Your search keyword '"Automated theorem proving"' showing total 75 results

1. Encoding TLA+ proof obligations safely for SMT.

Author

Defourné, Rosalie

Subjects

*ENCODING

Abstract

The TLA+ Proof System (TLAPS) allows users to verify proofs with the support of automated theorem provers, including SMT solvers. To increase trust in TLAPS, we revisited the encoding of TLA+ for SMT, whose implementation had become too complex. Our approach is based on a first-order axiomatization with E-matching patterns. The new encoding is available with TLAPS and achieves performances similar to the previous version, despite its simpler design. [ABSTRACT FROM AUTHOR]

Published

2025

2. A multi-clause dynamic deduction algorithm based on standard contradiction separation rule.

Author

Cao, Feng, Xu, Yang, Liu, Jun, Chen, Shuwei, and Yi, Jianbing

Subjects

*FIRST-order logic, *CONTRADICTION, *ALGORITHMS, *BENCHMARK problems (Computer science), *LIBRARY cooperation, *SEARCH algorithms

Abstract

In the past decades, automated theorem proving (ATP) for first-order logic has made good progress, in which binary resolution inference rule plays a crucial role. However, as shown in the latest benchmark library of the ATP system, there are still many practical problems that have not been resolved or cannot be effectively resolved. Recently, in order to overcome the limitations of ATP based on binary resolution inference rules, a novel multi-clause dynamic standard contradiction separation (S-CS) inference rule and its automated deduction theory have been proposed. Based on this theory, this paper first clarifies the generality of this S-CS rule by comparing it with some well-known variants of the binary resolution rule, and then focuses on how to design a specific and effective algorithm along with search strategies to realize the S-CS based deductive theory with its implementation. Specifically, the present work proposes a novel S-CS dynamic deduction algorithm (in short SDDA) based on different strategies and summarizes its implementation procedures. In addition, we focus on evaluating whether SDDA, as a novel perspective multi-clause dynamic automatic deduction algorithm, can be applied on top of the current leading ATP system architectures to further improve their performances. Therefore, SDDA is applied to the current leading first-order ATP systems, i.e., Vampire and E, respectively forming two integrated APT systems, denoted as SDDA_V and SDDA_E. Then the capabilities of SDDA_V and SDDA_E are evaluated on the latest benchmark database TPTP, such as the CASC-J9 problems (FOF division) as well as the hard problems with a rating of 1 in the TPTP benchmark database. The experimental results show the effectiveness of SDDA: SDDA_V outperforms Vampire itself, and SDDA_E, outperforms E itself, and the two improved ATP systems have solved a number of hard problems with the rating of 1 in TPTP, that is, some problems in the latest benchmark database TPTP which have not yet been solved by other current first-order ATP systems. [ABSTRACT FROM AUTHOR]

Published

2021

3. A complementary ratio based clause selection method for contradiction separation dynamic deduction.

Author

Zeng, Guoyan, Chen, Shuwei, Liu, Jun, Xu, Yang, and Liu, Peiyao

Subjects

*ARTIFICIAL intelligence, *SYSTEMS design, *TRUST, *VAMPIRES, *CONTRADICTION

Abstract

Automated reasoning is a key research area of Artificial Intelligence (AI) and has attracted much greater attention in recent years due to the demands of trustworthy AI, where binary resolution inference rule based first-order automated reasoning play a crucial role. Recently, a novel multi-clause dynamic standard contradiction separation (S-CS) inference rule and related automated deduction theory were proposed to overcome the limitations of binary resolution-based automated deduction. Now that strategies for dynamic clause selection are essential for S-CS based automated deduction, in the present work, a class of novel clause selection strategies, along with the corresponding novel complementary ratio based dynamic S-CS automated deduction algorithm (called CRA), are proposed. Furthermore, we are interested in determining whether CRA may be deployed on top of the current best first-order automated reasoning system designs to increase their performance. As a result, CRA is applied to the current leading systems, Vampire and E, resulting in two integrated automatic reasoning systems, CRA_Vampire and CRA_E. Experiment results demonstrate that CRA can improve E and Vampire in CASC 2020–2022 competitions. The new integrated automated reasoning systems can resolve 44 problems with rating of 1, meaning they are intractable by other existing first-order automated systems. [ABSTRACT FROM AUTHOR]

Published

2024

4. Lakatos-style collaborative mathematics through dialectical, structured and abstract argumentation.

Author

Pease, Alison, Lawrence, John, Budzynska, Katarzyna, Corneli, Joseph, and Reed, Chris

Subjects

*MATHEMATICS, *ARTIFICIAL intelligence, *AUTOMATIC theorem proving, *COMPUTATIONAL intelligence, *EDUCATIONAL cooperation

Abstract

The simulation of mathematical reasoning has been a driving force throughout the history of Artificial Intelligence research. However, despite significant successes in computer mathematics, computers are not widely used by mathematicians apart from their quotidian applications. An oft-cited reason for this is that current computational systems cannot do mathematics in the way that humans do. We draw on two areas in which Automated Theorem Proving (ATP) is currently unlike human mathematics: firstly in a focus on soundness, rather than understandability of proof, and secondly in social aspects. Employing techniques and tools from argumentation to build a framework for mixed-initiative collaboration, we develop three complementary arcs. In the first arc – our theoretical model – we interpret the informal logic of mathematical discovery proposed by Lakatos, a philosopher of mathematics, through the lens of dialogue game theory and in particular as a dialogue game ranging over structures of argumentation. In our second arc – our abstraction level – we develop structured arguments, from which we induce abstract argumentation systems and compute the argumentation semantics to provide labelings of the acceptability status of each argument. The output from this stage corresponds to a final, or currently accepted proof artefact, which can be viewed alongside its historical development. Finally, in the third arc – our computational model – we show how each of these formal steps is available in implementation. In an appendix, we demonstrate our approach with a formal, implemented example of real-world mathematical collaboration. We conclude the paper with reflections on our mixed-initiative collaborative approach. [ABSTRACT FROM AUTHOR]

Published

2017

5. Derivation and inference of higher-order strictness types.

Author

Smetsers, Sjaak and van Eekelen, Marko

Subjects

*INFERENCE (Logic), *ALGORITHMS, *MATHEMATICAL proofs, *SEMANTICS, *AUTOMATIC theorem proving

Abstract

We extend an existing first-order typing system for strictness analysis to the fully higher-order case, covering both the derivation system and the inference algorithm. The resulting strictness typing system has expressive capabilities far beyond that of traditional strictness analysis systems. This extension is developed with the explicit aim of formally proving soundness of higher-order strictness typing with respect to a natural operational semantics. A key aspect of our approach is the introduction of a proof assistant at an early stage, namely during development of the proof. As such, the theorem prover aids the design of the language theoretic concepts. The new results in combination with their formal proof can be seen as a case study towards the achievement of the long term PoplMark Challenge. The proof framework developed for this case study can furthermore be used in other typing system case studies. [ABSTRACT FROM AUTHOR]

