Publications
Jump to Year:
⊙ 2025
⊙ 2024
⊙ 2023
⊙ 2022
⊙ 2021
⊙ 2020
⊙ 2019
⊙ 2018
⊙ 2017
⊙ 2016
⊙ 2015
⊙ 2014
⊙ 2013
⊙ 2012
⊙ 2011
⊙ 2010
⊙ 2009
⊙ 2008
⊙ 2007
⊙ 2006
⊙ 2004
⊙
2025
- Julia Butte André PlatzerSemi-competitive differential game logicAutomated reasoning with analytic tableaux and related methods - 33rd international conference, TABLEAUX 2025, reykjavík, iceland, september 29 – october 3, 2025, proceedings@inproceedings{DBLP:conf/tableaux/ButteP25, author = {['Julia Butte', 'André Platzer']}, title = {Semi-Competitive Differential Game Logic}, year = {2025}, pages = {278-295}, doi = {10.1007/978-3-032-06085-3_15}, editor = {['Gian Luca Pozzato', 'Tarmo Uustalu']}, booktitle = {Automated Reasoning with Analytic Tableaux and Related Methods - 33rd International Conference, TABLEAUX 2025, Reykjavík, Iceland, September 29 – October 3, 2025, Proceedings}, series = {LNCS}, volume = {15980} }Copy BibTex⧉
- Verification of autonomous neural car control with KeYmaera XRigorous state-based methods - 11th international conference, ABZ 2025, düsseldorf, germany, june 10-13, 2025, proceedings@inproceedings{DBLP:conf/asm/PrebetTP25, author = {['Enguerrand Prebet', 'Samuel Teuber', 'André Platzer']}, editor = {['Michael Leuschel', 'Fuyuki Ishikawa']}, title = {Verification of Autonomous Neural Car Control with KeYmaera X}, booktitle = {Rigorous State-Based Methods - 11th International Conference, ABZ 2025, Düsseldorf, Germany, June 10-13, 2025, Proceedings}, series = {LNCS}, volume = {15728}, pages = {288–307}, publisher = {Springer}, year = {2025}, crossref = {DBLP:conf/zum/2025}, doi = {10.1007/978-3-031-94533-5_17}, biburl = {https://dblp.org/rec/conf/asm/PrebetTP25.bib} }Copy BibTex⧉
2024
- CESAR: Control envelope synthesis via angelic refinementsTACAS@inproceedings{DBLP:conf/tacas/KabraLMP24, slides = {pub/CESAR-slides.pdf}, author = {['Aditi Kabra', 'Jonathan Laurent', 'Stefan Mitsch', 'André Platzer']}, title = {CESAR: Control Envelope Synthesis via Angelic Refinements}, booktitle = {TACAS}, year = {2024}, pages = {144–164}, doi = {10.1007/978-3-031-57246-3_9}, editor = {['Bernd Finkbeiner', 'Laura Kovács']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems. TACAS 2024}, publisher = {Springer}, series = {LNCS}, volume = {14570}, isbn = {978-3-031-57246-3} }Copy BibTex⧉ Slides
- Noah Abou El Wafa André PlatzerComplete game logic with sabotageLICS@inproceedings{DBLP:conf/lics/AbouElWafaP24, author = {['Noah Abou El Wafa', 'André Platzer']}, title = {Complete Game Logic with Sabotage}, booktitle = {LICS}, year = {2024}, pages = {}, doi = {10.1145/3661814.3662121}, editor = {['Ugo Dal Lago', 'Javier Esparza']}, longbooktitle = {Proceedings of the 39th Annual ACM/IEEE Symposium on Logic in Computer Science}, publisher = {ACM}, address = {New York} }Copy BibTex⧉
- Enguerrand Prebet André PlatzerUniform substitution for differential refinement logicIJCAR@inproceedings{DBLP:conf/cade/PrebetP24, author = {['Enguerrand Prebet', 'André Platzer']}, title = {Uniform Substitution for Differential Refinement Logic}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, International Joint Conference, IJCAR 2024, Proceedings}, year = {2024}, pages = {}, doi = {}, editor = {['Chris Benzmüller', 'Marijn Heule', 'Renate Schmidt']}, publisher = {Springer}, series = {LNCS}, volume = {} }Copy BibTex⧉
2023
- A first complete algorithm for real quantifier elimination in Isabelle/HOLProceedings of the 12th ACM SIGPLAN international conference on certified programs and proofs@inproceedings{DBLP:conf/cpp/KosaianTP23, study = {https://www.isa-afp.org/entries/Quantifier_Elimination_Hybrid.html}, author = {['Katherine Kosaian', 'Yong Kiam Tan', 'André Platzer']}, title = {A First Complete Algorithm for Real Quantifier Elimination in Isabelle/HOL}, booktitle = {Proceedings of the 12th ACM SIGPLAN International Conference on Certified Programs and Proofs}, pages = {211-224}, editor = {['Brigitte Pientka', 'Steve Zdancewic']}, publisher = {ACM}, year = {2023}, isbn = {9798400700262}, address = {New York}, doi = {10.1145/3573105.3575672} }Copy BibTex⧉
- William Simmons André PlatzerDifferential elimination and algebraic invariants of polynomial dynamical systems@article{DBLP:journals/corr/abs-2301-10935, author = {['William Simmons', 'André Platzer']}, title = {Differential Elimination and Algebraic Invariants of Polynomial Dynamical Systems}, journal = {CoRR}, volume = {abs/2301.10935}, year = {2023}, url = {http://arxiv.org/abs/2301.10935} }Copy BibTex⧉
- Formally verified next-generation airborne collision avoidance games in ACAS X@article{DBLP:journals/tecs/CleavelandMP23, author = {['Rachel Cleaveland', 'Stefan Mitsch', 'André Platzer']}, title = {Formally Verified Next-Generation Airborne Collision Avoidance Games in ACAS X}, journal = {ACM Trans. Embed. Comput. Syst.}, volume = {22}, number = {1}, articleno = {10}, pages = {1-30}, year = {2023}, doi = {10.1145/3544970}, issn = {1539-9087} }Copy BibTex⧉
- Katherine KosaianFormally verifying algorithms for real quantifier eliminationPh.D. dissertation@phdthesis{Kosaian23, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2023/CMU-CS-23-130.pdf}, author = {['Katherine Kosaian']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Formally Verifying Algorithms for Real Quantifier Elimination}, year = {2023}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2023/CMU-CS-23-130.pdf} }Copy BibTex⧉ PDF
- Refinements of hybrid dynamical systems logicRigorous state-based methods - 9th international conference, ABZ 2023, nancy, france, proceedings@inproceedings{DBLP:conf/asm/Platzer23, slides = {pub/abz23-slides.pdf}, author = {['André Platzer']}, editor = {['Uwe Glässer', 'José Creissac Campos', 'Dominique Méry', 'Philippe Palanque']}, title = {Refinements of Hybrid Dynamical Systems Logic}, booktitle = {Rigorous State-Based Methods - 9th International Conference, ABZ 2023, Nancy, France, Proceedings}, series = {LNCS}, volume = {14010}, pages = {3-14}, publisher = {Springer}, year = {2023}, doi = {10.1007/978-3-031-33163-3_1} }Copy BibTex⧉ Slides
- Uniform substitution for dynamic logic with communicating hybrid programsCADE@inproceedings{DBLP:conf/cade/BriegerMP23, slides = {pub/dLCHP-slides.pdf}, author = {['Marvin Brieger', 'Stefan Mitsch', 'André Platzer']}, title = {Uniform Substitution for Dynamic Logic with Communicating Hybrid Programs}, booktitle = {CADE}, longbooktitle = {Automated Deduction – CADE 29}, otherbooktitle = {International Conference on Automated Deduction, CADE-29, Rome, Italy, Proceedings}, year = {2023}, pages = {96-115}, doi = {10.1007/978-3-031-38499-8_6}, editor = {['Brigitte Pientka', 'Cesare Tinelli']}, publisher = {Springer}, series = {LNCS}, volume = {14132}, address = {}, isbn = {} }Copy BibTex⧉ Slides
2022
- Deductive verification for ordinary differential equations: Safety, liveness, and stabilityPh.D. dissertation@phdthesis{Tan22, pdf = {https://kilthub.cmu.edu/articles/thesis/Deductive_Verification_for_Ordinary_Differential_Equations_Safety_Liveness_and_Stability/20286534}, author = {['Yong Kiam Tan']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Deductive Verification for Ordinary Differential Equations: Safety, Liveness, and Stability}, year = {2022}, url = {https://kilthub.cmu.edu/articles/thesis/Deductive_Verification_for_Ordinary_Differential_Equations_Safety_Liveness_and_Stability/20286534}, doi = {10.1184/R1/20286534.v1} }Copy BibTex⧉ PDF
- Noah Abou El Wafa André PlatzerFirst-order game logic and modal mu-calculus@article{DBLP:journals/corr/abs-2201-10012, author = {['Noah Abou El Wafa', 'André Platzer']}, title = {First-Order Game Logic and Modal Mu-Calculus}, journal = {CoRR}, volume = {abs/2201.10012}, year = {2022}, url = {http://arxiv.org/abs/2201.10012} }Copy BibTex⧉
- Weihan LiFormal verification of the winning strategies of pursuit-evasion games@misc{Li22, pdf = {https://www.ls.cs.cmu.edu/pub/theses/wli.pdf}, author = {['Weihan Li']}, title = {Formal Verification of the Winning Strategies of Pursuit-Evasion Games}, howpublished = {Master's thesis, Carnegie Mellon University, Computer Science Department}, month = {August}, year = {2022}, school = {Carnegie Mellon University, Computer Science Department} }Copy BibTex⧉ PDF
- Implicit definitions with differential equations for KeYmaera X - (system description)IJCAR@inproceedings{DBLP:conf/cade/GallicchioTMP22, slides = {pub/KeYmaeraX-functions-slides.pdf}, author = {['James Gallicchio', 'Yong Kiam Tan', 'Stefan Mitsch', 'André Platzer']}, title = {Implicit Definitions with Differential Equations for KeYmaera X - (System Description)}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, International Joint Conference, IJCAR 2022, Proceedings}, year = {2022}, pages = {723-733}, doi = {10.1007/978-3-031-10769-6_42}, editor = {['Jasmin Blanchette', 'Laura Kovács', 'Dirk Pattinson']}, publisher = {Springer}, series = {LNCS}, volume = {13385} }Copy BibTex⧉ Slides
- Learning to find proofs and theorems by learning to refine search strategiesAdvances in neural information processing systems@inproceedings{DBLP:conf/nips/LaurentP22, slides = {pub/Looprl-slides.pdf}, author = {['Jonathan Laurent', 'André Platzer']}, title = {Learning to Find Proofs and Theorems by Learning to Refine Search Strategies}, year = {2022}, pages = {4843–4856}, booktitle = {Advances in Neural Information Processing Systems}, editor = {['Sanmi Koyejo', 'Shakir Mohamed', 'Alekh Agarwal', 'Danielle Belgrave', 'Kyunghyun Cho', 'Alice Oh']}, publisher = {Curran Associates, Inc.}, volume = {35}, url = {http://papers.nips.cc/paper_files/paper/2022/hash/1f14ac136d55c34a18a04ce3db083599-Abstract-Conference.html} }Copy BibTex⧉ Slides
- Pegasus: Sound continuous invariant generation@article{DBLP:journals/fmsd/SogokonMTCP22, pdf = {https://link.springer.com/content/pdf/10.1007/s10703-020-00355-z.pdf}, ref = {DBLP:conf/fm/SogokonMTCP19}, refname = {FM'19}, author = {['Andrew Sogokon', 'Stefan Mitsch', 'Yong Kiam Tan', 'Katherine Cordwell', 'André Platzer']}, title = {Pegasus: Sound Continuous Invariant Generation}, journal = {Form. Methods Syst. Des.}, longjournal = {Formal Methods in System Design}, year = {2022}, volume = {58}, number = {1}, pages = {5-41}, doi = {10.1007/s10703-020-00355-z}, issn = {0925-9856}, note = {Special issue for selected papers from FM'19} }Copy BibTex⧉ PDF
- Safe and resilient practical waypoint-following for autonomous vehicles@article{DBLP:journals/csyl/LinMPD22, pdf = {pub/resilient-waypoints.pdf}, author = {['Qin Lin', 'Stefan Mitsch', 'André Platzer', 'John M. Dolan']}, title = {Safe and Resilient Practical Waypoint-following for Autonomous Vehicles}, journal = {IEEE Control Syst. Lett.}, volume = {6}, year = {2022}, doi = {10.1109/LCSYS.2021.3125717}, pages = {1574-1579} }Copy BibTex⧉ PDF
- Verified train controllers for the Federal Railroad Administration train kinematics model: Balancing competing brake and track forces@article{DBLP:journals/tcad/KabraMP22, slides = {pub/traingrade-slides.pdf}, author = {['Aditi Kabra', 'Stefan Mitsch', 'André Platzer']}, title = {Verified Train Controllers for the Federal Railroad Administration Train Kinematics Model: Balancing Competing Brake and Track Forces}, journal = {IEEE Trans. Comput. Aided Des. Integr. Circuits Syst.}, longjournal = {IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems}, volume = {41}, number = {11}, pages = {4409-4420}, year = {2022}, doi = {10.1109/TCAD.2022.3197690}, issn = {0278-0070} }Copy BibTex⧉ Slides
- Verifying switched system stability with logicHSCC ’22: 25th ACM international conference on hybrid systems: Computation and control, milan, italy, may 4 - 6, 2022@inproceedings{DBLP:conf/hybrid/TanMP22, slides = {pub/axiomatic-switched-stability-slides.pdf}, author = {['Yong Kiam Tan', 'Stefan Mitsch', 'André Platzer']}, title = {Verifying Switched System Stability With Logic}, year = {2022}, pages = {2:1–2:22}, doi = {10.1145/3501710.3519541}, publisher = {ACM}, editor = {['Ezio Bartocci', 'Sylvie Putot']}, booktitle = {HSCC '22: 25th ACM International Conference on Hybrid Systems: Computation and Control, Milan, Italy, May 4 - 6, 2022} }Copy BibTex⧉ Slides
2021
- A verified decision procedure for univariate real arithmetic with the BKR algorithm12th international conference on interactive theorem proving, ITP 2021, june 29 to july 1, 2021, rome, italy@inproceedings{DBLP:conf/itp/CordwellTP21, pdf = {https://drops.dagstuhl.de/opus/volltexte/2021/13909/pdf/LIPIcs-ITP-2021-14.pdf}, slides = {pub/QE-BKR-slides.pdf}, study = {http://isa-afp.org/entries/BenOr_Kozen_Reif.html}, author = {['Katherine Cordwell', 'Yong Kiam Tan', 'André Platzer']}, editor = {['Liron Cohen', 'Cezary Kaliszyk']}, title = {A Verified Decision Procedure for Univariate Real Arithmetic with the BKR Algorithm}, booktitle = {12th International Conference on Interactive Theorem Proving, ITP 2021, June 29 to July 1, 2021, Rome, Italy}, series = {LIPIcs}, volume = {193}, pages = {14:1–14:20}, publisher = {Schloss Dagstuhl - Leibniz-Zentrum für Informatik}, year = {2021}, doi = {10.4230/LIPIcs.ITP.2021.14}, biburl = {https://dblp.org/rec/conf/itp/CordwellTP21.bib} }Copy BibTex⧉ PDF Slides
- An axiomatic approach to existence and liveness for differential equations@article{DBLP:journals/fac/TanP21, pdf = {https://link.springer.com/content/pdf/10.1007/s00165-020-00525-0.pdf}, ref = {DBLP:conf/fm/TanP19}, refname = {FM'19}, author = {['Yong Kiam Tan', 'André Platzer']}, title = {An Axiomatic Approach to Existence and Liveness for Differential Equations}, journal = {Formal Aspects Comput.}, volume = {33}, number = {4}, pages = {461-518}, year = {2021}, doi = {10.1007/s00165-020-00525-0}, issn = {0934-5043}, note = {Special issue for selected papers from FM'19} }Copy BibTex⧉ PDF
- Deductive stability proofs for ordinary differential equationsTools and algorithms for the construction and analysis of systems - 27th international conference, TACAS 2021, held as part of the european joint conferences on theory and practice of software, ETAPS 2021, proceedings, part II@inproceedings{DBLP:conf/tacas/TanP21, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/axiomatic-stability-slides.pdf}, author = {['Yong Kiam Tan', 'André Platzer']}, editor = {['Jan Friso Groote', 'Kim G. Larsen']}, title = {Deductive Stability Proofs for Ordinary Differential Equations}, booktitle = {Tools and Algorithms for the Construction and Analysis of Systems - 27th International Conference, TACAS 2021, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2021, Proceedings, Part II}, series = {LNCS}, volume = {12652}, pages = {181–199}, publisher = {Springer}, year = {2021}, doi = {10.1007/978-3-030-72013-1_10} }Copy BibTex⧉ PDF Slides
- Rachel CleavelandFormal verification of next-generation airborne collision avoidance system with adversarial intruder behavior@misc{Cleaveland21, pdf = {https://www.ls.cs.cmu.edu/pub/theses/rcleaveland.pdf}, slides = {https://www.ls.cs.cmu.edu/pub/theses/rcleaveland-slides.pdf}, ref = {DBLP:journals/tecs/CleavelandMP23}, refname = {TECS'23}, study = {https://www.ls.cs.cmu.edu/pub/theses/rcleaveland.zip}, author = {['Rachel Cleaveland']}, title = {Formal Verification of Next-Generation Airborne Collision Avoidance System with Adversarial Intruder Behavior}, howpublished = {Senior thesis, Carnegie Mellon University, Computer Science Department}, month = {May}, year = {2021}, school = {Carnegie Mellon University, Computer Science Department} }Copy BibTex⧉ PDF Slides
- Rose BohrerPractical end-to-end verification of cyber-physical systemsPh.D. dissertation@phdthesis{Bohrer21, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2021/CMU-CS-21-115.pdf}, slides = {https://www.ls.cs.cmu.edu/pub/theses/bohrer-slides.pdf}, study = {https://www.ls.cs.cmu.edu/pub/theses/bohrer-study.zip}, author = {['Rose Bohrer']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Practical End-to-End Verification of Cyber-Physical Systems}, year = {2021}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2021/CMU-CS-21-115.pdf} }Copy BibTex⧉ PDF Slides
- Runtime verification of generalized test tablesNASA formal methods - 13th international symposium, NFM 2021, virtual event, may 24-28, 2021, proceedings@inproceedings{DBLP:conf/nfm/WeiglUTK21, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Shmuel S. Tyszberowicz', 'Jonas Klamroth']}, editor = {['Aaron Dutle', 'Mariano M. Moscato', 'Laura Titolo', 'César A. Muñoz', 'Ivan Perez']}, title = {Runtime Verification of Generalized Test Tables}, booktitle = {NASA Formal Methods - 13th International Symposium, NFM 2021, Virtual Event, May 24-28, 2021, Proceedings}, series = {Lecture Notes in Computer Science}, volume = {12673}, pages = {358–374}, publisher = {Springer}, year = {2021}, url = {https://doi.org/10.1007/978-3-030-76384-8_22}, doi = {10.1007/978-3-030-76384-8_22}, timestamp = {Wed, 20 Sep 2023 15:15:29 +0200}, biburl = {https://dblp.org/rec/conf/nfm/WeiglUTK21.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Brandon Bohrer André PlatzerStructured proofs for adversarial cyber-physical systems@article{DBLP:journals/tecs/BohrerP21, pdf = {https://dl.acm.org/doi/pdf/10.1145/3477024}, author = {['Brandon Bohrer', 'André Platzer']}, title = {Structured Proofs for Adversarial Cyber-Physical Systems}, journal = {ACM Trans. Embed. Comput. Syst.}, volume = {20}, number = {5s}, pages = {93:1-93:26}, year = {2021}, doi = {10.1145/3477024}, note = {Special issue on EMSOFT 2021} }Copy BibTex⧉ PDF
- Switched systems as hybrid programs7th IFAC conference on analysis and design of hybrid systems, ADHS 2021, brussels, belgium, july 7-9, 2021@inproceedings{DBLP:conf/adhs/TanP21, author = {['Yong Kiam Tan', 'André Platzer']}, editor = {['Raphaël M. Jungers', 'Necmiye Ozay', 'Alessandro Abate']}, title = {Switched Systems as Hybrid Programs}, booktitle = {7th IFAC Conference on Analysis and Design of Hybrid Systems, ADHS 2021, Brussels, Belgium, July 7-9, 2021}, series = {IFAC-PapersOnLine}, volume = {54}, number = {5}, pages = {247–252}, publisher = {Elsevier}, year = {2021}, doi = {10.1016/j.ifacol.2021.08.506} }Copy BibTex⧉
- The 28th international conference on automated deductionSpringer. in , Springer@proceedings{DBLP:conf/cade/2021, editor = {['André Platzer', 'Geoff Sutcliffe']}, longtitle = {Automated Deduction - CADE-28, 28th International Conference on Automated Deduction, Pittsburgh, USA, July 12-15, 2021, Proceedings}, title = {The 28th International Conference on Automated Deduction}, booktitle = {CADE}, publisher = {Springer}, series = {LNCS}, volume = {12699}, year = {2021}, address = {}, isbn = {978-3-030-79875-8}, doi = {10.1007/978-3-030-79876-5} }Copy BibTex⧉
- Verified quadratic virtual substitution for real arithmeticFM@inproceedings{DBLP:conf/fm/ScharagerCMP21, pdf = {pub/QE-VSubst.pdf}, slides = {pub/QE-VSubst-slides.pdf}, study = {http://isa-afp.org/entries/Virtual_Substitution.html}, author = {['Matias Scharager', 'Katherine Cordwell', 'Stefan Mitsch', 'André Platzer']}, title = {Verified Quadratic Virtual Substitution for Real Arithmetic}, booktitle = {FM}, year = {2021}, pages = {200-217}, doi = {10.1007/978-3-030-90870-6_11}, editor = {['Marieke Huisman', 'Corina S. Pasareanu', 'Naijun Zhan']}, longbooktitle = {FM 2021: Formal Methods}, longlongbooktitle = {Formal Methods - 24th International Symposium, FM 2021, November 20-26, 2021, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {13047} }Copy BibTex⧉ PDF Slides
2020
- A retrospective on developing hybrid systems provers in the KeYmaera family - A tale of three provers@incollection{DBLP:series/lncs/MitschP20, pdf = {pub/tale-of-three-provers.pdf}, author = {['Stefan Mitsch', 'André Platzer']}, title = {A Retrospective on Developing Hybrid Systems Provers in the KeYmaera Family - A Tale of Three Provers}, booktitle = {Deductive Software Verification: Future Perspectives - Reflections on the Occasion of 20 Years of KeY}, pages = {21-64}, year = {2020}, doi = {10.1007/978-3-030-64354-6_2}, editor = {['Wolfgang Ahrendt', 'Bernhard Beckert', 'Richard Bubel', 'Reiner Hähnle', 'Matthias Ulbrich']}, series = {LNCS}, volume = {12345}, publisher = {Springer}, isbn = {978-3-030-64353-9}, addresss = {} }Copy BibTex⧉ PDF
- Brandon Bohrer André PlatzerConstructive game logicProgramming languages and systems - 29th european symposium on programming, ESOP 2020, held as part of the european joint conferences on theory and practice of software, ETAPS 2020, dublin, ireland, april 25-30, 2020, proceedings@inproceedings{DBLP:conf/esop/BohrerP20, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/constructive-games-slides.pdf}, author = {['Brandon Bohrer', 'André Platzer']}, title = {Constructive Game Logic}, year = {2020}, pages = {}, doi = {10.1007/978-3-030-44914-8_4}, editor = {['Peter Müller']}, booktitle = {Programming Languages and Systems - 29th European Symposium on Programming, ESOP 2020, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2020, Dublin, Ireland, April 25-30, 2020, Proceedings}, series = {LNCS}, volume = {12075}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Brandon Bohrer André PlatzerConstructive hybrid gamesIJCAR@inproceedings{DBLP:conf/cade/BohrerP20, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/constructive-hybrid-games-slides.pdf}, author = {['Brandon Bohrer', 'André Platzer']}, title = {Constructive Hybrid Games}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, 10th International Joint Conference, IJCAR 2020, Paris, France, Proceedings}, year = {2020}, pages = {454-473}, doi = {10.1007/978-3-030-51074-9_26}, editor = {['Nicolas Peltier', 'Viorica Sofronie-Stokkermans']}, publisher = {Springer}, series = {LNCS}, volume = {12166}, subseries = {LNAI} }Copy BibTex⧉ PDF Slides
- Differential equation invariance axiomatization@article{DBLP:journals/jacm/PlatzerT20, pdf = {https://dl.acm.org/doi/pdf/10.1145/3380825}, slides = {pub/diffaxiomatic-long-slides.pdf}, author = {['André Platzer', 'Yong Kiam Tan']}, title = {Differential Equation Invariance Axiomatization}, journal = {J. ACM}, volume = {67}, number = {1}, pages = {6:1–6:66}, year = {2020}, doi = {10.1145/3380825} }Copy BibTex⧉ PDF Slides
- Modular Regression verification for reactive systemsLeveraging applications of formal methods, verification and validation: Engineering principles - 9th international symposium on leveraging applications of formal methods, ISoLA 2020, rhodes, greece, october 20-30, 2020, proceedings, part II@inproceedings{DBLP:conf/isola/WeiglUL20, IDS = {Mod20}, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Daniel Lentzsch']}, booktitle = {Leveraging Applications of Formal Methods, Verification and Validation: Engineering Principles - 9th International Symposium on Leveraging Applications of Formal Methods, ISoLA 2020, Rhodes, Greece, October 20-30, 2020, Proceedings, Part II}, title = {Modular Regression Verification for Reactive Systems}, pages = {25–43}, bibsource = {dblp computer science bibliography, https://dblp.org}, biburl = {https://dblp.org/rec/conf/isola/WeiglUL20.bib}, crossref = {DBLP:conf/isola/2020-2}, year = {2020}, doi = {10.1007/978-3-030-61470-6_3}, timestamp = {Wed, 28 Oct 2020 11:46:09 +0100}, url = {https://doi.org/10.1007/978-3-030-61470-6_3} }Copy BibTex⧉
- Brandon Bohrer André PlatzerRefining constructive hybrid games5th international conference on formal structures for computation and deduction, FSCD 2020, june 29 - july 5, 2020, paris, france@inproceedings{DBLP:conf/rta/BohrerP20, pdf = {https://drops.dagstuhl.de/opus/volltexte/2020/12336/pdf/LIPIcs-FSCD-2020-14.pdf}, slides = {pub/constructive-hybrid-games-refinement-slides.pdf}, author = {['Brandon Bohrer', 'André Platzer']}, editor = {['Zena M. Ariola']}, title = {Refining Constructive Hybrid Games}, booktitle = {5th International Conference on Formal Structures for Computation and Deduction, FSCD 2020, June 29 - July 5, 2020, Paris, France}, series = {LIPIcs}, volume = {167}, pages = {}, publisher = {Schloss Dagstuhl - Leibniz-Zentrum für Informatik}, year = {2020}, doi = {10.4230/LIPIcs.FSCD.2020.14} }Copy BibTex⧉ PDF Slides
- Relational test tables: A practical specification language for evolution and securityFormaliSE@ICSE 2020: 8th international conference on formal methods in software engineering, seoul, republic of korea, july 13, 2020@inproceedings{DBLP:conf/icse/WeiglUCBV20, ids = {Formalise20}, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Suhyun Cha', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Relational Test Tables: A Practical Specification Language for Evolution and Security}, booktitle = {FormaliSE@ICSE 2020: 8th International Conference on Formal Methods in Software Engineering, Seoul, Republic of Korea, July 13, 2020}, pages = {77–86}, year = {2020}, url = {https://doi.org/10.1145/3372020.3391566}, doi = {10.1145/3372020.3391566}, timestamp = {Tue, 22 Sep 2020 14:35:32 +0200}, biburl = {https://dblp.org/rec/conf/icse/WeiglUCBV20.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Relational test tables: A practical specification language for evolution and security@unpublished{PERR20, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Suhyun Cha', 'Bernhard Beckert Birgit Vogel-Heuser']}, title = {Relational Test Tables: A Practical Specification Language for Evolution and Security}, note = {PERR 2020: 4th Workshop on Program Equivalence and Relational Reasoning}, year = {2020} }Copy BibTex⧉
- The KeY Approach on HagridVerifyThis long-term challenge: proceedings@inproceedings{VTLTC2020/KeY, crossref = {VTLTC2020}, pages = {8–10}, author = {['Stijn de Gouw', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {The KeY Approach on Hagrid}, booktitle = {VerifyThis Long-term Challenge: Proceedings}, editor = {['Marieke Huismann', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, address = {Karlsruhe}, month = {June}, year = {2020}, doi = {10.5445/IR/1000119426} }Copy BibTex⧉
- The PGP Key Server: Challenge ManualVerifyThis long-term challenge: proceedings@inproceedings{VTLTC2020/Manual, crossref = {VTLTC2020}, pages = {17–26}, booktitle = {VerifyThis Long-term Challenge: Proceedings}, editor = {['Marieke Huismann', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, year = {2020}, author = {['Marieke Huisman', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {The PGP Key Server: Challenge Manual} }Copy BibTex⧉
- The VerifyThis Collaborative Long Term Challenge@inbook{DVBOOK, author = {['Marieke Huisman', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, publisher = {Springer}, title = {The VerifyThis Collaborative Long Term Challenge}, year = {2020}, note = {accepted}, booktitle = {Deductive Verification – The next 20 years} }Copy BibTex⧉
- VerifyThis long-term challenge: proceedingsin , Karlsruhe@proceedings{VTLTC2020, title = {VerifyThis Long-term Challenge: Proceedings}, editor = {['Marieke Huismann', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, address = {Karlsruhe}, booktitle = {}, month = {June}, year = {2020}, size = {26 pages}, doi = {10.5445/IR/1000119426} }Copy BibTex⧉
2019
- 17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019IEEE. in , IEEE@proceedings{DBLP:conf/indin/2019, title = {17th IEEE International Conference on Industrial Informatics, INDIN 2019, Helsinki, Finland, July 22-25, 2019}, publisher = {IEEE}, year = {2019}, url = {https://ieeexplore.ieee.org/xpl/conhome/8961950/proceeding}, isbn = {978-1-7281-2927-3}, timestamp = {Tue, 04 Feb 2020 11:25:12 +0100}, biburl = {https://dblp.org/rec/conf/indin/2019.bib}, bibsource = {dblp computer science bibliography, https://dblp.org}, skipbib = {true} }Copy BibTex⧉
- A formal safety net for waypoint following in ground robots@article{DBLP:journals/ral/BohrerTMSP19, study = {https://ieeexplore.ieee.org/ielx7/7083369/8668830/8736770/lra-bohrer-2923099-mm.zip}, author = {['Brandon Bohrer', 'Yong Kiam Tan', 'Stefan Mitsch', 'Andrew Sogokon', 'André Platzer']}, title = {A Formal Safety Net for Waypoint Following in Ground Robots}, journal = {IEEE Robotics and Automation Letters}, volume = {4}, number = {3}, year = {2019}, pages = {2910-2917}, doi = {10.1109/LRA.2019.2923099} }Copy BibTex⧉
- An axiomatic approach to liveness for differential equationsFM@inproceedings{DBLP:conf/fm/TanP19, pdf = {pub/axiomatic-liveness.pdf}, slides = {pub/axiomatic-liveness-slides.pdf}, ref = {DBLP:journals/fac/TanP21}, refname = {FAC'21}, author = {['Yong Kiam Tan', 'André Platzer']}, title = {An Axiomatic Approach to Liveness for Differential Equations}, booktitle = {FM}, year = {2019}, pages = {371-388}, doi = {10.1007/978-3-030-30942-8_23}, editor = {['Maurice ter Beek', 'Annabelle McIver', 'José N. Oliviera']}, longbooktitle = {FM 2019: Formal Methods – The Next 30 Years}, publisher = {Springer}, series = {LNCS}, volume = {11800} }Copy BibTex⧉ PDF Slides
- Differential equation invariance axiomatization@article{DBLP:journals/corr/abs-1905-13429, author = {['André Platzer', 'Yong Kiam Tan']}, title = {Differential Equation Invariance Axiomatization}, journal = {CoRR}, volume = {abs/1905.13429}, year = {2019}, archivePrefix = {arXiv}, eprint = {1905.13429} }Copy BibTex⧉ Preprint
- dL_\iota: Definite descriptions in differential dynamic logicCADE@inproceedings{DBLP:conf/cade/BohrerFP19, pdf = {pub/hilbert-epsilon.pdf}, slides = {pub/hilbert-epsilon-slides.pdf}, TR = {DBLP:conf/cade/BohrerFP19:TR}, author = {['Brandon Bohrer', 'Manuel Fernández', 'André Platzer']}, title = {dL$_\iota$: Definite Descriptions in Differential Dynamic Logic}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-27, Natal, Brazil, Proceedings}, year = {2019}, pages = {94-110}, doi = {10.1007/978-3-030-29436-6_6}, editor = {['Pascal Fontaine']}, publisher = {Springer}, series = {LNCS}, volume = {11716}, address = {} }Copy BibTex⧉ PDF Slides
- dL_\iota: Definite descriptions in differential dynamic logic@techreport{DBLP:conf/cade/BohrerFP19:TR, ref = {DBLP:conf/cade/BohrerFP19}, author = {['Brandon Bohrer', 'Manuel Fernández', 'André Platzer']}, title = {dL$_\iota$: Definite Descriptions in Differential Dynamic Logic}, number = {CMU-CS-19-111}, year = {2019}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2019/CMU-CS-19-111.pdf} }Copy BibTex⧉ PDF
- Dynamic doxastic differential dynamic logic for belief-aware cyber-physical systemsTABLEAUX@inproceedings{DBLP:conf/tableaux/MartinsPL19, pdf = {pub/doxastic-dL.pdf}, slides = {pub/doxastic-dL-slides.pdf}, author = {['João Martins', 'André Platzer', 'João Leite']}, title = {Dynamic Doxastic Differential Dynamic Logic for Belief-Aware Cyber-Physical Systems}, booktitle = {TABLEAUX}, pages = {428-445}, year = {2019}, doi = {10.1007/978-3-030-29026-9_24}, editor = {['Serenella Cerrito', 'Andrei Popescu']}, longbooktitle = {Automated Reasoning with Analytic Tableaux and Related Methods - 27th International Conference, TABLEAUX 2019, London, September 3-5, 2019, Proceedings}, series = {LNCS}, volume = {11714}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Formal verification of evolutionary changes@incollection{DBLP:books/sp/19/BeckertMUW19, author = {['Bernhard Beckert', 'Jakob Mund', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Formal Verification of Evolutionary Changes}, booktitle = {Managed Software Evolution}, pages = {309–332}, year = {2019}, publisher = {Springer}, url = {https://doi.org/10.1007/978-3-030-13499-0_11}, doi = {10.1007/978-3-030-13499-0_11}, editor = {['Ralf H. Reussner', 'Michael Goedicke', 'Wilhelm Hasselbring', 'Birgit Vogel-Heuser', 'Jan Keim', 'Lukas Märtin']}, timestamp = {Fri, 31 Jan 2020 21:31:48 +0100}, biburl = {https://dblp.org/rec/books/sp/19/BeckertMUW19.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- HyPLC: Hybrid programmable logic controller program translation for verificationICCPS@inproceedings{DBLP:conf/iccps/GarciaMP19, pdf = {pub/HyPLC.pdf}, author = {['Luis Garcia', 'Stefan Mitsch', 'André Platzer']}, title = {HyPLC: Hybrid Programmable Logic Controller Program Translation for Verification}, booktitle = {ICCPS}, longbooktitle = {10th IEEE/ACM International Conference on Cyber-Physical Systems}, year = {2019}, editor = {['Linda Bushnell', 'Miroslav Pajic']}, pages = {47-56 }, publisher = {}, isbn = {}, doi = {10.1145/3302509.3311036} }Copy BibTex⧉ PDF
