Scribd Logo
Upload

Welcome to Scribd!

  • 24 views

    Dtic Ada465029

    Uploaded by

    anca irina
    The document describes reusable proof strategies for proving abstraction properties of input/output automata in the PVS proof system. It presents several proof strategies and tactics that can be applied at different steps of an induction proof, including applying inductive hypotheses, lemmas, and preconditions of actions. It also describes strategies for setting up refinement proofs, branching on actions, and proving properties about enabled transitions.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Dtic Ada465029

    Uploaded by

    anca irina
    24 views15 pages
    The document describes reusable proof strategies for proving abstraction properties of input/output automata in the PVS proof system. It presents several proof strategies and tactics that can be applied at different steps of an induction proof, including applying inductive hypotheses, lemmas, and preconditions of actions. It also describes strategies for setting up refinement proofs, branching on actions, and proving properties about enabled transitions.

    Original Description:

    Original Title

    DTIC_ADA465029

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document describes reusable proof strategies for proving abstraction properties of input/output automata in the PVS proof system. It presents several proof strategies and tactics that can be applied at different steps of an induction proof, including applying inductive hypotheses, lemmas, and preconditions of actions. It also describes strategies for setting up refinement proofs, branching on actions, and proving properties about enabled transitions.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    24 views15 pages

    Dtic Ada465029

    Uploaded by

    anca irina
    The document describes reusable proof strategies for proving abstraction properties of input/output automata in the PVS proof system. It presents several proof strategies and tactics that can be applied at different steps of an induction proof, including applying inductive hypotheses, lemmas, and preconditions of actions. It also describes strategies for setting up refinement proofs, branching on actions, and proving properties about enabled transitions.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 15

    Form Approved

    Report Documentation Page OMB No. 0704-0188

    Public reporting burden for the collection of information is estimated to average 1 hour per response, including the time for reviewing instructions, searching existing data sources, gathering and
    maintaining the data needed, and completing and reviewing the collection of information. Send comments regarding this burden estimate or any other aspect of this collection of information,
    including suggestions for reducing this burden, to Washington Headquarters Services, Directorate for Information Operations and Reports, 1215 Jefferson Davis Highway, Suite 1204, Arlington
    VA 22202-4302. Respondents should be aware that notwithstanding any other provision of law, no person shall be subject to a penalty for failing to comply with a collection of information if it
    does not display a currently valid OMB control number.

    1. REPORT DATE 3. DATES COVERED


    2. REPORT TYPE
    2004 00-00-2004 to 00-00-2004
    4. TITLE AND SUBTITLE 5a. CONTRACT NUMBER
    Reusable PVS Proof Strategies for Proving Abstraction Properties of I/O 5b. GRANT NUMBER
    Automata
    5c. PROGRAM ELEMENT NUMBER

    6. AUTHOR(S) 5d. PROJECT NUMBER

    5e. TASK NUMBER

    5f. WORK UNIT NUMBER

    7. PERFORMING ORGANIZATION NAME(S) AND ADDRESS(ES) 8. PERFORMING ORGANIZATION


    REPORT NUMBER
    Naval Research Laboratory,Code 5546,4555 Overlook Avenue,
    SW,Washington,DC,20375
    9. SPONSORING/MONITORING AGENCY NAME(S) AND ADDRESS(ES) 10. SPONSOR/MONITOR’S ACRONYM(S)

    11. SPONSOR/MONITOR’S REPORT


    NUMBER(S)

    12. DISTRIBUTION/AVAILABILITY STATEMENT


    Approved for public release; distribution unlimited
    13. SUPPLEMENTARY NOTES

    14. ABSTRACT

    15. SUBJECT TERMS

    16. SECURITY CLASSIFICATION OF: 17. LIMITATION OF 18. NUMBER 19a. NAME OF
    ABSTRACT OF PAGES RESPONSIBLE PERSON
    a. REPORT b. ABSTRACT c. THIS PAGE
    14
    unclassified unclassified unclassified

    Standard Form 298 (Rev. 8-98)


    Prescribed by ANSI Std Z39-18
    Proof Step TAME Strategy Use
    Get base and induction cases AUTO_INDUCT Start an induction proof
    and do standard initial steps
    Appeal to precondition of an APPLY_SPECIFIC_PRECOND Demonstrate need to use
    action precondition
    Apply the inductive hypothesis APPLY_IND_HYP Supplement AUTO_INDUCT’s
    to non-default argument(s) use of default arguments
    Apply an auxiliary invariant APPLY_INV_LEMMA Needed in proving
    lemma “non-inductive” invariants
    Break down into cases based SUPPOSE Add proof comments and
    on a predicate labels to PVS’ CASE
    Apply “obvious” reasoning, e.g., TRY_SIMP Finish proof branch once
    propositional, equational, datatype facts have been introduced
    Use a fact from the mathematical APPLY_LEMMA Perform special
    theory for a state variable type mathematical reasoning
    Instantiate embedded quantifier INST_IN Instantiate but don’t split first
    Skolemize embedded quantifier SKOLEM_IN Skolemize but don’t split first
    PROVE_REFINEMENT

    SETUP_REF_BASE SETUP_REF_INDUCT_CASES

    Branching on actions

    START_REF_INDUCTION_BRANCH START_REF_INDUCTION_BRANCH

    START_ENABLEMENT_PROOF DO_TRANS DO_TRANS

    APPLY_GENERAL_PRECOND APPLY_SPECIFIC_PRECOND

    You might also like