Published

2015

6. Verification of the functional behavior of a floating-point program: An industrial case study.

Author

Marché, Claude

Subjects

*FLOATING-point arithmetic, *INDUSTRIAL research, *C (Computer program language), *QUATERNIONS, *MATHEMATICAL models

Abstract

We report a case study that was conducted as part of an industrial research project on static analysis of critical C code. The example program considered in this paper is an excerpt of an industrial code, only slightly modified for confidentiality reasons, involving floating-point computations. The objective was to establish a property on the functional behavior of this code, taking into account rounding errors made during computations. The property is formalized using ACSL, the behavioral specification language available inside the Frama-C environment, and it is verified by automated theorem proving. [ABSTRACT FROM AUTHOR]

Published

2014

7. Combining decision procedures by (model-)equality propagation

Author

de Oliveira, Diego Caminha B., Déharbe, David, and Fontaine, Pascal

Subjects

*DECISION making, *COMPUTER software, *MATHEMATICAL models, *CONVEX programming, *ALGORITHMS, *COMBINATORICS, *LINEAR statistical models

Abstract

Abstract: Formal methods in software and hardware design often generate formulas that need to be validated, either interactively or automatically. Among the automatic tools, SMT (Satisfiability Modulo Theories) solvers are particularly suitable to discharge such proof obligations, as their input language is equational logic with symbols from various useful decidable fragments such as uninterpreted symbols, linear arithmetic, and usual data-structures like arrays or lists. In this paper, we present an approach to combine decision procedures and propositional solvers into an SMT-solver, based not only on the exchange of deducible equalities between decision procedures, but also on the generation of model equalities by decision procedures. This extends nicely the classical Nelson–Oppen combination procedure in a simple platform to smoothly combine convex and non-convex theories. We show the soundness and completeness of this approach using an original abstract framework to represent and reason about SMT-solvers. We then describe an algorithmic translation of this method, implemented in the kernel of the veriT solver (Bouton et al. (2009)) . [Copyright &y& Elsevier]

Published

2012

8. Higher-order aspects and context in SUMO.

Author

Benzmüller, Christoph and Pease, Adam

Subjects

ONTOLOGIES (Information retrieval), EMBEDDINGS (Mathematics), MATHEMATICAL formulas, MATHEMATICS theorems, MATHEMATICAL models, MATHEMATICAL mappings

Abstract

Abstract: This article addresses the automation of higher-order aspects in expressive ontologies such as the suggested upper merged ontology SUMO. Evidence is provided that modern higher-order automated theorem provers like LEO-II can be fruitfully employed for the task. A particular focus is on embedded formulas (formulas as terms), which are used in SUMO, for example, for modeling temporal, epistemic, or doxastic contexts. This modeling is partly in conflict with SUMO’s assumption of a bivalent, classical semantics and it may hence lead to counterintuitive reasoning results with automated theorem provers in practice. A solution is proposed that maps SUMO to quantified multimodal logic which is in turn modeled as a fragment of classical higher-order logic. This way automated higher-order theorem provers can be safely applied for reasoning about modal contexts in SUMO. Our findings are of wider relevance as they analogously apply to other expressive ontologies and knowledge representation formalisms. [Copyright &y& Elsevier]

Published

2012

9. Internal axioms for domain semirings

Author

Desharnais, Jules and Struth, Georg

Subjects

*AXIOMS, *SEMIRINGS (Mathematics), *KLEENE algebra, *AUTOMATIC theorem proving, *DISTRIBUTIVE lattices, *BOOLEAN algebra

Abstract

Abstract: New axioms for domain operations on semirings and Kleene algebras are proposed. They generalise the relational notion of domain–the set of all states that are related to some other state–to a wide range of models. They are internal since the algebras of state spaces are induced by the domain axioms. They are simpler and conceptually more appealing than previous two-sorted external approaches in which the domain algebra is determined through typing. They lead to a simple and natural algebraic approach to modal logics based on equational reasoning. The axiomatisations have been developed in a new style of computer-enhanced mathematics by automated theorem proving, and the approach itself is suitable for automated systems analysis and verification. This is demonstrated by a fully automated proof of a modal correspondence result for Löb’s formula that has applications in termination analysis. [ABSTRACT FROM AUTHOR]

Published

2011

10. Computing finite models by reduction to function-free clause logic.

Author

Baumgartner, Peter, Fuchs, Alexander, de Nivelle, Hans, and Tinelli, Cesare

Subjects

FINITE model theory, LOGIC, TECHNICAL specifications, CALCULUS

Abstract

Abstract: Recent years have seen considerable interest in procedures for computing finite models of first-order logic specifications. One of the major paradigms, MACE-style model building, is based on reducing model search to a sequence of propositional satisfiability problems and applying (efficient) SAT solvers to them. A problem with this method is that it does not scale well because the propositional formulas to be considered may become very large. We propose instead to reduce model search to a sequence of satisfiability problems consisting of function-free first-order clause sets, and to apply (efficient) theorem provers capable of deciding such problems. The main appeal of this method is that first-order clause sets grow more slowly than their propositional counterparts, thus allowing for more space efficient reasoning. In this paper we describe our proposed reduction in detail and discuss how it is integrated into the Darwin prover, our implementation of the Model Evolution calculus. The results are general, however, as our approach can be used in principle with any system that decides the satisfiability of function-free first-order clause sets. To demonstrate its practical feasibility, we tested our approach on all satisfiable problems from the TPTP library. Our methods can solve a significant subset of these problems, which overlaps but is not included in the subset of problems solvable by state-of-the-art finite model builders such as Paradox and Mace4. [Copyright &y& Elsevier]

Published

2009

11. Optimization techniques for propositional intuitionistic logic and their implementation

Author

Avellone, Alessandro, Fiorino, Guido, and Moscato, Ugo

Subjects

*MATHEMATICAL optimization, *INTUITIONISTIC mathematics, *SEARCH algorithms, *SEMANTICS, *PROGRAMMING language semantics, *C++, *AUTOMATIC theorem proving, *TABLEAUX (Art)

Abstract

Abstract: This paper presents some techniques which bound the proof search space in propositional intuitionistic logic. These techniques are justified by Kripke semantics and are the backbone of a tableau based theorem prover (PITP) implemented in C++. PITP and some known theorem provers are compared using the formulas of ILTP benchmark library. It turns out that PITP is, at the moment, the propositional prover that solves most formulas of the library. [Copyright &y& Elsevier]

Published

2008

12. Hilbert's epsilon as an operator of indefinite committed choice.

Author

Wirth, Claus-Peter

Subjects

EPSILON (Computer program language), MATHEMATICAL logic, SEMANTICS, HILBERT algebras

Abstract

Abstract: Hilbert and Bernays avoided overspecification of Hilbert''s ε-operator. They axiomatized only what was relevant for their proof-theoretic investigations. Semantically, this left the ε-operator underspecified. After briefly reviewing the literature on semantics of Hilbert''s epsilon operator, we propose a new semantics with the following features: We avoid overspecification (such as right-uniqueness), but admit indefinite choice, committed choice, and classical logics. Moreover, our semantics for the ε simplifies proof search and is natural in the sense that it mirrors some cases of referential interpretation of indefinite articles in natural language. [Copyright &y& Elsevier]

Published

2008

13. Modular verification of multithreaded programs

Author

Flanagan, Cormac, Freund, Stephen N., Qadeer, Shaz, and Seshia, Sanjit A.

