Automating Event-B invariant proofs by rippling and proof patching

Yuhui Lin; Alan Bundy; Gudmund Grov; Ewen Maclean

doi:10.1007/s00165-018-00476-7

Automating Event-B invariant proofs by rippling and proof patching

Yuhui Lin, Alan Bundy, Gudmund Grov, Ewen Maclean

School of Computer Science

Research output: Contribution to journal › Article › peer-review

Abstract

The use of formal method techniques can contribute to the production of more reliable and dependable systems. However, a common bottleneck for industrial adoption of such techniques is the needs for interactive proofs. We use a popular formal method, called Event-B, as our working domain, and set invariant preservation (INV) proofs as targets, because INV proofs can account for a significant proportion of the proofs requiring human interactions. We apply an inductive theorem proving technique, called rippling, for Event-B INV proofs. Rippling automates proofs using meta-level guidance. The guidance is in particular useful to develop proof patches to recover failed proof attempts. We are interested in the case when a missing lemma is required. We combine a scheme-based theory-exploration system, called IsaScheme [MRMDB10], with rippling to develop a proof patch via lemma discovery. We also develop two new proof patches to unfold operator definitions and to suggest case-splits, respectively. The combined use of rippling with these three proof patches as a proof method significantly improves the proof automation for our evaluation set.

Original language	English
Pages (from-to)	95-129
Number of pages	35
Journal	Formal Aspects of Computing
Volume	31
Issue number	1
Early online date	2 Jan 2019
DOIs	https://doi.org/10.1007/s00165-018-00476-7
Publication status	Published - Feb 2019

Keywords

Formal verification
Event-B
Automated reasoning
Rippling
Lemma conjecturing

Access to Document

10.1007/s00165-018-00476-7Licence: CC BY

Lin2019_Article_AutomatingEvent-BInvariantProo
© The Author(s) 2018. This article is distributed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/), which permits unrestricted use, distribution, and reproduction in any medium, provided you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license, and indicate if changes were made.
Final published version, 1.2 MBLicence: CC BY

Cite this

@article{c4ec876fab2e4956a73e997efa86c581,

title = "Automating Event-B invariant proofs by rippling and proof patching",

abstract = "The use of formal method techniques can contribute to the production of more reliable and dependable systems. However, a common bottleneck for industrial adoption of such techniques is the needs for interactive proofs. We use a popular formal method, called Event-B, as our working domain, and set invariant preservation (INV) proofs as targets, because INV proofs can account for a significant proportion of the proofs requiring human interactions. We apply an inductive theorem proving technique, called rippling, for Event-B INV proofs. Rippling automates proofs using meta-level guidance. The guidance is in particular useful to develop proof patches to recover failed proof attempts. We are interested in the case when a missing lemma is required. We combine a scheme-based theory-exploration system, called IsaScheme [MRMDB10], with rippling to develop a proof patch via lemma discovery. We also develop two new proof patches to unfold operator definitions and to suggest case-splits, respectively. The combined use of rippling with these three proof patches as a proof method significantly improves the proof automation for our evaluation set.",

keywords = "Formal verification, Event-B, Automated reasoning, Rippling, Lemma conjecturing",

author = "Yuhui Lin and Alan Bundy and Gudmund Grov and Ewen Maclean",

note = "This work is supported by EPSRC grants EP/H024204/1, EP/E005713/1, EP/M018407/1 and EP/J001058/1.",

year = "2019",

month = feb,

doi = "10.1007/s00165-018-00476-7",

language = "English",

volume = "31",

pages = "95--129",

journal = "Formal Aspects of Computing",

issn = "0934-5043",

publisher = "Association for Computing Machinery ",

number = "1",

}

TY - JOUR

T1 - Automating Event-B invariant proofs by rippling and proof patching

AU - Lin, Yuhui

AU - Bundy, Alan

AU - Grov, Gudmund

AU - Maclean, Ewen

N1 - This work is supported by EPSRC grants EP/H024204/1, EP/E005713/1, EP/M018407/1 and EP/J001058/1.

PY - 2019/2

Y1 - 2019/2

N2 - The use of formal method techniques can contribute to the production of more reliable and dependable systems. However, a common bottleneck for industrial adoption of such techniques is the needs for interactive proofs. We use a popular formal method, called Event-B, as our working domain, and set invariant preservation (INV) proofs as targets, because INV proofs can account for a significant proportion of the proofs requiring human interactions. We apply an inductive theorem proving technique, called rippling, for Event-B INV proofs. Rippling automates proofs using meta-level guidance. The guidance is in particular useful to develop proof patches to recover failed proof attempts. We are interested in the case when a missing lemma is required. We combine a scheme-based theory-exploration system, called IsaScheme [MRMDB10], with rippling to develop a proof patch via lemma discovery. We also develop two new proof patches to unfold operator definitions and to suggest case-splits, respectively. The combined use of rippling with these three proof patches as a proof method significantly improves the proof automation for our evaluation set.

AB - The use of formal method techniques can contribute to the production of more reliable and dependable systems. However, a common bottleneck for industrial adoption of such techniques is the needs for interactive proofs. We use a popular formal method, called Event-B, as our working domain, and set invariant preservation (INV) proofs as targets, because INV proofs can account for a significant proportion of the proofs requiring human interactions. We apply an inductive theorem proving technique, called rippling, for Event-B INV proofs. Rippling automates proofs using meta-level guidance. The guidance is in particular useful to develop proof patches to recover failed proof attempts. We are interested in the case when a missing lemma is required. We combine a scheme-based theory-exploration system, called IsaScheme [MRMDB10], with rippling to develop a proof patch via lemma discovery. We also develop two new proof patches to unfold operator definitions and to suggest case-splits, respectively. The combined use of rippling with these three proof patches as a proof method significantly improves the proof automation for our evaluation set.

KW - Formal verification

KW - Event-B

KW - Automated reasoning

KW - Rippling

KW - Lemma conjecturing

UR - https://www.scopus.com/pages/publications/85059528193

U2 - 10.1007/s00165-018-00476-7

DO - 10.1007/s00165-018-00476-7

M3 - Article

SN - 0934-5043

VL - 31

SP - 95

EP - 129

JO - Formal Aspects of Computing

JF - Formal Aspects of Computing

IS - 1

ER -

Automating Event-B invariant proofs by rippling and proof patching

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

ABC: Adaptive Brokerage for the Cloud: ABC: Adaptive Brokerage for the Cloud

Cite this

Automating Event-B invariant proofs by rippling and proof patching

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Projects

ABC: Adaptive Brokerage for the Cloud: ABC: Adaptive Brokerage for the Cloud

Cite this