Introduction to Model Checking WS 2011/12

Type

Day

Time

Place

Start

Lecturer

13:30-15:00

AH II

October 10

Katoen

Tue

14:00-15:30

AH II

October 18

Katoen

Ü2

Wed

15:45-17:15

AH VI

October 26

Gretz, Sher

Second Exam solutions can be checked on 30th March in the seminar room of I2 between 15:00 and 16:00.
Second Exam result is uploaded: please find your grades in this file (same password as that for exercise solutions).
The second exam takes place in AH II on Friday, March 23 at 09:00-11:00.
First Exam result is uploaded: please find your grades in this file (same password as that for exercise solutions).
Exam inspection is possible on 22.02.2012 between 14:00 and 16:00 in the seminar room of I2.
Sitting arrangement for the exam: from matriculation number 263000 - 294000 in AH I and from 294100 - 317000 in AH II.
The exam takes place on February 8, 14:00-16:00 (AH1 and AH2). You are allowed to take the following materials to the exam: a (copy of the) book "Principles of Model Checking", a printout of the lecture slides, and a dictionary. That's all. So no exercises with solutions, or any hand-written material.
A sample exam along with its solution (protected with the same password as that for exercise solutions) is provided to have a flavor of the exam.

The second exam takes place in AH II on Friday, March 23 at 09:00-11:00.
The lecture on January 31 and exercise session on February 1 will replace each other, i.e., exercise will occur at 14:00-15:30 in AHII on January 31 and lecture at 15:45-17:15 in AHVI on February 1.
Solution for sheet 01 was updated! (Missing transitions in 3c and wrong statement in 3e.)
We have begun to upload the presented solutions to the exercises. Please understand that the download has to be password protected. The login will be disseminated in the lecture and exercise class.
Exercise sheet 9 is uploaded.
Now onward the lectures that were scheduled in AH IV (13:15-14:45) will take place in AH II (13:30-15:00).
There is no exercise session on 14th December.
Exercise sheet 8 is uploaded. It is due on December 21. On December 14, another exercise sheet would be uploaded and both of them would be presented on December 21.
The lectures on 28.11, 12.12 and 13.12 do not take place.
(24.10) Due to a clash, the exam date was shifted to Wednesday, 8. Februar 2012, 14:00h in 2350|111 (AH II)
(19.10) The first exercise sheet is online!
The next lecture takes place on Monday 17 Oct
The weekly lecture on Monday will take place in AH IV instead of 5052.
Today (10.10.2011): Lecture takes place in room AH V.
(27.09) Website created

In 2008, the ACM awarded the prestigious Turing Award - the Nobel Prize in Computer Science - to the pioneers of Model Checking: Ed Clarke, Allen Emerson, and Joseph Sifakis.

Why? Because model checking has evolved in the last twenty-five years into a widely used verification and debugging technique for both software and hardware.

It is used (and further developed) by companies and institutes such as IBM, Intel, NASA, Cadence, Microsoft, and Siemens, to mention a few, and has culminated in a series of mostly freely downloadable software tools that allow the automated verification of, for instance, C#-programs or combinational hardware circuits.

Subtle errors, for instance due to multi-threading, that remain undiscovered using simulation or peer reviewing can potentially be revealed using model checking. Model checking is thus an effective technique to expose potential design errors and improve software and hardware reliability.

But how does it work, that is, what are its underlying principles?

That's exactly the focus of this lecture series!

We will show that model checking is based on well-known paradigms from automata theory, graph algorithms, logic, and data structures. Its complexity is analyzed using standard techniques from complexity theory.

Model checking is based on checking models. So, we first start by explaining what models are, and will make clear that so-called labeled transition systems, a model that is akin to automata, are suitable for modeling sequential, as well as multi-threading programs.

This is followed by a detailed study on various classes of system properties such as safety, liveness, and fairness. It will be shown how finite automata as well as variants thereof that accept infinite words are suitable for verifying regular properties.

The linear-time and branching time temporal logics LTL and CTL are then introduced and compared. Model checking algorithms for these logics together with detailed complexity considerations are covered.

Finally, abstraction techniques based on bisimulation and simulation relations are covered. These techniques are at key techniques to combat the state explosion problem.

This course is suitable for Hauptdiplom, bachelor (this course is part of the "Wahlkatalog" in theoretical computer science), as well as master students.

We expect students to have some basic knowledge in:

Automata Theory
Mathematical Logic
Discrete Mathematics
Complexity Theory
Algorithms and Data Structures

The course book (see below) will contain a summary of the issues in these areas that are relevant to this lecture series. We believe that this course is also well-suited for students in electrical engineeering and mathematics.

This course provides the basis for the follow-up courses:

Advanced Model Checking
Model Checking Labs

Moreover, it is related to courses such as:

Semantics and Verification of Software
Automata and Reactive Systems (i7)
Automata on Infinite Words (i7)
Formal Methods for Embedded Systems (i11)

There are thus plenty of opportunities to combine this course with others! We also regularly offer seminars that are based on model checking and offer various master and diplom theses on model checking and its applications.