Subjects

*COMPUTER software, *ELECTRONIC systems, *PROOF theory, *MATHEMATICAL logic

Abstract

Abstract: Multithreaded software systems are prone to errors due to the difficulty of reasoning about multiple interleaved threads operating on shared data. Static checkers that analyze a program''s behavior over all execution paths and all thread interleavings are a powerful approach to identifying bugs in such systems. In this paper, we present Calvin, a scalable and expressive static checker for multithreaded programs based on automatic theorem proving. To handle realistic programs, Calvin performs modular checking of each procedure called by a thread using specifications of other procedures and other threads. Our experience applying Calvin to several real-world programs indicates that Calvin has a moderate annotation overhead and can catch common defects in multithreaded programs, such as synchronization errors and violations of data invariants. [Copyright &y& Elsevier]

Published

2005

14. Linearity and regularity with negation normal form

Author

Hähnle, Reiner, Murray, Neil V., and Rosenthal, Erik

Subjects

*REASONING, *GENERALIZATION, *INDUCTION (Logic), *RESEARCH

Abstract

Abstract: Proving completeness of NC-resolution under a linear restriction has been elusive; it is proved here for formulas in negation normal form. The proof uses a generalization of the Anderson–Bledsoe excess literal argument, which was developed for resolution. That result is extended to NC-resolution with partial replacement. A simple proof of the completeness of regular, connected tableaux for formulas in conjunctive normal form is also presented. These techniques are then used to establish the completeness of regular, connected tableaux for formulas in negation normal form. [Copyright &y& Elsevier]

Published

2004

15. Sound generalizations in mathematical induction

Author

Urso, Pascal and Kounalis, Emmanuel

Subjects

*OPERATIONS research, *METHODOLOGY, *PROBABILITY theory, *MATHEMATICS, *HEURISTIC

Abstract

Many proofs by induction diverge without a suitable generalization of the goal to be proved.The aim of the present paper is to propose a method that automatically finds a generalized form of the goal before the induction sub-goals are generated and failure begins. The method works in the case of monomorphic theories (see Section 1). However, in contrast to all heuristic-based methods, our generalization method is sound: A goal is an inductive theorem if and only if its generalization is an inductive theorem. As far as we know this is the first approach that proposes sound generalizations for mathematical induction. [Copyright &y& Elsevier]

Published

2004

16. Using the prover ANDP to simplify orthogonality

Author

Li, Dafa

Subjects

*INTUITIONISTIC mathematics, *GEOMETRY, *ORTHOGONALIZATION

Abstract

In the 1920s, Heyting attempted at axiomatizing constructive geometry. Recently, von Plato used different concepts to axiomatize the geometry: he used 14 axioms to describe the axiomatization for apartness geometry. Then he added axioms A1 and A2 to his apartness geometry to get his affine geometry, then he added axioms O1, O2, O3 and O4 to the affine geometry to get orthogonality. In total, this gives 22 axioms. von Plato used four relations to describe the concept of orthogonality in O1, O2 and O4. That is, all the three relations of two lines, which are convergence, unorthogonality and difference, and the relation of a point and a line. ANDP is an automated natural deduction prover developed over the years at our institute. After doing a lot of experiments using ANDP, much shorter and more intuitive axioms were found for axioms O1, O2 and O4, respectively. For example, O2 can be replaced by one of its four conjuncts. This paper shows that it is enough to use two relations on lines, which are convergence and unorthogonality, to describe the concept of orthogonality. [Copyright &y& Elsevier]

Published

2003

17. Unsorted Functional Translations.

Author

Areces, Carlos and Gorín, Daniel

Subjects

MIXED languages, PIDGIN languages, MODALITY (Linguistics), TRANSLATING & interpreting, FIRST-order logic, NOMINALISM

Abstract

Abstract: In this article we first show how the functional and the optimized functional translation from modal logic to many-sorted first-order logic can be naturally extended to the hybrid language . The translation is correct not only when reasoning over the class of all models, but for any first-order definable class. We then show that sorts can be safely removed (i.e., without affecting the satisfiability status of the formula) for frame classes that can be defined in the basic modal language, and show a counterexample for a frame class defined using nominals. [Copyright &y& Elsevier]

Published

2011

18. Fast decision procedure for propositional Dummett logic based on a multiple premise tableau calculus

Author

Fiorino, Guido

Subjects

*AUTOMATIC theorem proving, *MATHEMATICAL logic, *CALCULUS, *COMPUTER networks, *COMPUTER engineering, *ARTIFICIAL intelligence

Abstract

Abstract: We present a procedure to decide propositional Dummett logic. Such a procedure relies on a tableau calculus with a multiple premise rule and optimizations. The resulting implementation outperforms the state of the art graph-based procedure. [Copyright &y& Elsevier]

Published

2010

19. Separation Logic Verification of C Programs with an SMT Solver.

Author

Botinčan, Matko, Parkinson, Matthew, and Schulte, Wolfram

Subjects

SOFTWARE verification, PROGRAMMING languages, AUTOMATION, SIMULTANEOUS multithreading processors, LOGIC, COMPUTER simulation

Abstract

Abstract: This paper presents a methodology for automated modular verification of C programs against specifications written in separation logic. The distinguishing features of the approach are representation of the C memory model in separation logic by means of rewrite rules suitable for automation and the careful integration of an SMT solver behind the separation logic prover to guide the proof search. [Copyright &y& Elsevier]

Published

2009

20. Automated Verification of Signalling Principles in Railway Interlocking Systems.

Author

Kanso, Karim, Moller, Faron, and Setzer, Anton

Subjects

RAILROAD interlocking system signals, RAILROAD yards, CONFIRMATION (Logic), AUTOMATIC control systems, MATHEMATICAL models, PROGRAMMING languages

Abstract

Abstract: In this paper we present a verification strategy for signalling principles for the control of a railway interlocking system written in ladder logic. All translation steps have been implemented and tested on a real-world example of a railway interlocking system. The steps in this translation are as follows: 1. The development of a mathematical model of a railway interlocking system and the translation from ladder logic into this model. 2. The development of verification conditions guaranteeing the correctness of safety conditions. 3. The verification of safety conditions using a satisfiability solver. 4. The generation of safety conditions from signalling principles using a topological model of a railway yard. [Copyright &y& Elsevier]

Published

2009

21. Combining logical and algebraic techniques for natural style proving in elementary analysis

Author

Vajda, Robert, Jebelean, Tudor, and Buchberger, Bruno

Subjects

*MATHEMATICAL analysis, *COMBINATORY logic, *INFERENCE (Logic), *STOCHASTIC convergence, *BASES (Linear topological spaces), *CYLINDRIC algebras, *MATHEMATICAL decomposition, *AUTOMATIC theorem proving