- KASTEL industry 4.0 demonstrator: Provably forgetting information in PLC software@misc{Weigl2019, author = {['Alexander Weigl']}, year = {2019}, month = {October}, title = {KASTEL Industry 4.0 Demonstrator: Provably Forgetting Information in PLC software}, howpublished = {Presentation in the KASTEL Seminar, Karlsruhe, Germany}, keywords = {Information flow control,reactive system,security}, doi = {10.5445/IR/1000098887}, language = {english} }Copy BibTex⧉
- KeYmaera X tutorial@misc{KeYmaeraXTutorial, pdf = {https://keymaerax.org/KeYmaeraX-tutorial.pdf}, author = {['André Platzer']}, title = {KeYmaera X Tutorial}, pages = {1–66}, year = {2019}, url = {https://keymaerax.org/Xtutorial.html}, howpublished = {https://keymaerax.org/Xtutorial.html} }Copy BibTex⧉ PDF
- On the preservation of the trust by regression verification of PLC software for cyber-physical systems of systems17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019@inproceedings{DBLP:conf/indin/ChaUWBLV19, author = {['Suhyun Cha', 'Mattias Ulbrich', 'Alexander Weigl', 'Bernhard Beckert', 'Kathrin Land', 'Birgit Vogel-Heuser']}, title = {On the Preservation of the Trust by Regression Verification of PLC software for Cyber-Physical Systems of Systems}, booktitle = {17th IEEE International Conference on Industrial Informatics, INDIN 2019, Helsinki, Finland, July 22-25, 2019}, pages = {413–418}, year = {2019}, crossref = {DBLP:conf/indin/2019}, url = {https://doi.org/10.1109/INDIN41052.2019.8972210}, doi = {10.1109/INDIN41052.2019.8972210}, timestamp = {Tue, 04 Feb 2020 12:39:37 +0100}, biburl = {https://dblp.org/rec/conf/indin/ChaUWBLV19.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Overview of logical foundations of cyber-physical systems@article{DBLP:conf/mod/Platzer19, author = {['André Platzer']}, title = {Overview of Logical Foundations of Cyber-Physical Systems}, journal = {CoRR}, volume = {abs/1910.11232}, year = {2019}, url = {http://arxiv.org/abs/1910.11232}, archivePrefix = {arXiv}, eprint = {1910.11232} }Copy BibTex⧉ Preprint
- Pegasus: A framework for sound continuous invariant generationFM@inproceedings{DBLP:conf/fm/SogokonMTCP19, pdf = {pub/Pegasus.pdf}, slides = {pub/Pegasus-slides.pdf}, ref = {DBLP:journals/fmsd/SogokonMTCP22}, refname = {FMSD}, author = {['Andrew Sogokon', 'Stefan Mitsch', 'Yong Kiam Tan', 'Katherine Cordwell', 'André Platzer']}, title = {Pegasus: A Framework for Sound Continuous Invariant Generation}, booktitle = {FM}, year = {2019}, pages = {138-157}, doi = {10.1007/978-3-030-30942-8_10}, editor = {['Maurice ter Beek', 'Annabelle McIver', 'José N. Oliviera']}, longbooktitle = {FM 2019: Formal Methods – The Next 30 Years}, publisher = {Springer}, series = {LNCS}, volume = {11800} }Copy BibTex⧉ PDF Slides
- Provably forgetting of information in manufacturing systems: Verification of the KASTEL industry demonstrator@report{WeiglTr2019, author = {['Alexander Weigl']}, year = {2019}, title = {Provably Forgetting of Information in Manufacturing Systems: Verification of the KASTEL Industry Demonstrator}, doi = {10.5445/IR/1000117803}, institution = {KIT, Fakultät der Informatik}, language = {english}, keywords = {kastel-svi} }Copy BibTex⧉
- Relational test tables: A practical specification language for evolution and security@article{DBLP:journals/corr/abs-1910-09068, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Suhyun Cha', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Relational Test Tables: A Practical Specification Language for Evolution and Security}, journal = {CoRR}, volume = {abs/1910.09068}, year = {2019}, url = {http://arxiv.org/abs/1910.09068}, archivePrefix = {arXiv}, eprint = {1910.09068}, timestamp = {Tue, 22 Oct 2019 18:17:16 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1910-09068.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉ Preprint
- The logical path to autonomous cyber-physical systemsQEST@inproceedings{DBLP:conf/qest/Platzer19, pdf = {pub/lpacps.pdf}, slides = {pub/lpacps-slides.pdf}, author = {['André Platzer']}, title = {The Logical Path to Autonomous Cyber-Physical Systems}, booktitle = {QEST}, pages = {25-33}, year = {2019}, doi = {10.1007/978-3-030-30281-8_2}, editor = {['David Parker', 'Verena Wolf']}, longbooktitle = {International Conference on Quantitative Evaluation of SysTems, QEST, Proceedings}, series = {LNCS}, volume = {11785}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Katherine Cordwell André PlatzerTowards physical hybrid systemsCADE@inproceedings{DBLP:conf/cade/CordwellP19, pdf = {pub/physical-hybrid.pdf}, slides = {pub/physical-hybrid-slides.pdf}, author = {['Katherine Cordwell', 'André Platzer']}, title = {Towards Physical Hybrid Systems}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-27, Natal, Brazil, Proceedings}, year = {2019}, pages = {216-232}, doi = {10.1007/978-3-030-29436-6_13}, editor = {['Pascal Fontaine']}, publisher = {Springer}, series = {LNCS}, volume = {11716}, address = {} }Copy BibTex⧉ PDF Slides
- Uniform substitution at one fell swoopCADE@inproceedings{DBLP:conf/cade/Platzer19, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/dGL-usubst-one-slides.pdf}, study = {http://isa-afp.org/entries/Differential_Game_Logic.html}, errata = {pub/dGL-usubst-one-errata.txt}, author = {['André Platzer']}, title = {Uniform Substitution At One Fell Swoop}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-27, Natal, Brazil, Proceedings}, year = {2019}, pages = {425-441}, doi = {10.1007/978-3-030-29436-6_25}, editor = {['Pascal Fontaine']}, publisher = {Springer}, series = {LNCS}, volume = {11716}, address = {} }Copy BibTex⧉ PDF Slides
- Uniform substitution at one fell swoop@article{DBLP:journals/corr/abs-1902-07230, author = {['André Platzer']}, title = {Uniform Substitution At One Fell Swoop}, journal = {CoRR}, volume = {abs/1902.07230}, year = {2019}, url = {http://arxiv.org/abs/1902.07230} }Copy BibTex⧉
- Nathan Fulton André PlatzerVerifiably safe off-model reinforcement learningTACAS@inproceedings{DBLP:conf/tacas/FultonP19, pdf = {pub/vpmu.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {Verifiably Safe Off-Model Reinforcement Learning}, booktitle = {TACAS}, year = {2019}, pages = {413-430}, doi = {10.1007/978-3-030-17462-0_28}, editor = {['Tomas Vojnar', 'Lijun Zhang']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems, TACAS 2019, Part I}, publisher = {Springer}, series = {LNCS}, volume = {11427}, address = {}, isbn = {} }Copy BibTex⧉ PDF
2018
- A component-based hybrid systems verification and implementation tool in KeYmaera X (tool demonstration)Cyber physical systems. Model-based design - 8th international workshop, CyPhy 2018, and 14th international workshop, WESE 2018, turin, italy, october 4-5, 2018, revised selected papers@inproceedings{DBLP:conf/cyphy/MullerMSP18, pdf = {pub/KeYmaeraX-component.pdf}, author = {['Andreas Müller', 'Stefan Mitsch', 'Wieland Schwinger', 'André Platzer']}, title = {A Component-Based Hybrid Systems Verification and Implementation Tool in KeYmaera X (Tool Demonstration)}, booktitle = {Cyber Physical Systems. Model-Based Design - 8th International Workshop, CyPhy 2018, and 14th International Workshop, WESE 2018, Turin, Italy, October 4-5, 2018, Revised Selected Papers}, pages = {91–110}, year = {2018}, doi = {10.1007/978-3-030-23703-5_5}, editor = {['Roger D. Chamberlain', 'Walid Taha', 'Martin Törngren']}, series = {LNCS}, volume = {11615}, publisher = {Springer} }Copy BibTex⧉ PDF
- Brandon Bohrer André PlatzerA hybrid, dynamic logic for hybrid-dynamic information flowLICS@inproceedings{DBLP:conf/lics/BohrerP18, pdf = {pub/dynamized-hybrid.pdf}, slides = {pub/dynamized-hybrid-slides.pdf}, TR = {DBLP:conf/lics/BohrerP18:TR}, author = {['Brandon Bohrer', 'André Platzer']}, title = {A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow}, booktitle = {LICS}, year = {2018}, pages = {115-124}, doi = {10.1145/3209108.3209151}, editor = {['Anuj Dawar', 'Erich Grädel']}, longbooktitle = {Proceedings of the 33rd Annual ACM/IEEE Symposium on Logic in Computer Science}, publisher = {ACM}, key = {LICS}, isbn = {978-1-4503-5583-4}, address = {New York} }Copy BibTex⧉ PDF Slides
- Brandon Bohrer André PlatzerA hybrid, dynamic logic for hybrid-dynamic information flow@techreport{DBLP:conf/lics/BohrerP18:TR, ref = {DBLP:conf/lics/BohrerP18}, author = {['Brandon Bohrer', 'André Platzer']}, title = {A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow}, number = {CMU-CS-18-105}, year = {2018}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2018/CMU-CS-18-105.pdf} }Copy BibTex⧉ PDF
- Achieving delta description of the control software for an automated production system evolution14th IEEE international conference on automation science and engineering, CASE 2018, munich, germany, august 20-24, 2018@inproceedings{DBLP:conf/case/ChaWUBV18, author = {['Suhyun Cha', 'Alexander Weigl', 'Mattias Ulbrich', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Achieving delta description of the control software for an automated production system evolution}, booktitle = {14th IEEE International Conference on Automation Science and Engineering, CASE 2018, Munich, Germany, August 20-24, 2018}, pages = {1170–1176}, year = {2018}, url = {https://doi.org/10.1109/COASE.2018.8560588}, doi = {10.1109/COASE.2018.8560588}, timestamp = {Sat, 19 Oct 2019 20:37:14 +0200}, biburl = {https://dblp.org/rec/conf/case/ChaWUBV18.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Adding text-based interaction to a direct-manipulation interface for program verification – lessons learned13th international workshop on user interfaces for theorem provers (UITP 2018)@inproceedings{uitp2018, author = {['Sarah Grebing', 'An Thuy Tien Luong', 'Alexander Weigl']}, title = {Adding Text-Based Interaction to a Direct-Manipulation Interface for Program Verification – Lessons Learned}, booktitle = {13th International Workshop on User Interfaces for Theorem Provers (UITP 2018)}, year = {2018}, month = {July}, editor = {['Mateja Jamnik', 'Christoph Lüth']}, note = {To appear} }Copy BibTex⧉
- Applicability of generalized test tables: A case study using the manufacturing system demonstrator xPPU@article{DBLP:journals/at/ChaWUBV18, ids = {Cha2018}, author = {['Suhyun Cha', 'Alexander Weigl', 'Mattias Ulbrich', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Applicability of generalized test tables: a case study using the manufacturing system demonstrator xPPU}, journal = {Automatisierungstechnik}, volume = {66}, number = {10}, pages = {834–848}, year = {2018}, url = {https://doi.org/10.1515/auto-2018-0028}, doi = {10.1515/auto-2018-0028}, timestamp = {Sat, 19 Oct 2019 19:19:30 +0200}, biburl = {https://dblp.org/rec/journals/at/ChaWUBV18.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- CoasterX: A case study in component-driven hybrid systems proof automation6th IFAC conference on analysis and design of hybrid systems, ADHS 2018, oxford, UK, july 11-13, 2018@inproceedings{DBLP:conf/adhs/BohrerLCP18, pdf = {pub/coasterx.pdf}, slides = {pub/coasterx-slides.pdf}, author = {['Brandon Bohrer', 'Adriel Luo', 'Xue An Chuang', 'André Platzer']}, editor = {['Alessandro Abate', 'Antoine Girard', 'Maurice Heemels']}, title = {CoasterX: A Case Study in Component-Driven Hybrid Systems Proof Automation}, booktitle = {6th IFAC Conference on Analysis and Design of Hybrid Systems, ADHS 2018, Oxford, UK, July 11-13, 2018}, series = {IFAC-PapersOnLine}, volume = {51}, number = {16}, pages = {55–60}, publisher = {Elsevier}, year = {2018}, doi = {10.1016/j.ifacol.2018.08.010} }Copy BibTex⧉ PDF Slides
- Debugging program verification proof scripts (tool paper)@article{journals_corr_abs-1804-04402, author = {['Bernhard Beckert', 'Sarah Grebing', 'Alexander Weigl']}, title = {Debugging Program Verification Proof Scripts (Tool Paper)}, journal = {CoRR}, volume = {abs/1804.04402}, year = {2018}, month = {April}, url = {http://arxiv.org/abs/1804.04402}, archivePrefix = {arXiv}, eprint = {1804.04402} }Copy BibTex⧉ Preprint
- Differential equation axiomatization: The impressive power of differential ghostsLICS@inproceedings{DBLP:conf/lics/PlatzerT18, pdf = {https://dl.acm.org/doi/pdf/10.1145/3209108.3209147}, slides = {pub/diffaxiomatic-slides.pdf}, ref = {DBLP:journals/jacm/PlatzerT20}, refname = {JACM'20}, author = {['André Platzer', 'Yong Kiam Tan']}, title = {Differential Equation Axiomatization: The Impressive Power of Differential Ghosts}, booktitle = {LICS}, year = {2018}, pages = {819-828}, doi = {10.1145/3209108.3209147}, editor = {['Anuj Dawar', 'Erich Grädel']}, longbooktitle = {Proceedings of the 33rd Annual ACM/IEEE Symposium on Logic in Computer Science}, publisher = {ACM}, key = {LICS}, isbn = {978-1-4503-5583-4}, address = {New York} }Copy BibTex⧉ PDF Slides
- Logical foundations of cyber-physical systemsSpringer. in , Springer Cham@book{Platzer18, slides = {https://lfcps.org/lfcps/lfcps-slides.zip}, study = {https://www.springer.com/978-3-319-63587-3}, errata = {lfcps/lfcps-errata.txt}, author = {['André Platzer']}, title = {Logical Foundations of Cyber-Physical Systems}, publisher = {Springer}, address = {Cham}, year = {2018}, isbn = {978-3-319-63587-3}, e-isbn = {978-3-319-63588-0}, doi = {10.1007/978-3-319-63588-0} }Copy BibTex⧉ Slides
- Proceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018in ,@proceedings{DBLP:journals/corr/abs-1803-08668, editor = {['John P. Gallagher', 'Rob van Glabbeek', 'Wendelin Serwe']}, title = {Proceedings Third Workshop on Models for Formal Analysis of Real Systems and Sixth International Workshop on Verification and Program Transformation, MARS/VPT@ETAPS 2018, Thessaloniki, Greece, 20th April 2018}, series = {EPTCS}, volume = {268}, year = {2018}, url = {http://arxiv.org/abs/1803.08668}, timestamp = {Tue, 08 Oct 2019 13:24:16 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1803-08668.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Proving equivalence between imperative and MapReduce implementations using program transformationsProceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018@inproceedings{DBLP:journals/corr/abs-1803-10328, author = {['Bernhard Beckert', 'Timo Bingmann', 'Moritz Kiefer', 'Peter Sanders', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Proving Equivalence Between Imperative and MapReduce Implementations Using Program Transformations}, booktitle = {Proceedings Third Workshop on Models for Formal Analysis of Real Systems and Sixth International Workshop on Verification and Program Transformation, MARS/VPT@ETAPS 2018, Thessaloniki, Greece, 20th April 2018}, pages = {185–199}, year = {2018}, crossref = {DBLP:journals/corr/abs-1803-08668}, url = {https://doi.org/10.4204/EPTCS.268.7}, doi = {10.4204/EPTCS.268.7}, timestamp = {Tue, 08 Oct 2019 13:24:16 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1803-10328.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Relational equivalence proofs between imperative and MapReduce algorithmsVerified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papers@inproceedings{DBLP:conf/vstte/BeckertBK0UW18, author = {['Bernhard Beckert', 'Timo Bingmann', 'Moritz Kiefer', 'Peter Sanders', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Relational Equivalence Proofs Between Imperative and MapReduce Algorithms}, booktitle = {Verified Software. Theories, Tools, and Experiments - 10th International Conference, VSTTE 2018, Oxford, UK, July 18-19, 2018, Revised Selected Papers}, pages = {248–266}, year = {2018}, crossref = {DBLP:conf/vstte/2018}, url = {https://doi.org/10.1007/978-3-030-03592-1_14}, doi = {10.1007/978-3-030-03592-1_14}, timestamp = {Tue, 14 May 2019 10:00:49 +0200}, biburl = {https://dblp.org/rec/conf/vstte/BeckertBK0UW18.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Relational equivalence proofs between imperative and MapReduce algorithms@article{DBLP:journals/corr/abs-1801-08766, author = {['Bernhard Beckert', 'Timo Bingmann', 'Moritz Kiefer', 'Peter Sanders', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Relational Equivalence Proofs Between Imperative and MapReduce Algorithms}, journal = {CoRR}, volume = {abs/1801.08766}, year = {2018}, url = {http://arxiv.org/abs/1801.08766}, archivePrefix = {arXiv}, eprint = {1801.08766}, timestamp = {Mon, 13 Aug 2018 16:49:05 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1801-08766.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉ Preprint
- Nathan Fulton André PlatzerSafe AI for CPSIEEE international test conference, ITC 2018, phoenix, AZ, USA, october 29 - nov. 1, 2018@inproceedings{DBLP:conf/itc/FultonP18, pdf = {pub/itc18.pdf}, slides = {pub/itc18-slides.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {Safe AI for CPS}, booktitle = {IEEE International Test Conference, ITC 2018, Phoenix, AZ, USA, October 29 - Nov. 1, 2018}, pages = {}, year = {2018}, publisher = {IEEE}, doi = {10.1109/TEST.2018.8624774}, isbn = {978-1-5386-8382-8} }Copy BibTex⧉ PDF Slides
- Nathan Fulton André PlatzerSafe reinforcement learning via formal methods: Toward safe control through proof and learningProceedings of the thirty-second AAAI conference on artificial intelligence, february 2-7, 2018, new orleans, louisiana, USA.@inproceedings{DBLP:conf/aaai/FultonP18, pdf = {pub/SafeRL.pdf}, slides = {pub/SafeRL-slides.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {Safe Reinforcement Learning via Formal Methods: Toward Safe Control Through Proof and Learning}, booktitle = {Proceedings of the Thirty-Second AAAI Conference on Artificial Intelligence, February 2-7, 2018, New Orleans, Louisiana, USA.}, pages = {6485-6492}, year = {2018}, editor = {['Sheila McIlraith', 'Kilian Weinberger']}, publisher = {AAAI Press}, eprint = {https://www.aaai.org/ocs/index.php/AAAI/AAAI18/paper/view/17376/16225} }Copy BibTex⧉ PDF Slides Preprint
- Tactical contract composition for hybrid system component verification@article{DBLP:journals/sttt/MullerMRSP18, pdf = {https://link.springer.com/content/pdf/10.1007/s10009-018-0502-9.pdf}, ref = {DBLP:conf/fase/MullerMRSP17}, refname = {FASE'17}, study = {https://www.cs.cmu.edu/ smitsch/resource/components}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {Tactical Contract Composition for Hybrid System Component Verification}, journal = {STTT}, volume = {20}, number = {6}, year = {2018}, pages = {615-643}, doi = {10.1007/s10009-018-0502-9}, note = {Special issue for selected papers from FASE'17} }Copy BibTex⧉ PDF
- Uniform substitution for differential game logicIJCAR@inproceedings{DBLP:conf/cade/Platzer18, pdf = {pub/dGL-usubst.pdf}, slides = {pub/dGL-usubst-slides.pdf}, author = {['André Platzer']}, title = {Uniform Substitution for Differential Game Logic}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, 9th International Joint Conference, IJCAR 2018, Oxford, UK, Proceedings}, year = {2018}, pages = {211-227}, doi = {10.1007/978-3-319-94205-6_15}, editor = {['Didier Galmiche', 'Stephan Schulz', 'Roberto Sebastiani']}, publisher = {Springer}, series = {LNCS}, volume = {10900}, subseries = {LNAI} }Copy BibTex⧉ PDF Slides
- Vector barrier certificates and comparison systemsFM@inproceedings{DBLP:conf/fm/SogokonGTP18, pdf = {pub/vector-barrier.pdf}, slides = {pub/vector-barrier-slides.pdf}, author = {['Andrew Sogokon', 'Khalil Ghorbal', 'Yong Kiam Tan', 'André Platzer']}, title = {Vector Barrier Certificates and Comparison Systems}, booktitle = {FM}, year = {2018}, pages = {418-437}, doi = {10.1007/978-3-319-95582-7_25}, editor = {['Klaus Havelund', 'Bill Roscoe', 'Jan Peleska']}, longbooktitle = {FM 2018: Formal Methods - 22nd International Symposium, Oxford, UK, July 15-17, 2018, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {10951}, address = {} }Copy BibTex⧉ PDF Slides
- Nathan FultonVerifiably safe autonomy for cyber-physical systemsPh.D. dissertation@phdthesis{Fulton18, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2018/CMU-CS-18-125.pdf}, author = {['Nathan Fulton']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Verifiably Safe Autonomy for Cyber-Physical Systems}, year = {2018}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2018/CMU-CS-18-125.pdf} }Copy BibTex⧉ PDF
- Verification of hybrid systems@incollection{DBLP:reference/mc/DoyenFPP18, pdf = {pub/HBMC.pdf}, author = {['Laurent Doyen', 'Goran Frehse', 'George J. Pappas', 'André Platzer']}, title = {Verification of Hybrid Systems}, booktitle = {Handbook of Model Checking}, editor = {['Edmund M. Clarke', 'Thomas A. Henzinger', 'Helmut Veith', 'Roderick Bloem']}, publisher = {Springer}, year = {2018}, pages = {1047-1110}, doi = {10.1007/978-3-319-10575-8_30}, address = {Cham} }Copy BibTex⧉ PDF
- Verified runtime validation for partially observable hybrid systems@article{DBLP:journals/corr/abs-1811-06502, author = {['Stefan Mitsch', 'André Platzer']}, title = {Verified Runtime Validation for Partially Observable Hybrid Systems}, journal = {CoRR}, volume = {abs/1811.06502}, year = {2018}, url = {http://arxiv.org/abs/1811.06502} }Copy BibTex⧉
- Verified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papersSpringer. in , Springer@proceedings{DBLP:conf/vstte/2018, editor = {['Ruzica Piskac', 'Philipp Rümmer']}, title = {Verified Software. Theories, Tools, and Experiments - 10th International Conference, VSTTE 2018, Oxford, UK, July 18-19, 2018, Revised Selected Papers}, series = {Lecture Notes in Computer Science}, volume = {11294}, publisher = {Springer}, year = {2018}, url = {https://doi.org/10.1007/978-3-030-03592-1}, doi = {10.1007/978-3-030-03592-1}, isbn = {978-3-030-03591-4}, timestamp = {Tue, 14 May 2019 10:00:49 +0200}, biburl = {https://dblp.org/rec/conf/vstte/2018.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- VeriPhy: Verified controller executables from verified cyber-physical system modelsPLDI@inproceedings{DBLP:conf/pldi/BohrerTMMP18, pdf = {https://dl.acm.org/doi/pdf/10.1145/3192366.3192406}, slides = {pub/VeriPhy-slides.pdf}, author = {['Brandon Bohrer', 'Yong Kiam Tan', 'Stefan Mitsch', 'Magnus O. Myreen', 'André Platzer']}, title = {VeriPhy: Verified Controller Executables from Verified Cyber-Physical System Models}, pages = {617-630}, year = {2018}, doi = {10.1145/3192366.3192406}, publisher = {ACM}, editor = {['Dan Grossman']}, booktitle = {PLDI}, longbooktitle = {Proceedings of the 39th ACM SIGPLAN Conference on Programming Language Design and Implementation, PLDI 2018} }Copy BibTex⧉ PDF Slides
- Videos for logical foundations of cyber-physical systems@misc{Platzer18:videos, ref = {Platzer18}, refname = {Textbook}, author = {['André Platzer']}, title = {Videos for Logical Foundations of Cyber-Physical Systems}, year = {2018}, howpublished = {YouTube}, url = {http://video.lfcps.org/} }Copy BibTex⧉
2017
- 15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017IEEE. in , IEEE@proceedings{DBLP:conf/indin/2017, title = {15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, July 24-26, 2017}, publisher = {IEEE}, year = {2017}, url = {https://ieeexplore.ieee.org/xpl/conhome/8095148/proceeding}, isbn = {978-1-5386-0837-1}, timestamp = {Wed, 16 Oct 2019 14:14:52 +0200}, biburl = {https://dblp.org/rec/conf/indin/2017.bib}, bibsource = {dblp computer science bibliography, https://dblp.org}, skipbib = {true} }Copy BibTex⧉
- A complete uniform substitution calculus for differential dynamic logic@article{DBLP:journals/jar/Platzer17, pdf = {https://link.springer.com/content/pdf/10.1007/s10817-016-9385-1.pdf}, author = {['André Platzer']}, title = {A Complete Uniform Substitution Calculus for Differential Dynamic Logic}, journal = {J. Autom. Reas.}, longjournal = {Journal of Automated Reasoning}, year = {2017}, volume = {59}, number = {2}, pages = {219-265}, doi = {10.1007/s10817-016-9385-1} }Copy BibTex⧉ PDF
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Aurora Schmidt Ryan Gardner Stefan Mitsch André PlatzerA formally verified hybrid system for safe advisories in the next-generation airborne collision avoidance system@article{DBLP:journals/sttt/JeanninGKSGMP17, pdf = {pub/acasx-zones-long.pdf}, ref = {DBLP:conf/tacas/JeanninGKGSZP15}, refname = {TACAS'15}, study = {https://www.ls.cs.cmu.edu/pub/AcasX-long.zip}, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Aurora Schmidt', 'Ryan Gardner', 'Stefan Mitsch', 'André Platzer']}, title = {A Formally Verified Hybrid System for Safe Advisories in the Next-generation Airborne Collision Avoidance System}, journal = {STTT}, longjournal = {International Journal on Software Tools for Technology Transfer}, year = {2017}, volume = {19}, number = {6}, pages = {717-741}, doi = {10.1007/s10009-016-0434-1} }Copy BibTex⧉ PDF
- A hierarchy of proof rules for checking positive invariance of algebraic and semi-algebraic sets@article{DBLP:journals/cl/GhorbalSP17, pdf = {pub/alginv-bench-long.pdf}, ref = {DBLP:conf/vmcai/GhorbalSP15}, refname = {VMCAI'15}, study = {pub/alginv-bench-long-study.zip}, author = {['Khalil Ghorbal', 'Andrew Sogokon', 'André Platzer']}, title = {A Hierarchy of Proof Rules for Checking Positive Invariance of Algebraic and Semi-Algebraic Sets}, journal = {Computer Languages, Systems and Structures}, year = {2017}, volume = {47}, number = {1}, pages = {19-43}, doi = {10.1016/j.cl.2015.11.003} }Copy BibTex⧉ PDF
- Bellerophon: Tactical theorem proving for hybrid systemsITP@inproceedings{DBLP:conf/itp/FultonMBP17, pdf = {pub/bellerophon.pdf}, slides = {pub/bellerophon-slides.pdf}, author = {['Nathan Fulton', 'Stefan Mitsch', 'Brandon Bohrer', 'André Platzer']}, title = {Bellerophon: Tactical Theorem Proving for Hybrid Systems}, booktitle = {ITP}, longbooktitle = {Interactive Theorem Proving, International Conference, ITP 2017}, year = {2017}, pages = {207-224}, month = {}, doi = {10.1007/978-3-319-66107-0_14}, editor = {['Mauricio Ayala-Rincón', 'César A. Muñoz']}, publisher = {Springer}, series = {LNCS}, volume = {10499}, isbn = {978-3-319-66106-3} }Copy BibTex⧉ PDF Slides
- Change and delay contracts for hybrid system component verificationFASE@inproceedings{DBLP:conf/fase/MullerMRSP17, pdf = {pub/trafficchange.pdf}, slides = {pub/trafficchange-slides.pdf}, ref = {DBLP:journals/sttt/MullerMRSP18}, refname = {STTT'18}, study = {https://www.cs.cmu.edu/ smitsch/resource/fase17}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {Change and Delay Contracts for Hybrid System Component Verification}, booktitle = {FASE}, year = {2017}, pages = {134-151}, doi = {10.1007/978-3-662-54494-5_8}, editor = {['Marieke Huisman', 'Julia Rubin']}, series = {LNCS}, volume = {10202}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Differential hybrid games@article{DBLP:journals/tocl/Platzer17, pdf = {https://dl.acm.org/doi/pdf/10.1145/3091123}, author = {['André Platzer']}, title = {Differential Hybrid Games}, journal = {ACM Trans. Comput. Log.}, volume = {18}, number = {3}, year = {2017}, pages = {19:1-19:44}, doi = {10.1145/3091123}, issn = {1529-3785} }Copy BibTex⧉ PDF
- Formal verification of obstacle avoidance and navigation of ground robots@article{DBLP:journals/ijrr/MitschGVP17, pdf = {pub/morerobix.pdf}, author = {['Stefan Mitsch', 'Khalil Ghorbal', 'David Vogelbacher', 'André Platzer']}, title = {Formal Verification of Obstacle Avoidance and Navigation of Ground Robots}, journal = {I. J. Robotics Res.}, longjournal = {International Journal of Robotics Research}, volume = {36}, number = {12}, pages = {1312-1340}, year = {2017}, doi = {10.1177/0278364917733549}, arXiv = {1605.00604} }Copy BibTex⧉ PDF
- Formal verification of train control with air pressure brakesRSSRail@inproceedings{DBLP:conf/rssrail/MitschGBGP17, pdf = {pub/trainairbrake.pdf}, slides = {pub/trainairbrake-slides.pdf}, author = {['Stefan Mitsch', 'Marco Gario', 'Christof J. Budnik', 'Michael Golm', 'André Platzer']}, title = {Formal Verification of Train Control with Air Pressure Brakes}, booktitle = {RSSRail}, longbooktitle = {RSSRail 2017: Reliability, Safety, and Security of Railway Systems}, year = {2017}, pages = {173-191}, editor = {['Alessandro Fantechi', 'Thierry Lecomte', 'Alexander Romanovsky']}, volume = {10598}, doi = {10.1007/978-3-319-68499-4_12}, series = {LNCS}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Formally verified differential dynamic logicCertified programs and proofs - 6th ACM SIGPLAN conference, CPP 2017, paris, france, january 16-17, 2017@inproceedings{DBLP:conf/cpp/BohrerRVVP17, pdf = {pub/verified-dL.pdf}, slides = {pub/verified-dL-slides.pdf}, study = {https://www.isa-afp.org/entries/Differential_Dynamic_Logic.html}, author = {['Brandon Bohrer', 'Vincent Rahli', 'Ivana Vukotic', 'Marcus Völp', 'André Platzer']}, title = {Formally Verified Differential Dynamic Logic}, pages = {208-221}, year = {2017}, doi = {10.1145/3018610.3018616}, editor = {['Yves Bertot', 'Viktor Vafeiadis']}, booktitle = {Certified Programs and Proofs - 6th ACM SIGPLAN Conference, CPP 2017, Paris, France, January 16-17, 2017}, publisher = {ACM}, isbn = {} }Copy BibTex⧉ PDF Slides
- Foundations of cyber-physical systems@misc{FCPS17, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2017}, howpublished = {Lecture Notes 15-424/624/824, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps17.html} }Copy BibTex⧉
- Generalised test tables: A practical specification language for reactive systemsIntegrated formal methods - 13th international conference, IFM 2017, turin, italy, september 20-22, 2017, proceedings@inproceedings{DBLP:conf/ifm/BeckertCUVW17, editor = {['Nadia Polikarpova', 'Steve Schneider']}, series = {Lecture Notes in Computer Science}, volume = {10510}, publisher = {Springer}, year = {2017}, isbn = {978-3-319-66844-4}, ids = {Beckert2017,BeckertEtAl2017}, author = {['Bernhard Beckert', 'Suhyun Cha', 'Mattias Ulbrich', 'Birgit Vogel-Heuser', 'Alexander Weigl']}, title = {Generalised Test Tables: A Practical Specification Language for Reactive Systems}, booktitle = {Integrated Formal Methods - 13th International Conference, IFM 2017, Turin, Italy, September 20-22, 2017, Proceedings}, pages = {129–144}, url = {https://doi.org/10.1007/978-3-319-66845-1_9}, doi = {10.1007/978-3-319-66845-1_9}, timestamp = {Sat, 19 Oct 2019 20:14:37 +0200}, biburl = {https://dblp.org/rec/conf/ifm/BeckertCUVW17.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Alexander Weigl Franziska Wiebe Mattias Ulbrich Sebastian Ulewicz Suhyun Cha Michael Kirsten Bernhard Beckert Birgit Vogel-HeuserGeneralized test tables: A powerful and intuitive specification language for reactive systems15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017@inproceedings{DBLP:conf/indin/WeiglWUUCKBV17, ids = {WeiglEtAl2017,AAAA}, author = {['Alexander Weigl', 'Franziska Wiebe', 'Mattias Ulbrich', 'Sebastian Ulewicz', 'Suhyun Cha', 'Michael Kirsten', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Generalized test tables: A powerful and intuitive specification language for reactive systems}, booktitle = {15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, July 24-26, 2017}, pages = {875–882}, year = {2017}, crossref = {DBLP:conf/indin/2017}, url = {https://doi.org/10.1109/INDIN.2017.8104887}, doi = {10.1109/INDIN.2017.8104887}, timestamp = {Sat, 19 Oct 2019 20:28:17 +0200}, biburl = {https://dblp.org/rec/conf/indin/WeiglWUUCKBV17.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Generation of monitoring functions in production automation using test specifications15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017@inproceedings{DBLP:conf/indin/ChaUVWUB17, ids = {ChaEtAl2017}, author = {['Suhyun Cha', 'Sebastian Ulewicz', 'Birgit Vogel-Heuser', 'Alexander Weigl', 'Mattias Ulbrich', 'Bernhard Beckert']}, title = {Generation of monitoring functions in production automation using test specifications}, booktitle = {15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, July 24-26, 2017}, pages = {339–344}, year = {2017}, crossref = {DBLP:conf/indin/2017}, url = {https://doi.org/10.1109/INDIN.2017.8104795}, doi = {10.1109/INDIN.2017.8104795}, timestamp = {Sat, 19 Oct 2019 20:28:16 +0200}, biburl = {https://dblp.org/rec/conf/indin/ChaUVWUB17.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Franz Franchetti Tze Meng Low Stefan Mitsch Juan Paolo Mendoza Liangyan Gui Amarin Phaosawasdi David Padua Soummya Kar José M. F. Moura Mike Franusich Jeremy Johnson André Platzer Manuela VelosoHigh-assurance SPIRAL: End-to-end guarantees for robot and car control@article{DBLP:journals/csm/FranchettiLMMGPPKMFJPV17, pdf = {https://users.ece.cmu.edu/ franzf/papers/has2017.pdf}, author = {['Franz Franchetti', 'Tze Meng Low', 'Stefan Mitsch', 'Juan Paolo Mendoza', 'Liangyan Gui', 'Amarin Phaosawasdi', 'David Padua', 'Soummya Kar', 'José M. F. Moura', 'Mike Franusich', 'Jeremy Johnson', 'André Platzer', 'Manuela Veloso']}, title = {High-Assurance SPIRAL: End-to-End Guarantees for Robot and Car Control}, journal = {IEEE Control Systems}, year = {2017}, volume = {37}, number = {2}, pages = {82-103}, doi = {10.1109/MCS.2016.2643244} }Copy BibTex⧉ PDF
