[PDF][PDF] Modular verification of asynchronous networks
B Jonsson - Proceedings of the sixth annual ACM Symposium on …, 1987 - dl.acm.org
We present a specification and verification method for networks of processes that
communicate by asynchronous message-passing. Networks are specified by transition …
communicate by asynchronous message-passing. Networks are specified by transition …
On the completeness of compositional reasoning methods
KS Namjoshi, RJ Trefler - ACM Transactions on Computational Logic …, 2010 - dl.acm.org
Hardware systems and reactive software systems can be described as the composition of
several concurrently active processes. Automated reasoning based on model checking …
several concurrently active processes. Automated reasoning based on model checking …
Formal specification and verification of a dataflow processor array
TA Henzinger, X Liu, S Qadeer… - 1999 IEEE/ACM …, 1999 - ieeexplore.ieee.org
We describe the formal specification and verification of the VGI parallel DSP chip (V. Srini et
al., 1998), which contains 64 compute processors with/spl sim/30 K gates in each processor …
al., 1998), which contains 64 compute processors with/spl sim/30 K gates in each processor …
[PDF][PDF] Open systems in TLA
M Abadi, L Lamport - Proceedings of the thirteenth annual ACM …, 1994 - dl.acm.org
We describe a method for writing assumption/guarantee specifications of concurrent
systems. We also provide a proof rule for reasoning about the composition of these systems …
systems. We also provide a proof rule for reasoning about the composition of these systems …
An assume-guarantee rule for checking simulation
The simulation preorder on state transition systems is widely accepted as a useful notion of
refinement, both in its own right and as an efficiently checkable sufficient condition for trace …
refinement, both in its own right and as an efficiently checkable sufficient condition for trace …
Parallel composition of assumption-commitment specifications: A unifying approach for shared variable and distributed message passing concurrency
A Cau, P Collette - Acta Informatica, 1996 - Springer
We unify the parallel composition rule of assumption-commitment specifications for
respectively state-based and message-based concurrent processes. Without providing …
respectively state-based and message-based concurrent processes. Without providing …
Component assemblies in the context of manycore
We present a component-based software design flow for building parallel applications
running on top of manycore platforms. The flow is based on the BIP-Behaviour, Interaction …
running on top of manycore platforms. The flow is based on the BIP-Behaviour, Interaction …
Theory and methodology of assumption/commitment based system interface specification and architectural contracts
M Broy - Formal Methods in System Design, 2018 - Springer
This paper addresses the specification of and reasoning about interactive real-time systems,
their interfaces, and architectures as well as their properties in terms of assumptions and …
their interfaces, and architectures as well as their properties in terms of assumptions and …
Foundations for circular compositional reasoning
M Viswanathan, R Viswanathan - … , ICALP 2001 Crete, Greece, July 8–12 …, 2001 - Springer
Compositional proofs about systems of many components require circular reasoning
principles in which properties of other components need to be assumed in proving the …
principles in which properties of other components need to be assumed in proving the …
A functional rephrasing of the assumption/commitment specification style
M Broy - Formal Methods in System Design, 1998 - Springer
The assumption/commitment (also called rely/guarantee) style has been advocated for the
specification of interactive components of distributed systems. It suggests the structuring of …
specification of interactive components of distributed systems. It suggests the structuring of …