Abstract

Abstract: PCS (Proving-Computing-Solving) introduced by B. Buchberger in 2001 and S-Decomposition, introduced by T. Jebelean in 2001, are strategies for handling proof problems by combining logic inference steps (e.g., modus ponens, Skolemization, instantiation) with rewriting steps (application of definitions) and solving procedures based on algebraic techniques (e.g., Groebner Bases, Cylindrical Algebraic Decomposition). If one formalizes the main notions of elementary analysis like continuity, convergence, etc., usually a sequence of alternating quantifier blocks appears in the quantifier prefix of the corresponding formula. This makes the proof problems involving these notions difficult. The S-Decomposition strategy is especially suitable for property-preserving problems like continuity of sum, because it is designed for handling problems where the goal and the main assumptions have a similar structure. During proof deduction, existentially quantified goals and universal assumptions are handled by introducing metavariables, if no suitable ground instance is known in advance. For finalizing proof attempts, the metavariables must be instantiated in such a way that they satisfy the cumulated algebraic constraints collected during the proof attempt. The instantiation problem is considered to be difficult in a purely logical calculus. Appropriate instances can be often found using quantifier elimination (QE) over real closed fields. In order to obtain witness terms we utilize the QE method based on cylindrical algebraic decomposition (CAD) invented by G. Collins in 1973. However, the QE method alone is not sufficient. One needs to pre-process the (closed, quantified) conjectured formula and post-process the resulting CAD-structure after the call of the QE algorithm. [Copyright &y& Elsevier]

Published

2009

22. Computational Origami Construction as Constraint Solving and Rewriting.

Author

Ida, Tetsuo, Marin, Mircea, Takahashi, Hidekazu, and Ghoura, Fadoua

Subjects

ORIGAMI, AXIOMS, LOGIC programming, COMPUTER programming, REWRITING systems (Computer science)

Abstract

Abstract: Computational origami is the computer assisted study of mathematical and computational aspects of origami. An origami is constructed by a finite sequence of fold steps, each consisting in folding along a fold line. We base the fold methods on Huzita''s axiomatization, and show how folding an origami can be formulated by a conditional rewrite system. A rewriting sequence of origami structures is viewed as an abstraction of origami construction. We also explain how the basic concepts of constraint and functional and logic programming are related to this computational construction. Our approach is not only useful for computational construction of an origami, but it leads us to automated theorem proving of the correctness of the origami construction. [Copyright &y& Elsevier]

Published

2008

23. Distributing the Workload in a Lazy Theorem-Prover.

Author

Deharbe, David, Ranise, Silvio, and Vidal, Jorgiano

Subjects

AUTOMATIC theorem proving, ELECTRONIC systems, SYSTEMS design, FORMAL methods (Computer science), ARTIFICIAL intelligence

Abstract

Abstract: Automated theorem proving consists in automatically (i.e. without any user interaction) discharging proof obligations which arise when applying rigorous methodologies for designing critical software systems. Recent developements in the so-called lazy approach in the integration of Boolean satisfiability with decision procedures for decidable theories of first-order logic have provided new means to efficiently prove or refute such proof obligations. In this paper, we present the first (known) attempt to design a distributed version of lazy theorem proving on a network of computers so that the available processing power can be used more effectively and avoid that automated reasoning be the bottleneck of the application of formal methods. Experiments clearly show the viability and the benefits of the proposed approach. [Copyright &y& Elsevier]

Published

2007

24. Strategic Issues, Problems and Challenges in Inductive Theorem Proving.

Author

Gramlich, Bernhard

Subjects

COMPUTER integrated manufacturing systems, AUTOMATIC identification, INTELLIGENT agents, COMPUTER science

Abstract

Abstract: (Automated) Inductive Theorem Proving (ITP) is a challenging field in automated reasoning and theorem proving. Typically, (Automated) Theorem Proving (TP) refers to methods, techniques and tools for automatically proving general (most often first-order) theorems. Nowadays, the field of TP has reached a certain degree of maturity and powerful TP systems are widely available and used. The situation with ITP is strikingly different, in the sense that proving inductive theorems in an essentially automatic way still is a very challenging task, even for the most advanced existing ITP systems. Both in general TP and in ITP, strategies for guiding the proof search process are of fundamental importance, in automated as well as in interactive or mixed settings. In the paper we will analyze and discuss the most important strategic and proof search issues in ITP, compare ITP with TP, and argue why ITP is in a sense much more challenging. More generally, we will systematically isolate, investigate and classify the main problems and challenges in ITP w.r.t. automation, on different levels and from different points of views. Finally, based on this analysis we will present some theses about the state of the art in the field, possible criteria for what could be considered as substantial progress, and promising lines of research for the future, towards (more) automated ITP. [Copyright &y& Elsevier]

Published

2005

25. Designing normative theories for ethical and legal reasoning: LogiKEy framework, methodology, and tool support.

Author

Benzmüller, Christoph, Parent, Xavier, and van der Torre, Leendert

Subjects

*LEGAL reasoning, *DEONTIC logic, *JURISPRUDENCE, *INTELLIGENT agents, *ENGINEERING design

Abstract

A framework and methodology—termed LogiKEy —for the design and engineering of ethical reasoners, normative theories and deontic logics is presented. The overall motivation is the development of suitable means for the control and governance of intelligent autonomous systems. LogiKEy 's unifying formal framework is based on semantical embeddings of deontic logics, logic combinations and ethico-legal domain theories in expressive classic higher-order logic (HOL). This meta-logical approach enables the provision of powerful tool support in LogiKEy : off-the-shelf theorem provers and model finders for HOL are assisting the LogiKEy designer of ethical intelligent agents to flexibly experiment with underlying logics and their combinations, with ethico-legal domain theories, and with concrete examples—all at the same time. Continuous improvements of these off-the-shelf provers, without further ado, leverage the reasoning performance in LogiKEy. Case studies, in which the LogiKEy framework and methodology has been applied and tested, give evidence that HOL's undecidability often does not hinder efficient experimentation. [ABSTRACT FROM AUTHOR]

Published

2020

26. Amalgamation in the semantics of CASL

Author

Till Mossakowski, Bartek Klin, Andrzej Tarlecki, Piotr Hoffman, and Lutz Schröder

Subjects

Discrete mathematics, Amalgamation, Functor, General Computer Science, Programming language, Semantics (computer science), Algebraic specification, Preorder, Specification language, Amalgamation property, computer.software_genre, Institutions, Theoretical Computer Science, Automated theorem proving, Casl, computer, Architectural specification, Common Algebraic Specification Language, Mathematics, Computer Science(all)

Abstract

We present a semantics for architectural specifications in the Common Algebraic Specification Language (Casl), including an extended static analysis compatible with model-theoretic requirements. The main obstacle here is the lack of amalgamation for Casl models. To circumvent this problem, we extend the Casl logic by introducing enriched signatures, where subsort embeddings form a category rather than just a preorder. The extended model functor satisfies the amalgamation property as well as its converse, which makes it possible to express the amalgamability conditions in the semantic rules in static terms. Using these concepts, we develop the semantics at various levels in an institution-independent fashion. Moreover, amalgamation for enriched Casl means that a variety of results for institutions with amalgamation, such as computation of normal forms and theorem proving for structured specifications, can now be used for Casl.

