1 / 23

CSE 599F: Formal Verification of Computer Systems

CSE 599F: Formal Verification of Computer Systems. Course information. Instructor: Shaz Qadeer Office: 454 Allen Center Lectures: CSE 303, Wed-Fri, 12pm-1:20pm Office hours: Wed-Fri, by appointment Web page: http://www.cs.washington.edu/education/courses/599f/. What is this course about?.

lacey
Download Presentation

CSE 599F: Formal Verification of Computer Systems

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CSE 599F: Formal Verification of Computer Systems

  2. Course information • Instructor: Shaz Qadeer • Office: 454 Allen Center • Lectures: CSE 303, Wed-Fri, 12pm-1:20pm • Office hours: Wed-Fri, by appointment • Web page: http://www.cs.washington.edu/education/courses/599f/

  3. What is this course about? • Techniques for improving reliability of computer systems • Applicable to both software and hardware • Focus on software • Automated techniques for verification of partial specifications

  4. This course is not about… • Programming languages and type systems • Software engineering methodology • Dynamic analysis • Software testing

  5. Prerequisites • Algorithms • Formal language theory • Elementary mathematical logic • But, none of that matters if you really want to understand the material

  6. Goals • Learn about the fundamental ideas • Understand the current research problems • Do novel research The best advances come from a combination of techniques from different research areas!

  7. Grades • Homeworks • Work out examples and theoretical problems • Use prototype verification tools to verify simple examples • Discussion and review of research articles • Project (in groups of 1-2) • Independent research • Survey of a research area • Use a verification tool to verify a realistic system

  8. Why should we care? • NIST (National Institute of Standards and Technology) report • software bugs cost $60 billion annually • High profile incidents of systems failure • Therac-25 radiation overdoses, 1985-87 • Pentium FDIV bug, 1994 • Northeast blackout, 2003 • Air traffic control, LA airport, 2004

  9. Intellectual challenge • Civil engineering • Bridges don’t fail

  10. Reliable Engineering

  11. Intellectual challenge • Civil engineering • Bridges don’t fail • Mechanical engineering • Cars are reliable

  12. Intellectual challenge • Civil engineering • Bridges don’t fail • Mechanical engineering • Cars are reliable • Software engineering

  13. Why is software hard? • The human element • Getting a consistent and complete set of requirements is difficult • Requirements often change • Human beings use software in ways never imagined by the designers

  14. Why is software hard? • The mathematical element • Huge set of behaviors • Nondeterminism • External due to inputs • Internal due to concurrency • Even if the requirements are unchanging, complete and formally specified, it is infeasible to check all the behaviors

  15. Bubble Sort BubbleSort(int[] a, int n) { for (i=0; i<n-1; i++) { for (j=0; j<n-1-i; j++) { if (a[j+1] < a[j]) { tmp = a[j]; a[j] = a[j+1]; a[j+1] = tmp; } } } } • n #inputs • 2^32 • 2^64 • .. • .. Even for a small program, enumeration of the set of all possible behaviors is impossible!

  16. Simple programming language x  Variable P  Program = assert x | x++ | x-- | P1 ; P2 | if x then P1 else P2 | while x P Assertion checking for this language is undecidable!

  17. Holy grail of algorithmic verification • Soundness • If the algorithm reports no failure, then the program does not fail • Completeness • If the algorithm reports a failure, then the program does fail • Termination • The algorithm terminates It is impossible to achieve the holy grail in general!

  18. Methods • Model checking • Axiomatic verification

  19. Model checking • Create a model of the program in a framework that is decidable • Finite state system • Pushdown system • Manual model creation • Automated model verification

  20. Axiomatic verification • Program verification similar to validity checking in a mathematical logic • Axioms • Rules of inference • Programmer attempts to find a proof using the axioms and the rules of inference • Manual proof discovery • Automated proof checking

  21. Recently… • Combination of model checking and axiomatic verification • Iterated abstration and refinement

More Related