By Kenneth McMillan (auth.), M. Kemal Inan, Robert P. Kurshan (eds.)

ISBN-10: 3642596150

ISBN-13: 9783642596155

ISBN-10: 3642640524

ISBN-13: 9783642640520

This publication grew out of a NATO complex research Institute summer time tuition that used to be held in Antalya, TUrkey from 26 may perhaps to six June 1997. the aim of the summer season college used to be to show contemporary advances within the formal verification of structures composed of either logical and non-stop time parts. The path was once dependent in elements. the 1st half lined theorem-proving, approach automaton types, logics, instruments, and complexity of verification. the second one half coated modeling and verification of hybrid platforms, i. e. , platforms composed of a discrete occasion half and a continual time half that have interaction with one another in novel methods. besides advances in microelectronics, easy methods to layout and construct logical structures have grown gradually advanced. a method to take on the matter of making sure the error-free operation of electronic or hybrid structures is thru using formal thoughts. The workout of evaluating the formal specification of a logical approach specifically, what it really is imagined to do to its formal operational description-what it really does!-in an automatic or semi-automated demeanour is termed verification. Verification could be played in an after-the-fact demeanour, that means that when a process is already designed, its specification and operational description are regenerated or transformed, if invaluable, to compare the verification software to hand and the consistency cost is carried out.

Suppose that before we proved rev-rev we proved rev-app. Thus, ACL2 will now drive rev through app terms. Then the proof of rev-rev is much simpler. Here it is. Note how the induction step, Subgoal *1/3, now simplifies almost immediately to true. 2. General Purpose Theorem Proving Methods 25 Name the formula above *1. Perhaps we can prove *1 by induction. Two induction schemes are suggested by this conjecture. These merge into one derived induction scheme. We will induct according to a scheme suggested by (REV A).

Theorems are proved about the mathematical models. Models are written down in some notation. Models must be corroborated for accuracy. , unmodeled) ways. - To reject mathematical models because they cannot offer such guarantees is to ignore the most powerful tool mankind has devised for dealing with complex systems. 2. " Propositional Calculus Arithmetic Equality QuantiFiers Mathematical Induction Set Theory model checking tools general purpose theorem provers Pro: nearly automatic Pro: powerful specification language Con: weak specification language Con: requires extensive training to use At one end of this spectrum we have model checking tools.

Some industrial scale applications, including correctness proofs for commercial floating-point operations and proofs about a model of a state-of-the-art digital signal processor, are discussed. The paper concludes with a discussion of several other systems and their recent applications. 1. Introduction Formal mathematical logic can be used to model computing systems. Such formal models offer a unique advantage over conventional "simulation" models: it is possible to prove mathematically many of the properties of the modeled systems.