27. Correct Microkernel Primitives

Author

Artem Starostin and Alexandra Tsyban

Subjects

Correctness, General Computer Science, Assembly language, Computer science, Programming language, Theorem Proving, computer.software_genre, Theoretical Computer Science, Inline assembler, Automated theorem proving, Microkernel, Memory virtualization, Operating System, Inline Assembler, computer, Formal verification, Formal Verification, Computer Science(all), System software, computer.programming_language

Abstract

Primitives are basic means provided by a microkernel to implementors of operating system services. Intensively used within every OS and commonly implemented in a mixture of high-level and assembly programming languages, primitives are meaningful and challenging candidates for formal verification. We report on the accomplished correctness proof of academic microkernel primitives. We describe how a novel approach to verification of programs written in C with inline assembler is successfully applied to a piece of realistic system software. Necessary and sufficient criteria covering functional correctness and requirements for the integration into a formal model of memory virtualization are determined and formally proven. The presented results are important milestones on the way to a pervasively verified operating system.

28. A Denotational Semantics for Circus

Author

Marcel Oliveira, Ana Cavalcanti, and Jim Woodcock

Subjects

General Computer Science, Programming language, Computer science, Concurrency, computer.software_genre, Mathematical proof, UTP, Denotational semantics of the Actor model, GeneralLiterature_MISCELLANEOUS, refinement calculus, Theoretical Computer Science, Automated theorem proving, Denotational semantics, Development (topology), Refinement calculus, theorem proving, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, computer, Computer Science(all)

Abstract

Circus specifications define both data and behavioural aspects of systems using a combination of Z and CSP. Previously, a denotational semantics has been given to Circus; however, as a shallow embedding of Circus in Z, it was not possible to use it to prove properties like the refinement laws that justify the distinguishing development technique associated with Circus. This work presents a final reference for the Circus denotational semantics based on Hoare and He's Unifying Theories of Programming (UTP). Finally, it discusses the library of theorems on the UTP that was created and used in the proofs of the refinement laws.

29. Metalevel Computation in Maude

Author

José Meseguer, Patrick Lincoln, Steven Eker, Narciso Martí-Oliet, Francisco Durán, and Manuel Clavel

Subjects

Parsing, Reflection (computer programming), General Computer Science, Programming language, Computer science, media_common.quotation_subject, computer.software_genre, Metaprogramming, Theoretical Computer Science, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Metatheory, Component (UML), Rewriting, Function (engineering), computer, Computer Science(all), media_common

Abstract

Maude's language design and implementation make systematic use of the fact that rewriting logic is reflective. This makes the metatheory of rewriting logic accessible to the user in a clear and principled way, and makes possible many advanced metaprogramming applications, including user-definable strategy languages, language extensions by new module composition operations, development of theorem proving tools, and reifications of other languages and logics within rewriting logic. A naive implementation of reflection can be computationally very expensive. We explain the semantic principles and implementation techniques through which efficient ways of performing reflective computations are achieved in Maude through its predefined META-LEVEL module. We are indebted to Jose F. Quesada for his excellent work on the MSCP context-free parser for Maude, that---besides being used for different parsing functions in Maude---is used as a key component of the built-in function meta-parse in META-LEVEL. We cordially thank Carolyn Talcott for many discussions on metalevel issues that have contributed to the development of our ideas.

30. A Compositional Framework for Formally Verifying Modular Systems

Author

Carlo A. Furia and Matteo Rossi

Subjects

Theoretical computer science, Property (philosophy), General Computer Science, modular systems, business.industry, Principle of compositionality, Complex system, real-time, Modular design, Theoretical Computer Science, Automated theorem proving, Formal verification, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, compositionality, Control system, business, Rule of inference, INF, Mathematics, Computer Science(all)

Abstract

We present a tool-supported framework for proving that the composition of the behaviors of the separate parts of a complex system ensures a desired global property of the overall system. A compositional inference rule is formally introduced and encoded in the logic of the PVS theorem prover. Methodological considerations on the usage of the inference rule are presented, and the framework is then used to prove a meaningful property of a simple, but significant, control system.

31. A tactic language for refinement of state-rich concurrent specifications

Author

Marcel Oliveira, Frank Zeyda, and Ana Cavalcanti

Subjects

Computer science, Semantics (computer science), Programming language, Concurrency, computer.software_genre, Automated theorem proving, Transformation (function), Refinement calculus, Control law diagrams, Control system, State (computer science), Implementation, computer, Software, Tactics

Abstract

Circus is a refinement language in which specifications define both data and behavioural aspects of concurrent systems using a combination of Z and CSP. Its refinement theory and calculus are distinctive, but since refinements may be long and repetitive, the practical application of this technique can be hard. Useful strategies have been identified, described, and used, and by documenting them as tactics, they can be expressed and repeatedly applied as single transformation rules. Here, we present ArcAngelC, a language for defining such tactics; we present the language, its semantics, and its application in the formalisation of an existing strategy for verification of Ada implementations of control systems specified by Simulink diagrams. We also discuss its mechanisation in a theorem prover, ProofPower-Z.

32. Ken Kunen: Algebraist

Author

Michael Kinyon

Subjects

Discrete mathematics, LOOP (programming language), Moufang loops, Mathematics - History and Overview, History and Overview (math.HO), Conjugacy closed loops, Automated reasoning, GeneralLiterature_MISCELLANEOUS, Set (abstract data type), Automated theorem proving, FOS: Mathematics, Loops, Geometry and Topology, Quasigroups, Algebra over a field, Mathematical economics, Quasigroup, Mathematics

Abstract

This paper is a greatly expanded version of a talk I gave in April 2009 at KunenFest. It describes Ken's work in algebra, particularly using automated deduction tools., Comment: 7 pages, to appear in a special issue of Topology and its Applications in honor of Ken Kunen

33. Visualizing Geometrical Statements with GeoView

Author

Loïc Pottier, Frédérique Guilhot, and Yves Bertot

Subjects

Statement (computer science), General Computer Science, Fundamental theorem, Computer science, Interface (Java), Construct (python library), Mathematical proof, Theoretical Computer Science, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, Component (UML), Calculus, Key (cryptography), Algorithm, Computer Science(all)

Abstract

We describe a tool that combines a general purpose theorem prover and an ofi-theshelf interface for dynamic geometry drawing to enhance man-machine interaction involving geometrical proofs. With our tool, we can edit the statements of geometrical theorems, construct and verify their proofs with the theorem prover, and visualize the statements using the drawing tool. The key component is an algorithm that computes the data needed to draw a construction from the formal statement of the theorem. The paper includes some examples of output from our combined tool, called GeoView.

34. SOL: A Verifiable Synchronous Language for Reactive Systems

Author

Ramesh Bharadwaj

Subjects

Model checking, General Computer Science, Synchronous programming language, Computer science, Programming language, Static analysis, Security policy, computer.software_genre, Theoretical Computer Science, Automated theorem proving, Component-based software engineering, Verifiable secret sharing, computer, Reactive system, Computer Science(all)

Abstract

SOL (Secure Operations Language) is a synchronous programming language for implementing reactive systems. The utility of SOL hinges upon the fact that it is a secure language, i.e., most programs in SOL are amenable to fully automated static analysis techniques, such as automatic theorem proving using decision procedures or model checking. Among the unique features of SOL is the ability to express a wide class of enforceable safety and security policies (including the temporal aspects of software component interfaces) in the language itself, thereby opening up the possibility of eliminating runaway computations and malicious code, such as worms and viruses.