- How to prove ‘all’ differential equation properties@techreport{PlatzerY17:TR, author = {['André Platzer', 'Yong Kiam Tan']}, title = {How to Prove “All” Differential Equation Properties}, number = {CMU-CS-17-117}, year = {2017}, month = {August}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2017/CMU-CS-17-117.pdf}, note = {Extended version at arXiv:1802.01226.pdf} }Copy BibTex⧉ PDF
2016
- A component-based approach to hybrid systems safety verificationIFM@inproceedings{DBLP:conf/ifm/MullerMRSP16, pdf = {pub/trafficcomponents.pdf}, slides = {pub/trafficcomponents-slides.pdf}, TR = {DBLP:conf/ifm/MullerMRSP16:TR}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {A Component-based Approach to Hybrid Systems Safety Verification}, booktitle = {IFM}, longbooktitle = {Integrated Formal Methods - 12th International Conference, IFM 2016, Reykjavik, Iceland, June 1-4, 2016, Proceedings}, year = {2016}, pages = {441-456}, doi = {10.1007/978-3-319-33693-0_28}, editor = {['Erika Abraham', 'Marieke Huisman']}, series = {LNCS}, volume = {9681}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- A component-based approach to hybrid systems safety verification@techreport{DBLP:conf/ifm/MullerMRSP16:TR, ref = {DBLP:conf/ifm/MullerMRSP16}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {A Component-based Approach to Hybrid Systems Safety Verification}, number = {CMU-CS-16-100}, year = {2016}, month = {June}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2016/CMU-CS-16-100.pdf} }Copy BibTex⧉ PDF
- Nathan Fulton André PlatzerA logic of proofs for differential dynamic logic: Toward independently checkable proof certificates for dynamic logicsProceedings of the 2016 conference on certified programs and proofs, CPP 2016, st. Petersburg, FL, USA, january 18-19, 2016@inproceedings{DBLP:conf/cpp/FultonP16, pdf = {pub/proofterms.pdf}, slides = {pub/proofterms-slides.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {A Logic of Proofs for Differential Dynamic Logic: Toward Independently Checkable Proof Certificates for Dynamic Logics}, booktitle = {Proceedings of the 2016 Conference on Certified Programs and Proofs, CPP 2016, St. Petersburg, FL, USA, January 18-19, 2016}, pages = {110-121}, year = {2016}, doi = {10.1145/2854065.2854078}, editor = {['Jeremy Avigad', 'Adam Chlipala']}, publisher = {ACM} }Copy BibTex⧉ PDF Slides
- A method for invariant generation for polynomial continuous systemsVMCAI@inproceedings{DBLP:conf/vmcai/SogokonGJP16, pdf = {pub/abstraction-ddc.pdf}, slides = {pub/abstraction-ddc-slides.pdf}, author = {['Andrew Sogokon', 'Khalil Ghorbal', 'Paul B. Jackson', 'André Platzer']}, title = {A Method for Invariant Generation for Polynomial Continuous Systems}, booktitle = {VMCAI}, year = {2016}, pages = {268-288}, doi = {10.1007/978-3-662-49122-5_13}, editor = {['Barbara Jobstmann', 'K. Rustan M. Leino']}, longbooktitle = {Verification, Model Checking, and Abstract Interpretation - 17th International Conference, VMCAI 2016, St. Petersburg, FL, USA, January 17-19, 2016, Proceedings}, series = {LNCS}, volume = {9583}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Sebastian Ulewicz Mattias Ulbrich Alexander Weigl Michael Kirsten Franziska Wiebe Bernhard Beckert Birgit Vogel-HeuserA verification-supported evolution approach to assist software application engineers in industrial factory automationIEEE international symposium on assembly and manufacturing (ISAM 2016)@inproceedings{UlewiczUlbrichEA2016, ids = {Ulewicz16}, author = {['Sebastian Ulewicz', 'Mattias Ulbrich', 'Alexander Weigl', 'Michael Kir\xadsten', 'Franziska Wiebe', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, booktitle = {IEEE International Symposium on Assembly and Manufacturing (ISAM 2016)}, title = {A Verification-Supported Evolution Approach to Assist Software Application Engineers in Industrial Factory Automation}, year = {2016}, month = {August}, pages = {19–25}, publisher = {IEEE}, --address = {Fort Worth, USA}, abstract = {Automated production systems (aPS) are complex systems with high reliability standards which can – besides through traditional testing – be ensured by verification using formal methods. In this paper we present a development process for aPS software supported by efficient formal techniques with easy-to-use specification formalisms to incease applicability in the aPS engineering domain. Our approach is tailored to the development of evolving aPS as existing behavior of earlier system revisions is reused as specification for the verification. The approach covers three verification phases: regression verification, verification of critical interlock invariants and delta specification and verification. The approach is designed to be comprehensible by aPS software engineers: Two practically applicable specification means are presented. Formal methods have not yet been widely adapted in industrial aPS development since they lack (a) scalability, and (b) concise and comprehensible specification means. This paper shows concepts how to tackle both issues by referring to existing behavior during evolution verification to advance towards the goal of applicability in the aPS engineering domain. A laboratory case study demonstrates the feasibility and performance of the approach and shows promising results.}, --date = {August 21-22}, doi = {10.1109/ISAM.2016.7750714}, place = {Fort Worth, TX, USA} }ABSTRACT Copy BibTex⧉
- Sarah M. Loos André PlatzerDifferential refinement logicLICS@inproceedings{DBLP:conf/lics/LoosP16, pdf = {https://dl.acm.org/doi/pdf/10.1145/2933575.2934555}, slides = {pub/dRL-slides.pdf}, author = {['Sarah M. Loos', 'André Platzer']}, title = {Differential Refinement Logic}, booktitle = {LICS}, year = {2016}, pages = {505-514}, doi = {10.1145/2933575.2934555}, longbooktitle = {Proceedings of the 31st Annual ACM/IEEE Symposium on Logic in Computer Science, LICS '16, New York, NY, USA, July 5-8, 2016}, publisher = {ACM}, editor = {['Martin Grohe', 'Eric Koskinen', 'Natarajan Shankar']} }Copy BibTex⧉ PDF Slides
- Sarah M. LoosDifferential refinement logicPh.D. dissertation@phdthesis{Loos16, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2015/CMU-CS-15-144.pdf}, slides = {https://drive.google.com/file/d/0B7RBJEGwzag8UWN1SW9IZzR1WXZabXNRYXQ0Wk05cEpfNXVz}, author = {['Sarah M. Loos']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Differential Refinement Logic}, year = {2016}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2015/CMU-CS-15-144.pdf} }Copy BibTex⧉ PDF Slides
- Efficient SAT-based pre-image enumeration for quantitative information flow in programsData privacy management and security assurance - 11th international workshop, DPM 2016 and 5th international workshop, QASA 2016, heraklion, crete, greece, september 26-27, 2016, proceedings@inproceedings{DBLP:conf/esorics/Weigl16, author = {['Alexander Weigl']}, title = {Efficient SAT-Based Pre-image Enumeration for Quantitative Information Flow in Programs}, booktitle = {Data Privacy Management and Security Assurance - 11th International Workshop, DPM 2016 and 5th International Workshop, QASA 2016, Heraklion, Crete, Greece, September 26-27, 2016, Proceedings}, pages = {51–58}, year = {2016}, url = {https://doi.org/10.1007/978-3-319-47072-6_4}, doi = {10.1007/978-3-319-47072-6_4}, timestamp = {Tue, 14 May 2019 10:00:53 +0200}, biburl = {https://dblp.org/rec/conf/esorics/Weigl16.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Foundations of cyber-physical systems@misc{FCPS16, pdf = {course/fcps16/fcps16.pdf}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2016}, howpublished = {Lecture Notes 15-424/624/824, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps16/fcps16.pdf} }Copy BibTex⧉ PDF
- Foundations of cyber-physical systems@misc{FCPS16:videos, slides = {https://lfcps.org/course/fcps16-schedule.html}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2016}, howpublished = {Lecture Videos 15-424/624/824, Carnegie Mellon University} }Copy BibTex⧉ Slides
- How to model and prove hybrid systems with KeYmaera: A tutorial on safety@article{DBLP:journals/sttt/QueselMLAP16, pdf = {https://link.springer.com/content/pdf/10.1007/s10009-015-0367-0.pdf}, author = {['Jan-David Quesel', 'Stefan Mitsch', 'Sarah Loos', 'Nikos Aréchiga', 'André Platzer']}, title = {How to Model and Prove Hybrid Systems with KeYmaera: A Tutorial on Safety}, journal = {STTT}, year = {2016}, volume = {18}, number = {1}, pages = {67-91}, doi = {10.1007/s10009-015-0367-0} }Copy BibTex⧉ PDF
- Logic & proofs for cyber-physical systemsIJCAR@inproceedings{DBLP:conf/cade/Platzer16, pdf = {pub/lpcps.pdf}, slides = {pub/lpcps-slides.pdf}, author = {['André Platzer']}, title = {Logic & Proofs for Cyber-Physical Systems}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, 8th International Joint Conference, IJCAR 2016, Coimbra, Portugal, Proceedings}, year = {2016}, pages = {15-21}, doi = {10.1007/978-3-319-40229-1_3}, volume = {9706}, editor = {['Nicola Olivetti', 'Ashish Tiwari']}, publisher = {Springer}, series = {LNCS}, keywords = {logic, cyber-physical systems, multi-dynamical systems, differential dynamic logic, KeYmaera X}, abstract = {Cyber-physical systems (CPS) combine cyber aspects such as communication and computer control with physical aspects such as movement in space, which arise frequently in many safety-critical application domains, including aviation, automotive, railway, and robotics. But how can we ensure that these systems are guaranteed to meet their design goals, e.g., that an aircraft will not crash into another one? This paper highlights some of the most fascinating aspects of cyber-physical systems and their dynamical systems models, such as hybrid systems that combine discrete transitions and continuous evolution along differential equations. Because of the impact that they can have on the real world, CPSs deserve proof as safety evidence. Multi-dynamical systems understand complex systems as a combination of multiple elementary dynamical aspects, which makes them natural mathematical models for CPS, since they tame their complexity by compositionality. The family of differential dynamic logics achieves this compositionality by providing compositional logics, programming languages, and reasoning principles for CPS. Differential dynamic logics, as implemented in the theorem prover KeYmaera X, have been instrumental in verifying many applications, including the Airborne Collision Avoidance System ACAS X, the European Train Control System ETCS, automotive systems, mobile robot navigation, and a surgical robot system for skull-base surgery. This combination of strong theoretical foundations with practical theorem proving challenges and relevant applications makes Logic for CPS an ideal area for compelling and rewarding research.} }ABSTRACT Copy BibTex⧉ PDF Slides
- ModelPlex: Verified runtime validation of verified cyber-physical system models@article{DBLP:journals/fmsd/MitschP16, pdf = {https://link.springer.com/content/pdf/10.1007/s10703-016-0241-z.pdf}, ref = {DBLP:conf/rv/MitschP14}, refname = {RV'14}, author = {['Stefan Mitsch', 'André Platzer']}, title = {ModelPlex: Verified Runtime Validation of Verified Cyber-Physical System Models}, journal = {Form. Methods Syst. Des.}, longjournal = {Formal Methods in System Design}, year = {2016}, volume = {49}, number = {1}, pages = {33-74}, doi = {10.1007/s10703-016-0241-z}, issn = {0925-9856}, note = {Special issue of selected papers from RV'14} }Copy BibTex⧉ PDF
- Proceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016in ,@proceedings{DBLP:journals/corr/TribastoneW16, editor = {['Mirco Tribastone', 'Herbert Wiklicky']}, title = {Proceedings 14th International Workshop Quantitative Aspects of Programming Languages and Systems, QAPL 2016, Eindhoven, The Netherlands, April 2-3, 2016}, series = {EPTCS}, volume = {227}, year = {2016}, url = {https://doi.org/10.4204/EPTCS.227}, doi = {10.4204/EPTCS.227}, timestamp = {Wed, 09 Oct 2019 16:19:29 +0200}, biburl = {https://dblp.org/rec/journals/corr/TribastoneW16.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Sound probabilistic #SAT with projectionProceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016@inproceedings{DBLP:journals/corr/KlebanovWW16, author = {['Vladimir Klebanov', 'Alexander Weigl', 'Jörg Weisbarth']}, title = {Sound Probabilistic #SAT with Projection}, booktitle = {Proceedings 14th International Workshop Quantitative Aspects of Programming Languages and Systems, QAPL 2016, Eindhoven, The Netherlands, April 2-3, 2016}, pages = {15–29}, year = {2016}, crossref = {DBLP:journals/corr/TribastoneW16}, url = {https://doi.org/10.4204/EPTCS.227.2}, doi = {10.4204/EPTCS.227.2}, timestamp = {Wed, 09 Oct 2019 16:19:29 +0200}, biburl = {https://dblp.org/rec/journals/corr/KlebanovWW16.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- The KeYmaera X proof IDE: Concepts on usability in hybrid systems theorem proving3rd workshop on formal integrated development environment@inproceedings{DBLP:conf/fide/MitschP16, pdf = {pub/webui.pdf}, author = {['Stefan Mitsch', 'André Platzer']}, title = {The KeYmaera X proof IDE: Concepts on usability in hybrid systems theorem proving}, booktitle = {3rd Workshop on Formal Integrated Development Environment}, pages = {67-81}, year = {2016}, doi = {10.4204/EPTCS.240.5}, editor = {['Catherine Dubois', 'Paolo Masci', 'Dominique Méry']}, publisher = {Open Publishing Association}, series = {EPTCS}, volume = {240} }Copy BibTex⧉ PDF
2015
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Ryan Gardner Aurora Schmidt Erik Zawadzki André PlatzerA formally verified hybrid system for the next-generation airborne collision avoidance systemTACAS@inproceedings{DBLP:conf/tacas/JeanninGKGSZP15, pdf = {pub/acasx-zones.pdf}, ref = {DBLP:journals/sttt/JeanninGKSGMP17}, refname = {STTT'17}, study = {https://www.ls.cs.cmu.edu/pub/acasx.zip}, TR = {DBLP:conf/tacas/JeanninGKGSZP15:TR}, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Ryan Gardner', 'Aurora Schmidt', 'Erik Zawadzki', 'André Platzer']}, title = {A Formally Verified Hybrid System for the Next-generation Airborne Collision Avoidance System}, booktitle = {TACAS}, year = {2015}, pages = {21-36}, doi = {10.1007/978-3-662-46681-0_2}, editor = {['Christel Baier', 'Cesare Tinelli']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems - 21st International Conference, TACAS 2015, London, UK, April 11-18, 2015, Proceedings}, series = {LNCS}, volume = {9035}, publisher = {Springer} }Copy BibTex⧉ PDF
- A hierarchy of proof rules for checking differential invariance of algebraic setsVMCAI@inproceedings{DBLP:conf/vmcai/GhorbalSP15, pdf = {pub/alginv-bench.pdf}, slides = {pub/alginv-bench-slides.pdf}, ref = {DBLP:journals/cl/GhorbalSP17}, refname = {ComLan'17}, study = {https://www.lix.polytechnique.fr/ ghorbal/VMCAI2015}, author = {['Khalil Ghorbal', 'Andrew Sogokon', 'André Platzer']}, title = {A Hierarchy of Proof Rules for Checking Differential Invariance of Algebraic Sets}, booktitle = {VMCAI}, year = {2015}, pages = {431-448}, doi = {10.1007/978-3-662-46081-8_24}, editor = {["Deepak D'Souza", 'Akash Lal', 'Kim Guldstrand Larsen']}, longbooktitle = {Verification, Model Checking, and Abstract Interpretation - 16th International Conference, VMCAI 2015, Mumbai, India, January 12-14, 2015, Proceedings}, series = {LNCS}, volume = {8931}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- A uniform substitution calculus for differential dynamic logicCADE@inproceedings{DBLP:conf/cade/Platzer15, pdf = {pub/usubst.pdf}, slides = {pub/usubst-slides.pdf}, ref = {DBLP:journals/jar/Platzer17}, refname = {JAR'17}, author = {['André Platzer']}, title = {A Uniform Substitution Calculus for Differential Dynamic Logic}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-25, Berlin, Germany, Proceedings}, year = {2015}, pages = {467-481}, doi = {10.1007/978-3-319-21401-6_32}, editor = {['Amy P. Felty', 'Aart Middeldorp']}, publisher = {Springer}, series = {LNCS}, volume = {9195}, eprint = {1503.01981} }Copy BibTex⧉ PDF Slides Preprint
- Correct system design symposium in honor of ernst-rüdiger olderog on the occasion of his 60th birthday oldenburg, germany, september 8-9, 2015 proceedingsSpringer. in , Springer@proceedings{DBLP:conf/festschrift/ERO60, editor = {['Roland Meyer', 'André Platzer', 'Heike Wehrheim']}, title = {Correct System Design Symposium in Honor of Ernst-Rüdiger Olderog on the Occasion of His 60th Birthday Oldenburg, Germany, September 8-9, 2015 Proceedings}, booktitle = {ERO}, publisher = {Springer}, series = {LNCS}, volume = {9360}, year = {2015}, isbn = {978-3-319-23505-9}, doi = {10.1007/978-3-319-23506-6} }Copy BibTex⧉
- Differential game logic@article{DBLP:journals/tocl/Platzer15, pdf = {https://dl.acm.org/doi/pdf/10.1145/2817824}, errata = {pub/dGL-errata.txt}, author = {['André Platzer']}, title = {Differential Game Logic}, journal = {ACM Trans. Comput. Log.}, volume = {17}, number = {1}, year = {2015}, pages = {1:1–1:51}, doi = {10.1145/2817824}, issn = {1529-3785} }Copy BibTex⧉ PDF
- Annika PetersonFormal verification of a controlled flight between two robots: A case study@misc{Peterson15, pdf = {https://www.ls.cs.cmu.edu/pub/theses/apeterson.pdf}, study = {https://www.ls.cs.cmu.edu/pub/theses/apeterson.zip}, author = {['Annika Peterson']}, title = {Formal Verification of a Controlled Flight Between Two Robots: A Case Study}, howpublished = {Senior thesis, Carnegie Mellon University, Computer Science Department}, month = {May}, year = {2015}, school = {Carnegie Mellon University, Computer Science Department} }Copy BibTex⧉ PDF
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Ryan Gardner Aurora Schmidt Erik Zawadzki André PlatzerFormal verification of ACAS X, an industrial airborne collision avoidance systemEMSOFT@inproceedings{DBLP:conf/emsoft/JeanninGKGSZP15, pdf = {pub/acasx-industrial.pdf}, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Ryan Gardner', 'Aurora Schmidt', 'Erik Zawadzki', 'André Platzer']}, title = {Formal Verification of ACAS X, an Industrial Airborne Collision Avoidance System}, booktitle = {EMSOFT}, year = {2015}, pages = {127-136}, doi = {10.1109/EMSOFT.2015.7318268}, editor = {['Alain Girault', 'Nan Guan']}, longbooktitle = {2015 International Conference on Embedded Software, EMSOFT 2015, Amsterdam, The Netherlands, October 4-9, 2015}, publisher = {IEEE Press} }Copy BibTex⧉ PDF
- Forward invariant cuts to simplify proofs of safetyEMSOFT@inproceedings{DBLP:conf/emsoft/ArechigaKDPK15, author = {['Nikos Arechiga', 'James Kapinski', 'Jyotirmoy V. Deshmukh', 'André Platzer', 'Bruce H. Krogh']}, title = {Forward invariant cuts to simplify proofs of safety}, booktitle = {EMSOFT}, pages = {227-236}, year = {2015}, doi = {10.1109/EMSOFT.2015.7318278}, editor = {['Alain Girault', 'Nan Guan']}, longbooktitle = {2015 International Conference on Embedded Software, EMSOFT 2015, Amsterdam, The Netherlands, October 4-9, 2015}, publisher = {IEEE}, isbn = {978-1-4673-8079-9} }Copy BibTex⧉
- How to prove hybrid systems and why that mattersICCSE@inproceedings{DBLP:conf/iccse/Platzer15, pdf = {pub/iccse15.pdf}, author = {['André Platzer']}, title = {How to Prove Hybrid Systems and Why That Matters}, booktitle = {ICCSE}, longbooktitle = {2015 International Conference on Complex Systems Engineering (ICCSE)}, year = {2015}, pages = {}, doi = {10.1109/ComplexSys.2015.7385983} }Copy BibTex⧉ PDF
- KeYmaera X: An axiomatic tactical theorem prover for hybrid systemsCADE@inproceedings{DBLP:conf/cade/FultonMQVP15, pdf = {pub/KeYmaeraX.pdf}, slides = {pub/KeYmaeraX-slides.pdf}, author = {['Nathan Fulton', 'Stefan Mitsch', 'Jan-David Quesel', 'Marcus Völp', 'André Platzer']}, title = {KeYmaera X: An Axiomatic Tactical Theorem Prover for Hybrid Systems}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-25, Berlin, Germany, Proceedings}, year = {2015}, pages = {527–538}, doi = {10.1007/978-3-319-21401-6_36}, editor = {['Amy P. Felty', 'Aart Middeldorp']}, publisher = {Springer}, series = {LNCS}, volume = {9195} }Copy BibTex⧉ PDF Slides
- Logic-based modeling approaches for qualitative and hybrid reasoning in dynamic spatial systems@article{DBLP:journals/csur/MitschPRS15, pdf = {pub/surveydynamicspatial.pdf}, author = {['Stefan Mitsch', 'André Platzer', 'Werner Retschitzegger', 'Wieland Schwinger']}, title = {Logic-based Modeling Approaches for Qualitative and Hybrid Reasoning in Dynamic Spatial Systems}, journal = {ACM Comput. Surv.}, volume = {48}, number = {1}, pages = {3:1–3:40}, year = {2015}, doi = {10.1145/2764901} }Copy BibTex⧉ PDF
- Proving equivalence between control software variants for Programmable Logic Controllers: Using Regression Verification to Reduce Unneeded Variant DiversityIEEE international conference on emerging technologies and factory automation, ETFA@inproceedings{Ulewicz2015, ids = {UlewiczEtAl2015}, author = {['Sebastian Ulewicz', 'Birgit Vogel-Heuser', 'Mattias Ulbrich', 'Alexander Weigl', 'Bernhard Beckert']}, booktitle = {IEEE International Conference on Emerging Technologies and Factory Automation, ETFA}, title = {Proving equivalence between control software variants for Programmable Logic Controllers: Using Regression Verification to Reduce Unneeded Variant Diversity}, year = {2015}, pages = {1–5}, volume = {2015-October}, abstract = {© 2015 IEEE. Automated production systems are usually driven by Programmable Logic Controllers (PLCs). These systems are long-living and have high requirements for software quality to avoid downtimes, damaged product and harm to personnel. While commissioning multiple systems of similar type, pragmatic adjustments of the software are often necessary, which results in two or more similar variants of initially identical software. For further evolution of the software, an equivalence analysis of the software's behavior is beneficial to merge divergent development branches into a single program version. This paper presents a novel method for regression verification of PLC code, which allows one to prove that two variants of a plant's software behave identically in specified situations, despite being implemented differently. For this, a regression verification method for PLC code was designed, implemented and evaluated. The notion of program equivalence for reactive PLC code is clarified and defined. Core elements of the method are the translation of PLC code into the SMV input language for model checkers, the adaptation of the coupling invariants concept to reactive systems, and the implementation of a toolchain using a model checker. The approach was successfully evaluated using the Pick-and-Place Unit benchmark case study.}, doi = {10.1109/ETFA.2015.7301603} }ABSTRACT Copy BibTex⧉
- Regression verification for programmable logic controller software@techreport{BeckertUlbrichVogelHeuser2015, author = {['Bernhard Beckert', 'Mattias Ulbrich', 'Birgit Vogel-Heuser', 'Alexander Weigl']}, title = {Regression Verification for Programmable Logic Controller Software}, institution = {Karlsruhe Institute of Technology, Department of Informatics}, year = {2015}, month = {June}, number = {2015-06}, keywords = {IMPROVE} }Copy BibTex⧉
- Regression verification for programmable logic controller softwareFormal methods and software engineering - 17th international conference on formal engineering methods, ICFEM 2015, paris, france, november 3-5, 2015, proceedings@inproceedings{DBLP:conf/icfem/BeckertUVW15, ids = {Beckert2015,BeckertUlbrichEtAl2015}, author = {['Bernhard Beckert', 'Mattias Ulbrich', 'Birgit Vogel-Heuser', 'Alexander Weigl']}, title = {Regression Verification for Programmable Logic Controller Software}, booktitle = {Formal Methods and Software Engineering - 17th International Conference on Formal Engineering Methods, ICFEM 2015, Paris, France, November 3-5, 2015, Proceedings}, pages = {234–251}, year = {2015}, url = {https://doi.org/10.1007/978-3-319-25423-4_15}, doi = {10.1007/978-3-319-25423-4_15}, timestamp = {Sun, 02 Jun 2019 21:19:43 +0200}, biburl = {https://dblp.org/rec/conf/icfem/BeckertUVW15.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Regression verification for programmable logic controller softwareThesis@mastersthesis{WeiglThesis2015, author = {['Alexander Sebastian Weigl']}, school = {Karlsruhe Institute of Technology}, title = {Regression Verification for Programmable Logic Controller Software}, year = {2015}, month = {January}, type = {Master's thesis}, ids = {masterthesis}, keywords = {IMPROVE} }Copy BibTex⧉
- Verified traffic networks: Component-based verification of cyber-physical flow systemsITSC@inproceedings{DBLP:conf/itsc/MullerMP15, pdf = {pub/trafficblocks.pdf}, slides = {pub/trafficblocks-slides.pdf}, author = {['Andreas Müller', 'Stefan Mitsch', 'André Platzer']}, title = {Verified Traffic Networks: Component-Based Verification of Cyber-Physical Flow Systems}, booktitle = {ITSC}, longbooktitle = {Intelligent Transportation Systems (ITSC), 2015 IEEE 18th International Conference on}, year = {2015}, pages = {757-764}, doi = {10.1109/ITSC.2015.128}, keywords = {Automobiles, Contracts, Load modeling, Mathematical model, Roads, Safety} }Copy BibTex⧉ PDF Slides
2014
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Ryan Garnder Aurora Schmidt Erik Zawadzki André PlatzerA formally verified hybrid system for the next-generation airborne collision avoidance system@techreport{JeanninGKGSZP14:TR, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Ryan Garnder', 'Aurora Schmidt', 'Erik Zawadzki', 'André Platzer']}, title = {A Formally Verified Hybrid System for the Next-Generation Airborne Collision Avoidance System}, number = {CMU-CS-14-138}, year = {2014}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2014/CMU-CS-14-138.pdf} }Copy BibTex⧉ PDF
- Analog and hybrid computation: Dynamical systems and programming languages@article{DBLP:journals/eatcs/Platzer14, pdf = {pub/hybrid-computing.pdf}, author = {['André Platzer']}, title = {Analog and Hybrid Computation: Dynamical Systems and Programming Languages}, journal = {Bulletin of the EATCS}, year = {2014}, volume = {114}, eprint = {http://eatcs.org/beatcs/index.php/beatcs/article/view/292} }Copy BibTex⧉ PDF Preprint
- Khalil Ghorbal André PlatzerCharacterizing algebraic invariants by differential radical invariantsTACAS@inproceedings{DBLP:conf/tacas/GhorbalP14, pdf = {pub/diffradicalinv.pdf}, slides = {pub/diffradicalinv-slides.pdf}, study = {pub/DRI-gen.zip}, TR = {DBLP:conf/tacas/GhorbalP14:TR}, author = {['Khalil Ghorbal', 'André Platzer']}, title = {Characterizing Algebraic Invariants by Differential Radical Invariants}, booktitle = {TACAS}, year = {2014}, pages = {279-294}, doi = {10.1007/978-3-642-54862-8_19}, editor = {['Erika Ábrahám', 'Klaus Havelund']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems - 20th International Conference, TACAS 2014, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2014, Grenoble, France, April 5-13, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {8413}, isbn = {978-3-642-54861-1} }Copy BibTex⧉ PDF Slides
- Collaborative verification-driven engineering of hybrid systems@article{DBLP:journals/mics/MitschPP14, pdf = {pub/proofide.pdf}, author = {['Stefan Mitsch', 'Grant Olney Passmore', 'André Platzer']}, title = {Collaborative Verification-Driven Engineering of Hybrid Systems}, journal = {Mathematics in Computer Science}, volume = {8}, number = {1}, year = {2014}, pages = {71-97}, doi = {10.1007/s11786-014-0176-y} }Copy BibTex⧉ PDF
- Differential hybrid games@techreport{Platzer14:dGI, ref = {DBLP:journals/tocl/Platzer17}, author = {['André Platzer']}, title = {Differential Hybrid Games}, number = {CMU-CS-14-102}, year = {2014}, month = {December}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2014/CMU-CS-14-102.pdf} }Copy BibTex⧉ PDF
- Jean-Baptiste Jeannin André PlatzerdTL^2: Differential temporal dynamic logic with nested temporalities for hybrid systemsIJCAR@inproceedings{DBLP:conf/cade/JeanninP14, pdf = {pub/dTL2.pdf}, slides = {pub/dTL2-slides.pdf}, author = {['Jean-Baptiste Jeannin', 'André Platzer']}, title = {dTL$^2$: Differential Temporal Dynamic Logic with Nested Temporalities for Hybrid Systems}, booktitle = {IJCAR}, year = {2014}, pages = {292-306}, doi = {10.1007/978-3-319-08587-6_22}, editor = {['Stéphane Demri', 'Deepak Kapur', 'Christoph Weidenbach']}, longbooktitle = {Automated Reasoning - 7th International Joint Conference, IJCAR 2014, Held as Part of the Vienna Summer of Logic, VSL 2014, Vienna, Austria, July 19-22, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, subseries = {LNAI}, volume = {8562}, isbn = {978-3-319-08586-9} }Copy BibTex⧉ PDF Slides
- Foundations of cyber-physical systems@misc{FCPS14, pdf = {course/fcps14/fcps14.pdf}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2014}, howpublished = {Lecture Notes 15-424/624, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps14/fcps14.pdf} }Copy BibTex⧉ PDF
- From safety to guilty & from liveness to niceness5th workshop on formal methods for robotics and automation@inproceedings{DBLP:conf/fmra/MitschQP14, pdf = {pub/safety-guilty-liveness-niceness.pdf}, author = {['Stefan Mitsch', 'Jan-David Quesel', 'André Platzer']}, title = {From Safety to Guilty & from Liveness to Niceness}, editor = {['Calin Belta', 'Hadas Kress-Gazit']}, booktitle = {5th Workshop on Formal Methods for Robotics and Automation}, year = {2014}, doi = {10.1184/R1/6605882.v1} }Copy BibTex⧉ PDF
- Hybrid theorem proving of aerospace systems: Applications and challenges@article{DBLP:journals/jais/GhorbalJZPGC14, pdf = {https://hal.archives-ouvertes.fr/hal-01660905/document}, author = {['Khalil Ghorbal', 'Jean-Baptiste Jeannin', 'Erik P. Zawadzki', 'André Platzer', 'Geoffrey J. Gordon', 'Peter Capell']}, title = {Hybrid Theorem Proving of Aerospace Systems: Applications and Challenges}, journal = {Journal of Aerospace Information Systems}, volume = {11}, number = {10}, pages = {702-713}, year = {2014}, doi = {10.2514/1.I010178} }Copy BibTex⧉ PDF
- Invariance of conjunctions of polynomial equalities for algebraic differential equationsSAS@inproceedings{DBLP:conf/sas/GhorbalSP14, pdf = {pub/alginvand-bench.pdf}, slides = {pub/alginvand-bench-slides.pdf}, study = {https://www.lix.polytechnique.fr/ ghorbal/SAS2014}, author = {['Khalil Ghorbal', 'Andrew Sogokon', 'André Platzer']}, title = {Invariance of Conjunctions of Polynomial Equalities for Algebraic Differential Equations}, booktitle = {SAS}, year = {2014}, pages = {151-167}, editor = {['Markus Müller-Olm', 'Helmut Seidl']}, longbooktitle = {Static Analysis - 21th International Symposium, SAS 2014, Munich, Germany, September 11-13, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {8723}, isbn = {978-3-319-10935-0}, doi = {10.1007/978-3-319-10936-7_10} }Copy BibTex⧉ PDF Slides