Date

Lecture

Subject

Slides

Exercises

Solution

Oct 10

Motivation, Background, and Course Organization

Oct 17

Modeling Parallel Systems

Oct 18

Parallelism and Communication

Oct 24

Parallelism and Communication II

Oct 25

Linear Time Properties

Nov 7

Invariants and Safety

Nov 8

Liveness and Fairness

Nov 14

Regular Properties

Nov 15

ω-regular Properties

Nov 21

Büchi Automata (see lecture 9 for slides)

Nov 22

Model Checking ω-regular Properties

Nov 29

Continue...

Dec 5

Linear Temporal Logic (LTL)

Dec 6

Dec 19

LTL Model Checking

Jan 9

Continue...

Jan 10

Complexity of LTL Model Checking

Jan 16

Computation Tree Logic (CTL)

Jan 17

LTL versus CTL

Jan 23

CTL Model Checking

Jan 24

CTL Model Checking with fairness

Jan 30

CTL* and CTL+

1 Feb

Bisimulation

The lectures and all materials are in english. The slides will be made available via this webpage during the course.

The course is based on the recently published book:

Principles of Model Checking
by Christel Baier and Joost-Pieter Katoen
MIT Press, 2008.

An errata document to the book may be found here.

It is possible to buy a book (about 40 euros), but there is no need to do so as there are various copies of the book available at the CS library.

The course will basically cover Chapters 1 through 7 (upto section 7.3).

Additional literature:

E.M. Clarke, O. Grumberg, D.A. Peled: Model Checking, MIT Press, 1999

M. Huth and M.D. Ryan: Logic in Computer Science - Modelling and Reasoning about Systems, Cambridge University Press, 2nd edition, 2004

K. Schneider: Verification of Reactive Systems, Springer-Verlag, Texts in Theoretical Computer Science. An EATCS Series, 2004

BSc/MSc/Diploma Topics
Teaching WS 2012/13
Hybrid Systems Group

We are looking for a HiWi for the Compiler Construction course. If you are interested, please contact Thomas Noll.

Joost-Pieter Katoen has been appointed as a member of the renowned Academia Europaea (Academy of Europe), a European, non-governmental association acting as an Academy whose members are scientists and scholars who collectively aim to promote learning, education and research.

Vacancies for postdoctoral researchers in "Automated Analysis of Probabilistic Programs". Application deadline: August 15, 2013.

Joost-Pieter Katoen has been awarded a Distinguished Professorship from the RWTH Aachen University.

The Hybrid Systems: Computation and Control (HSCC'13) conference in Philadelphia has been very successful: Hongfei Fu received the best student paper award for his paper "Approximating acceptance probabilities of CTMC-paths on multi-clock deterministic timed automata". Besides, the paper by Ilya Tkachev, Alexandru Mereacre, Alessandro Abate and Joost-Pieter Katoen was ranked second in the overall best paper award selection.

Joost-Pieter Katoen has been elected as Steering Committee Chair of ETAPS (www.etaps.org), the largest conference on theory and practice of software in Europe. He is the first non-UK ETAPS SC chair since the conference was initiated in 1998. More information here.

The Alumni-Magazine of RWTH Aachen University contains an interview with our former PhD student and postdoctoral researcher, Dr. Tingting Han.

HiWi's wanted to work in a new European Space Agency project for enhancing state-of-the-art design and analysis tools (COMPASS) for the next generation European rockets. Need programming and model checking affinity. See here for details and contact.

We offer openings for several PhD candidates in the area of
"Model-Based Design and Analysis for Dependable Software Systems". Deadline for application: September 14, 2012. For further information click here.

The Theory of Hybrid Systems Group offers two jobs as student assistants within the CEBug project. For more information, look here.

Dino Distefano received the prestigious Roger Needham Award for his work on software verification. This award is for a distinguished research contribution in computer science by a UK based researcher who has completed up to 10 years of post-doctoral research. Dr. Distefano was the first PhD student supervised by Joost-Pieter Katoen.

Marijn Jongerden received the German MMB (Messung, Modellierung und Bewertung von Rechensystemen) Award 2012 of the GI/ITG-Committee for Measurement, Modelling and Evaluation of Computing Systems for his PhD-thesis on "Model-based energy analysis of battery powered systems". His work was supervised by Boudewijn Haverkort (Twente) and Joost-Pieter Katoen.

Our paper "Formal Correctness, Safety, Dependability and Performance Analysis of a Satellite" has been accepted to ICSE 2012 in the track SE in Practice (18% acceptance rate). The paper treats a new satellite from the European Space Agency that was modeled and analyzed with modern tools during the actual satellite design.

Joost-Pieter Katoen will act as DJ in the "Nacht der Professoren" in the Apollo bar and cinema.