35. Optimization techniques for propositional intuitionistic logic and their implementation

Author

Alessandro Avellone, Ugo Moscato, and Guido Fiorino

Subjects

Propositional variable, Discrete mathematics, General Computer Science, Well-formed formula, Intermediate logic, Intuitionistic logic, Gas meter prover, Propositional calculus, Theoretical Computer Science, Algebra, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, Tableaux, Computer Science::Logic in Computer Science, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Computer Science::Mathematical Software, Kripke semantics, Mathematics, Computer Science(all)

Abstract

This paper presents some techniques which bound the proof search space in propositional intuitionistic logic. These techniques are justified by Kripke semantics and are the backbone of a tableau based theorem prover (PITP) implemented in C++. PITP and some known theorem provers are compared using the formulas of ILTP benchmark library. It turns out that PITP is, at the moment, the propositional prover that solves most formulas of the library.

36. Verification of Clock Synchronization Algorithms: Experiments on a Combination of Deductive Tools

Author

Alwen Tiu, Leonor Prensa Nieto, Damián Barsotti, Proof-oriented development of computer-based systems (MOSEL), INRIA Lorraine, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria)-Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA), Institut National de Recherche en Informatique et en Automatique (Inria)-Université Henri Poincaré - Nancy 1 (UHP)-Université Nancy 2-Institut National Polytechnique de Lorraine (INPL)-Centre National de la Recherche Scientifique (CNRS)-Université Henri Poincaré - Nancy 1 (UHP)-Université Nancy 2-Institut National Polytechnique de Lorraine (INPL)-Centre National de la Recherche Scientifique (CNRS), Ranko Lazic, Rajagopal Nagarajan, Nikolaos Papanikolaou, Facultad de Matemática, Astronomía y Física [Cordoba] (FaMAF), Universidad Nacional de Córdoba [Argentina], Research School of Information Sciences and Engineering, and Australian National University (ANU)

Subjects

Theoretical computer science, Correctness, General Computer Science, Computer science, HOL, Synchronizing, 0102 computer and information sciences, 02 engineering and technology, Mathematical proof, computer.software_genre, 01 natural sciences, Synchronization, Clock synchronization, Theoretical Computer Science, clock synchronization, 0202 electrical engineering, electronic engineering, information engineering, Computer-aided software engineering, Protocol (object-oriented programming), Theorem proving, ACM: F.: Theory of Computation/F.3: LOGICS AND MEANINGS OF PROGRAMS/F.3.1: Specifying and Verifying and Reasoning about Programs/F.3.1.3: Mechanical verification, business.industry, Programming language, [INFO.INFO-LO]Computer Science [cs]/Logic in Computer Science [cs.LO], 020207 software engineering, Automation, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, 010201 computation theory & mathematics, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Theory of computation, business, verification, Algorithm, computer, Software, Computer Science(all)

Abstract

We report on an experiment in combining the theorem prover Isabelle with automatic first-order arithmetic provers to increase automation on the verification of distributed protocols. As a case study for the experiment we verify several averaging clock synchronization algorithms. We present a formalization of Schneider's generalized clock synchronization protocol [Schneider, F. B., Understanding protocols for Byzantine clock synchronization, Technical Report TR 87–859, Cornell University (1987). URL citeseer.ist.psu.edu/schneider87understanding.html] in Isabelle/HOL. Then, we verify that the convergence functions used in two clock synchronization algorithms, namely, the Interactive Convergence Algorithm (ICA) of Lamport and Melliar-Smith [Lamport, L. and P. M. Melliar-Smith, Synchronizing clocks in the presence of faults, J. ACM 32 (1985), pp. 52–78] and the Fault-tolerant Midpoint algorithm of Lundelius-Lynch [Lundelius, J. and N. Lynch, A new fault-tolerant algorithm for clock synchronization, in: Proceedings of PODC '84 (1984), pp. 75–88], satisfy Schneider's general conditions for correctness. The proofs are completely formalized in Isabelle/HOL. We identify the parts of the proofs which are not fully automatically proven by Isabelle built-in tactics and show that these proofs can be handled by automatic first-order provers with support for arithmetic like ICS and CVC Lite.

37. Thoughts on Requirements and Design Issues of User Interfaces for Proof Assistants

Author

Norbert Völker

Subjects

General Computer Science, Programming language, Computer science, computer.internet_protocol, business.industry, Proof assistant, Requirements elicitation, computer.software_genre, Extensibility, Theoretical Computer Science, Domain (software engineering), Automated theorem proving, Systems design, Use case, User interface, Software engineering, business, computer, XML, Computer Science(all)

Abstract

This position paper discusses various issues concerning requirements and design of proof assistant user interfaces (UIs). After a review of some of the diculties faced by UI projects in academia, it presents a high-level description of proof assistant interaction. This is followed by an exposition of use cases and object identification. Several examples demonstrate the usefulness of these requirement elicitation techniques in the theorem proving domain. The second half of the paper begins with a consideration of the “principle of least eort” for the design of theorem prover user interfaces. This is followed by a brief review of the “GUI versus text mode” debate, proposals for better use of GUI facilities and a plea for better support of customisation. The paper ends with a discussion of architecture and system design issues. In particular, it argues for a platform architecture with an extensible set of components and the use of XML protocols for communication between UIs and proof assistant backends.

38. On the Transformation of SystemC to AsmL Using Abstract Interpretation

Author

A. Habibi and Sofiène Tahar

Subjects

Soundness, Model checking, Electronic system-level design and verification, Correctness, General Computer Science, Programming language, Computer science, Abstract Interpretation, computer.software_genre, Abstract interpretation, Theoretical Computer Science, Abstraction layer, Automated theorem proving, SystemC, Abstract state machines, Hardware_REGISTER-TRANSFER-LEVELIMPLEMENTATION, computer, Formal verification, Formal Verification, Computer Science(all), computer.programming_language

Abstract

SystemC is among a group of system level design languages proposed to raise the abstraction level for embedded system design and verification. A straight and sound verification by model checking or theorem proving of SystemC designs is, however, infeasible given the object-oriented nature of this library and the complexity of its simulation environment. We illustrated, in a previous work, the feasibility and success of performing model checking and assertions monitors generation of SystemC using a variant of Abstract State Machines (ASM) languages (AsmL). In this paper, we establish the soundness of our approach by proving the correctness of the transformation from SystemC to AsmL.