- ModelPlex: Verified runtime validation of verified cyber-physical system modelsRV@inproceedings{DBLP:conf/rv/MitschP14, pdf = {pub/modelplex.pdf}, slides = {pub/modelplex-slides.pdf}, ref = {DBLP:journals/fmsd/MitschP16}, refname = {FMSD'16}, study = {pub/modelplex-study.zip}, TR = {DBLP:conf/rv/MitschP14:TR}, author = {['Stefan Mitsch', 'André Platzer']}, title = {ModelPlex: Verified Runtime Validation of Verified Cyber-Physical System Models}, booktitle = {RV}, year = {2014}, pages = {199-214}, doi = {10.1007/978-3-319-11164-3_17}, editor = {['Borzoo Bonakdarpour', 'Scott A. Smolka']}, longbooktitle = {Runtime Verification - 5th International Conference, RV 2014, Toronto, ON, Canada, September 22–25, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {8734} }Copy BibTex⧉ PDF Slides
- ModelPlex: Verified runtime validation of verified cyber-physical system models@techreport{DBLP:conf/rv/MitschP14:TR, ref = {DBLP:conf/rv/MitschP14}, study = {pub/modelplex-study.zip}, author = {['Stefan Mitsch', 'André Platzer']}, title = {ModelPlex: Verified Runtime Validation of Verified Cyber-Physical System Models}, number = {CMU-CS-14-121}, year = {2014}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2014/CMU-CS-14-121.pdf} }Copy BibTex⧉ PDF
- Refactoring, refinement, and reasoning: A logical characterization for hybrid systemsFM@inproceedings{DBLP:conf/fm/MitschQP14, pdf = {pub/refactoring.pdf}, slides = {pub/refactoring-slides.pdf}, author = {['Stefan Mitsch', 'Jan-David Quesel', 'André Platzer']}, title = {Refactoring, Refinement, and Reasoning: A Logical Characterization for Hybrid Systems}, booktitle = {FM}, year = {2014}, pages = {481-496}, doi = {10.1007/978-3-319-06410-9_33}, editor = {['Cliff B. Jones', 'Pekka Pihlajasaari', 'Jun Sun']}, longbooktitle = {FM 2014: Formal Methods, 19th International Symposium on Formal Methods, Singapore, May 12-16, 2014, Proceedings}, publisher = {Springer}, volume = {8442} }Copy BibTex⧉ PDF Slides
- Supporting heterogeneity in cyber-physical systems architectures@article{DBLP:jourals/tac/RajhansBRKGPS14, author = {['Akshay Rajhans', 'Ajinkya Bhave', 'Ivan Ruchkin', 'Bruce H. Krogh', 'David Garlan', 'André Platzer', 'Bradley Schmerl']}, title = {Supporting Heterogeneity in Cyber-Physical Systems Architectures}, journal = {IEEE Transactions on Automatic Control}, year = {2014}, volume = {59}, number = {12}, pages = {3178-3193}, doi = {10.1109/TAC.2014.2351672} }Copy BibTex⧉
- Sarah M. Loos André PlatzerTeaching cyber-physical systems with logic@unpublished{LoosP14:TeachCPS, pdf = {pub/TeachCPS.pdf}, author = {['Sarah M. Loos', 'André Platzer']}, title = {Teaching Cyber-Physical Systems with Logic}, year = {2014}, note = {Manuscript} }Copy BibTex⧉ PDF
2013
- A complete axiomatization for differential game logic for hybrid games@techreport{Platzer13:dGL, slides = {pub/dGL-slides.pdf}, ref = {DBLP:journals/tocl/Platzer15}, author = {['André Platzer']}, title = {A Complete Axiomatization for Differential Game Logic for Hybrid Games}, number = {CMU-CS-13-100R}, year = {2013}, month = {January}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, note = {Extended in revised version from July 2013}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2013/CMU-CS-13-100R.pdf} }Copy BibTex⧉ PDF Slides
- A generalization of SAT and #SAT for policy evaluationIJCAI@inproceedings{DBLP:conf/ijcai/ZawadzkiPG13, pdf = {pub/sharpE.pdf}, TR = {DBLP:conf/ijcai/ZawadzkiPG13:TR}, author = {['Erik P. Zawadzki', 'André Platzer', 'Geoffrey J. Gordon']}, title = {A Generalization of SAT and #SAT for Policy Evaluation}, booktitle = {IJCAI}, year = {2013}, pages = {2583-2589}, editor = {['Francesca Rossi']}, longbooktitle = {IJCAI 2013, Proceedings of the 23nd International Joint Conference on Artificial Intelligence, Beijing, China, August 3-9, 2013}, publisher = {IJCAI/AAAI}, isbn = {}, eprint = {http://ijcai.org/Abstract/13/380} }Copy BibTex⧉ PDF Preprint
- A generalization of SAT and #SAT for policy evaluation@techreport{DBLP:conf/ijcai/ZawadzkiPG13:TR, ref = {DBLP:conf/ijcai/ZawadzkiPG13}, author = {['Erik P. Zawadzki', 'André Platzer', 'Geoffrey J. Gordon']}, title = {A Generalization of SAT and #SAT for Policy Evaluation}, number = {CMU-CS-13-107}, year = {2013}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2013/CMU-CS-13-107.pdf} }Copy BibTex⧉ PDF
- A projection algorithm for strictly monotone linear complementarity problems6th NIPS workshop on optimization for machine learning@inproceedings{DBLP:conf/optml/ZawadzkiGP13, pdf = {pub/lcp-proj-short.pdf}, author = {['Erik P. Zawadzki', 'Geoffrey J. Gordon', 'André Platzer']}, title = {A Projection Algorithm for Strictly Monotone Linear Complementarity Problems}, booktitle = {6th NIPS Workshop on Optimization for Machine Learning}, year = {2013}, eprint = {https://sites.google.com/site/mloptstat/opt-2013/opt2013_submission_12.pdf} }Copy BibTex⧉ PDF Preprint
- Bayesian statistical model checking with application to Simulink/Stateflow verification@article{DBLP:journals/fmsd/ZulianiPC13, pdf = {pub/bayesmcest-FMSD.pdf}, author = {['Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Bayesian Statistical Model Checking with Application to Simulink/Stateflow Verification}, journal = {Formal Methods in System Design}, volume = {43}, number = {2}, year = {2013}, pages = {338-367}, doi = {10.1007/s10703-013-0195-3}, issn = {0925-9856}, keywords = {Probabilistic verification, Hybrid systems, Stochastic systems, Statistical model checking, Hypothesis testing, Estimation}, abstract = { We address the problem of model checking stochastic systems, i.e., checking whether a stochastic system satisfies a certain temporal property with a probability greater (or smaller) than a fixed threshold. In particular, we present a Statistical Model Checking (SMC) approach based on Bayesian statistics. We show that our approach is feasible for a certain class of hybrid systems with stochastic transitions, a generalization of Simulink/Stateflow models. Standard approaches to stochastic discrete systems require numerical solutions for large optimization problems and quickly become infeasible with larger state spaces. Generalizations of these techniques to hybrid systems with stochastic effects are even more challenging. The SMC approach was pioneered by Younes and Simmons in the discrete and non-Bayesian case. It solves the verification problem by combining randomized sampling of system traces (which is very efficient for Simulink/Stateflow) with hypothesis testing (i.e., testing against a probability threshold) or estimation (i.e., computing with high probability a value close to the true probability). We believe SMC is essential for scaling up to large Stateflow/Simulink models. While the answer to the verification problem is not guaranteed to be correct, we prove that Bayesian SMC can make the probability of giving a wrong answer arbitrarily small. The advantage is that answers can usually be obtained much faster than with standard, exhaustive model checking techniques. We apply our Bayesian SMC approach to a representative example of stochastic discrete-time hybrid system models in Stateflow/Simulink: a fuel control system featuring hybrid behavior and fault tolerance. We show that our technique enables faster verification than state-of-the-art statistical techniques. We emphasize that Bayesian SMC is by no means restricted to Stateflow/Simulink models. It is in principle applicable to a variety of stochastic models from other domains, e.g., systems biology. } }ABSTRACT Copy BibTex⧉ PDF
- Certifying the safe design of a virtual fixture control algorithm for a surgical robotHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013@inproceedings{DBLP:conf/hybrid/KouskoulasRPK13, pdf = {pub/medrobot.pdf}, slides = {pub/medrobot-slides.pdf}, study = {pub/medrobot-examples.zip}, author = {['Yanni Kouskoulas', 'David W. Renshaw', 'André Platzer', 'Peter Kazanzides']}, title = {Certifying the Safe Design of a Virtual Fixture Control Algorithm for a Surgical Robot}, year = {2013}, pages = {263-272}, doi = {10.1145/2461328.2461369}, publisher = {ACM}, editor = {['Calin Belta', 'Franjo Ivancic']}, booktitle = {Hybrid Systems: Computation and Control (part of CPS Week 2013), HSCC'13, Philadelphia, PA, USA, April 8-13, 2013} }Copy BibTex⧉ PDF Slides
- Khalil Ghorbal André PlatzerCharacterizing algebraic invariants by differential radical invariants@techreport{DBLP:conf/tacas/GhorbalP14:TR, ref = {DBLP:conf/tacas/GhorbalP14}, author = {['Khalil Ghorbal', 'André Platzer']}, title = {Characterizing Algebraic Invariants by Differential Radical Invariants}, number = {CMU-CS-13-129}, year = {2013}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-13-129.pdf} }Copy BibTex⧉ PDF
- Efficiency analysis of formally verified adaptive cruise controllersITSC@inproceedings{DBLP:conf/itsc/LoosWSP13, pdf = {pub/dccs-efficiency.pdf}, slides = {pub/dccs-efficiency-slides.pdf}, study = {pub/dccs-efficiency-examples.zip}, author = {['Sarah M. Loos', 'David Witmer', 'Peter Steenkiste', 'André Platzer']}, title = {Efficiency Analysis of Formally Verified Adaptive Cruise Controllers}, booktitle = {ITSC}, longbooktitle = {Intelligent Transportation Systems (ITSC), 16th International IEEE Conference on, October 6-9, The Hague, Netherlands, Proceedings}, year = {2013}, pages = {1565-1570}, doi = {10.1109/ITSC.2013.6728453}, editor = {['Andreas Hegyi', 'Bart De Schutter']}, isbn = {978-1-4799-2914-613}, keywords = {Traffic theory for ITS, Network modeling, Driver assistance systems, V2V wireless communication, Hybrid systems, Formal verification}, abstract = { We consider an adaptive cruise control system in which control decisions are made based on position and velocity information received from other vehicles via V2V wireless communication. If the vehicles follow each other at a close distance, they have better wireless reception but collisions may occur when a follower car does not receive notice about the decelerations of the leader car fast enough to react before it is too late. If the vehicles are farther apart, they would have a bigger safety margin, but the wireless communication drops out more often, so that the follower car no longer receives what the leader car is doing. In order to guarantee safety, such a system must return control to the driver if it does not receive an update from a nearby vehicle within some timeout period. The value of this timeout parameter encodes a tradeoff between the likelihood that an update is received and the maximum safe acceleration. Combining formal verification techniques for hybrid systems with a wireless communication model, we analyze how the expected efficiency of a provably-safe adaptive cruise control syst em is affected by the value of this timeout. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Formal methods for robotic system control software@article{DBLP:journals/jhuapltechdigest/KouskoulasPK13, pdf = {http://techdigest.jhuapl.edu/TD/td3202/32_02-Kouskoulas.pdf}, author = {['Yanni Kouskoulas', 'André Platzer', 'Peter Kazanzides']}, title = {Formal Methods for Robotic System Control Software}, journal = {Johns Hopkins APL Technical Digest}, volume = {32}, number = {2}, year = {2013}, pages = {490-498}, eprint = {http://techdigest.jhuapl.edu/TD/td3202/32_02-Kouskoulas.pdf} }Copy BibTex⧉ PDF Preprint
- Formal verification of distributed aircraft controllersHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013@inproceedings{DBLP:conf/hybrid/LoosRP13, pdf = {pub/discworld.pdf}, slides = {pub/discworld-slides.pdf}, study = {https://www.ls.cs.cmu.edu/discworld}, TR = {DBLP:conf/hybrid/LoosRP13:TR}, author = {['Sarah M. Loos', 'David W. Renshaw', 'André Platzer']}, title = {Formal Verification of Distributed Aircraft Controllers}, year = {2013}, pages = {125-130}, doi = {10.1145/2461328.2461350}, publisher = {ACM}, editor = {['Calin Belta', 'Franjo Ivancic']}, booktitle = {Hybrid Systems: Computation and Control (part of CPS Week 2013), HSCC'13, Philadelphia, PA, USA, April 8-13, 2013} }Copy BibTex⧉ PDF Slides
- Foundations of cyber-physical systems@misc{FCPS13, pdf = {course/fcps13/fcps13.pdf}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2013}, howpublished = {Lecture Notes 15-424/624, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps13/fcps13.pdf} }Copy BibTex⧉ PDF
- On provably safe obstacle avoidance for autonomous robotic ground vehiclesRobotics: Science and systems@inproceedings{DBLP:conf/rss/MitschGP13, pdf = {pub/robix.pdf}, slides = {pub/robix-slides.pdf}, ref = {DBLP:journals/ijrr/MitschGVP17}, refname = {IJRR'17}, study = {pub/robix-examples.zip}, author = {['Stefan Mitsch', 'Khalil Ghorbal', 'André Platzer']}, title = {On Provably Safe Obstacle Avoidance for Autonomous Robotic Ground Vehicles}, booktitle = {Robotics: Science and Systems}, year = {2013}, editor = {['Paul Newman', 'Dieter Fox', 'David Hsu']}, longbooktitle = {Robotics: Science and Systems IX, Technische Universität Berlin, Berlin, Germany, June 24 - June 28, 2013}, isbn = {978-981-07-3937-9}, doi = {10.15607/RSS.2013.IX.014} }Copy BibTex⧉ PDF Slides
- Teaching CPS foundations with contractsCPS-ed@inproceedings{DBLP:conf/cpsed/Platzer13, pdf = {pub/CPSFEd.pdf}, slides = {pub/CPSFEd-slides.pdf}, author = {['André Platzer']}, title = {Teaching CPS Foundations With Contracts}, year = {2013}, booktitle = {CPS-Ed}, longbooktitle = {First Workshop on Cyber-Physical Systems Education}, pages = {7-10}, eprint = {https://cps-vo.org/file/7247/download/19327} }Copy BibTex⧉ PDF Slides Preprint
2012
- A complete axiomatization of quantified differential dynamic logic for distributed hybrid systems@article{DBLP:journals/lmcs/Platzer12b, pdf = {https://lmcs.episciences.org/720/pdf}, ref = {DBLP:conf/csl/Platzer10}, refname = {CSL'10}, author = {['André Platzer']}, title = {A Complete Axiomatization of Quantified Differential Dynamic Logic for Distributed Hybrid Systems}, journal = {Logical Methods in Computer Science}, volume = {8}, number = {4}, year = {2012}, pages = {1-44}, doi = {10.2168/LMCS-8(4:17)2012}, note = {Special issue for selected papers from CSL'10} }Copy BibTex⧉ PDF
- A differential operator approach to equational differential invariantsITP@inproceedings{DBLP:conf/itp/Platzer12, pdf = {pub/diffop.pdf}, slides = {pub/diffop-slides.pdf}, author = {['André Platzer']}, title = {A Differential Operator Approach to Equational Differential Invariants}, booktitle = {ITP}, longbooktitle = {Interactive Theorem Proving, International Conference, ITP 2012, August 13-15, Princeton, USA}, year = {2012}, pages = {28-48}, month = {}, editor = {['Lennart Beringer', 'Amy Felty']}, publisher = {Springer}, series = {LNCS}, volume = {7406}, doi = {10.1007/978-3-642-32347-8_3}, keywords = {differential dynamic logic, differential invariants, differential equations, hybrid systems}, abstract = { Hybrid systems, i.e., dynamical systems combining discrete and continuous dynamics, have a complete axiomatization in differential dynamic logic relative to differential equations. Differential invariants are a natural induction principle for proving properties of the remaining differential equations. We study the equational case of differential invariants using a differential operator view. We relate differential invariants to Lie's seminal work and explain important structural properties resulting from this view. Finally, we study the connection of differential invariants with partial differential equations in the context of the inverse characteristic method for computing differential invariants. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Algorithms for Forbidden Pattern Recognition in Transition DiagramsThesis@mastersthesis{BachelorThesis, author = {['Alexander Weigl']}, title = {Algorithms for Forbidden Pattern Recognition in Transition Diagrams}, school = {University of Applied Science}, year = {2012}, type = {Bachelor's thesis}, month = {July} }Copy BibTex⧉
- Differential game logic for hybrid games@techreport{Platzer12:dGL, ref = {DBLP:journals/tocl/Platzer15}, author = {['André Platzer']}, title = {Differential Game Logic for Hybrid Games}, number = {CMU-CS-12-105}, year = {2012}, month = {March}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-12-105.pdf} }Copy BibTex⧉ PDF
- Dynamic logics of dynamical systems@article{DBLP:journals/corr/abs-1205-4788, author = {['André Platzer']}, title = {Dynamic Logics of Dynamical Systems}, journal = {CoRR}, volume = {abs/1205.4788}, year = {2012} }Copy BibTex⧉
- Logical analysis of hybrid systems: A complete answer to a complexity challengeDCFS@inproceedings{DBLP:conf/dcfs/Platzer12, pdf = {pub/dcfs12.pdf}, author = {['André Platzer']}, title = {Logical Analysis of Hybrid Systems: A Complete Answer to a Complexity Challenge}, booktitle = {DCFS}, longbooktitle = {Descriptional Complexity of Formal Systems - 14th International Workshop, DCFS 2012, Braga, Portugal, July 23-25, 2012. Proceedings}, year = {2012}, pages = {43-49}, doi = {10.1007/978-3-642-31623-4_3}, editor = {['Martin Kutrib', 'Nelma Moreira', 'Rogério Reis']}, publisher = {Springer}, series = {LNCS}, volume = {7386}, isbn = {978-3-642-31622-7} }Copy BibTex⧉ PDF
- Logical analysis of hybrid systems: A complete answer to a complexity challenge@article{DBLP:journals/jalc/Platzer12, pdf = {pub/dcfs12-long.pdf}, author = {['André Platzer']}, title = {Logical Analysis of Hybrid Systems: A Complete Answer to a Complexity Challenge}, journal = {Journal of Automata, Languages and Combinatorics}, volume = {17}, number = {2-4}, year = {2012}, pages = {265-275} }Copy BibTex⧉ PDF
- Logics of dynamical systemsLICS@inproceedings{DBLP:conf/lics/Platzer12a, pdf = {pub/lds-lics.pdf}, slides = {pub/lds-slides.pdf}, author = {['André Platzer']}, title = {Logics of Dynamical Systems}, booktitle = {LICS}, year = {2012}, pages = {13-24}, doi = {10.1109/LICS.2012.13}, longbooktitle = {Proceedings of the 27th Annual ACM/IEEE Symposium on Logic in Computer Science, LICS 2012, Dubrovnik, Croatia, June 25???28, 2012}, publisher = {IEEE}, isbn = {978-1-4673-2263-8}, keywords = {logic of dynamical systems, dynamic logic, differential dynamic logic, hybrid systems, axiomatization, deduction}, abstract = { We study the logic of dynamical systems, that is, logics and proof principles for properties of dynamical systems. Dynamical systems are mathematical models describing how the state of a system evolves over time. They are important in modeling and understanding many applications, including embedded systems and cyber-physical systems. In discrete dynamical systems, the state evolves in discrete steps, one step at a time, as described by a difference equation or discrete state transition relation. In continuous dynamical systems, the state evolves continuously along a function, typically described by a differential equation. Hybrid dynamical systems or hybrid systems combine both discrete and continuous dynamics. This is a brief survey of differential dynamic logic for specifying and verifying properties of hybrid systems. We explain hybrid system models, differential dynamic logic, its semantics, and its axiomatization for proving logical formulas about hybrid systems. We study differential invariants, i.e., induction principles for differential equations. We briefly survey theoretical results, including soundness and completeness and deductive power. Differential dynamic logic has been implemented in automatic and interactive theorem provers and has been used successfully to verify safety-critical applications in automotive, aviation, railway, robotics, and analogue electrical circuits.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Mechanized safety proofs for disc-constrained aircraft@techreport{DBLP:conf/hybrid/LoosRP13:TR, ref = {DBLP:conf/hybrid/LoosRP13}, author = {['David W. Renshaw', 'Sarah Loos', 'André Platzer']}, title = {Mechanized Safety Proofs for Disc-Constrained Aircraft}, number = {CMU-CS-12-132}, year = {2012}, month = {August}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-12-132.pdf} }Copy BibTex⧉ PDF
- Jan-David Quesel André PlatzerPlaying hybrid games with KeYmaeraIJCAR@inproceedings{DBLP:conf/cade/QueselP12, pdf = {pub/game-KeYmaera.pdf}, slides = {pub/game-KeYmaera-slides.pdf}, study = {pub/game-KeYmaera-study.zip}, author = {['Jan-David Quesel', 'André Platzer']}, title = {Playing Hybrid Games with KeYmaera}, booktitle = {IJCAR}, year = {2012}, pages = {439-453}, doi = {10.1007/978-3-642-31365-3_34}, editor = {['Bernhard Gramlich', 'Dale Miller', 'Ulrike Sattler']}, longbooktitle = {Automated Reasoning - 6th International Joint Conference, IJCAR 2012, Manchester, UK. Proceedings}, series = {LNCS}, volume = {7364}, publisher = {Springer}, isbn = {978-3-642-31364-6} }Copy BibTex⧉ PDF Slides
- Statistical model checking for Markov decision processesQEST@inproceedings{DBLP:conf/qest/HenriquesMZPC12, pdf = {pub/smcmdp.pdf}, slides = {pub/smcmdp-slides.pdf}, study = {https://www.cs.cmu.edu/ jmartins/QEST12.zip}, author = {['David Henriques', 'João G. Martins', 'Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Statistical Model Checking for Markov Decision Processes}, booktitle = {QEST}, year = {2012}, pages = {84-93}, doi = {10.1109/QEST.2012.19}, longbooktitle = {Ninth International Conference on Quantitative Evaluation of Systems, QEST 2012, London, UK, 17-20 September, 2012}, publisher = {IEEE Computer Society}, keywords = {statistical model checking, Markov decision processes, reinforcement learning}, abstract = { Statistical Model Checking (SMC) is a computationally very efficient verification technique based on selective system sampling. One well identified shortcoming of SMC is that, unlike probabilistic model checking, it cannot be applied to systems featuring nondeterminism, such as Markov Decision Processes (MDP). We address this limitation by developing an algorithm that resolves nondeterminism probabilistically, and then uses multiple rounds of sampling and Reinforcement Learning to provably improve resolutions of nondeterminism with respect to satisfying a Bounded Linear Temporal Logic (BLTL) property. Our algorithm thus reduces an MDP to a fully probabilistic Markov chain on which SMC may be applied to give an approximate solution to the problem of checking the probabilistic BLTL property. We integrate our algorithm in a parallelised modification of the PRISM simulation framework. Extensive validation with both new and PRISM benchmarks demonstrates that the approach scales very well in scenarios where symbolic algorithms fail to do so.} }ABSTRACT Copy BibTex⧉ PDF Slides
- The complete proof theory of hybrid systemsLICS@inproceedings{DBLP:conf/lics/Platzer12b, pdf = {pub/completealign.pdf}, slides = {pub/completealign-slides.pdf}, TR = {DBLP:conf/lics/Platzer12b:TR}, author = {['André Platzer']}, title = {The Complete Proof Theory of Hybrid Systems}, booktitle = {LICS}, year = {2012}, pages = {541-550}, doi = {10.1109/LICS.2012.64}, longbooktitle = {Proceedings of the 27th Annual ACM/IEEE Symposium on Logic in Computer Science, LICS 2012, Dubrovnik, Croatia, June 25???28, 2012}, publisher = {IEEE}, isbn = {978-1-4673-2263-8}, keywords = {proof theory, hybrid dynamical systems, differential dynamic logic, axiomatization, completeness}, abstract = { Hybrid systems are a fusion of continuous dynamical systems and discrete dynamical systems. They freely combine dynamical features from both worlds. For that reason, it has often been claimed that hybrid systems are more challenging than continuous dynamical systems and than discrete systems. We now show that, proof-theoretically, this is not the case. We present a complete proof-theoretical alignment that interreduces the discrete dynamics and the continuous dynamics of hybrid systems. We give a sound and complete axiomatization of hybrid systems relative to continuous dynamical systems and a sound and complete axiomatization of hybrid systems relative to discrete dynamical systems. Thanks to our axiomatization, proving properties of hybrid systems is exactly the same as proving properties of continuous dynamical systems and again, exactly the same as proving properties of discrete dynamical systems. This fundamental cornerstone sheds light on the nature of hybridness and enables flexible and provably perfect combinations of discrete reasoning with continuous reasoning that lift to all aspects of hybrid systems and their fragments.} }ABSTRACT Copy BibTex⧉ PDF Slides
- The structure of differential invariants and differential cut elimination@article{DBLP:journals/lmcs/Platzer12, pdf = {https://lmcs.episciences.org/809/pdf}, author = {['André Platzer']}, title = {The Structure of Differential Invariants and Differential Cut Elimination}, journal = {Logical Methods in Computer Science}, volume = {8}, number = {4}, year = {2012}, pages = {1-38}, doi = {10.2168/LMCS-8(4:16)2012}, keywords = {Proof theory, differential equations, differential invariants, differential cut elimination, differential dynamic logic hybrid systems, logics of programs, real differential semialgebraic geometry}, abstract = { The biggest challenge in hybrid systems verification is the handling of differential equations. Because computable closed-form solutions only exist for very simple differential equations, proof certificates have been proposed for more scalable verification. Search procedures for these proof certificates are still rather ad-hoc, though, because the problem structure is only understood poorly. We investigate differential invariants, which define an induction principle for differential equations and which can be checked for invariance along a differential equation just by using their differential structure, without having to solve them. We study the structural properties of differential invariants. To analyze trade-offs for proof search complexity, we identify more than a dozen relations between several classes of differential invariants and compare their deductive power. As our main results, we analyze the deductive power of differential cuts and the deductive power of differential invariants with auxiliary differential variables. We refute the differential cut elimination hypothesis and show that, unlike standard cuts, differential cuts are fundamental proof principles that strictly increase the deductive power. We also prove that the deductive power increases further when adding auxiliary differential variables to the dynamics. } }ABSTRACT Copy BibTex⧉ PDF
- Towards formal verification of freeway traffic controlICCPS@inproceedings{DBLP:conf/iccps/MitschLP12, pdf = {pub/trafficcenter.pdf}, slides = {pub/trafficcenter-slides.pdf}, study = {pub/trafficcenter-examples.zip}, author = {['Stefan Mitsch', 'Sarah M. Loos', 'André Platzer']}, title = {Towards formal verification of freeway traffic control}, booktitle = {ICCPS}, longbooktitle = {ACM/IEEE Third International Conference on Cyber-Physical Systems, Beijing, China, April 17-19}, year = {2012}, pages = {171-180}, publisher = {IEEE}, isbn = {978-0-7695-4695-7}, doi = {10.1109/ICCPS.2012.25}, editor = {['Chenyang Lu']} }Copy BibTex⧉ PDF Slides
- Using theorem provers to guarantee closed-loop system propertiesACC@inproceedings{DBLP:conf/acc/ArechigaLPK12, pdf = {pub/TPgenloop.pdf}, author = {['Nikos Aréchiga', 'Sarah M. Loos', 'André Platzer', 'Bruce H. Krogh']}, title = {Using Theorem Provers to Guarantee Closed-Loop System Properties}, booktitle = {ACC}, longbooktitle = {American Control Conference, Montréal, Canada, June 27-29}, year = {2012}, editor = {['Dawn Tilbury']}, pages = {3573-3580}, doi = {10.1109/ACC.2012.6315388} }Copy BibTex⧉ PDF
2011
- Adaptive cruise control: Hybrid, distributed, and now formally verifiedFM@inproceedings{DBLP:conf/fm/LoosPN11, pdf = {pub/dccs.pdf}, slides = {pub/dccs-slides.pdf}, study = {https://www.ls.cs.cmu.edu/dccs/}, TR = {DBLP:conf/fm/LoosPN11:TR}, author = {['Sarah M. Loos', 'André Platzer', 'Ligia Nistor']}, title = {Adaptive Cruise Control: Hybrid, Distributed, and Now Formally Verified}, booktitle = {FM}, year = {2011}, pages = {42-56}, doi = {10.1007/978-3-642-21437-0_6}, editor = {['Michael Butler', 'Wolfram Schulte']}, longbooktitle = {FM 2011: Formal Methods, 17th International Symposium on Formal Methods, Limerick, Ireland, June 20-24, 2011, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6664}, isbn = {}, keywords = {distributed car control, multi-agent systems, highway traffic safety, formal verification, distributed hybrid systems, adaptive cruise control} }Copy BibTex⧉ PDF Slides
- Adaptive cruise control: Hybrid, distributed, and now formally verified@techreport{DBLP:conf/fm/LoosPN11:TR, ref = {DBLP:conf/fm/LoosPN11}, author = {['Sarah M. Loos', 'André Platzer', 'Ligia Nistor']}, title = {Adaptive Cruise Control: Hybrid, Distributed, and Now Formally Verified}, number = {CMU-CS-11-107}, year = {2011}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-107.pdf} }Copy BibTex⧉ PDF
- An instantiation-based theorem prover for first-order programmingProceedings of the 14th international conference on artifical intelligence and statistics (AISTATS) 2011, fort lauderdale, FL, USA@inproceedings{DBLP:conf/aistats/ZawadzkiGP11, pdf = {pub/FOPinstgen.pdf}, author = {['Erik P. Zawadzki', 'Geoffrey J. Gordon', 'André Platzer']}, title = {An Instantiation-Based Theorem Prover for First-Order Programming}, shortbooktitle = {AISTATS}, year = {2011}, pages = {}, doi = {}, booktitle = {Proceedings of the 14th International Conference on Artifical Intelligence and Statistics (AISTATS) 2011, Fort Lauderdale, FL, USA}, volume = {15}, series = {JMLR W&CP}, eprint = {https://proceedings.mlr.press/v15/zawadzki11a.html} }Copy BibTex⧉ PDF Preprint
- David W. Renshaw André PlatzerDifferential invariants and symbolic integration for distributed hybrid systems@techreport{RenshawP11, author = {['David W. Renshaw', 'André Platzer']}, title = {Differential Invariants and Symbolic Integration for Distributed Hybrid Systems}, number = {CMU-CS-12-107}, year = {2011}, month = {May}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-12-107.pdf} }Copy BibTex⧉ PDF
- Distributed theorem proving for distributed hybrid systemsICFEM@inproceedings{DBLP:conf/icfem/RenshawLP11, pdf = {pub/dtpdhs.pdf}, study = {pub/dtpdhs-examples.zip}, errata = {pub/dtpdhs.pdf}, author = {['David W. Renshaw', 'Sarah M. Loos', 'André Platzer']}, title = {Distributed Theorem Proving for Distributed Hybrid Systems}, booktitle = {ICFEM}, year = {2011}, pages = {356-371}, doi = {10.1007/978-3-642-24559-6_25}, editor = {['Shengchao Qin', 'Zongyan Qiu']}, longbooktitle = {Formal Methods and Software Engineering, 13th International Conference on Formal Engineering Methods, ICFEM 2011, Durham, UK, October 26-28, 2011. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6991}, isbn = {}, keywords = {Hybrid systems, theorem proving, formal verification, distributed systems} }Copy BibTex⧉ PDF
