Improved model checking of hierarchical systems

We present a unified game-based approach for branching-time model checking of hierarchical systems. Such systems are exponentially more succinct than standard state-transition graphs, as repeated sub-systems are described only once. Early work on model checking of hierarchical systems shows that one can do better than a naive algorithm that ''flattens'' the system and removes the hierarchy. Given a hierarchical system S and a branching-time specification @j for it, we reduce the model-checking problem (does S satisfy @j?) to the problem of solving a hierarchical game obtained by taking the product of S with an alternating tree automaton A"@j for @j. Our approach leads to clean, uniform, and improved model-checking algorithms for a variety of branching-time temporal logics. In particular, by improving the algorithm for solving hierarchical parity games, we are able to solve the model-checking problem for the @m-calculus in Pspace and time complexity that is only polynomial in the depth of the hierarchy. Our approach also leads to an abstraction-refinement paradigm for hierarchical systems. The abstraction maintains the hierarchy, and is obtained by merging both states and sub-systems into abstract states.

[1]  Shaz Qadeer Taming Concurrency: A Program Verification Perspective , 2008, CONCUR.

[2]  Swarat Chaudhuri,et al.  On-the-Fly Reachability and Cycle Detection for Recursive State Machines , 2005, TACAS.

[3]  Rajeev Alur,et al.  Analysis of Recursive State Machines , 2001, CAV.

[4]  Radha Jagadeesan,et al.  Modal Transition Systems: A Foundation for Three-Valued Program Analysis , 2001, ESOP.

[5]  Laura Bozzelli Complexity results on branching-time pushdown model checking , 2007, Theor. Comput. Sci..

[6]  Oliver Pretzel Finding Recursions for Multidimensional Arrays , 2002, Inf. Comput..

[7]  Swarat Chaudhuri,et al.  Languages of Nested Trees , 2006, CAV.

[8]  E. Muller David,et al.  Alternating automata on infinite trees , 1987 .

[9]  Sampath Kannan,et al.  Communicating Hierarchical State Machines , 1999, ICALP.

[10]  Orna Grumberg,et al.  A game-based framework for CTL counterexamples and 3-valued abstraction-refinement , 2007, TOCL.

[11]  Markus Lohrey,et al.  Fixpoint Logics on Hierarchical Structures , 2005, FSTTCS.

[12]  Alexander Moshe Rabinovich,et al.  Complexity of Equivalence Problems for Concurrent Systems of Finite Agents , 1997, Inf. Comput..

[13]  Pierre Wolper,et al.  An automata-theoretic approach to branching-time model checking , 2000, JACM.

[14]  Thomas Wilke,et al.  CTL+ is Exponentially more Succinct than CTL , 1999, FSTTCS.

[15]  Kim G. Larsen,et al.  A modal process logic , 1988, [1988] Proceedings. Third Annual Information Symposium on Logic in Computer Science.

[16]  Rance Cleaveland,et al.  A linear-time model-checking algorithm for the alternation-free modal mu-calculus , 1993, Formal Methods Syst. Des..

[17]  Radha Jagadeesan,et al.  Model checking partial state spaces with 3-valued temporal logics , 2001 .

[18]  Amir Pnueli,et al.  Compositionality: The Significant Difference , 1999, Lecture Notes in Computer Science.

[19]  Edmund M. Clarke,et al.  Model Checking , 1999, Handbook of Automated Reasoning.

[20]  Amir Pnueli,et al.  In Transition From Global to Modular Temporal Reasoning about Programs , 1989, Logics and Models of Concurrent Systems.

[21]  Margherita Napoli,et al.  Program Complexity in Hierarchical Module Checking , 2008, LPAR.

[22]  Rajeev Alur,et al.  Model checking of hierarchical state machines , 2001, SIGSOFT '98/FSE-6.

[23]  E. Allen Emerson,et al.  Tree automata, mu-calculus and determinacy , 1991, [1991] Proceedings 32nd Annual Symposium of Foundations of Computer Science.

[24]  Javier Esparza,et al.  Reachability Analysis of Pushdown Automata: Application to Model-Checking , 1997, CONCUR.

[25]  David Harel,et al.  On the Complexity of Verifying Concurrent Transition Systems , 1997, Inf. Comput..

[26]  Orna Grumberg,et al.  Abstract interpretation of reactive systems , 1997, TOPL.

[27]  Thomas Wilke,et al.  Alternating tree automata, parity games, and modal {$\mu$}-calculus , 2001 .

[28]  Igor Walukiewicz Model Checking CTL Properties of Pushdown Systems , 2000, FSTTCS.

[29]  Margherita Napoli,et al.  Verification of scope-dependent hierarchical state machines , 2008, Inf. Comput..

[30]  Doron Drusinsky,et al.  On the power of bounded concurrency I: finite automata , 1994, JACM.

[31]  Radha Jagadeesan,et al.  Automatic Abstraction Using Generalized Model Checking , 2002, CAV.

[32]  Rajeev Alur,et al.  Analysis of recursive state machines , 2001, TOPL.

[33]  Igor Walukiewicz,et al.  Automata for the Modal mu-Calculus and related Results , 1995, MFCS.

[34]  Orna Grumberg,et al.  When not losing is better than winning: Abstraction and refinement for the full mu-calculus , 2007, Inf. Comput..

[35]  Igor Walukiewicz Pushdown Processes: Games and Model-Checking , 2001, Inf. Comput..