39. Constructing Induction Rules for Deductive Synthesis Proofs

Author

Jeremy Gow, Jacques Fleuriot, Lucas Dixon, and Alan Bundy

Subjects

middle-out reasoning, Recursion, proof planning, General Computer Science, Programming language, Computer science, computer.software_genre, Mathematical proof, Theoretical Computer Science, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, theorem proving, Rippling, deductive synthesis, computer, induction, Computer Science(all)

Abstract

We describe novel computational techniques for constructing induction rules for deductive synthesis proofs. Deductive synthesis holds out the promise of automated construction of correct computer programs from specifications of their desired behaviour. Synthesis of programs with iteration or recursion requires inductive proof, but standard techniques for the construction of appropriate induction rules are restricted to recycling the recursive structure of the specifications. What is needed is induction rule construction techniques that can introduce novel recursive structures. We show that a combination of rippling and the use of meta-variables as a least-commitment device can provide such novelty.

40. Supporting ArcAngel in ProofPower

Author

Frank Zeyda, Ana Cavalcanti, and Marcel Oliveira

Subjects

General Computer Science, Computer science, Programming language, Backtracking, Formal semantics (linguistics), proof automation, 0102 computer and information sciences, 02 engineering and technology, computer.software_genre, Semantics, 01 natural sciences, Theoretical Computer Science, Automated theorem proving, Refinement calculus, tactic language, 010201 computation theory & mathematics, Semantics of logic, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, refinement, computer, Computer Science(all)

Abstract

ArcAngel is a specialised tactic language devised to facilitate and automate program developments using Morgan's refinement calculus. It is especially well-suited for the specification of high-level strategies to derive programs by construction, and equipped with a formal semantics that enables reasoning about tactics. In this paper, we present an implementation of ArcAngel for the ProofPower theorem prover. We discuss the underlying design, explain how it implements the semantics of ArcAngel, and examine differences in expressiveness and flexibility in comparison to ProofPower's in-built tactic language. ArcAngel supports backtracking through angelic choice; this is beyond the basic capabilities of ProofPower and many other main-stream theorem provers. The implementation is demonstrated with a non-trivial tactic example.

41. ACL2s: 'The ACL2 Sedan'

Author

Panagiotis Manolios, Peter C. Dillinger, J. Strother Moore, and Daron Vroon

Subjects

ACL2, General Computer Science, Computer science, business.industry, Process (engineering), Programming language, computer.software_genre, Eclipse, Theoretical Computer Science, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, theorem proving, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Software system, Software engineering, business, computer, script management, computer.programming_language, Computer Science(all)

Abstract

ACL2 is the latest inception of the Boyer-Moore theorem prover, the 2005 recipient of the ACM Software System Award. In the hands of experts it feels like a finely tuned race car, and it has been used to prove some of the most complex theorems ever proved about commercially designed systems. Unfortunately, ACL2 has a steep learning curve. Thus, novices tend have a very different experience: they crash and burn. As part of a project to make ACL2 and formal reasoning safe for the masses, we have developed ACL2s, the ACL2 sedan. ACL2s includes many features for streamlining the learning process that are not found in ACL2. In general, the goal is to develop a tool that is “self-teaching,” i.e., it should be possible for an undergraduate to sit down and play with it and learn how to program in ACL2 and how to reason about the programs she writes.

42. Using eternity variables to specify and prove a serializable database interface

Author

Wim H. Hesselink and Fundamental Computing Science

Subjects

Distributed database, Serializability, History variables, Computer science, Programming language, Mechanical verification, Serialization, media_common.quotation_subject, Database interface, computer.software_genre, Backward invariant, Eternity, scrializability, Automated theorem proving, Nqthm, Implementation, Prophecy variables, Forward invariant, Temporal logic, computer, Specification, Software, media_common

Abstract

Eternity variables are introduced to specify and verify serializability of transactions of a distributed database. Eternity variables are a new kind of auxiliary variables. They do not occur in the implementation but are used in specification and verification. Elsewhere it has been proved that eternity variables in combination with history variables are semantically complete for proving refinement relations.An eternity variable can be thought of as an unknown constant that is determined by the behaviour (execution sequence). In the specification of the database, one eternity variable is used to enforce serialization. In the verification, an additional eternity variable is needed for the connection of the local data with the shared database.The formalism is based on linear-time temporal logic, but the analysis of behaviours is completely reduced to the next-state relation together with progress arguments using variant functions. Forward invariants (inductive predicates) are complemented with other, so-called backward, invariants. The proof has been verified with the first-order theorem prover NQTHM to give additional confidence in the result and in the feasibility of the approach.

43. The Importance of Being Formal

Author

Holger Täubig, Daniel Hausmann, Dennis Walter, Christoph Lüth, and Udo Frese

Subjects

robotics, safety, Correctness, formal methods, General Computer Science, Programming language, Computer science, software certification, Context (language use), Certification, computer.software_genre, Formal methods, Theoretical Computer Science, Automated theorem proving, Component (UML), TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Domain knowledge, Isabelle, Formal verification, computer, Computer Science(all)

Abstract

This paper presents work in the context of the certification of a safety component for autonomous service robots, and investigates the potential advantages offered by formally modelling the domain knowledge, specification and implementation in a theorem prover in higher-order logic. This allows safety properties to be stated in an abstract manner close to textbook mathematics. The automatic proof checking alleviates correctness concerns, and provides a seamless development process from high-level safety requirements down to concrete implementation. Moreover, the formalisation can be checked for correctness automatically, and the certification review process can focus on the correctness of the specification and safety cases.

44. A general technique for proving lock-freedom

Author

Brijesh Dongol and Robert Colvin

Subjects

Record locking, Theoretical computer science, Computer science, Programming language, Concurrency, Verification, Multiprocessing, Temporal logic, computer.software_genre, Mathematical proof, Automated theorem proving, Lock-free programs, State (computer science), Heuristics, computer, Software

Abstract

Lock-freedom is a property of concurrent programs which states that, from any state of the program, eventually some process will complete its operation. Lock-freedom is a weaker property than the usual expectation that eventually all processes will complete their operations. By weakening their completion guarantees, lock-free programs increase the potential for parallelism, and hence make more efficient use of multiprocessor architectures than lock-based algorithms. However, lock-free algorithms, and reasoning about them, are considerably more complex.In this paper we present a technique for proving that a program is lock-free. The technique is designed to be as general as possible and is guided by heuristics that simplify the proofs. We demonstrate our theory by proving lock-freedom of two non-trivial examples from the literature. The proofs have been machine-checked by the PVS theorem prover, and we have developed proof strategies to minimise user interaction.

45. Narrowing and Rewriting Logic: from Foundations to Applications

Author

Prasanna Thati, José Meseguer, and Santiago Escobar

Subjects

Model checking, Maude, Theoretical computer science, General Computer Science, Modulo, Context (language use), Reachability, Security protocols, Theoretical Computer Science, Algebra, Automated theorem proving, Range (mathematics), Equational Reasoning, ComputingMethodologies_SYMBOLICANDALGEBRAICMANIPULATION, Computer Science::Programming Languages, Rewriting, Narrowing, Rewriting Logic, AND gate, Mathematics, Computer Science(all)

Abstract

Narrowing was originally introduced to solve equational E-unification problems. It has also been recognized as a key mechanism to unify functional and logic programming. In both cases, narrowing supports equational reasoning and assumes confluent equations. The main goal of this work is to show that narrowing can be greatly generalized, so as to support a much wider range of applications, when it is performed with rewrite theories (Σ, E, R), where (Σ, E) is an equational theory, and R is a collection of rewrite rules with no restrictions. Such theories axiomatize concurrent systems, whose states are equivalence classes of terms modulo E, and whose transitions are specified by R. In this context, narrowing is generalized from an equational reasoning technique to a symbolic model checking technique for reachability analysis of a, typically infinite, concurrent system. We survey the foundations of this approach, suitable narrowing strategies, and various applications to security protocol verification, theorem proving, and programming languages.