- Logic and compositional verification of hybrid systems (invited tutorial)CAV@inproceedings{DBLP:conf/cav/Platzer11, pdf = {pub/lahs-tutorial.pdf}, slides = {pub/lahs-tutorial-slides.pdf}, author = {['André Platzer']}, title = {Logic and Compositional Verification of Hybrid Systems (Invited Tutorial)}, booktitle = {CAV}, longbooktitle = {Computer Aided Verification, 23rd International Conference, CAV 2011, Snowbird, UT, USA, July 14-20, 2011, Proceedings}, year = {2011}, pages = {28-43}, month = {}, editor = {['Ganesh Gopalakrishnan', 'Shaz Qadeer']}, publisher = {Springer}, series = {LNCS}, volume = {6806}, doi = {10.1007/978-3-642-22110-1_4}, abstract = { Hybrid systems are models for complex physical systems and have become a widely used concept for understanding their behavior. Many applications are safety-critical, including car, railway, and air traffic control, robotics, physical-chemical process control, and biomedical devices. Hybrid systems analysis studies how we can build computerised controllers for physical systems which are guaranteed to meet their design goals. The continuous dynamics of hybrid systems can be modeled by differential equations, the discrete dynamics by a combination of discrete state-transitions and conditional execution. The discrete and continuous dynamics interact to form hybrid systems, which makes them quite challenging for verification. In this tutorial, we survey state-of-the-art verification techniques for hybrid systems. In particular, we focus on a coherent logical approach for systematic hybrid systems analysis. We survey theory, practice, and applications, and show how hybrid systems can be verified in the hybrid systems verification tool KeYmaera. KeYmaera has been used successfully to verify safety, reactivity, controllability, and liveness properties, including collision freedom in air traffic, car, and railway control systems. It has also been used to verify properties of electrical circuits. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Quantified differential invariantsHSCC@inproceedings{DBLP:conf/hybrid/Platzer11, pdf = {pub/Qdiffind.pdf}, slides = {pub/Qdiffind-slides.pdf}, author = {['André Platzer']}, title = {Quantified Differential Invariants}, booktitle = {HSCC}, year = {2011}, pages = {63-72}, doi = {10.1145/1967701.1967713}, editor = {['Emilio Frazzoli', 'Radu Grosu']}, longbooktitle = {Proceedings of the 14th ACM International Conference on Hybrid Systems: Computation and Control, HSCC 2011, Chicago, USA, April 12-14, 2011}, publisher = {ACM}, isbn = {}, keywords = {distributed hybrid systems, verification logic, quantified differential equations, quantified differential invariants}, abstract = { We address the verification problem for distributed hybrid systems with nontrivial dynamics. Consider air traffic collision avoidance maneuvers, for example. Verifying dynamic appearance of aircraft during an ongoing collision avoidance maneuver is a longstanding and essentially unsolved problem. The resulting systems are not hybrid systems and their state space is not of the form R^n. They are distributed hybrid systems with nontrivial continuous and discrete dynamics in distributed state spaces whose dimension and topology changes dynamically over time. We present the first formal verification technique that can handle the complicated nonlinear dynamics of these systems. We introduce quantified differential invariants, which are properties that can be checked for invariance along the dynamics of the distributed hybrid system based on differentiation, quantified substitution, and quantifier elimination in real-closed fields. This gives a computationally attractive technique, because it works without having to solve the infinite-dimensional differential equation systems underlying distributed hybrid systems. We formally verify a roundabout maneuver in which aircraft can appear dynamically.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Quantifier elimination over finite fields with Gröbner basesCAI@inproceedings{DBLP:conf/cai/GaoPC11, pdf = {pub/QEfin.pdf}, author = {['Sicun Gao', 'André Platzer', 'Edmund M. Clarke']}, title = {Quantifier Elimination over Finite Fields with Gröbner Bases}, booktitle = {CAI}, year = {2011}, pages = {140-157}, doi = {10.1007/978-3-642-21493-6_9}, editor = {['Franz Winkler']}, longbooktitle = {Algebraic Informatics, Fourth International Conference, CAI 2011, Linz, Austria, June 21-24, 2011, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6742} }Copy BibTex⧉ PDF
- Sarah M. Loos André PlatzerSafe intersections: At the crossing of hybrid systems and verificationITSC@inproceedings{DBLP:conf/itsc/LoosP11, pdf = {pub/intersection.pdf}, slides = {pub/intersection-slides.pdf}, study = {pub/intersection-examples.zip}, author = {['Sarah M. Loos', 'André Platzer']}, title = {Safe Intersections: At the Crossing of Hybrid Systems and Verification}, booktitle = {ITSC}, longbooktitle = {Intelligent Transportation Systems (ITSC), 14th International IEEE Conference on, October 5-7, Washington, DC, USA, Proceedings}, year = {2011}, pages = {1181-1186}, doi = {10.1109/ITSC.2011.6083138}, keywords = {}, editor = {['Kyongsu Yi']} }Copy BibTex⧉ PDF Slides
- Statistical model checking for distributed probabilistic-control hybrid automata with smart grid applicationsICFEM@inproceedings{DBLP:conf/icfem/MartinsPL11, pdf = {pub/bayesmc-grid.pdf}, slides = {pub/bayesmc-grid-slides.pdf}, study = {https://www.cs.cmu.edu/ jmartins/smart.html}, author = {['João Martins', 'André Platzer', 'João Leite']}, title = {Statistical Model Checking for Distributed Probabilistic-Control Hybrid Automata with Smart Grid Applications}, booktitle = {ICFEM}, year = {2011}, pages = {131-146}, doi = {10.1007/978-3-642-24559-6_11}, editor = {['Shengchao Qin', 'Zongyan Qiu']}, longbooktitle = {Formal Methods and Software Engineering, 13th International Conference on Formal Engineering Methods, ICFEM 2011, Durham, UK, October 26-28, 2011. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6991}, isbn = {}, keywords = {Bayesian statistical model checking, distributed hybrid systems, probabilistic hybrid automata, verification of smart grid} }Copy BibTex⧉ PDF Slides
- Stochastic differential dynamic logic for stochastic hybrid programsCADE@inproceedings{DBLP:conf/cade/Platzer11, pdf = {pub/SdL.pdf}, slides = {pub/SdL-slides.pdf}, TR = {DBLP:conf/cade/Platzer11:TR}, author = {['André Platzer']}, title = {Stochastic Differential Dynamic Logic for Stochastic Hybrid Programs}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-23, Wrocław, Poland, Proceedings}, year = {2011}, pages = {446-460}, doi = {10.1007/978-3-642-22438-6_34}, keywords = {dynamic logic, proof calculus, stochastic differential equations, stochastic hybrid systems, stochastic processes}, editor = {['Nikolaj Bjørner', 'Viorica Sofronie-Stokkermans']}, publisher = {Springer}, series = {LNCS}, volume = {6803}, isbn = {}, abstract = { Logic is a powerful tool for analyzing and verifying systems, including programs, discrete systems, real-time systems, hybrid systems, and distributed systems. Some applications also have a stochastic behavior, however, either because of fundamental properties of nature, uncertain environments, or simplifications to overcome complexity. Discrete probabilistic systems have been studied using logic. But logic has been chronically underdeveloped in the context of stochastic hybrid systems, i.e., systems with interacting discrete, continuous, and stochastic dynamics. We aim at overcoming this deficiency and introduce a dynamic logic for stochastic hybrid systems. Our results indicate that logic is a promising tool for understanding stochastic hybrid systems and can help taming some of their complexity. We introduce a compositional model for stochastic hybrid systems. We prove adaptivity, cadlag, and Markov time properties, and prove that the semantics of our logic is measurable. We present compositional proof rules, including rules for stochastic differential equations, and prove soundness. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Stochastic differential dynamic logic for stochastic hybrid systems@techreport{DBLP:conf/cade/Platzer11:TR, ref = {DBLP:conf/cade/Platzer11}, author = {['André Platzer']}, title = {Stochastic Differential Dynamic Logic for Stochastic Hybrid Systems}, number = {CMU-CS-11-111}, year = {2011}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-111.pdf} }Copy BibTex⧉ PDF
- The complete proof theory of hybrid systems@techreport{DBLP:conf/lics/Platzer12b:TR, ref = {DBLP:conf/lics/Platzer12b}, author = {['André Platzer']}, title = {The Complete Proof Theory of Hybrid Systems}, number = {CMU-CS-11-144}, year = {2011}, month = {November}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-144.pdf} }Copy BibTex⧉ PDF
- The structure of differential invariants and differential cut elimination@techreport{Platzer11:diffcut, ref = {DBLP:journals/lmcs/Platzer12}, author = {['André Platzer']}, title = {The Structure of Differential Invariants and Differential Cut Elimination}, number = {CMU-CS-11-112}, year = {2011}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-112.pdf} }Copy BibTex⧉ PDF
- Using parameters in architectural views to support heterogeneous design and verificationCDC@inproceedings{DBLP:conf/cdc/RajhansBLKPG11, pdf = {pub/heterogeneous-views.pdf}, ref = {DBLP:journals/tac/RajhansBRKGPS14}, refname = {TAC'14}, author = {['Akshay Rajhans', 'Ajinkya Bhave', 'Sarah M. Loos', 'Bruce H. Krogh', 'André Platzer', 'David Garlan']}, title = {Using parameters in architectural views to support heterogeneous design and verification}, booktitle = {CDC}, longbooktitle = {50th IEEE Conference on Decision and Control and European Control Conference}, year = {2011}, pages = {2705-2710}, doi = {10.1109/CDC.2011.6161408}, isbn = {978-1-61284-800-6} }Copy BibTex⧉ PDF
2010
- Bayesian statistical model checking with application to Simulink/Stateflow verificationHSCC@inproceedings{DBLP:conf/hybrid/ZulianiPC10, pdf = {pub/bayesmcest.pdf}, slides = {pub/bayesmcest-slides.pdf}, TR = {DBLP:conf/hybrid/ZulianiPC10:TR}, author = {['Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Bayesian Statistical Model Checking with Application to Simulink/Stateflow Verification}, booktitle = {HSCC}, year = {2010}, pages = {243-252}, doi = {10.1145/1755952.1755987}, editor = {['Karl Henrik Johansson', 'Wang Yi']}, longbooktitle = {Proceedings of the 13th ACM International Conference on Hybrid Systems: Computation and Control, HSCC 2010, Stockholm, Sweden, April 12-15, 2010}, publisher = {ACM}, isbn = {978-1-60558-955-8}, abstract = { We address the problem of model checking stochastic systems, i.e. checking whether a stochastic system satisfies a certain temporal property with a probability greater (or smaller) than a fixed threshold. In particular, we present a novel Statistical Model Checking (SMC) approach based on Bayesian statistics. We show that our approach is feasible for hybrid systems with stochastic transitions, a generalization of Simulink/Stateflow models. Standard approaches to stochastic (discrete) systems require numerical solutions for large optimization problems and quickly become infeasible with larger state spaces. Generalizations of these techniques to hybrid systems with stochastic effects are even more challenging. The SMC approach was pioneered by Younes and Simmons in the discrete and non-Bayesian case. It solves the verification problem by combining randomized sampling of system traces (which is very efficient for Simulink/Stateflow) with hypothesis testing or estimation. We believe SMC is essential for scaling up to large Stateflow/Simulink models. While the answer to the verification problem is not guaranteed to be correct, we prove that Bayesian SMC can make the probability of giving a wrong answer arbitrarily small. The advantage is that answers can usually be obtained much faster than with standard, exhaustive model checking techniques. We apply our Bayesian SMC approach to a representative example of stochastic discrete-time hybrid system models in Stateflow/Simulink: a fuel control system featuring hybrid behavior and fault tolerance. We show that our technique enables faster verification than state-of-the-art statistical techniques, while retaining the same error bounds. We emphasize that Bayesian SMC is by no means restricted to Stateflow/Simulink models: we have in fact successfully applied it to very large stochastic models from Systems Biology.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Bayesian statistical model checking with application to Simulink/Stateflow verification.@techreport{DBLP:conf/hybrid/ZulianiPC10:TR, ref = {DBLP:conf/hybrid/ZulianiPC10}, author = {['Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Bayesian Statistical Model Checking with Application to Simulink/Stateflow Verification.}, number = {CMU-CS-10-100}, year = {2010}, month = {January}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2010/CMU-CS-10-100.pdf} }Copy BibTex⧉ PDF
- Differential dynamic logics: Automated theorem proving for hybrid systems@article{DBLP:journals/ki/Platzer10, author = {['André Platzer']}, title = {Differential Dynamic Logics: Automated Theorem Proving for Hybrid Systems}, journal = {Künstliche Intelligenz}, year = {2010}, volume = {24}, number = {1}, doi = {10.1007/s13218-010-0014-6}, pages = {75-77}, issn = {0933-1875}, abstract = { Designing and analyzing hybrid systems, which are models for complex physical systems, is expensive and error-prone. The dissertation presented in this article introduces a verification logic that is suitable for analyzing the behavior of hybrid systems. It presents a proof calculus and a new deductive verification tool for hybrid systems that has been used successfully to verify aircraft and train control.} }ABSTRACT Copy BibTex⧉
- Differential-algebraic dynamic logic for differential-algebraic programs@article{DBLP:journals/logcom/Platzer10, pdf = {pub/DAL.pdf}, ref = {DBLP:conf/tableaux/Platzer07}, refname = {TABLEAUX'07}, study = {info/KeYmaera.html#case-studies}, errata = {pub/DAL-errata.txt}, author = {['André Platzer']}, title = {Differential-algebraic Dynamic Logic for Differential-algebraic Programs}, journal = {J. Log. Comput.}, longjournal = {Journal of Logic and Computation}, year = {2010}, volume = {20}, number = {1}, pages = {309-352}, note = {Advance Access published on November 18, 2008}, doi = {10.1093/logcom/exn070}, keywords = {dynamic logic, differential constraints, sequent calculus, verification of hybrid systems, differential induction, theorem proving}, abstract = { We generalise dynamic logic to a logic for differential-algebraic programs, i.e., discrete programs augmented with first-order differential-algebraic formulas as continuous evolution constraints in addition to first-order discrete jump formulas. These programs characterise interacting discrete and continuous dynamics of hybrid systems elegantly and uniformly. For our logic, we introduce a calculus over real arithmetic with discrete induction and a new differential induction with which differential-algebraic programs can be verified by exploiting their differential constraints algebraically without having to solve them. We develop the theory of differential induction and differential refinement and analyse their deductive power. As a case study, we present parametric tangential roundabout maneuvers in air traffic control and prove collision avoidance in our calculus.} }ABSTRACT Copy BibTex⧉ PDF
- Logical analysis of hybrid systems: Proving theorems for complex dynamicsSpringer. in , Springer Heidelberg@book{Platzer10, study = {https://www.springer.com/978-3-642-14508-7}, errata = {lahs/lahs-errata.txt}, author = {['André Platzer']}, title = {Logical Analysis of Hybrid Systems: Proving Theorems for Complex Dynamics}, publisher = {Springer}, address = {Heidelberg}, year = {2010}, isbn = {978-3-642-14508-7}, e-isbn = {978-3-642-14509-4}, doi = {10.1007/978-3-642-14509-4} }Copy BibTex⧉
- Quantified differential dynamic logic for distributed hybrid systemsCSL@inproceedings{DBLP:conf/csl/Platzer10, pdf = {pub/QdL.pdf}, slides = {pub/QdL-slides.pdf}, ref = {DBLP:journals/lmcs/Platzer12b}, refname = {LMCS'12}, TR = {DBLP:conf/csl/Platzer10:TR}, author = {['André Platzer']}, title = {Quantified Differential Dynamic Logic for Distributed Hybrid Systems}, booktitle = {CSL}, year = {2010}, pages = {469-483}, editor = {['Anuj Dawar', 'Helmut Veith']}, longbooktitle = {Computer Science Logic 24th International Workshop, CSL 2010, 19th Annual Conference of the EACSL, Brno, Czech Republic, August 23-27, 2010. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6247}, doi = {10.1007/978-3-642-15205-4_36}, isbn = {978-3-642-15204-7}, keywords = {Dynamic logic, Distributed hybrid systems, Axiomatization, Theorem proving, Quantified differential equations}, abstract = { We address a fundamental mismatch between the combinations of dynamics that occur in complex physical systems and the limited kinds of dynamics supported in analysis. Modern applications combine communication, computation, and control. They may even form dynamic networks, where neither structure nor dimension stay the same while the system follows mixed discrete and continuous dynamics. We provide the logical foundations for closing this analytic gap. We develop a system model for distributed hybrid systems that combines quantified differential equations with quantified assignments and dynamic dimensionality-changes. We introduce a dynamic logic for verifying distributed hybrid systems and present a proof calculus for it. We prove that this calculus is a sound and complete axiomatization of the behavior of distributed hybrid systems relative to quantified differential equations. In our calculus we have proven collision freedom in distributed car control even when new cars may appear dynamically on the road.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Quantified differential dynamic logic for distributed hybrid systems@techreport{DBLP:conf/csl/Platzer10:TR, ref = {DBLP:conf/csl/Platzer10}, author = {['André Platzer']}, title = {Quantified Differential Dynamic Logic for Distributed Hybrid Systems}, number = {CMU-CS-10-126}, year = {2010}, month = {May}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2010/CMU-CS-10-126.pdf} }Copy BibTex⧉ PDF
2009
- A Bayesian approach to model checking biological systemsCMSB@inproceedings{DBLP:conf/cmsb/JhaCLLPZ09, pdf = {pub/bayesmcbio.pdf}, TR = {DBLP:conf/cmsb/JhaCLLPZ09:TR}, author = {['Sumit Kumar Jha', 'Edmund Clarke', 'Christopher Langmead', 'Axel Legay', 'André Platzer', 'Paolo Zuliani']}, title = {A Bayesian Approach to Model Checking Biological Systems}, booktitle = {CMSB}, year = {2009}, pages = {218-234}, editor = {['Pierpaolo Degano', 'Roberto Gorrieri']}, longbooktitle = {Computational Methods in Systems Biology, 7th International Conference, CMSB 2009, Bologna, Italy, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {5688}, doi = {10.1007/978-3-642-03845-7_15}, abstract = { Recently, there has been considerable interest in the use of Model Checking for Systems Biology. Unfortunately, the state space of stochastic biological models is often too large for classical Model Checking techniques. For these models, a statistical approach to Model Checking has been shown to be an effective alternative. Extending our earlier work, we present the first algorithm for performing statistical Model Checking using Bayesian Sequential Hypothesis Testing. We show that our Bayesian approach outperforms current statistical Model Checking techniques, which rely on tests from Classical (aka Frequentist) statistics, by requiring fewer system simulations. Another advantage of our approach is the ability to incorporate prior Biological knowledge about the model being verified. We demonstrate our algorithm on a variety of models from the Systems Biology literature and show that it enables faster verification than state-of-the-art techniques, even when no prior knowledge is available.} }ABSTRACT Copy BibTex⧉ PDF
- André Platzer Edmund M. ClarkeComputing differential invariants of hybrid systems as fixedpoints@article{DBLP:journals/fmsd/PlatzerC09, pdf = {pub/cdifp.pdf}, ref = {DBLP:conf/cav/PlatzerC08}, refname = {CAV'08}, study = {pub/cdifp-examples.zip}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Computing Differential Invariants of Hybrid Systems as Fixedpoints}, journal = {Form. Methods Syst. Des.}, longjournal = {Formal Methods in System Design}, year = {2009}, volume = {35}, number = {1}, pages = {98-120}, doi = {10.1007/s10703-009-0079-8}, keywords = {verification of hybrid systems, differential invariants, verification logic, fixedpoint engine}, abstract = { We introduce a fixedpoint algorithm for verifying safety properties of hybrid systems with differential equations whose right-hand sides are polynomials in the state variables. In order to verify nontrivial systems without solving their differential equations and without numerical errors, we use a continuous generalization of induction, for which our algorithm computes the required differential invariants. As a means for combining local differential invariants into global system invariants in a sound way, our fixedpoint algorithm works with a compositional verification logic for hybrid systems. With this compositional approach we exploit locality in system designs. To improve the verification power, we further introduce a saturation procedure that refines the system dynamics successively with differential invariants until safety becomes provable. By complementing our symbolic verification algorithm with a robust version of numerical falsification, we obtain a fast and sound verification procedure. We verify roundabout maneuvers in air traffic management and collision avoidance in train control and car control.} }ABSTRACT Copy BibTex⧉ PDF
- André Platzer Jan-David QueselEuropean Train Control System: A case study in formal verificationICFEM@inproceedings{DBLP:conf/icfem/PlatzerQ09, pdf = {pub/ETCS.pdf}, slides = {pub/ETCS-slides.pdf}, TR = {DBLP:conf/icfem/PlatzerQ09:TR}, author = {['André Platzer', 'Jan-David Quesel']}, title = {European Train Control System: A Case Study in Formal Verification}, booktitle = {ICFEM}, year = {2009}, pages = {246-265}, doi = {10.1007/978-3-642-10373-5_13}, editor = {['Karin Breitman', 'Ana Cavalcanti']}, longbooktitle = {Formal Methods and Software Engineering, 11th International Conference on Formal Engineering Methods, ICFEM 2009, Rio de Janeiro, Brasil, December 9-12, 2009. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {5885}, isbn = {}, keywords = {formal verification of hybrid systems, train control, theorem proving, parameter constraint identification, disturbances}, abstract = { Complex physical systems have several degrees of freedom. They only work correctly when their control parameters obey corresponding constraints. Based on the informal specification of the European Train Control System (ETCS), we design a controller for its cooperation protocol. For its free parameters, we successively identify constraints that are required to ensure collision freedom. We formally prove the parameter constraints to be sharp by characterizing them equivalently in terms of reachability properties of the hybrid system dynamics. Using our deductive verification tool KeYmaera, we formally verify controllability, safety, liveness, and reactivity properties of the ETCS protocol that entail collision freedom. We prove that the ETCS protocol remains correct even in the presence of perturbation by disturbances in the dynamics. We verify that safety is preserved when a PI controlled speed supervision is used.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Jan-David QueselEuropean Train Control System: A case study in formal verificationThesis@techreport{DBLP:conf/icfem/PlatzerQ09:TR, ref = {DBLP:conf/icfem/PlatzerQ09}, author = {['André Platzer', 'Jan-David Quesel']}, title = {European Train Control System: A Case Study in Formal Verification}, number = {54}, year = {2009}, month = {September}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_054.pdf} }Copy BibTex⧉ PDF
- André Platzer Edmund M. ClarkeFormal verification of curved flight collision avoidance maneuvers: A case studyFM@inproceedings{DBLP:conf/fm/PlatzerC09, pdf = {pub/RCAS.pdf}, slides = {pub/RCAS-slides.pdf}, study = {pub/RCAS-examples.zip}, TR = {DBLP:conf/fm/PlatzerC09:TR}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Formal Verification of Curved Flight Collision Avoidance Maneuvers: A Case Study}, booktitle = {FM}, year = {2009}, pages = {547-562}, doi = {10.1007/978-3-642-05089-3_35}, editor = {['Ana Cavalcanti', 'Dennis Dams']}, longbooktitle = {FM 2009: Formal Methods, 16th International Symposium on Formal Methods, Eindhoven, Netherlands, November 2-6, 2009, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {5850}, keywords = {formal verification of hybrid systems, deduction, air traffic control, logic for hybrid systems}, abstract = { Aircraft collision avoidance maneuvers are important and complex applications. Curved flight exhibits nontrivial continuous behavior. In combination with the control choices during air traffic maneuvers, this yields hybrid systems with challenging interactions of discrete and continuous dynamics. As a case study illustrating the use of a new proof assistant for a logic for nonlinear hybrid systems, we analyze collision freedom of roundabout maneuvers in air traffic control, where appropriate curved flight, good timing, and compatible maneuvering are crucial for guaranteeing safe spatial separation of aircraft throughout their flight. We show that formal verification of hybrid systems can scale to curved flight maneuvers required in aircraft control applications. We introduce a fully flyable variant of the roundabout collision avoidance maneuver and verify safety properties by compositional verification.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Edmund M. ClarkeFormal verification of curved flight collision avoidance maneuvers: A case study@techreport{DBLP:conf/fm/PlatzerC09:TR, ref = {DBLP:conf/fm/PlatzerC09}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Formal Verification of Curved Flight Collision Avoidance Maneuvers: A Case Study}, number = {CMU-CS-09-147}, year = {2009}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2008/CMU-CS-09-147.pdf} }Copy BibTex⧉ PDF
- Real world verificationCADE@inproceedings{DBLP:conf/cade/PlatzerQR09, pdf = {pub/rwv.pdf}, slides = {pub/rwv-slides.pdf}, study = {pub/rwv-examples.zip}, TR = {DBLP:conf/cade/PlatzerQR09:TR}, author = {['André Platzer', 'Jan-David Quesel', 'Philipp Rümmer']}, title = {Real World Verification}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-22, Montreal, Canada, Proceedings}, year = {2009}, pages = {485-501}, editor = {['Renate A. Schmidt']}, publisher = {Springer}, series = {LNCS}, volume = {5663}, doi = {10.1007/978-3-642-02959-2_35}, keywords = {real-closed fields, decision procedures, hybrid systems, software verification}, abstract = { Scalable handling of real arithmetic is a crucial part of the verification of hybrid systems, mathematical algorithms, and mixed analog/digital circuits. Despite substantial advances in verification technology, complexity issues with classical decision procedures are still a major obstacle for formal verification of real-world applications, e.g., in automotive and avionic industries. To identify strengths and weaknesses, we examine state of the art symbolic techniques and implementations for the universal fragment of real-closed fields: approaches based on quantifier elimination, Gröbner Bases, and semidefinite programming for the Positivstellensatz. Within a uniform context of the verification tool KeYmaera, we compare these approaches qualitatively and quantitatively on verification benchmarks from hybrid systems, textbook algorithms, and on geometric problems. Finally, we introduce a new decision procedure combining Gröbner Bases and semidefinite programming for the real Nullstellensatz that outperforms the individual approaches on an interesting set of problems.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Real world verificationThesis@techreport{DBLP:conf/cade/PlatzerQR09:TR, ref = {DBLP:conf/cade/PlatzerQR09}, author = {['André Platzer', 'Jan-David Quesel', 'Philipp Rümmer']}, title = {Real World Verification}, number = {52}, year = {2009}, month = {June}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_052.pdf} }Copy BibTex⧉ PDF
- Statistical model checking for complex stochastic models in systems biology@techreport{DBLP:conf/cmsb/JhaCLLPZ09:TR, ref = {DBLP:conf/cmsb/JhaCLLPZ09}, author = {['Sumit Kumar Jha', 'Edmund Clarke', 'Christopher Langmead', 'Axel Legay', 'André Platzer', 'Paolo Zuliani']}, title = {Statistical Model Checking for Complex Stochastic Models in Systems Biology}, number = {CMU-CS-09-110}, year = {2009}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2009/CMU-CS-09-110.pdf} }Copy BibTex⧉ PDF
- Verification of cyberphysical transportation systems@article{DBLP:journals/expert/Platzer09, author = {['André Platzer']}, title = {Verification of Cyberphysical Transportation Systems}, journal = {IEEE Intelligent Systems}, volume = {24}, number = {4}, year = {2009}, pages = {10-13}, doi = {10.1109/MIS.2009.81}, issn = {1541-1672}, keywords = {cyber-physical transportation systems, train control, air traffic control, logic-based analysis, verification}, abstract = { Cyberphysical system technology has an important share in modern intelligent transportation systems, including next generation flight, rail, and car control. This control technology is intended to help improve performance objectives like throughput and improve overall system safety. To ensure that these transportation systems operate correctly, new analysis techniques are needed that consider physical movement combined with computational control to establish properties like collision freedom. Logic-based analysis can verify the correct functioning of these cyberphysical systems.} }ABSTRACT Copy BibTex⧉
2008
- Analysis and verification challenges for cyber-physical transportation systemsNITRD national workshop for research on transportation cyber-physical systems: Automotive, aviation, and rail@inproceedings{ClarkeKPR08, author = {['Edmund M. Clarke', 'Bruce Krogh', 'André Platzer', 'Raj Rajkumar']}, title = {Analysis and Verification Challenges for Cyber-Physical Transportation Systems}, year = {2008}, booktitle = {NITRD National Workshop for Research on Transportation Cyber-Physical Systems: Automotive, Aviation, and Rail}, pdf = {http://www.ee.washington.edu/research/nsl/aar-cps/AndrePlatzer-20081020163241.pdf}, abstract = { Substantial technological and engineering advances in various disciplines make it possible more than ever before to provide autonomous control choices for cars, trains, and aircraft. Correct automatic control can improve overall safety tremendously. Yet, ensuring a safe operation of those control assistants under all circumstances requires analysis techniques that are prepared for the rising complexity resulting from combinations of several computerized safety measures. We identify cases where cyber-physical transportation systems pose particularly demanding challenges for future research in formal analysis techniques.} }ABSTRACT Copy BibTex⧉ PDF
- André Platzer Edmund M. ClarkeComputing differential invariants of hybrid systems as fixedpointsCAV@inproceedings{DBLP:conf/cav/PlatzerC08, pdf = {pub/fpdi.pdf}, slides = {pub/fpdi-slides.pdf}, ref = {DBLP:journals/fmsd/PlatzerC09}, refname = {FMSD'09}, study = {pub/fpdi-examples.zip}, TR = {DBLP:conf/cav/PlatzerC08:TR}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Computing Differential Invariants of Hybrid Systems as Fixedpoints}, booktitle = {CAV}, longbooktitle = {Computer Aided Verification, 20th International Conference, CAV 2008, Princeton, NJ, USA, July 7-14, 2008, Proceedings}, year = {2008}, pages = {176-189}, month = {}, editor = {['Aarti Gupta', 'Sharad Malik']}, publisher = {Springer}, series = {LNCS}, volume = {5123}, isbn = {978-3-540-70543-7}, doi = {10.1007/978-3-540-70545-1_17}, keywords = {verification of hybrid systems, differential invariants, verification logic, fixedpoint engine}, abstract = { We introduce a fixedpoint algorithm for verifying safety properties of hybrid systems with differential equations whose right-hand sides are polynomials in the state variables. In order to verify nontrivial systems without solving their differential equations and without numerical errors, we use a continuous generalization of induction, for which our algorithm computes the required differential invariants. As a means for combining local differential invariants into global system invariants in a sound way, our fixedpoint algorithm works with a compositional verification logic for hybrid systems. To improve the verification power, we further introduce a saturation procedure that refines the system dynamics successively with differential invariants until safety becomes provable. By complementing our symbolic verification algorithm with a robust version of numerical falsification, we obtain a fast and sound verification procedure. We verify roundabout maneuvers in air traffic management and collision avoidance in train control.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Edmund M. ClarkeComputing differential invariants of hybrid systems as fixedpoints@techreport{DBLP:conf/cav/PlatzerC08:TR, ref = {DBLP:conf/cav/PlatzerC08}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Computing Differential Invariants of Hybrid Systems as Fixedpoints}, number = {CMU-CS-08-103}, year = {2008}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2008/CMU-CS-08-103.pdf} }Copy BibTex⧉ PDF
