This paper addresses a problem arising in automated proof of invariants of transition systems, for example transition systems modelling distributed programs. Most of the time, the actual properties we want to prove are too weakto hold inductively, and auxiliary invariants need to be introduced. The problem is how to find these extra invariants. We propose a method where we find minimal counter examples to candidate invariants by means of automated random testing techniques. These counter examples can be inspected by a human user, and used to adapt the set of invariants at hand. We are able to find two different kinds of counter examples, either indicating (1) that the used invariants are too strong (a concrete trace of the system violates a...
It is notoriously hard to develop dependable distributed systems. This is partly due to the difficul...
It is notoriously hard to develop dependable distributed systems. This is partly due to the difficul...
Abstract. We explore the combination of bounded model checking and induction for proving safety prop...
Abstract. This paper addresses a problem arising in automated proof of invariants of transition syst...
We present a framework for automating the discovery of loop invariants based upon failed proof atte...
Thesis (M.Eng.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer...
When proving invariance properties of programs one is faced with two problems. The first problem is ...
Proof rules for program verification rely on auxiliary assertions. We propose a (sound and relativel...
With the current rapid computerisation and automation of systems, which were previously controlled m...
Induction proofs often fail because the stated theorem is noninductive, in which case the user must ...
International audienceWhen verifying programs where the data have some recursive structure, it is na...
Counterexamples explain why a desired temporal logic property fails to hold. The generation of count...
Program verification increases the degree of confidence that a program will perform correctly. Manua...
The induction-guided falsification searches a bounded reachable state space of a transition system f...
Abstract. Most of the properties established during program verification are either invariants or de...
It is notoriously hard to develop dependable distributed systems. This is partly due to the difficul...
It is notoriously hard to develop dependable distributed systems. This is partly due to the difficul...
Abstract. We explore the combination of bounded model checking and induction for proving safety prop...
Abstract. This paper addresses a problem arising in automated proof of invariants of transition syst...
We present a framework for automating the discovery of loop invariants based upon failed proof atte...
Thesis (M.Eng.)--Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer...
When proving invariance properties of programs one is faced with two problems. The first problem is ...
Proof rules for program verification rely on auxiliary assertions. We propose a (sound and relativel...
With the current rapid computerisation and automation of systems, which were previously controlled m...
Induction proofs often fail because the stated theorem is noninductive, in which case the user must ...
International audienceWhen verifying programs where the data have some recursive structure, it is na...
Counterexamples explain why a desired temporal logic property fails to hold. The generation of count...
Program verification increases the degree of confidence that a program will perform correctly. Manua...
The induction-guided falsification searches a bounded reachable state space of a transition system f...
Abstract. Most of the properties established during program verification are either invariants or de...
It is notoriously hard to develop dependable distributed systems. This is partly due to the difficul...
It is notoriously hard to develop dependable distributed systems. This is partly due to the difficul...
Abstract. We explore the combination of bounded model checking and induction for proving safety prop...