46. CC(X): Semantic Combination of Congruence Closure with Solvable Theories

Author

Sylvain Conchon, Evelyne Contejean, Johannes Kanig, and Stéphane Lescuyer

Subjects

Discrete mathematics, Class (set theory), congruence closure, General Computer Science, equality theory, Modulo, decision procedures, Theoretical Computer Science, Automated theorem proving, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Core (graph theory), Congruence closure, verification, Computer Science(all), Mathematics

Abstract

We present a generic congruence closure algorithm for deciding ground formulas in the combination of the theory of equality with uninterpreted symbols and an arbitrary built-in solvable theory X. Our algorithm CC(X) is reminiscent of Shostak combination: it maintains a union-find data-structure modulo X from which maximal information about implied equalities can be directly used for congruence closure. CC(X) diverges from Shostak's approach by the use of semantic values for class representatives instead of canonized terms. Using semantic values truly reflects the actual implementation of the decision procedure for X. It also enforces to entirely rebuild the algorithm since global canonization, which is at the heart of Shostak combination, is no longer feasible with semantic values. CC(X) has been implemented in Ocaml and is at the core of Ergo, a new automated theorem prover dedicated to program verification.

47. Connecting Logical Representations and Efficient Computations

Author

Volker Sorge and Martin Pollet

Subjects

Correctness, Theoretical computer science, General Computer Science, Computation and Reasoning, Computer science, Computation, Mathematical Knowledge Representation, ComputerApplications_COMPUTERSINOTHERSYSTEMS, Logic level, Computational resource, Theoretical Computer Science, Automated theorem proving, Identification (information), Proof theory, Computer Science::Logic in Computer Science, Annotated Terms, Representation (mathematics), Algorithm, Computer Science::Databases, Computer Science(all)

Abstract

When combining logic level theorem proving with computational methods it is important to identify both functions that can be efficiently computed and the objects they can be applied to. This is generally achieved by mappings of logic level terms and functions to their computational counterparts. However, these mappings are often quite ad hoc and fragile depending very much on the particular logic representations of terms. We present a method of annotating terms in logic proofs with their computational properties. This enables the compact representation of computational objects in deduction systems as well as their connection to functions that can be easily computed for them. This eases the identification of deduction problems that can be treated efficiently by computational methods and also abstracts from trivial properties that are artefacts of a particular representation. We ensure logical correctness of our concepts by providing the possibility to replace terms by their logical representation and by expanding computational procedures by tactic application that can be rigorously checked.

48. Unsorted Functional Translations

Author

Daniel Gorín and Carlos Areces

Subjects

Discrete mathematics, General Computer Science, Normal modal logic, Multimodal logic, Modal logic, functional translation, Satisfiability, Theoretical Computer Science, Algebra, Automated theorem proving, Accessibility relation, Dynamic logic (modal logic), sorts, Computer Science(all), Mathematics, Counterexample

Abstract

In this article we first show how the functional and the optimized functional translation from modal logic to many-sorted first-order logic can be naturally extended to the hybrid language H(@,↓). The translation is correct not only when reasoning over the class of all models, but for any first-order definable class. We then show that sorts can be safely removed (i.e., without affecting the satisfiability status of the formula) for frame classes that can be defined in the basic modal language, and show a counterexample for a frame class defined using nominals.

49. Interfaces as functors, programs as coalgebras—A final coalgebra theorem in intensional type theory

Author

Markus Michelbrink

Subjects

Bisimulation, Functor, General Computer Science, Agda, Coalgebra, Dependent type theory, Mathematical proof, Interactive programming, Theoretical Computer Science, Set (abstract data type), Algebra, Automated theorem proving, Type theory, computer, Computer Science(all), Mathematics, computer.programming_language

Abstract

In [P. Hancock, A. Setzer, Interactive programs in dependent type theory, in: P. Clote, H. Schwichtenberg (Eds.), Proc. 14th Annu. Conf. of EACSL, CSL’00, Fischbau, Germany, 21–26 August 2000, Vol. 1862, Springer, Berlin, 2000, pp. 317–331, URL 〈citeseer.ist.psu.edu/article/hancock00interactive.html〉; P. Hancock, A. Setzer, Interactive programs and weakly final coalgebras in dependent type theory, in: L. Crosilla, P. Schuster (Eds.), From Sets and Types to Topology and Analysis. Towards Practicable Foundations for Constructive Mathematics, Oxford Logic Guides, Clarendon Press, 2005, URL 〈www.cs.swan.ac.uk/∼csetzer/〉] Hancock and Setzer introduced rules to extend Martin-Löf's type theory in order to represent interactive programming. The rules essentially reflect the existence of weakly final coalgebras for a general form of polynomial functor. The standard rules of dependent type theory allow the definition of inductive types, which correspond to initial algebras. Coalgebraic types are not represented in a direct way. In this article we show the existence of final coalgebras in intensional type theory for these kind of functors, where we require uniqueness of identity proofs (UIP) for the set of states S and the set of commands C which determine the functor. We obtain the result by identifying programs which have essentially the same behaviour, viz. are bisimular. This proves the rules of Setzer and Hancock admissible in ordinary type theory, if we replace definitional equality by bisimulation. All proofs [M. Michelbrink, Verifications of final coalgebra theorem in: Interfaces as Functors, Programs as Coalgebras—A Final Coalgebra Theorem in Intensional Type Theory, 2005, URL 〈www.cs.swan.ac.uk/∼csmichel/〉] are verified in the theorem prover agda [C. Coquand, Agda, Internet, URL 〈www.cs.chalmers.se/∼catarina/agda/〉; K. Peterson, A programming system for type theory, Technical Report, S-412 96, Chalmers University of Technology, Göteborg, 1982], which is based on intensional Martin-Löf type theory.

50. A proof-centric approach to mathematical assistants

Author

Lucas Dixon and Jacques Fleuriot

Subjects

IsaPlanner, Computer science, Programming language, Proof complexity, Logic, Applied Mathematics, Proof planning, Proof assistant, computer.file_format, computer.software_genre, Mathematical proof, Isar, Automated theorem proving, Computer-assisted proof, TheoryofComputation_MATHEMATICALLOGICANDFORMALLANGUAGES, Scripting language, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Executable, Isabelle, computer, Algorithm, Theorem proving

Abstract

We present an approach to mathematical assistants which uses readable, executable proof scripts as the central language for interaction. We examine an implementation that combines the Isar language, the Isabelle theorem prover and the IsaPlanner proof planner. We argue that this synergy provides a flexible environment for the exploration, certification, and presentation of mathematical proof.