- Differential dynamic logic for hybrid systems.@article{DBLP:journals/jar/Platzer08, pdf = {https://link.springer.com/content/pdf/10.1007/s10817-008-9103-8.pdf}, study = {info/KeYmaera.html#case-studies}, author = {['André Platzer']}, title = {Differential Dynamic Logic for Hybrid Systems.}, journal = {J. Autom. Reas.}, longjournal = {Journal of Automated Reasoning}, year = {2008}, volume = {41}, number = {2}, pages = {143-189}, doi = {10.1007/s10817-008-9103-8}, issn = {0168-7433}, keywords = {dynamic logic, differential equations, sequent calculus, axiomatisation, automated theorem proving, verification of hybrid systems}, abstract = { Hybrid systems are models for complex physical systems and are defined as dynamical systems with interacting discrete transitions and continuous evolutions along differential equations. With the goal of developing a theoretical and practical foundation for deductive verification of hybrid systems, we introduce a dynamic logic for hybrid programs, which is a program notation for hybrid systems. As a verification technique that is suitable for automation, we introduce a free variable proof calculus with a novel combination of real-valued free variables and Skolemisation for lifting quantifier elimination for real arithmetic to dynamic logic. The calculus is compositional, i.e., it reduces properties of hybrid programs to properties of their parts. Our main result proves that this calculus axiomatises the transition behaviour of hybrid systems completely relative to differential equations. In a case study with cooperating traffic agents of the European Train Control System, we further show that our calculus is well-suited for verifying realistic hybrid systems with parametric system dynamics. } }ABSTRACT Copy BibTex⧉ PDF
- Differential dynamic logics: Automated theorem proving for hybrid systemsPh.D. dissertation@phdthesis{Platzer08, pdf = {pub/diss.pdf}, slides = {pub/diss-slides.pdf}, ref = {Platzer10}, refname = {ebook}, author = {['André Platzer']}, title = {Differential Dynamic Logics: Automated Theorem Proving for Hybrid Systems}, school = {Department of Computing Science, University of Oldenburg}, year = {2008}, pages = {299}, url = {http://oops.uni-oldenburg.de/1403/} }Copy BibTex⧉ PDF Slides
- Differential dynamic logics. Automated theorem proving for hybrid systemsProceedings des gemeinsamen workshops der graduiertenkollegs 2008, dagstuhl@inproceedings{Platzer2008Dagstuhl, author = {['André Platzer']}, title = {Differential Dynamic Logics. Automated Theorem Proving for Hybrid Systems}, booktitle = {Proceedings des gemeinsamen Workshops der Graduiertenkollegs 2008, Dagstuhl}, year = {2008}, editor = {['Malte Diehl', 'Henrik Lipskoch', 'Roland Meyer', 'Christian Storm']}, series = {Trustworthy Software Systems}, pages = {29}, address = {Berlin}, month = {May}, publisher = {GI}, isbn = {978-3-940019-39-4}, location = {May 19–21, 2008, Dagstuhl, Germany}, url = {https://dl.gi.de/handle/20.500.12116/33599} }Copy BibTex⧉
- André Platzer Jan-David QueselKeYmaera: A hybrid theorem prover for hybrid systems.IJCAR@inproceedings{DBLP:conf/cade/PlatzerQ08, pdf = {pub/KeYmaera.pdf}, slides = {pub/KeYmaera-slides.pdf}, author = {['André Platzer', 'Jan-David Quesel']}, title = {KeYmaera: A Hybrid Theorem Prover for Hybrid Systems.}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, Fourth International Joint Conference, IJCAR 2008, Sydney, Australia, Proceedings}, year = {2008}, pages = {171-178}, editor = {['Alessandro Armando', 'Peter Baumgartner', 'Gilles Dowek']}, publisher = {Springer}, series = {LNCS}, volume = {5195}, isbn = {978-3-540-71069-1}, issn = {0302-9743}, subseries = {LNAI}, doi = {10.1007/978-3-540-71070-7_15}, keywords = {dynamic logic, automated theorem proving, decision procedures, computer algebra, verification of hybrid systems}, abstract = { KeYmaera is a hybrid verification tool for hybrid systems that combines deductive, real algebraic, and computer algebraic prover technologies. It is an automated and interactive theorem prover for a natural specification and verification logic for hybrid systems. KeYmaera supports differential dynamic logic, which is a real-valued first-order dynamic logic for hybrid programs, a program notation for hybrid automata. For automating the verification process, KeYmaera implements a generalized free-variable sequent calculus and automatic proof strategies that decompose the hybrid system specification symbolically. To overcome the complexity of real arithmetic, we integrate real quantifier elimination following an iterative background closure strategy. Our tool is particularly suitable for verifying parametric hybrid systems and has been used successfully for verifying collision avoidance in case studies from train control and air traffic management.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Jan-David QueselLogical verification and systematic parametric analysis in train control.HSCC@inproceedings{DBLP:conf/hybrid/PlatzerQ08, pdf = {pub/ETCS-short.pdf}, author = {['André Platzer', 'Jan-David Quesel']}, title = {Logical Verification and Systematic Parametric Analysis in Train Control.}, booktitle = {HSCC}, longbooktitle = {Hybrid Systems: Computation and Control, 10th International Conference, HSCC 2008, St. Louis, USA, Proceedings}, year = {2008}, pages = {646-649}, doi = {10.1007/978-3-540-78929-1_55}, editor = {['Magnus Egerstedt', 'Bud Mishra']}, publisher = {Springer}, series = {LNCS}, volume = {4981}, isbn = {978-3-540-78928-4}, keywords = {parametric verification, logic for hybrid systems, symbolic decomposition}, abstract = { We formally verify hybrid safety properties of cooperation protocols in a fully parametric version of the European Train Control System (ETCS). We present a formal model using hybrid programs and verify correctness using our logic-based decomposition procedure. This procedure supports free parameters and parameter discovery, which is required to determine correct design choices for free parameters of ETCS.} }ABSTRACT Copy BibTex⧉ PDF
2007
- A temporal dynamic logic for verifying hybrid system invariantsLFCS@inproceedings{DBLP:conf/lfcs/Platzer07, pdf = {pub/dTL.pdf}, slides = {pub/dTL-slides.pdf}, study = {info/KeYmaera.html#case-studies}, TR = {DBLP:conf/lfcs/Platzer07:TR}, author = {['André Platzer']}, title = {A Temporal Dynamic Logic for Verifying Hybrid System Invariants}, booktitle = {LFCS}, longbooktitle = {Logical Foundations of Computer Science, 5th International Symposium, LFCS'07, New York, USA, June 4-7, 2007, Proceedings}, year = {2007}, pages = {457-471}, doi = {10.1007/978-3-540-72734-7_32}, editor = {['Sergei N. Artëmov', 'Anil Nerode']}, publisher = {Springer}, series = {LNCS}, volume = {4514}, isbn = {978-3-540-72732-3}, keywords = {dynamic logic, temporal logic, sequent calculus, logic for hybrid systems, deductive verification of embedded systems}, abstract = { We combine first-order dynamic logic for reasoning about possible behaviour of hybrid systems with temporal logic for reasoning about the temporal behaviour during their operation. Our logic supports verification of hybrid programs with first-order definable flows and provides a uniform treatment of discrete and continuous evolution. For our combined logic, we generalise the semantics of dynamic modalities to refer to hybrid traces instead of final states. Further, we prove that this gives a conservative extension of dynamic logic. On this basis, we provide a modular verification calculus that reduces correctness of temporal behaviour of hybrid systems to non-temporal reasoning. Using this calculus, we analyse safety invariants in a train control system and symbolically synthesise parametric safety constraints. } }ABSTRACT Copy BibTex⧉ PDF Slides
- A temporal dynamic logic for verifying hybrid system invariantsThesis@techreport{DBLP:conf/lfcs/Platzer07:TR, ref = {DBLP:conf/lfcs/Platzer07}, author = {['André Platzer']}, title = {A Temporal Dynamic Logic for Verifying Hybrid System Invariants}, number = {12}, year = {2007}, month = {February}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_012.pdf} }Copy BibTex⧉ PDF
- Werner Damm Alfred Mikschl Jens Oehlerking Ernst-Rüdiger Olderog Jun Pang André Platzer Marc Segelken Boris WirtzAutomating verification of cooperation, control, and design in traffic applicationsFormal methods and hybrid real-time systems@inproceedings{DBLP:conf/birthday/DammMOOPPSW07, pdf = {pub/avccdta.pdf}, author = {['Werner Damm', 'Alfred Mikschl', 'Jens Oehlerking', 'Ernst-Rüdiger Olderog', 'Jun Pang', 'André Platzer', 'Marc Segelken', 'Boris Wirtz']}, title = {Automating Verification of Cooperation, Control, and Design in Traffic Applications}, booktitle = {Formal Methods and Hybrid Real-Time Systems}, longbooktitle = {Formal Methods and Hybrid Real-Time Systems, Essays in Honor of Dines Bjørner and Chaochen Zhou on the Occasion of Their 70th Birthdays}, year = {2007}, pages = {115-169}, doi = {10.1007/978-3-540-75221-9_6}, editor = {['Cliff B. Jones', 'Zhiming Liu', 'Jim Woodcock']}, publisher = {Springer}, series = {LNCS}, volume = {4700}, isbn = {978-3-540-75220-2}, keywords = {}, abstract = { We present a verification methodology for cooperating traffic agents covering analysis of cooperation strategies, realization of strategies through control, and implementation of control. For each layer, we provide dedicated approaches to formal verification of safety and stability properties of the design. The range of employed verification techniques invoked to span this verification space includes application of pre-verified design patterns, automatic synthesis of Lyapunov functions, constraint generation for parameterized designs, model-checking in rich theories, and abstraction refinement. We illustrate this approach with a variant of the European Train Control System (ETCS), employing layer specific verification techniques to layer specific views of an ETCS design.} }ABSTRACT Copy BibTex⧉ PDF
- Combining deduction and algebraic constraints for hybrid system analysis.VERIFY’07 at CADE, bremen, germany@inproceedings{DBLP:conf/verify/Platzer07, slides = {pub/cdachsa-slides.pdf}, author = {['André Platzer']}, title = {Combining Deduction and Algebraic Constraints for Hybrid System Analysis.}, booktitle = {VERIFY'07 at CADE, Bremen, Germany}, longbooktitle = {4th International Verification Workshop VERIFY'07, at CADE-21, Bremen, Germany, July 15-16, 2007}, year = {2007}, pages = {164-178}, editor = {['Bernhard Beckert']}, volume = {259}, publisher = {CEUR-WS.org}, series = {CEUR Workshop Proceedings}, issn = {1613-0073}, pdf = {http://ceur-ws.org/Vol-259/paper14.pdf}, eprint = {https://ceur-ws.org/Vol-259/paper14.pdf}, keywords = {modular prover combination, analytic tableaux, verification of hybrid systems, dynamic logic}, abstract = { We show how theorem proving and methods for handling real algebraic constraints can be combined for hybrid system verification. In particular, we highlight the interaction of deductive and algebraic reasoning that is used for handling the joint discrete and continuous behaviour of hybrid systems. We illustrate proof tasks that occur when verifying scenarios with cooperative traffic agents. From the experience with these examples, we analyse proof strategies for dealing with the practical challenges for integrated algebraic and deductive verification of hybrid systems, and we propose an iterative background closure strategy.} }ABSTRACT Copy BibTex⧉ PDF Slides Preprint
- Differential dynamic logic for verifying parametric hybrid systems.TABLEAUX@inproceedings{DBLP:conf/tableaux/Platzer07, pdf = {pub/dL.pdf}, slides = {pub/dL-slides.pdf}, study = {info/KeYmaera.html#case-studies}, TR = {DBLP:conf/tableaux/Platzer07:TR}, author = {['André Platzer']}, title = {Differential Dynamic Logic for Verifying Parametric Hybrid Systems.}, booktitle = {TABLEAUX}, longbooktitle = {Automated Reasoning with Analytic Tableaux and Related Methods, 16th International Conference, TABLEAUX 2007, Aix en Provence, France, July 3-6, 2007, Proceedings}, year = {2007}, pages = {216-232}, doi = {10.1007/978-3-540-73099-6_17}, editor = {['Nicola Olivetti']}, volume = {4548}, series = {LNCS}, publisher = {Springer}, isbn = {978-3-540-73098-9}, keywords = {dynamic logic, sequent calculus, verification of parametric hybrid systems, quantifier elimination}, abstract = { We introduce a first-order dynamic logic for reasoning about systems with discrete and continuous state transitions, and we present a sequent calculus for this logic. As a uniform model, our logic supports hybrid programs with discrete and differential actions. For handling real arithmetic during proofs, we lift quantifier elimination to dynamic logic. To obtain a modular combination, we use side deductions for verifying interacting dynamics. With this, our logic supports deductive verification of hybrid systems with symbolic parameters and first-order definable flows. Using our calculus, we prove a parametric inductive safety constraint for speed supervision in a train control system.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Differential dynamic logic for verifying parametric hybrid systems.Thesis@techreport{DBLP:conf/tableaux/Platzer07:TR, ref = {DBLP:conf/tableaux/Platzer07}, author = {['André Platzer']}, title = {Differential Dynamic Logic for Verifying Parametric Hybrid Systems.}, number = {15}, year = {2007}, month = {May}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_015.pdf} }Copy BibTex⧉ PDF
- Differential logic for hybrid system verification – reasoning about interacting discrete and continuous changeDagstuhl “zehn plus eins” – zehn informatik-graduiertenkollegs und ein informatik-forschungskolleg stellen sich vor@inproceedings{Platzer2007Dagstuhl, author = {['André Platzer']}, title = {Differential Logic for Hybrid System Verification – Reasoning about Interacting Discrete and Continuous Change}, booktitle = {Dagstuhl “zehn plus eins” – Zehn Informatik-Graduiertenkollegs und ein Informatik-Forschungskolleg stellen sich vor}, year = {2007}, pages = {80}, address = {Aachen}, month = {June}, publisher = {Verlagshaus Mainz} }Copy BibTex⧉
- Differential logic for reasoning about hybrid systemsHSCC@inproceedings{DBLP:conf/hybrid/Platzer07, pdf = {pub/dL-short.pdf}, author = {['André Platzer']}, title = {Differential Logic for Reasoning about Hybrid Systems}, booktitle = {HSCC}, longbooktitle = {Hybrid Systems: Computation and Control, 10th International Conference, HSCC 2007, Pisa, Italy, Proceedings}, year = {2007}, pages = {746-749}, doi = {10.1007/978-3-540-71493-4_75}, editor = {['Alberto Bemporad', 'Antonio Bicchi', 'Giorgio Buttazzo']}, publisher = {Springer}, series = {LNCS}, volume = {4416}, isbn = {978-3-540-71492-7}, keywords = {dynamic logic, hybrid systems, parametric verification}, abstract = { We propose a first-order dynamic logic for reasoning about hybrid systems. As a uniform model for discrete and continuous evolutions in hybrid systems, we introduce hybrid programs with differential actions. Our logic can be used to specify and verify correctness statements about hybrid programs, which are suitable for symbolic processing by calculus rules. Using first-order variables, our logic supports systems with symbolic parameters. With dynamic modalities, it is prepared to handle multiple system components.} }ABSTRACT Copy BibTex⧉ PDF
- Stephanie Kemper André PlatzerSAT-based abstraction refinement for real-time systemsFormal aspects of component software, third international workshop, FACS 2006, prague, czech republic, proceedings@inproceedings{DBLP:journals/entcs/KemperP07, pdf = {pub/SAAtRe.pdf}, slides = {pub/SAAtRe-slides.pdf}, author = {['Stephanie Kemper', 'André Platzer']}, title = {SAT-based Abstraction Refinement for Real-time Systems}, booktitle = {Formal Aspects of Component Software, Third International Workshop, FACS 2006, Prague, Czech Republic, Proceedings}, year = {2007}, editor = {['Frank S. de Boer', 'Vladimir Mencl']}, journal = {Electr. Notes Theor. Comput. Sci.}, volume = {182}, series = {ENTCS}, issn = {1571-0661}, pages = {107-122}, doi = {10.1016/j.entcs.2006.09.034}, annote = {Appeared as UNU-IIST Report No. 344 http://www.iist.unu.edu/newrh/III/1/docs/techreports/report344.html}, keywords = {abstraction refinement, model checking, real-time systems, SAT, Craig interpolation}, abstract = { In this paper, we present an abstraction refinement approach for model checking safety properties of real-time systems using SAT-solving. We present a faithful embedding of bounded model checking for systems of timed automata into propositional logic with linear arithmetic and prove correctness. With this logical representation, we achieve a linear-size representation of parallel composition and introduce a quick abstraction technique that works uniformly for clocks, events, and states. When necessary, abstractions are refined by analysing spurious counterexamples using a promising extension of counterexample-guided abstraction refinement with syntactic information about Craig interpolants. To support generalisations, our overall approach identifies the algebraic and logical principles required for logic-based abstraction refinement.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Edmund M. ClarkeThe image computation problem in hybrid systems model checkingHSCC@inproceedings{DBLP:conf/hybrid/PlatzerC07, pdf = {pub/happroximation.pdf}, slides = {pub/happroximation-slides.pdf}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {The Image Computation Problem in Hybrid Systems Model Checking}, booktitle = {HSCC}, longbooktitle = {Hybrid Systems: Computation and Control, 10th International Conference, HSCC 2007, Pisa, Italy, Proceedings}, year = {2007}, pages = {473-486}, doi = {10.1007/978-3-540-71493-4_37}, editor = {['Alberto Bemporad', 'Antonio Bicchi', 'Giorgio Buttazzo']}, publisher = {Springer}, series = {LNCS}, volume = {4416}, isbn = {978-3-540-71492-7}, keywords = {model checking, hybrid systems, image computation}, abstract = { In this paper, we analyze limits of approximation techniques for (non-linear) continuous image computation in model checking hybrid systems. In particular, we show that even a single step of continuous image computation is not semidecidable numerically even for a very restricted class of functions. Moreover, we show that symbolic insight about derivative bounds provides sufficient additional information for approximation refinement model checking. Finally, we prove that purely numerical algorithms can perform continuous image computation with arbitrarily high probability. Using these results, we analyze the prerequisites for a safe operation of the roundabout maneuver in air traffic collision avoidance.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Towards a hybrid dynamic logic for hybrid dynamic systems@article{DBLP:journals/entcs/Platzer07, slides = {pub/hdL-slides.pdf}, author = {['André Platzer']}, title = {Towards a Hybrid Dynamic Logic for Hybrid Dynamic Systems}, booktitle = {International Workshop on Hybrid Logic, HyLo'06, Seattle, USA, Proceedings}, year = {2007}, editor = {['Patrick Blackburn', 'Thomas Bolander', 'Torben Braüner', 'Valeria de Paiva', 'Jørgen Villadsen']}, series = {ENTCS}, journal = {Electr. Notes Theor. Comput. Sci.}, issn = {1571-0661}, volume = {174}, number = {6}, month = {June}, pages = {63-77}, doi = {10.1016/j.entcs.2006.11.026}, pdf = {https://lfcps.org/pub/hdL.pdf}, keywords = {hybrid logic, dynamic logic, sequent calculus, compositional verification, real-time hybrid dynamic systems}, abstract = { We introduce a hybrid variant of a dynamic logic with continuous state transitions along differential equations, and we present a sequent calculus for this extended hybrid dynamic logic. With the addition of satisfaction operators, this hybrid logic provides improved system introspection by referring to properties of states during system evolution. In addition to this, our calculus introduces state-based reasoning as a paradigm for delaying expansion of transitions using nominals as symbolic state labels. With these extensions, our hybrid dynamic logic advances the capabilities for compositional reasoning about (semialgebraic) hybrid dynamic systems. Moreover, the constructive reasoning support for goal-oriented analytic verification of hybrid dynamic systems carries over from the base calculus to our extended calculus.} }ABSTRACT Copy BibTex⧉ PDF Slides
2006
- Dynamic logic with non-rigid functions: A basis for object-oriented program verification.IJCAR@inproceedings{DBLP:conf/cade/BeckertP06, pdf = {pub/odl.pdf}, slides = {pub/odl-slides.pdf}, author = {['Bernhard Beckert', 'André Platzer']}, title = {Dynamic Logic with Non-rigid Functions: A Basis for Object-oriented Program Verification.}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, Third International Joint Conference, IJCAR 2006, Seattle, WA, USA, Proceedings}, year = {2006}, pages = {266-280}, doi = {10.1007/11814771_23}, editor = {['Ulrich Furbach', 'Natarajan Shankar']}, publisher = {Springer}, series = {LNCS}, volume = {4130}, isbn = {3-540-37187-7}, issn = {0302-9743}, subseries = {LNAI}, keywords = {dynamic logic, sequent calculus, program logic, software verification, logical foundations of programming languages, object-orientation}, abstract = { We introduce a dynamic logic that is enriched by non-rigid functions, i.e., functions that may change their value from state to state (during program execution), and we present a (relatively) complete sequent calculus for this logic. In conjunction with dynamically typed object enumerators, non-rigid functions allow to embed notions of object-orientation in dynamic logic, thereby forming a basis for verification of object-oriented programs. A semantical generalisation of substitutions, called state update, which we add to the logic, constitutes the central technical device for dealing with object aliasing during function modification. With these few extensions, our dynamic logic captures the essential aspects of the complex verification system KeY and, hence, constitutes a foundation for object-oriented verification with the principles of reasoning that underly the successful KeY case studies.} }ABSTRACT Copy BibTex⧉ PDF Slides
2004
- An object-oriented dynamic logic with updatesThesis@mastersthesis{Platzer_2004b, %pdf = {logic/Diplomath.pdf}, %slides = {pub/odl-slides.pdf}, %ref = {DBLP:conf/cade/BeckertP06}, %refname = {IJCAR'06}, author = {['André Platzer']}, title = {An Object-oriented Dynamic Logic with Updates}, school = {University of Karlsruhe, Department of Computer Science. Institute for Logic, Complexity and Deduction Systems}, year = {2004}, month = {September}, pages = {193}, abstract = { With the goal of this thesis being to create a dynamic logic for object-oriented languages, ODL is developed along with a sound and relatively complete calculus. The dynamic logic contains only the absolute logical essentials of object-orientation, yet still allows a “natural” representation of all other features of common object-oriented programming languages. ODL is an extension of a dynamic logic for imperative While programs by function modification and dynamic type checks. A generalisation of substitutions, called updates, constitute the central technical device for dealing with object aliasing arising from function modification and for retaining a manageable calculus in practical application scenarios. Further, object enumerators realise object creation in a natural yet powerful way. Finally, completeness is proven relative to first-order arithmetic. Along with the soundness result, this proof constitutes the central part of this thesis and even copes with states containing uncomputable functions.}, pdf = {http://i12www.ira.uka.de/ key/doc/2004/odlMasterThesis.pdf}, slides = {pub/odl-slides.pdf}, ref = {DBLP:conf/cade/BeckertP06}, refname = {IJCAR'06} }ABSTRACT Copy BibTex⧉ PDF Slides
- Using a program verification calculus for constructing specifications from implementations@misc{Platzer_2004, author = {['André Platzer']}, title = {Using a Program Verification Calculus for Constructing Specifications from Implementations}, howpublished = {Minor thesis, University of Karlsruhe, Department of Computer Science. Institute for Logic, Complexity and Deduction Systems}, month = {February}, year = {2004}, school = {University of Karlsruhe, Department of Computer Science. Institute for Logic, Complexity and Deduction Systems}, pages = {83}, abstract = { In this thesis we examine the possibility of automatically constructing the program specification from an implementation, both from a theoretical perspective and as a practical approach with a sequent calculus. As a setting for program specifications we choose dynamic logic for the Java programming language. We show that—despite the undecidable nature of program analysis—the strongest specification of any program can always be constructed algorithmically. Further we outline a practical approach embedded into a sequent calculus for dynamic logic and with a higher focus on readability. Therefor, the central aspect of describing unbounded state changes incorporates the concept of modifies lists for expressing the modifiable portion of the state space. The underlying deductions are carried out by the theorem prover of the KeY System. }, pdf = {https://lfcps.org/logic/Minoranthe.pdf}, slides = {https://lfcps.org/logic/Minoranslides.pdf} }ABSTRACT Copy BibTex⧉ PDF Slides
Jump to Category:
thesis
- Katherine KosaianFormally verifying algorithms for real quantifier eliminationPh.D. dissertation@phdthesis{Kosaian23, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2023/CMU-CS-23-130.pdf}, author = {['Katherine Kosaian']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Formally Verifying Algorithms for Real Quantifier Elimination}, year = {2023}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2023/CMU-CS-23-130.pdf} }Copy BibTex⧉ PDF
- Deductive verification for ordinary differential equations: Safety, liveness, and stabilityPh.D. dissertation@phdthesis{Tan22, pdf = {https://kilthub.cmu.edu/articles/thesis/Deductive_Verification_for_Ordinary_Differential_Equations_Safety_Liveness_and_Stability/20286534}, author = {['Yong Kiam Tan']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Deductive Verification for Ordinary Differential Equations: Safety, Liveness, and Stability}, year = {2022}, url = {https://kilthub.cmu.edu/articles/thesis/Deductive_Verification_for_Ordinary_Differential_Equations_Safety_Liveness_and_Stability/20286534}, doi = {10.1184/R1/20286534.v1} }Copy BibTex⧉ PDF
- Rose BohrerPractical end-to-end verification of cyber-physical systemsPh.D. dissertation@phdthesis{Bohrer21, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2021/CMU-CS-21-115.pdf}, slides = {https://www.ls.cs.cmu.edu/pub/theses/bohrer-slides.pdf}, study = {https://www.ls.cs.cmu.edu/pub/theses/bohrer-study.zip}, author = {['Rose Bohrer']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Practical End-to-End Verification of Cyber-Physical Systems}, year = {2021}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2021/CMU-CS-21-115.pdf} }Copy BibTex⧉ PDF Slides
- Nathan FultonVerifiably safe autonomy for cyber-physical systemsPh.D. dissertation@phdthesis{Fulton18, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2018/CMU-CS-18-125.pdf}, author = {['Nathan Fulton']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Verifiably Safe Autonomy for Cyber-Physical Systems}, year = {2018}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2018/CMU-CS-18-125.pdf} }Copy BibTex⧉ PDF
- Sarah M. LoosDifferential refinement logicPh.D. dissertation@phdthesis{Loos16, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2015/CMU-CS-15-144.pdf}, slides = {https://drive.google.com/file/d/0B7RBJEGwzag8UWN1SW9IZzR1WXZabXNRYXQ0Wk05cEpfNXVz}, author = {['Sarah M. Loos']}, school = {Computer Science Department, School of Computer Science, Carnegie Mellon University}, title = {Differential Refinement Logic}, year = {2016}, url = {http://reports-archive.adm.cs.cmu.edu/anon/2015/CMU-CS-15-144.pdf} }Copy BibTex⧉ PDF Slides
- Regression verification for programmable logic controller softwareThesis@mastersthesis{WeiglThesis2015, author = {['Alexander Sebastian Weigl']}, school = {Karlsruhe Institute of Technology}, title = {Regression Verification for Programmable Logic Controller Software}, year = {2015}, month = {January}, type = {Master's thesis}, ids = {masterthesis}, keywords = {IMPROVE} }Copy BibTex⧉
- Algorithms for Forbidden Pattern Recognition in Transition DiagramsThesis@mastersthesis{BachelorThesis, author = {['Alexander Weigl']}, title = {Algorithms for Forbidden Pattern Recognition in Transition Diagrams}, school = {University of Applied Science}, year = {2012}, type = {Bachelor's thesis}, month = {July} }Copy BibTex⧉
- Differential dynamic logics: Automated theorem proving for hybrid systemsPh.D. dissertation@phdthesis{Platzer08, pdf = {pub/diss.pdf}, slides = {pub/diss-slides.pdf}, ref = {Platzer10}, refname = {ebook}, author = {['André Platzer']}, title = {Differential Dynamic Logics: Automated Theorem Proving for Hybrid Systems}, school = {Department of Computing Science, University of Oldenburg}, year = {2008}, pages = {299}, url = {http://oops.uni-oldenburg.de/1403/} }Copy BibTex⧉ PDF Slides
- An object-oriented dynamic logic with updatesThesis@mastersthesis{Platzer_2004b, %pdf = {logic/Diplomath.pdf}, %slides = {pub/odl-slides.pdf}, %ref = {DBLP:conf/cade/BeckertP06}, %refname = {IJCAR'06}, author = {['André Platzer']}, title = {An Object-oriented Dynamic Logic with Updates}, school = {University of Karlsruhe, Department of Computer Science. Institute for Logic, Complexity and Deduction Systems}, year = {2004}, month = {September}, pages = {193}, abstract = { With the goal of this thesis being to create a dynamic logic for object-oriented languages, ODL is developed along with a sound and relatively complete calculus. The dynamic logic contains only the absolute logical essentials of object-orientation, yet still allows a “natural” representation of all other features of common object-oriented programming languages. ODL is an extension of a dynamic logic for imperative While programs by function modification and dynamic type checks. A generalisation of substitutions, called updates, constitute the central technical device for dealing with object aliasing arising from function modification and for retaining a manageable calculus in practical application scenarios. Further, object enumerators realise object creation in a natural yet powerful way. Finally, completeness is proven relative to first-order arithmetic. Along with the soundness result, this proof constitutes the central part of this thesis and even copes with states containing uncomputable functions.}, pdf = {http://i12www.ira.uka.de/ key/doc/2004/odlMasterThesis.pdf}, slides = {pub/odl-slides.pdf}, ref = {DBLP:conf/cade/BeckertP06}, refname = {IJCAR'06} }ABSTRACT Copy BibTex⧉ PDF Slides
report
- Provably forgetting of information in manufacturing systems: Verification of the KASTEL industry demonstrator@report{WeiglTr2019, author = {['Alexander Weigl']}, year = {2019}, title = {Provably Forgetting of Information in Manufacturing Systems: Verification of the KASTEL Industry Demonstrator}, doi = {10.5445/IR/1000117803}, institution = {KIT, Fakultät der Informatik}, language = {english}, keywords = {kastel-svi} }Copy BibTex⧉
