reconfigured in a way that balances the load between two servers, that is, if the demand exceeds the capacity of one server, another server must be inserted in the architecture, and, similarly, when the demand decreases, the server must be removed from the architecture.…”

Section: Software Architecturesmentioning

confidence: 99%

Architectural Views to the Representation of Dynamic Software Architectures

Biazotto¹

View full text Add to dashboard Cite

Presently, several critical application domains have adopted large, complex, and softwareintensive systems, whose architectural design demand special attention. Such systems, occasionally display dynamic architectures and specific structures are required for supporting changes at run-time. Moreover, many of them require high levels of reliability due to their critical domains. Towards ensuring reliability, formal languages/notations have been used to represent dynamism in software architectures, which demand efforts and time to be learned and to model architectures; besides, the resulting models are of difficult understanding. Moreover, most of these representation are incomplete, lacking some relevant information. To mitigate this problem, this Master's project proposes a set of architectural views and associate semi-formal techniques that support architects in the design of software architectures that present dynamism. This Master's project proposes a set of architectural views and associated semi-formal techniques for supporting architects in the design of software architectures that show dynamism. From results of a systematic mapping study, a conceptual model was elaborated towards delimiting the main concepts to be covered by the views. A set of fine views (general view, reconfiguration view, rippleeffect view, scenario view, and strategy view) was then defined and a proof of concept was conducted with the use of a system for the Healthcare Supportive Home Systems domain. The results show the feasibility and suitability of using the set in combination with the conceptual model and the associated techniques for representing dynamism in software architectures.

show abstract

Formal Specification and Verification of Dynamic Parametrized Architectures

Cited by 6 publications

References 24 publications

SMT-based verification of data-aware processes: a model-theoretic approach

SMT-based verification of data-aware processes: a model-theoretic approach

Universal Invariant Checking of Parametric Systems with Quantifier-free SMT Reasoning

Architectural Views to the Representation of Dynamic Software Architectures

Contact Info

Product

Resources

About