Robust Vacuity for Branching Temporal Logic
Arie Gurfinkel, Marsha Chechik
TL;DR
This paper introduces a new concept called bisimulation vacuity for branching temporal logic, addressing limitations of previous vacuity definitions by ensuring robustness and providing efficient detection algorithms.
Contribution
It refines vacuity definitions to be robust across linear and branching time logics, proposing bisimulation vacuity as a non-trivial extension with practical detection algorithms.
Findings
Bisimulation vacuity is a robust extension of previous vacuity notions.
Efficient algorithms are developed for detecting vacuity in CTL* subsets.
The new definition overcomes pitfalls of earlier vacuity concepts.
Abstract
There is a growing interest in techniques for detecting whether a logic specification is satisfied too easily, or vacuously. For example, the specification "every request is eventually followed by an acknowledgment" is satisfied vacuously by a system that never generates any requests. Vacuous satisfaction misleads users of model-checking into thinking that a system is correct. There are several existing definitions of vacuity. Originally, Beer et al. formalized vacuity as insensitivity to syntactic perturbation. However, this definition is only reasonable for vacuity in a single occurrence. Armoni et al. argued that vacuity must be robust -- not affected by semantically invariant changes, such as extending a model with additional atomic propositions. They show that syntactic vacuity is not robust for LTL, and propose an alternative definition -- trace vacuity. In this article, we…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsFormal Methods in Verification · Logic, programming, and type systems · Software Testing and Debugging Techniques