- dL_\iota: Definite descriptions in differential dynamic logic@techreport{DBLP:conf/cade/BohrerFP19:TR, ref = {DBLP:conf/cade/BohrerFP19}, author = {['Brandon Bohrer', 'Manuel Fernández', 'André Platzer']}, title = {dL$_\iota$: Definite Descriptions in Differential Dynamic Logic}, number = {CMU-CS-19-111}, year = {2019}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2019/CMU-CS-19-111.pdf} }Copy BibTex⧉ PDF
- Brandon Bohrer André PlatzerA hybrid, dynamic logic for hybrid-dynamic information flow@techreport{DBLP:conf/lics/BohrerP18:TR, ref = {DBLP:conf/lics/BohrerP18}, author = {['Brandon Bohrer', 'André Platzer']}, title = {A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow}, number = {CMU-CS-18-105}, year = {2018}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2018/CMU-CS-18-105.pdf} }Copy BibTex⧉ PDF
- How to prove ‘all’ differential equation properties@techreport{PlatzerY17:TR, author = {['André Platzer', 'Yong Kiam Tan']}, title = {How to Prove “All” Differential Equation Properties}, number = {CMU-CS-17-117}, year = {2017}, month = {August}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2017/CMU-CS-17-117.pdf}, note = {Extended version at arXiv:1802.01226.pdf} }Copy BibTex⧉ PDF
- A component-based approach to hybrid systems safety verification@techreport{DBLP:conf/ifm/MullerMRSP16:TR, ref = {DBLP:conf/ifm/MullerMRSP16}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {A Component-based Approach to Hybrid Systems Safety Verification}, number = {CMU-CS-16-100}, year = {2016}, month = {June}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2016/CMU-CS-16-100.pdf} }Copy BibTex⧉ PDF
- Regression verification for programmable logic controller software@techreport{BeckertUlbrichVogelHeuser2015, author = {['Bernhard Beckert', 'Mattias Ulbrich', 'Birgit Vogel-Heuser', 'Alexander Weigl']}, title = {Regression Verification for Programmable Logic Controller Software}, institution = {Karlsruhe Institute of Technology, Department of Informatics}, year = {2015}, month = {June}, number = {2015-06}, keywords = {IMPROVE} }Copy BibTex⧉
- ModelPlex: Verified runtime validation of verified cyber-physical system models@techreport{DBLP:conf/rv/MitschP14:TR, ref = {DBLP:conf/rv/MitschP14}, study = {pub/modelplex-study.zip}, author = {['Stefan Mitsch', 'André Platzer']}, title = {ModelPlex: Verified Runtime Validation of Verified Cyber-Physical System Models}, number = {CMU-CS-14-121}, year = {2014}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2014/CMU-CS-14-121.pdf} }Copy BibTex⧉ PDF
- Differential hybrid games@techreport{Platzer14:dGI, ref = {DBLP:journals/tocl/Platzer17}, author = {['André Platzer']}, title = {Differential Hybrid Games}, number = {CMU-CS-14-102}, year = {2014}, month = {December}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2014/CMU-CS-14-102.pdf} }Copy BibTex⧉ PDF
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Ryan Garnder Aurora Schmidt Erik Zawadzki André PlatzerA formally verified hybrid system for the next-generation airborne collision avoidance system@techreport{JeanninGKGSZP14:TR, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Ryan Garnder', 'Aurora Schmidt', 'Erik Zawadzki', 'André Platzer']}, title = {A Formally Verified Hybrid System for the Next-Generation Airborne Collision Avoidance System}, number = {CMU-CS-14-138}, year = {2014}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2014/CMU-CS-14-138.pdf} }Copy BibTex⧉ PDF
- Khalil Ghorbal André PlatzerCharacterizing algebraic invariants by differential radical invariants@techreport{DBLP:conf/tacas/GhorbalP14:TR, ref = {DBLP:conf/tacas/GhorbalP14}, author = {['Khalil Ghorbal', 'André Platzer']}, title = {Characterizing Algebraic Invariants by Differential Radical Invariants}, number = {CMU-CS-13-129}, year = {2013}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-13-129.pdf} }Copy BibTex⧉ PDF
- A generalization of SAT and #SAT for policy evaluation@techreport{DBLP:conf/ijcai/ZawadzkiPG13:TR, ref = {DBLP:conf/ijcai/ZawadzkiPG13}, author = {['Erik P. Zawadzki', 'André Platzer', 'Geoffrey J. Gordon']}, title = {A Generalization of SAT and #SAT for Policy Evaluation}, number = {CMU-CS-13-107}, year = {2013}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2013/CMU-CS-13-107.pdf} }Copy BibTex⧉ PDF
- A complete axiomatization for differential game logic for hybrid games@techreport{Platzer13:dGL, slides = {pub/dGL-slides.pdf}, ref = {DBLP:journals/tocl/Platzer15}, author = {['André Platzer']}, title = {A Complete Axiomatization for Differential Game Logic for Hybrid Games}, number = {CMU-CS-13-100R}, year = {2013}, month = {January}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, note = {Extended in revised version from July 2013}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2013/CMU-CS-13-100R.pdf} }Copy BibTex⧉ PDF Slides
- Mechanized safety proofs for disc-constrained aircraft@techreport{DBLP:conf/hybrid/LoosRP13:TR, ref = {DBLP:conf/hybrid/LoosRP13}, author = {['David W. Renshaw', 'Sarah Loos', 'André Platzer']}, title = {Mechanized Safety Proofs for Disc-Constrained Aircraft}, number = {CMU-CS-12-132}, year = {2012}, month = {August}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-12-132.pdf} }Copy BibTex⧉ PDF
- Differential game logic for hybrid games@techreport{Platzer12:dGL, ref = {DBLP:journals/tocl/Platzer15}, author = {['André Platzer']}, title = {Differential Game Logic for Hybrid Games}, number = {CMU-CS-12-105}, year = {2012}, month = {March}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-12-105.pdf} }Copy BibTex⧉ PDF
- The structure of differential invariants and differential cut elimination@techreport{Platzer11:diffcut, ref = {DBLP:journals/lmcs/Platzer12}, author = {['André Platzer']}, title = {The Structure of Differential Invariants and Differential Cut Elimination}, number = {CMU-CS-11-112}, year = {2011}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-112.pdf} }Copy BibTex⧉ PDF
- The complete proof theory of hybrid systems@techreport{DBLP:conf/lics/Platzer12b:TR, ref = {DBLP:conf/lics/Platzer12b}, author = {['André Platzer']}, title = {The Complete Proof Theory of Hybrid Systems}, number = {CMU-CS-11-144}, year = {2011}, month = {November}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-144.pdf} }Copy BibTex⧉ PDF
- Stochastic differential dynamic logic for stochastic hybrid systems@techreport{DBLP:conf/cade/Platzer11:TR, ref = {DBLP:conf/cade/Platzer11}, author = {['André Platzer']}, title = {Stochastic Differential Dynamic Logic for Stochastic Hybrid Systems}, number = {CMU-CS-11-111}, year = {2011}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-111.pdf} }Copy BibTex⧉ PDF
- David W. Renshaw André PlatzerDifferential invariants and symbolic integration for distributed hybrid systems@techreport{RenshawP11, author = {['David W. Renshaw', 'André Platzer']}, title = {Differential Invariants and Symbolic Integration for Distributed Hybrid Systems}, number = {CMU-CS-12-107}, year = {2011}, month = {May}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2012/CMU-CS-12-107.pdf} }Copy BibTex⧉ PDF
- Adaptive cruise control: Hybrid, distributed, and now formally verified@techreport{DBLP:conf/fm/LoosPN11:TR, ref = {DBLP:conf/fm/LoosPN11}, author = {['Sarah M. Loos', 'André Platzer', 'Ligia Nistor']}, title = {Adaptive Cruise Control: Hybrid, Distributed, and Now Formally Verified}, number = {CMU-CS-11-107}, year = {2011}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2011/CMU-CS-11-107.pdf} }Copy BibTex⧉ PDF
- Quantified differential dynamic logic for distributed hybrid systems@techreport{DBLP:conf/csl/Platzer10:TR, ref = {DBLP:conf/csl/Platzer10}, author = {['André Platzer']}, title = {Quantified Differential Dynamic Logic for Distributed Hybrid Systems}, number = {CMU-CS-10-126}, year = {2010}, month = {May}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2010/CMU-CS-10-126.pdf} }Copy BibTex⧉ PDF
- Bayesian statistical model checking with application to Simulink/Stateflow verification.@techreport{DBLP:conf/hybrid/ZulianiPC10:TR, ref = {DBLP:conf/hybrid/ZulianiPC10}, author = {['Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Bayesian Statistical Model Checking with Application to Simulink/Stateflow Verification.}, number = {CMU-CS-10-100}, year = {2010}, month = {January}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2010/CMU-CS-10-100.pdf} }Copy BibTex⧉ PDF
- Statistical model checking for complex stochastic models in systems biology@techreport{DBLP:conf/cmsb/JhaCLLPZ09:TR, ref = {DBLP:conf/cmsb/JhaCLLPZ09}, author = {['Sumit Kumar Jha', 'Edmund Clarke', 'Christopher Langmead', 'Axel Legay', 'André Platzer', 'Paolo Zuliani']}, title = {Statistical Model Checking for Complex Stochastic Models in Systems Biology}, number = {CMU-CS-09-110}, year = {2009}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2009/CMU-CS-09-110.pdf} }Copy BibTex⧉ PDF
- Real world verificationThesis@techreport{DBLP:conf/cade/PlatzerQR09:TR, ref = {DBLP:conf/cade/PlatzerQR09}, author = {['André Platzer', 'Jan-David Quesel', 'Philipp Rümmer']}, title = {Real World Verification}, number = {52}, year = {2009}, month = {June}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_052.pdf} }Copy BibTex⧉ PDF
- André Platzer Edmund M. ClarkeFormal verification of curved flight collision avoidance maneuvers: A case study@techreport{DBLP:conf/fm/PlatzerC09:TR, ref = {DBLP:conf/fm/PlatzerC09}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Formal Verification of Curved Flight Collision Avoidance Maneuvers: A Case Study}, number = {CMU-CS-09-147}, year = {2009}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2008/CMU-CS-09-147.pdf} }Copy BibTex⧉ PDF
- André Platzer Jan-David QueselEuropean Train Control System: A case study in formal verificationThesis@techreport{DBLP:conf/icfem/PlatzerQ09:TR, ref = {DBLP:conf/icfem/PlatzerQ09}, author = {['André Platzer', 'Jan-David Quesel']}, title = {European Train Control System: A Case Study in Formal Verification}, number = {54}, year = {2009}, month = {September}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_054.pdf} }Copy BibTex⧉ PDF
- André Platzer Edmund M. ClarkeComputing differential invariants of hybrid systems as fixedpoints@techreport{DBLP:conf/cav/PlatzerC08:TR, ref = {DBLP:conf/cav/PlatzerC08}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Computing Differential Invariants of Hybrid Systems as Fixedpoints}, number = {CMU-CS-08-103}, year = {2008}, month = {}, institution = {School of Computer Science, Carnegie Mellon University}, address = {Pittsburgh, PA}, pdf = {http://reports-archive.adm.cs.cmu.edu/anon/2008/CMU-CS-08-103.pdf} }Copy BibTex⧉ PDF
- Differential dynamic logic for verifying parametric hybrid systems.Thesis@techreport{DBLP:conf/tableaux/Platzer07:TR, ref = {DBLP:conf/tableaux/Platzer07}, author = {['André Platzer']}, title = {Differential Dynamic Logic for Verifying Parametric Hybrid Systems.}, number = {15}, year = {2007}, month = {May}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_015.pdf} }Copy BibTex⧉ PDF
- A temporal dynamic logic for verifying hybrid system invariantsThesis@techreport{DBLP:conf/lfcs/Platzer07:TR, ref = {DBLP:conf/lfcs/Platzer07}, author = {['André Platzer']}, title = {A Temporal Dynamic Logic for Verifying Hybrid System Invariants}, number = {12}, year = {2007}, month = {February}, editor = {['Bernd Becker', 'Werner Damm', 'Martin Fränzle', 'Ernst-Rüdiger Olderog', 'Andreas Podelski', 'Reinhard Wilhelm']}, institution = {Reports of SFB/TR 14 AVACS}, type = {Reports of SFB/TR 14 AVACS}, series = {ATR}, note = {ISSN: 1860-9821, http://www.avacs.org.}, pdf = {http://www.avacs.org/Publikationen/Open/avacs_technical_report_012.pdf} }Copy BibTex⧉ PDF
paper-conference
- Verification of autonomous neural car control with KeYmaera XRigorous state-based methods - 11th international conference, ABZ 2025, düsseldorf, germany, june 10-13, 2025, proceedings@inproceedings{DBLP:conf/asm/PrebetTP25, author = {['Enguerrand Prebet', 'Samuel Teuber', 'André Platzer']}, editor = {['Michael Leuschel', 'Fuyuki Ishikawa']}, title = {Verification of Autonomous Neural Car Control with KeYmaera X}, booktitle = {Rigorous State-Based Methods - 11th International Conference, ABZ 2025, Düsseldorf, Germany, June 10-13, 2025, Proceedings}, series = {LNCS}, volume = {15728}, pages = {288–307}, publisher = {Springer}, year = {2025}, crossref = {DBLP:conf/zum/2025}, doi = {10.1007/978-3-031-94533-5_17}, biburl = {https://dblp.org/rec/conf/asm/PrebetTP25.bib} }Copy BibTex⧉
- Julia Butte André PlatzerSemi-competitive differential game logicAutomated reasoning with analytic tableaux and related methods - 33rd international conference, TABLEAUX 2025, reykjavík, iceland, september 29 – october 3, 2025, proceedings@inproceedings{DBLP:conf/tableaux/ButteP25, author = {['Julia Butte', 'André Platzer']}, title = {Semi-Competitive Differential Game Logic}, year = {2025}, pages = {278-295}, doi = {10.1007/978-3-032-06085-3_15}, editor = {['Gian Luca Pozzato', 'Tarmo Uustalu']}, booktitle = {Automated Reasoning with Analytic Tableaux and Related Methods - 33rd International Conference, TABLEAUX 2025, Reykjavík, Iceland, September 29 – October 3, 2025, Proceedings}, series = {LNCS}, volume = {15980} }Copy BibTex⧉
- Enguerrand Prebet André PlatzerUniform substitution for differential refinement logicIJCAR@inproceedings{DBLP:conf/cade/PrebetP24, author = {['Enguerrand Prebet', 'André Platzer']}, title = {Uniform Substitution for Differential Refinement Logic}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, International Joint Conference, IJCAR 2024, Proceedings}, year = {2024}, pages = {}, doi = {}, editor = {['Chris Benzmüller', 'Marijn Heule', 'Renate Schmidt']}, publisher = {Springer}, series = {LNCS}, volume = {} }Copy BibTex⧉
- Noah Abou El Wafa André PlatzerComplete game logic with sabotageLICS@inproceedings{DBLP:conf/lics/AbouElWafaP24, author = {['Noah Abou El Wafa', 'André Platzer']}, title = {Complete Game Logic with Sabotage}, booktitle = {LICS}, year = {2024}, pages = {}, doi = {10.1145/3661814.3662121}, editor = {['Ugo Dal Lago', 'Javier Esparza']}, longbooktitle = {Proceedings of the 39th Annual ACM/IEEE Symposium on Logic in Computer Science}, publisher = {ACM}, address = {New York} }Copy BibTex⧉
- CESAR: Control envelope synthesis via angelic refinementsTACAS@inproceedings{DBLP:conf/tacas/KabraLMP24, slides = {pub/CESAR-slides.pdf}, author = {['Aditi Kabra', 'Jonathan Laurent', 'Stefan Mitsch', 'André Platzer']}, title = {CESAR: Control Envelope Synthesis via Angelic Refinements}, booktitle = {TACAS}, year = {2024}, pages = {144–164}, doi = {10.1007/978-3-031-57246-3_9}, editor = {['Bernd Finkbeiner', 'Laura Kovács']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems. TACAS 2024}, publisher = {Springer}, series = {LNCS}, volume = {14570}, isbn = {978-3-031-57246-3} }Copy BibTex⧉ Slides
- Uniform substitution for dynamic logic with communicating hybrid programsCADE@inproceedings{DBLP:conf/cade/BriegerMP23, slides = {pub/dLCHP-slides.pdf}, author = {['Marvin Brieger', 'Stefan Mitsch', 'André Platzer']}, title = {Uniform Substitution for Dynamic Logic with Communicating Hybrid Programs}, booktitle = {CADE}, longbooktitle = {Automated Deduction – CADE 29}, otherbooktitle = {International Conference on Automated Deduction, CADE-29, Rome, Italy, Proceedings}, year = {2023}, pages = {96-115}, doi = {10.1007/978-3-031-38499-8_6}, editor = {['Brigitte Pientka', 'Cesare Tinelli']}, publisher = {Springer}, series = {LNCS}, volume = {14132}, address = {}, isbn = {} }Copy BibTex⧉ Slides
- Refinements of hybrid dynamical systems logicRigorous state-based methods - 9th international conference, ABZ 2023, nancy, france, proceedings@inproceedings{DBLP:conf/asm/Platzer23, slides = {pub/abz23-slides.pdf}, author = {['André Platzer']}, editor = {['Uwe Glässer', 'José Creissac Campos', 'Dominique Méry', 'Philippe Palanque']}, title = {Refinements of Hybrid Dynamical Systems Logic}, booktitle = {Rigorous State-Based Methods - 9th International Conference, ABZ 2023, Nancy, France, Proceedings}, series = {LNCS}, volume = {14010}, pages = {3-14}, publisher = {Springer}, year = {2023}, doi = {10.1007/978-3-031-33163-3_1} }Copy BibTex⧉ Slides
- A first complete algorithm for real quantifier elimination in Isabelle/HOLProceedings of the 12th ACM SIGPLAN international conference on certified programs and proofs@inproceedings{DBLP:conf/cpp/KosaianTP23, study = {https://www.isa-afp.org/entries/Quantifier_Elimination_Hybrid.html}, author = {['Katherine Kosaian', 'Yong Kiam Tan', 'André Platzer']}, title = {A First Complete Algorithm for Real Quantifier Elimination in Isabelle/HOL}, booktitle = {Proceedings of the 12th ACM SIGPLAN International Conference on Certified Programs and Proofs}, pages = {211-224}, editor = {['Brigitte Pientka', 'Steve Zdancewic']}, publisher = {ACM}, year = {2023}, isbn = {9798400700262}, address = {New York}, doi = {10.1145/3573105.3575672} }Copy BibTex⧉
- Verifying switched system stability with logicHSCC ’22: 25th ACM international conference on hybrid systems: Computation and control, milan, italy, may 4 - 6, 2022@inproceedings{DBLP:conf/hybrid/TanMP22, slides = {pub/axiomatic-switched-stability-slides.pdf}, author = {['Yong Kiam Tan', 'Stefan Mitsch', 'André Platzer']}, title = {Verifying Switched System Stability With Logic}, year = {2022}, pages = {2:1–2:22}, doi = {10.1145/3501710.3519541}, publisher = {ACM}, editor = {['Ezio Bartocci', 'Sylvie Putot']}, booktitle = {HSCC '22: 25th ACM International Conference on Hybrid Systems: Computation and Control, Milan, Italy, May 4 - 6, 2022} }Copy BibTex⧉ Slides
- Learning to find proofs and theorems by learning to refine search strategiesAdvances in neural information processing systems@inproceedings{DBLP:conf/nips/LaurentP22, slides = {pub/Looprl-slides.pdf}, author = {['Jonathan Laurent', 'André Platzer']}, title = {Learning to Find Proofs and Theorems by Learning to Refine Search Strategies}, year = {2022}, pages = {4843–4856}, booktitle = {Advances in Neural Information Processing Systems}, editor = {['Sanmi Koyejo', 'Shakir Mohamed', 'Alekh Agarwal', 'Danielle Belgrave', 'Kyunghyun Cho', 'Alice Oh']}, publisher = {Curran Associates, Inc.}, volume = {35}, url = {http://papers.nips.cc/paper_files/paper/2022/hash/1f14ac136d55c34a18a04ce3db083599-Abstract-Conference.html} }Copy BibTex⧉ Slides
- Implicit definitions with differential equations for KeYmaera X - (system description)IJCAR@inproceedings{DBLP:conf/cade/GallicchioTMP22, slides = {pub/KeYmaeraX-functions-slides.pdf}, author = {['James Gallicchio', 'Yong Kiam Tan', 'Stefan Mitsch', 'André Platzer']}, title = {Implicit Definitions with Differential Equations for KeYmaera X - (System Description)}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, International Joint Conference, IJCAR 2022, Proceedings}, year = {2022}, pages = {723-733}, doi = {10.1007/978-3-031-10769-6_42}, editor = {['Jasmin Blanchette', 'Laura Kovács', 'Dirk Pattinson']}, publisher = {Springer}, series = {LNCS}, volume = {13385} }Copy BibTex⧉ Slides
- Verified quadratic virtual substitution for real arithmeticFM@inproceedings{DBLP:conf/fm/ScharagerCMP21, pdf = {pub/QE-VSubst.pdf}, slides = {pub/QE-VSubst-slides.pdf}, study = {http://isa-afp.org/entries/Virtual_Substitution.html}, author = {['Matias Scharager', 'Katherine Cordwell', 'Stefan Mitsch', 'André Platzer']}, title = {Verified Quadratic Virtual Substitution for Real Arithmetic}, booktitle = {FM}, year = {2021}, pages = {200-217}, doi = {10.1007/978-3-030-90870-6_11}, editor = {['Marieke Huisman', 'Corina S. Pasareanu', 'Naijun Zhan']}, longbooktitle = {FM 2021: Formal Methods}, longlongbooktitle = {Formal Methods - 24th International Symposium, FM 2021, November 20-26, 2021, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {13047} }Copy BibTex⧉ PDF Slides
- Switched systems as hybrid programs7th IFAC conference on analysis and design of hybrid systems, ADHS 2021, brussels, belgium, july 7-9, 2021@inproceedings{DBLP:conf/adhs/TanP21, author = {['Yong Kiam Tan', 'André Platzer']}, editor = {['Raphaël M. Jungers', 'Necmiye Ozay', 'Alessandro Abate']}, title = {Switched Systems as Hybrid Programs}, booktitle = {7th IFAC Conference on Analysis and Design of Hybrid Systems, ADHS 2021, Brussels, Belgium, July 7-9, 2021}, series = {IFAC-PapersOnLine}, volume = {54}, number = {5}, pages = {247–252}, publisher = {Elsevier}, year = {2021}, doi = {10.1016/j.ifacol.2021.08.506} }Copy BibTex⧉
- Runtime verification of generalized test tablesNASA formal methods - 13th international symposium, NFM 2021, virtual event, may 24-28, 2021, proceedings@inproceedings{DBLP:conf/nfm/WeiglUTK21, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Shmuel S. Tyszberowicz', 'Jonas Klamroth']}, editor = {['Aaron Dutle', 'Mariano M. Moscato', 'Laura Titolo', 'César A. Muñoz', 'Ivan Perez']}, title = {Runtime Verification of Generalized Test Tables}, booktitle = {NASA Formal Methods - 13th International Symposium, NFM 2021, Virtual Event, May 24-28, 2021, Proceedings}, series = {Lecture Notes in Computer Science}, volume = {12673}, pages = {358–374}, publisher = {Springer}, year = {2021}, url = {https://doi.org/10.1007/978-3-030-76384-8_22}, doi = {10.1007/978-3-030-76384-8_22}, timestamp = {Wed, 20 Sep 2023 15:15:29 +0200}, biburl = {https://dblp.org/rec/conf/nfm/WeiglUTK21.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Deductive stability proofs for ordinary differential equationsTools and algorithms for the construction and analysis of systems - 27th international conference, TACAS 2021, held as part of the european joint conferences on theory and practice of software, ETAPS 2021, proceedings, part II@inproceedings{DBLP:conf/tacas/TanP21, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/axiomatic-stability-slides.pdf}, author = {['Yong Kiam Tan', 'André Platzer']}, editor = {['Jan Friso Groote', 'Kim G. Larsen']}, title = {Deductive Stability Proofs for Ordinary Differential Equations}, booktitle = {Tools and Algorithms for the Construction and Analysis of Systems - 27th International Conference, TACAS 2021, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2021, Proceedings, Part II}, series = {LNCS}, volume = {12652}, pages = {181–199}, publisher = {Springer}, year = {2021}, doi = {10.1007/978-3-030-72013-1_10} }Copy BibTex⧉ PDF Slides
- A verified decision procedure for univariate real arithmetic with the BKR algorithm12th international conference on interactive theorem proving, ITP 2021, june 29 to july 1, 2021, rome, italy@inproceedings{DBLP:conf/itp/CordwellTP21, pdf = {https://drops.dagstuhl.de/opus/volltexte/2021/13909/pdf/LIPIcs-ITP-2021-14.pdf}, slides = {pub/QE-BKR-slides.pdf}, study = {http://isa-afp.org/entries/BenOr_Kozen_Reif.html}, author = {['Katherine Cordwell', 'Yong Kiam Tan', 'André Platzer']}, editor = {['Liron Cohen', 'Cezary Kaliszyk']}, title = {A Verified Decision Procedure for Univariate Real Arithmetic with the BKR Algorithm}, booktitle = {12th International Conference on Interactive Theorem Proving, ITP 2021, June 29 to July 1, 2021, Rome, Italy}, series = {LIPIcs}, volume = {193}, pages = {14:1–14:20}, publisher = {Schloss Dagstuhl - Leibniz-Zentrum für Informatik}, year = {2021}, doi = {10.4230/LIPIcs.ITP.2021.14}, biburl = {https://dblp.org/rec/conf/itp/CordwellTP21.bib} }Copy BibTex⧉ PDF Slides
- The PGP Key Server: Challenge ManualVerifyThis long-term challenge: proceedings@inproceedings{VTLTC2020/Manual, crossref = {VTLTC2020}, pages = {17–26}, booktitle = {VerifyThis Long-term Challenge: Proceedings}, editor = {['Marieke Huismann', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, year = {2020}, author = {['Marieke Huisman', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {The PGP Key Server: Challenge Manual} }Copy BibTex⧉
- The KeY Approach on HagridVerifyThis long-term challenge: proceedings@inproceedings{VTLTC2020/KeY, crossref = {VTLTC2020}, pages = {8–10}, author = {['Stijn de Gouw', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {The KeY Approach on Hagrid}, booktitle = {VerifyThis Long-term Challenge: Proceedings}, editor = {['Marieke Huismann', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, address = {Karlsruhe}, month = {June}, year = {2020}, doi = {10.5445/IR/1000119426} }Copy BibTex⧉
- Relational test tables: A practical specification language for evolution and securityFormaliSE@ICSE 2020: 8th international conference on formal methods in software engineering, seoul, republic of korea, july 13, 2020@inproceedings{DBLP:conf/icse/WeiglUCBV20, ids = {Formalise20}, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Suhyun Cha', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Relational Test Tables: A Practical Specification Language for Evolution and Security}, booktitle = {FormaliSE@ICSE 2020: 8th International Conference on Formal Methods in Software Engineering, Seoul, Republic of Korea, July 13, 2020}, pages = {77–86}, year = {2020}, url = {https://doi.org/10.1145/3372020.3391566}, doi = {10.1145/3372020.3391566}, timestamp = {Tue, 22 Sep 2020 14:35:32 +0200}, biburl = {https://dblp.org/rec/conf/icse/WeiglUCBV20.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Brandon Bohrer André PlatzerRefining constructive hybrid games5th international conference on formal structures for computation and deduction, FSCD 2020, june 29 - july 5, 2020, paris, france@inproceedings{DBLP:conf/rta/BohrerP20, pdf = {https://drops.dagstuhl.de/opus/volltexte/2020/12336/pdf/LIPIcs-FSCD-2020-14.pdf}, slides = {pub/constructive-hybrid-games-refinement-slides.pdf}, author = {['Brandon Bohrer', 'André Platzer']}, editor = {['Zena M. Ariola']}, title = {Refining Constructive Hybrid Games}, booktitle = {5th International Conference on Formal Structures for Computation and Deduction, FSCD 2020, June 29 - July 5, 2020, Paris, France}, series = {LIPIcs}, volume = {167}, pages = {}, publisher = {Schloss Dagstuhl - Leibniz-Zentrum für Informatik}, year = {2020}, doi = {10.4230/LIPIcs.FSCD.2020.14} }Copy BibTex⧉ PDF Slides
- Modular Regression verification for reactive systemsLeveraging applications of formal methods, verification and validation: Engineering principles - 9th international symposium on leveraging applications of formal methods, ISoLA 2020, rhodes, greece, october 20-30, 2020, proceedings, part II@inproceedings{DBLP:conf/isola/WeiglUL20, IDS = {Mod20}, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Daniel Lentzsch']}, booktitle = {Leveraging Applications of Formal Methods, Verification and Validation: Engineering Principles - 9th International Symposium on Leveraging Applications of Formal Methods, ISoLA 2020, Rhodes, Greece, October 20-30, 2020, Proceedings, Part II}, title = {Modular Regression Verification for Reactive Systems}, pages = {25–43}, bibsource = {dblp computer science bibliography, https://dblp.org}, biburl = {https://dblp.org/rec/conf/isola/WeiglUL20.bib}, crossref = {DBLP:conf/isola/2020-2}, year = {2020}, doi = {10.1007/978-3-030-61470-6_3}, timestamp = {Wed, 28 Oct 2020 11:46:09 +0100}, url = {https://doi.org/10.1007/978-3-030-61470-6_3} }Copy BibTex⧉
- Brandon Bohrer André PlatzerConstructive hybrid gamesIJCAR@inproceedings{DBLP:conf/cade/BohrerP20, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/constructive-hybrid-games-slides.pdf}, author = {['Brandon Bohrer', 'André Platzer']}, title = {Constructive Hybrid Games}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, 10th International Joint Conference, IJCAR 2020, Paris, France, Proceedings}, year = {2020}, pages = {454-473}, doi = {10.1007/978-3-030-51074-9_26}, editor = {['Nicolas Peltier', 'Viorica Sofronie-Stokkermans']}, publisher = {Springer}, series = {LNCS}, volume = {12166}, subseries = {LNAI} }Copy BibTex⧉ PDF Slides
- Brandon Bohrer André PlatzerConstructive game logicProgramming languages and systems - 29th european symposium on programming, ESOP 2020, held as part of the european joint conferences on theory and practice of software, ETAPS 2020, dublin, ireland, april 25-30, 2020, proceedings@inproceedings{DBLP:conf/esop/BohrerP20, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/constructive-games-slides.pdf}, author = {['Brandon Bohrer', 'André Platzer']}, title = {Constructive Game Logic}, year = {2020}, pages = {}, doi = {10.1007/978-3-030-44914-8_4}, editor = {['Peter Müller']}, booktitle = {Programming Languages and Systems - 29th European Symposium on Programming, ESOP 2020, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2020, Dublin, Ireland, April 25-30, 2020, Proceedings}, series = {LNCS}, volume = {12075}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Nathan Fulton André PlatzerVerifiably safe off-model reinforcement learningTACAS@inproceedings{DBLP:conf/tacas/FultonP19, pdf = {pub/vpmu.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {Verifiably Safe Off-Model Reinforcement Learning}, booktitle = {TACAS}, year = {2019}, pages = {413-430}, doi = {10.1007/978-3-030-17462-0_28}, editor = {['Tomas Vojnar', 'Lijun Zhang']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems, TACAS 2019, Part I}, publisher = {Springer}, series = {LNCS}, volume = {11427}, address = {}, isbn = {} }Copy BibTex⧉ PDF
- Uniform substitution at one fell swoopCADE@inproceedings{DBLP:conf/cade/Platzer19, pdf = {https://link.springer.com/content/pdf/10.1007}, slides = {pub/dGL-usubst-one-slides.pdf}, study = {http://isa-afp.org/entries/Differential_Game_Logic.html}, errata = {pub/dGL-usubst-one-errata.txt}, author = {['André Platzer']}, title = {Uniform Substitution At One Fell Swoop}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-27, Natal, Brazil, Proceedings}, year = {2019}, pages = {425-441}, doi = {10.1007/978-3-030-29436-6_25}, editor = {['Pascal Fontaine']}, publisher = {Springer}, series = {LNCS}, volume = {11716}, address = {} }Copy BibTex⧉ PDF Slides
- Katherine Cordwell André PlatzerTowards physical hybrid systemsCADE@inproceedings{DBLP:conf/cade/CordwellP19, pdf = {pub/physical-hybrid.pdf}, slides = {pub/physical-hybrid-slides.pdf}, author = {['Katherine Cordwell', 'André Platzer']}, title = {Towards Physical Hybrid Systems}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-27, Natal, Brazil, Proceedings}, year = {2019}, pages = {216-232}, doi = {10.1007/978-3-030-29436-6_13}, editor = {['Pascal Fontaine']}, publisher = {Springer}, series = {LNCS}, volume = {11716}, address = {} }Copy BibTex⧉ PDF Slides
- The logical path to autonomous cyber-physical systemsQEST@inproceedings{DBLP:conf/qest/Platzer19, pdf = {pub/lpacps.pdf}, slides = {pub/lpacps-slides.pdf}, author = {['André Platzer']}, title = {The Logical Path to Autonomous Cyber-Physical Systems}, booktitle = {QEST}, pages = {25-33}, year = {2019}, doi = {10.1007/978-3-030-30281-8_2}, editor = {['David Parker', 'Verena Wolf']}, longbooktitle = {International Conference on Quantitative Evaluation of SysTems, QEST, Proceedings}, series = {LNCS}, volume = {11785}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Pegasus: A framework for sound continuous invariant generationFM@inproceedings{DBLP:conf/fm/SogokonMTCP19, pdf = {pub/Pegasus.pdf}, slides = {pub/Pegasus-slides.pdf}, ref = {DBLP:journals/fmsd/SogokonMTCP22}, refname = {FMSD}, author = {['Andrew Sogokon', 'Stefan Mitsch', 'Yong Kiam Tan', 'Katherine Cordwell', 'André Platzer']}, title = {Pegasus: A Framework for Sound Continuous Invariant Generation}, booktitle = {FM}, year = {2019}, pages = {138-157}, doi = {10.1007/978-3-030-30942-8_10}, editor = {['Maurice ter Beek', 'Annabelle McIver', 'José N. Oliviera']}, longbooktitle = {FM 2019: Formal Methods – The Next 30 Years}, publisher = {Springer}, series = {LNCS}, volume = {11800} }Copy BibTex⧉ PDF Slides
