Property Checking Without Invariant Generation
نویسنده
چکیده
We introduce ProveProp , a procedure for proving safety properties. ProveProp is based on a technique called Partial Quantifier Elimination (PQE). In contrast to complete quantifier elimination, in PQE, only a part of the formula is taken out of the scope of quantifiers. So PQE can be dramatically more efficient than complete quantifier elimination. The appeal of ProveProp is twofold. First, it can prove a property without generating an inductive invariant. This is an implication of the fact that computing the reachability diameter of a system reduces to PQE. Second, PQE enables depth-first search, so ProveProp can be used to find very deep bugs. To prove property true, ProveProp has to consider traces of length up to the reachability diameter. This may slow down property checking for systems with a large diameter. We describe a variation of ProveProp that can prove a property without generation of long traces.
منابع مشابه
Pruning Techniques for the SAT-based Bounded Model Checking Problem
Bounded Model Checking (BMC) is the problem of checking if a model satisses a temporal property in paths with bounded length k. Propositional SAT-based BMC is conducted in a gradual manner, by solving a series of SAT instances corresponding to formulations of the problem with increasing k. We show how the gradual nature can be exploited for shortening the overall veriication time. The concept i...
متن کاملAn invariant-based approach to the verification of asynchronous parameterized networks
A uniform verification problem for parameterized systems is to determine whether a temporal property is true for every instance of the system which is composed of an arbitrary number of homogeneous processes. To cope with this problem we combine an induction-based technique for invariant generation and conventional model checking of finite state systems. At the first stage of verification we tr...
متن کاملAssertion-based Loop Invariant Generation
Many automated techniques for invariant generation are based on the idea that the invariant should show that something “bad” will not happen in the analyzed program. In this article we present an algorithm for loop invariant generation in programs with assertions using a weakest precondition calculus. We have realized the algorithm in the extended static checker ESC/Java2. Challenges stemming f...
متن کاملIncremental Verification with Mode Variable Invariants in State Machines
We describe two complementary techniques to aid the automatic verification of safety properties of synchronous systems by model checking. A first technique allows the automatic generation of certain inductive invariants for mode variables. Such invariants are crucial in the verification of safety properties in systems with complex modal behavior. A second technique allows the simultaneous verif...
متن کاملAnalysis of Agent-Based Systems Using Decision Procedures
In recent years, model checking has emerged as a remarkably eeective technique for the automated analysis of descriptions of hardware systems and communication protocols. To analyze software system descriptions, however, a direct application of model checking rarely succeeds 1, 3], since these descriptions often have huge (often innnite) state spaces which are not amenable to the nite-state met...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- CoRR
دوره abs/1602.05829 شماره
صفحات -
تاریخ انتشار 2016