- On the preservation of the trust by regression verification of PLC software for cyber-physical systems of systems17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019@inproceedings{DBLP:conf/indin/ChaUWBLV19, author = {['Suhyun Cha', 'Mattias Ulbrich', 'Alexander Weigl', 'Bernhard Beckert', 'Kathrin Land', 'Birgit Vogel-Heuser']}, title = {On the Preservation of the Trust by Regression Verification of PLC software for Cyber-Physical Systems of Systems}, booktitle = {17th IEEE International Conference on Industrial Informatics, INDIN 2019, Helsinki, Finland, July 22-25, 2019}, pages = {413–418}, year = {2019}, crossref = {DBLP:conf/indin/2019}, url = {https://doi.org/10.1109/INDIN41052.2019.8972210}, doi = {10.1109/INDIN41052.2019.8972210}, timestamp = {Tue, 04 Feb 2020 12:39:37 +0100}, biburl = {https://dblp.org/rec/conf/indin/ChaUWBLV19.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- HyPLC: Hybrid programmable logic controller program translation for verificationICCPS@inproceedings{DBLP:conf/iccps/GarciaMP19, pdf = {pub/HyPLC.pdf}, author = {['Luis Garcia', 'Stefan Mitsch', 'André Platzer']}, title = {HyPLC: Hybrid Programmable Logic Controller Program Translation for Verification}, booktitle = {ICCPS}, longbooktitle = {10th IEEE/ACM International Conference on Cyber-Physical Systems}, year = {2019}, editor = {['Linda Bushnell', 'Miroslav Pajic']}, pages = {47-56 }, publisher = {}, isbn = {}, doi = {10.1145/3302509.3311036} }Copy BibTex⧉ PDF
- Dynamic doxastic differential dynamic logic for belief-aware cyber-physical systemsTABLEAUX@inproceedings{DBLP:conf/tableaux/MartinsPL19, pdf = {pub/doxastic-dL.pdf}, slides = {pub/doxastic-dL-slides.pdf}, author = {['João Martins', 'André Platzer', 'João Leite']}, title = {Dynamic Doxastic Differential Dynamic Logic for Belief-Aware Cyber-Physical Systems}, booktitle = {TABLEAUX}, pages = {428-445}, year = {2019}, doi = {10.1007/978-3-030-29026-9_24}, editor = {['Serenella Cerrito', 'Andrei Popescu']}, longbooktitle = {Automated Reasoning with Analytic Tableaux and Related Methods - 27th International Conference, TABLEAUX 2019, London, September 3-5, 2019, Proceedings}, series = {LNCS}, volume = {11714}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- dL_\iota: Definite descriptions in differential dynamic logicCADE@inproceedings{DBLP:conf/cade/BohrerFP19, pdf = {pub/hilbert-epsilon.pdf}, slides = {pub/hilbert-epsilon-slides.pdf}, TR = {DBLP:conf/cade/BohrerFP19:TR}, author = {['Brandon Bohrer', 'Manuel Fernández', 'André Platzer']}, title = {dL$_\iota$: Definite Descriptions in Differential Dynamic Logic}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-27, Natal, Brazil, Proceedings}, year = {2019}, pages = {94-110}, doi = {10.1007/978-3-030-29436-6_6}, editor = {['Pascal Fontaine']}, publisher = {Springer}, series = {LNCS}, volume = {11716}, address = {} }Copy BibTex⧉ PDF Slides
- An axiomatic approach to liveness for differential equationsFM@inproceedings{DBLP:conf/fm/TanP19, pdf = {pub/axiomatic-liveness.pdf}, slides = {pub/axiomatic-liveness-slides.pdf}, ref = {DBLP:journals/fac/TanP21}, refname = {FAC'21}, author = {['Yong Kiam Tan', 'André Platzer']}, title = {An Axiomatic Approach to Liveness for Differential Equations}, booktitle = {FM}, year = {2019}, pages = {371-388}, doi = {10.1007/978-3-030-30942-8_23}, editor = {['Maurice ter Beek', 'Annabelle McIver', 'José N. Oliviera']}, longbooktitle = {FM 2019: Formal Methods – The Next 30 Years}, publisher = {Springer}, series = {LNCS}, volume = {11800} }Copy BibTex⧉ PDF Slides
- VeriPhy: Verified controller executables from verified cyber-physical system modelsPLDI@inproceedings{DBLP:conf/pldi/BohrerTMMP18, pdf = {https://dl.acm.org/doi/pdf/10.1145/3192366.3192406}, slides = {pub/VeriPhy-slides.pdf}, author = {['Brandon Bohrer', 'Yong Kiam Tan', 'Stefan Mitsch', 'Magnus O. Myreen', 'André Platzer']}, title = {VeriPhy: Verified Controller Executables from Verified Cyber-Physical System Models}, pages = {617-630}, year = {2018}, doi = {10.1145/3192366.3192406}, publisher = {ACM}, editor = {['Dan Grossman']}, booktitle = {PLDI}, longbooktitle = {Proceedings of the 39th ACM SIGPLAN Conference on Programming Language Design and Implementation, PLDI 2018} }Copy BibTex⧉ PDF Slides
- Vector barrier certificates and comparison systemsFM@inproceedings{DBLP:conf/fm/SogokonGTP18, pdf = {pub/vector-barrier.pdf}, slides = {pub/vector-barrier-slides.pdf}, author = {['Andrew Sogokon', 'Khalil Ghorbal', 'Yong Kiam Tan', 'André Platzer']}, title = {Vector Barrier Certificates and Comparison Systems}, booktitle = {FM}, year = {2018}, pages = {418-437}, doi = {10.1007/978-3-319-95582-7_25}, editor = {['Klaus Havelund', 'Bill Roscoe', 'Jan Peleska']}, longbooktitle = {FM 2018: Formal Methods - 22nd International Symposium, Oxford, UK, July 15-17, 2018, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {10951}, address = {} }Copy BibTex⧉ PDF Slides
- Uniform substitution for differential game logicIJCAR@inproceedings{DBLP:conf/cade/Platzer18, pdf = {pub/dGL-usubst.pdf}, slides = {pub/dGL-usubst-slides.pdf}, author = {['André Platzer']}, title = {Uniform Substitution for Differential Game Logic}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, 9th International Joint Conference, IJCAR 2018, Oxford, UK, Proceedings}, year = {2018}, pages = {211-227}, doi = {10.1007/978-3-319-94205-6_15}, editor = {['Didier Galmiche', 'Stephan Schulz', 'Roberto Sebastiani']}, publisher = {Springer}, series = {LNCS}, volume = {10900}, subseries = {LNAI} }Copy BibTex⧉ PDF Slides
- Nathan Fulton André PlatzerSafe reinforcement learning via formal methods: Toward safe control through proof and learningProceedings of the thirty-second AAAI conference on artificial intelligence, february 2-7, 2018, new orleans, louisiana, USA.@inproceedings{DBLP:conf/aaai/FultonP18, pdf = {pub/SafeRL.pdf}, slides = {pub/SafeRL-slides.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {Safe Reinforcement Learning via Formal Methods: Toward Safe Control Through Proof and Learning}, booktitle = {Proceedings of the Thirty-Second AAAI Conference on Artificial Intelligence, February 2-7, 2018, New Orleans, Louisiana, USA.}, pages = {6485-6492}, year = {2018}, editor = {['Sheila McIlraith', 'Kilian Weinberger']}, publisher = {AAAI Press}, eprint = {https://www.aaai.org/ocs/index.php/AAAI/AAAI18/paper/view/17376/16225} }Copy BibTex⧉ PDF Slides Preprint
- Nathan Fulton André PlatzerSafe AI for CPSIEEE international test conference, ITC 2018, phoenix, AZ, USA, october 29 - nov. 1, 2018@inproceedings{DBLP:conf/itc/FultonP18, pdf = {pub/itc18.pdf}, slides = {pub/itc18-slides.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {Safe AI for CPS}, booktitle = {IEEE International Test Conference, ITC 2018, Phoenix, AZ, USA, October 29 - Nov. 1, 2018}, pages = {}, year = {2018}, publisher = {IEEE}, doi = {10.1109/TEST.2018.8624774}, isbn = {978-1-5386-8382-8} }Copy BibTex⧉ PDF Slides
- Relational equivalence proofs between imperative and MapReduce algorithmsVerified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papers@inproceedings{DBLP:conf/vstte/BeckertBK0UW18, author = {['Bernhard Beckert', 'Timo Bingmann', 'Moritz Kiefer', 'Peter Sanders', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Relational Equivalence Proofs Between Imperative and MapReduce Algorithms}, booktitle = {Verified Software. Theories, Tools, and Experiments - 10th International Conference, VSTTE 2018, Oxford, UK, July 18-19, 2018, Revised Selected Papers}, pages = {248–266}, year = {2018}, crossref = {DBLP:conf/vstte/2018}, url = {https://doi.org/10.1007/978-3-030-03592-1_14}, doi = {10.1007/978-3-030-03592-1_14}, timestamp = {Tue, 14 May 2019 10:00:49 +0200}, biburl = {https://dblp.org/rec/conf/vstte/BeckertBK0UW18.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Proving equivalence between imperative and MapReduce implementations using program transformationsProceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018@inproceedings{DBLP:journals/corr/abs-1803-10328, author = {['Bernhard Beckert', 'Timo Bingmann', 'Moritz Kiefer', 'Peter Sanders', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Proving Equivalence Between Imperative and MapReduce Implementations Using Program Transformations}, booktitle = {Proceedings Third Workshop on Models for Formal Analysis of Real Systems and Sixth International Workshop on Verification and Program Transformation, MARS/VPT@ETAPS 2018, Thessaloniki, Greece, 20th April 2018}, pages = {185–199}, year = {2018}, crossref = {DBLP:journals/corr/abs-1803-08668}, url = {https://doi.org/10.4204/EPTCS.268.7}, doi = {10.4204/EPTCS.268.7}, timestamp = {Tue, 08 Oct 2019 13:24:16 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1803-10328.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Differential equation axiomatization: The impressive power of differential ghostsLICS@inproceedings{DBLP:conf/lics/PlatzerT18, pdf = {https://dl.acm.org/doi/pdf/10.1145/3209108.3209147}, slides = {pub/diffaxiomatic-slides.pdf}, ref = {DBLP:journals/jacm/PlatzerT20}, refname = {JACM'20}, author = {['André Platzer', 'Yong Kiam Tan']}, title = {Differential Equation Axiomatization: The Impressive Power of Differential Ghosts}, booktitle = {LICS}, year = {2018}, pages = {819-828}, doi = {10.1145/3209108.3209147}, editor = {['Anuj Dawar', 'Erich Grädel']}, longbooktitle = {Proceedings of the 33rd Annual ACM/IEEE Symposium on Logic in Computer Science}, publisher = {ACM}, key = {LICS}, isbn = {978-1-4503-5583-4}, address = {New York} }Copy BibTex⧉ PDF Slides
- CoasterX: A case study in component-driven hybrid systems proof automation6th IFAC conference on analysis and design of hybrid systems, ADHS 2018, oxford, UK, july 11-13, 2018@inproceedings{DBLP:conf/adhs/BohrerLCP18, pdf = {pub/coasterx.pdf}, slides = {pub/coasterx-slides.pdf}, author = {['Brandon Bohrer', 'Adriel Luo', 'Xue An Chuang', 'André Platzer']}, editor = {['Alessandro Abate', 'Antoine Girard', 'Maurice Heemels']}, title = {CoasterX: A Case Study in Component-Driven Hybrid Systems Proof Automation}, booktitle = {6th IFAC Conference on Analysis and Design of Hybrid Systems, ADHS 2018, Oxford, UK, July 11-13, 2018}, series = {IFAC-PapersOnLine}, volume = {51}, number = {16}, pages = {55–60}, publisher = {Elsevier}, year = {2018}, doi = {10.1016/j.ifacol.2018.08.010} }Copy BibTex⧉ PDF Slides
- Adding text-based interaction to a direct-manipulation interface for program verification – lessons learned13th international workshop on user interfaces for theorem provers (UITP 2018)@inproceedings{uitp2018, author = {['Sarah Grebing', 'An Thuy Tien Luong', 'Alexander Weigl']}, title = {Adding Text-Based Interaction to a Direct-Manipulation Interface for Program Verification – Lessons Learned}, booktitle = {13th International Workshop on User Interfaces for Theorem Provers (UITP 2018)}, year = {2018}, month = {July}, editor = {['Mateja Jamnik', 'Christoph Lüth']}, note = {To appear} }Copy BibTex⧉
- Achieving delta description of the control software for an automated production system evolution14th IEEE international conference on automation science and engineering, CASE 2018, munich, germany, august 20-24, 2018@inproceedings{DBLP:conf/case/ChaWUBV18, author = {['Suhyun Cha', 'Alexander Weigl', 'Mattias Ulbrich', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Achieving delta description of the control software for an automated production system evolution}, booktitle = {14th IEEE International Conference on Automation Science and Engineering, CASE 2018, Munich, Germany, August 20-24, 2018}, pages = {1170–1176}, year = {2018}, url = {https://doi.org/10.1109/COASE.2018.8560588}, doi = {10.1109/COASE.2018.8560588}, timestamp = {Sat, 19 Oct 2019 20:37:14 +0200}, biburl = {https://dblp.org/rec/conf/case/ChaWUBV18.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Brandon Bohrer André PlatzerA hybrid, dynamic logic for hybrid-dynamic information flowLICS@inproceedings{DBLP:conf/lics/BohrerP18, pdf = {pub/dynamized-hybrid.pdf}, slides = {pub/dynamized-hybrid-slides.pdf}, TR = {DBLP:conf/lics/BohrerP18:TR}, author = {['Brandon Bohrer', 'André Platzer']}, title = {A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow}, booktitle = {LICS}, year = {2018}, pages = {115-124}, doi = {10.1145/3209108.3209151}, editor = {['Anuj Dawar', 'Erich Grädel']}, longbooktitle = {Proceedings of the 33rd Annual ACM/IEEE Symposium on Logic in Computer Science}, publisher = {ACM}, key = {LICS}, isbn = {978-1-4503-5583-4}, address = {New York} }Copy BibTex⧉ PDF Slides
- A component-based hybrid systems verification and implementation tool in KeYmaera X (tool demonstration)Cyber physical systems. Model-based design - 8th international workshop, CyPhy 2018, and 14th international workshop, WESE 2018, turin, italy, october 4-5, 2018, revised selected papers@inproceedings{DBLP:conf/cyphy/MullerMSP18, pdf = {pub/KeYmaeraX-component.pdf}, author = {['Andreas Müller', 'Stefan Mitsch', 'Wieland Schwinger', 'André Platzer']}, title = {A Component-Based Hybrid Systems Verification and Implementation Tool in KeYmaera X (Tool Demonstration)}, booktitle = {Cyber Physical Systems. Model-Based Design - 8th International Workshop, CyPhy 2018, and 14th International Workshop, WESE 2018, Turin, Italy, October 4-5, 2018, Revised Selected Papers}, pages = {91–110}, year = {2018}, doi = {10.1007/978-3-030-23703-5_5}, editor = {['Roger D. Chamberlain', 'Walid Taha', 'Martin Törngren']}, series = {LNCS}, volume = {11615}, publisher = {Springer} }Copy BibTex⧉ PDF
- Generation of monitoring functions in production automation using test specifications15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017@inproceedings{DBLP:conf/indin/ChaUVWUB17, ids = {ChaEtAl2017}, author = {['Suhyun Cha', 'Sebastian Ulewicz', 'Birgit Vogel-Heuser', 'Alexander Weigl', 'Mattias Ulbrich', 'Bernhard Beckert']}, title = {Generation of monitoring functions in production automation using test specifications}, booktitle = {15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, July 24-26, 2017}, pages = {339–344}, year = {2017}, crossref = {DBLP:conf/indin/2017}, url = {https://doi.org/10.1109/INDIN.2017.8104795}, doi = {10.1109/INDIN.2017.8104795}, timestamp = {Sat, 19 Oct 2019 20:28:16 +0200}, biburl = {https://dblp.org/rec/conf/indin/ChaUVWUB17.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Alexander Weigl Franziska Wiebe Mattias Ulbrich Sebastian Ulewicz Suhyun Cha Michael Kirsten Bernhard Beckert Birgit Vogel-HeuserGeneralized test tables: A powerful and intuitive specification language for reactive systems15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017@inproceedings{DBLP:conf/indin/WeiglWUUCKBV17, ids = {WeiglEtAl2017,AAAA}, author = {['Alexander Weigl', 'Franziska Wiebe', 'Mattias Ulbrich', 'Sebastian Ulewicz', 'Suhyun Cha', 'Michael Kirsten', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Generalized test tables: A powerful and intuitive specification language for reactive systems}, booktitle = {15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, July 24-26, 2017}, pages = {875–882}, year = {2017}, crossref = {DBLP:conf/indin/2017}, url = {https://doi.org/10.1109/INDIN.2017.8104887}, doi = {10.1109/INDIN.2017.8104887}, timestamp = {Sat, 19 Oct 2019 20:28:17 +0200}, biburl = {https://dblp.org/rec/conf/indin/WeiglWUUCKBV17.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Generalised test tables: A practical specification language for reactive systemsIntegrated formal methods - 13th international conference, IFM 2017, turin, italy, september 20-22, 2017, proceedings@inproceedings{DBLP:conf/ifm/BeckertCUVW17, editor = {['Nadia Polikarpova', 'Steve Schneider']}, series = {Lecture Notes in Computer Science}, volume = {10510}, publisher = {Springer}, year = {2017}, isbn = {978-3-319-66844-4}, ids = {Beckert2017,BeckertEtAl2017}, author = {['Bernhard Beckert', 'Suhyun Cha', 'Mattias Ulbrich', 'Birgit Vogel-Heuser', 'Alexander Weigl']}, title = {Generalised Test Tables: A Practical Specification Language for Reactive Systems}, booktitle = {Integrated Formal Methods - 13th International Conference, IFM 2017, Turin, Italy, September 20-22, 2017, Proceedings}, pages = {129–144}, url = {https://doi.org/10.1007/978-3-319-66845-1_9}, doi = {10.1007/978-3-319-66845-1_9}, timestamp = {Sat, 19 Oct 2019 20:14:37 +0200}, biburl = {https://dblp.org/rec/conf/ifm/BeckertCUVW17.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Formally verified differential dynamic logicCertified programs and proofs - 6th ACM SIGPLAN conference, CPP 2017, paris, france, january 16-17, 2017@inproceedings{DBLP:conf/cpp/BohrerRVVP17, pdf = {pub/verified-dL.pdf}, slides = {pub/verified-dL-slides.pdf}, study = {https://www.isa-afp.org/entries/Differential_Dynamic_Logic.html}, author = {['Brandon Bohrer', 'Vincent Rahli', 'Ivana Vukotic', 'Marcus Völp', 'André Platzer']}, title = {Formally Verified Differential Dynamic Logic}, pages = {208-221}, year = {2017}, doi = {10.1145/3018610.3018616}, editor = {['Yves Bertot', 'Viktor Vafeiadis']}, booktitle = {Certified Programs and Proofs - 6th ACM SIGPLAN Conference, CPP 2017, Paris, France, January 16-17, 2017}, publisher = {ACM}, isbn = {} }Copy BibTex⧉ PDF Slides
- Formal verification of train control with air pressure brakesRSSRail@inproceedings{DBLP:conf/rssrail/MitschGBGP17, pdf = {pub/trainairbrake.pdf}, slides = {pub/trainairbrake-slides.pdf}, author = {['Stefan Mitsch', 'Marco Gario', 'Christof J. Budnik', 'Michael Golm', 'André Platzer']}, title = {Formal Verification of Train Control with Air Pressure Brakes}, booktitle = {RSSRail}, longbooktitle = {RSSRail 2017: Reliability, Safety, and Security of Railway Systems}, year = {2017}, pages = {173-191}, editor = {['Alessandro Fantechi', 'Thierry Lecomte', 'Alexander Romanovsky']}, volume = {10598}, doi = {10.1007/978-3-319-68499-4_12}, series = {LNCS}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Change and delay contracts for hybrid system component verificationFASE@inproceedings{DBLP:conf/fase/MullerMRSP17, pdf = {pub/trafficchange.pdf}, slides = {pub/trafficchange-slides.pdf}, ref = {DBLP:journals/sttt/MullerMRSP18}, refname = {STTT'18}, study = {https://www.cs.cmu.edu/ smitsch/resource/fase17}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {Change and Delay Contracts for Hybrid System Component Verification}, booktitle = {FASE}, year = {2017}, pages = {134-151}, doi = {10.1007/978-3-662-54494-5_8}, editor = {['Marieke Huisman', 'Julia Rubin']}, series = {LNCS}, volume = {10202}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Bellerophon: Tactical theorem proving for hybrid systemsITP@inproceedings{DBLP:conf/itp/FultonMBP17, pdf = {pub/bellerophon.pdf}, slides = {pub/bellerophon-slides.pdf}, author = {['Nathan Fulton', 'Stefan Mitsch', 'Brandon Bohrer', 'André Platzer']}, title = {Bellerophon: Tactical Theorem Proving for Hybrid Systems}, booktitle = {ITP}, longbooktitle = {Interactive Theorem Proving, International Conference, ITP 2017}, year = {2017}, pages = {207-224}, month = {}, doi = {10.1007/978-3-319-66107-0_14}, editor = {['Mauricio Ayala-Rincón', 'César A. Muñoz']}, publisher = {Springer}, series = {LNCS}, volume = {10499}, isbn = {978-3-319-66106-3} }Copy BibTex⧉ PDF Slides
- The KeYmaera X proof IDE: Concepts on usability in hybrid systems theorem proving3rd workshop on formal integrated development environment@inproceedings{DBLP:conf/fide/MitschP16, pdf = {pub/webui.pdf}, author = {['Stefan Mitsch', 'André Platzer']}, title = {The KeYmaera X proof IDE: Concepts on usability in hybrid systems theorem proving}, booktitle = {3rd Workshop on Formal Integrated Development Environment}, pages = {67-81}, year = {2016}, doi = {10.4204/EPTCS.240.5}, editor = {['Catherine Dubois', 'Paolo Masci', 'Dominique Méry']}, publisher = {Open Publishing Association}, series = {EPTCS}, volume = {240} }Copy BibTex⧉ PDF
- Sound probabilistic #SAT with projectionProceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016@inproceedings{DBLP:journals/corr/KlebanovWW16, author = {['Vladimir Klebanov', 'Alexander Weigl', 'Jörg Weisbarth']}, title = {Sound Probabilistic #SAT with Projection}, booktitle = {Proceedings 14th International Workshop Quantitative Aspects of Programming Languages and Systems, QAPL 2016, Eindhoven, The Netherlands, April 2-3, 2016}, pages = {15–29}, year = {2016}, crossref = {DBLP:journals/corr/TribastoneW16}, url = {https://doi.org/10.4204/EPTCS.227.2}, doi = {10.4204/EPTCS.227.2}, timestamp = {Wed, 09 Oct 2019 16:19:29 +0200}, biburl = {https://dblp.org/rec/journals/corr/KlebanovWW16.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Logic & proofs for cyber-physical systemsIJCAR@inproceedings{DBLP:conf/cade/Platzer16, pdf = {pub/lpcps.pdf}, slides = {pub/lpcps-slides.pdf}, author = {['André Platzer']}, title = {Logic & Proofs for Cyber-Physical Systems}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, 8th International Joint Conference, IJCAR 2016, Coimbra, Portugal, Proceedings}, year = {2016}, pages = {15-21}, doi = {10.1007/978-3-319-40229-1_3}, volume = {9706}, editor = {['Nicola Olivetti', 'Ashish Tiwari']}, publisher = {Springer}, series = {LNCS}, keywords = {logic, cyber-physical systems, multi-dynamical systems, differential dynamic logic, KeYmaera X}, abstract = {Cyber-physical systems (CPS) combine cyber aspects such as communication and computer control with physical aspects such as movement in space, which arise frequently in many safety-critical application domains, including aviation, automotive, railway, and robotics. But how can we ensure that these systems are guaranteed to meet their design goals, e.g., that an aircraft will not crash into another one? This paper highlights some of the most fascinating aspects of cyber-physical systems and their dynamical systems models, such as hybrid systems that combine discrete transitions and continuous evolution along differential equations. Because of the impact that they can have on the real world, CPSs deserve proof as safety evidence. Multi-dynamical systems understand complex systems as a combination of multiple elementary dynamical aspects, which makes them natural mathematical models for CPS, since they tame their complexity by compositionality. The family of differential dynamic logics achieves this compositionality by providing compositional logics, programming languages, and reasoning principles for CPS. Differential dynamic logics, as implemented in the theorem prover KeYmaera X, have been instrumental in verifying many applications, including the Airborne Collision Avoidance System ACAS X, the European Train Control System ETCS, automotive systems, mobile robot navigation, and a surgical robot system for skull-base surgery. This combination of strong theoretical foundations with practical theorem proving challenges and relevant applications makes Logic for CPS an ideal area for compelling and rewarding research.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Efficient SAT-based pre-image enumeration for quantitative information flow in programsData privacy management and security assurance - 11th international workshop, DPM 2016 and 5th international workshop, QASA 2016, heraklion, crete, greece, september 26-27, 2016, proceedings@inproceedings{DBLP:conf/esorics/Weigl16, author = {['Alexander Weigl']}, title = {Efficient SAT-Based Pre-image Enumeration for Quantitative Information Flow in Programs}, booktitle = {Data Privacy Management and Security Assurance - 11th International Workshop, DPM 2016 and 5th International Workshop, QASA 2016, Heraklion, Crete, Greece, September 26-27, 2016, Proceedings}, pages = {51–58}, year = {2016}, url = {https://doi.org/10.1007/978-3-319-47072-6_4}, doi = {10.1007/978-3-319-47072-6_4}, timestamp = {Tue, 14 May 2019 10:00:53 +0200}, biburl = {https://dblp.org/rec/conf/esorics/Weigl16.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Sarah M. Loos André PlatzerDifferential refinement logicLICS@inproceedings{DBLP:conf/lics/LoosP16, pdf = {https://dl.acm.org/doi/pdf/10.1145/2933575.2934555}, slides = {pub/dRL-slides.pdf}, author = {['Sarah M. Loos', 'André Platzer']}, title = {Differential Refinement Logic}, booktitle = {LICS}, year = {2016}, pages = {505-514}, doi = {10.1145/2933575.2934555}, longbooktitle = {Proceedings of the 31st Annual ACM/IEEE Symposium on Logic in Computer Science, LICS '16, New York, NY, USA, July 5-8, 2016}, publisher = {ACM}, editor = {['Martin Grohe', 'Eric Koskinen', 'Natarajan Shankar']} }Copy BibTex⧉ PDF Slides
- Sebastian Ulewicz Mattias Ulbrich Alexander Weigl Michael Kirsten Franziska Wiebe Bernhard Beckert Birgit Vogel-HeuserA verification-supported evolution approach to assist software application engineers in industrial factory automationIEEE international symposium on assembly and manufacturing (ISAM 2016)@inproceedings{UlewiczUlbrichEA2016, ids = {Ulewicz16}, author = {['Sebastian Ulewicz', 'Mattias Ulbrich', 'Alexander Weigl', 'Michael Kir\xadsten', 'Franziska Wiebe', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, booktitle = {IEEE International Symposium on Assembly and Manufacturing (ISAM 2016)}, title = {A Verification-Supported Evolution Approach to Assist Software Application Engineers in Industrial Factory Automation}, year = {2016}, month = {August}, pages = {19–25}, publisher = {IEEE}, --address = {Fort Worth, USA}, abstract = {Automated production systems (aPS) are complex systems with high reliability standards which can – besides through traditional testing – be ensured by verification using formal methods. In this paper we present a development process for aPS software supported by efficient formal techniques with easy-to-use specification formalisms to incease applicability in the aPS engineering domain. Our approach is tailored to the development of evolving aPS as existing behavior of earlier system revisions is reused as specification for the verification. The approach covers three verification phases: regression verification, verification of critical interlock invariants and delta specification and verification. The approach is designed to be comprehensible by aPS software engineers: Two practically applicable specification means are presented. Formal methods have not yet been widely adapted in industrial aPS development since they lack (a) scalability, and (b) concise and comprehensible specification means. This paper shows concepts how to tackle both issues by referring to existing behavior during evolution verification to advance towards the goal of applicability in the aPS engineering domain. A laboratory case study demonstrates the feasibility and performance of the approach and shows promising results.}, --date = {August 21-22}, doi = {10.1109/ISAM.2016.7750714}, place = {Fort Worth, TX, USA} }ABSTRACT Copy BibTex⧉
- A method for invariant generation for polynomial continuous systemsVMCAI@inproceedings{DBLP:conf/vmcai/SogokonGJP16, pdf = {pub/abstraction-ddc.pdf}, slides = {pub/abstraction-ddc-slides.pdf}, author = {['Andrew Sogokon', 'Khalil Ghorbal', 'Paul B. Jackson', 'André Platzer']}, title = {A Method for Invariant Generation for Polynomial Continuous Systems}, booktitle = {VMCAI}, year = {2016}, pages = {268-288}, doi = {10.1007/978-3-662-49122-5_13}, editor = {['Barbara Jobstmann', 'K. Rustan M. Leino']}, longbooktitle = {Verification, Model Checking, and Abstract Interpretation - 17th International Conference, VMCAI 2016, St. Petersburg, FL, USA, January 17-19, 2016, Proceedings}, series = {LNCS}, volume = {9583}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Nathan Fulton André PlatzerA logic of proofs for differential dynamic logic: Toward independently checkable proof certificates for dynamic logicsProceedings of the 2016 conference on certified programs and proofs, CPP 2016, st. Petersburg, FL, USA, january 18-19, 2016@inproceedings{DBLP:conf/cpp/FultonP16, pdf = {pub/proofterms.pdf}, slides = {pub/proofterms-slides.pdf}, author = {['Nathan Fulton', 'André Platzer']}, title = {A Logic of Proofs for Differential Dynamic Logic: Toward Independently Checkable Proof Certificates for Dynamic Logics}, booktitle = {Proceedings of the 2016 Conference on Certified Programs and Proofs, CPP 2016, St. Petersburg, FL, USA, January 18-19, 2016}, pages = {110-121}, year = {2016}, doi = {10.1145/2854065.2854078}, editor = {['Jeremy Avigad', 'Adam Chlipala']}, publisher = {ACM} }Copy BibTex⧉ PDF Slides
- A component-based approach to hybrid systems safety verificationIFM@inproceedings{DBLP:conf/ifm/MullerMRSP16, pdf = {pub/trafficcomponents.pdf}, slides = {pub/trafficcomponents-slides.pdf}, TR = {DBLP:conf/ifm/MullerMRSP16:TR}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {A Component-based Approach to Hybrid Systems Safety Verification}, booktitle = {IFM}, longbooktitle = {Integrated Formal Methods - 12th International Conference, IFM 2016, Reykjavik, Iceland, June 1-4, 2016, Proceedings}, year = {2016}, pages = {441-456}, doi = {10.1007/978-3-319-33693-0_28}, editor = {['Erika Abraham', 'Marieke Huisman']}, series = {LNCS}, volume = {9681}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Verified traffic networks: Component-based verification of cyber-physical flow systemsITSC@inproceedings{DBLP:conf/itsc/MullerMP15, pdf = {pub/trafficblocks.pdf}, slides = {pub/trafficblocks-slides.pdf}, author = {['Andreas Müller', 'Stefan Mitsch', 'André Platzer']}, title = {Verified Traffic Networks: Component-Based Verification of Cyber-Physical Flow Systems}, booktitle = {ITSC}, longbooktitle = {Intelligent Transportation Systems (ITSC), 2015 IEEE 18th International Conference on}, year = {2015}, pages = {757-764}, doi = {10.1109/ITSC.2015.128}, keywords = {Automobiles, Contracts, Load modeling, Mathematical model, Roads, Safety} }Copy BibTex⧉ PDF Slides
- Regression verification for programmable logic controller softwareFormal methods and software engineering - 17th international conference on formal engineering methods, ICFEM 2015, paris, france, november 3-5, 2015, proceedings@inproceedings{DBLP:conf/icfem/BeckertUVW15, ids = {Beckert2015,BeckertUlbrichEtAl2015}, author = {['Bernhard Beckert', 'Mattias Ulbrich', 'Birgit Vogel-Heuser', 'Alexander Weigl']}, title = {Regression Verification for Programmable Logic Controller Software}, booktitle = {Formal Methods and Software Engineering - 17th International Conference on Formal Engineering Methods, ICFEM 2015, Paris, France, November 3-5, 2015, Proceedings}, pages = {234–251}, year = {2015}, url = {https://doi.org/10.1007/978-3-319-25423-4_15}, doi = {10.1007/978-3-319-25423-4_15}, timestamp = {Sun, 02 Jun 2019 21:19:43 +0200}, biburl = {https://dblp.org/rec/conf/icfem/BeckertUVW15.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Proving equivalence between control software variants for Programmable Logic Controllers: Using Regression Verification to Reduce Unneeded Variant DiversityIEEE international conference on emerging technologies and factory automation, ETFA@inproceedings{Ulewicz2015, ids = {UlewiczEtAl2015}, author = {['Sebastian Ulewicz', 'Birgit Vogel-Heuser', 'Mattias Ulbrich', 'Alexander Weigl', 'Bernhard Beckert']}, booktitle = {IEEE International Conference on Emerging Technologies and Factory Automation, ETFA}, title = {Proving equivalence between control software variants for Programmable Logic Controllers: Using Regression Verification to Reduce Unneeded Variant Diversity}, year = {2015}, pages = {1–5}, volume = {2015-October}, abstract = {© 2015 IEEE. Automated production systems are usually driven by Programmable Logic Controllers (PLCs). These systems are long-living and have high requirements for software quality to avoid downtimes, damaged product and harm to personnel. While commissioning multiple systems of similar type, pragmatic adjustments of the software are often necessary, which results in two or more similar variants of initially identical software. For further evolution of the software, an equivalence analysis of the software's behavior is beneficial to merge divergent development branches into a single program version. This paper presents a novel method for regression verification of PLC code, which allows one to prove that two variants of a plant's software behave identically in specified situations, despite being implemented differently. For this, a regression verification method for PLC code was designed, implemented and evaluated. The notion of program equivalence for reactive PLC code is clarified and defined. Core elements of the method are the translation of PLC code into the SMV input language for model checkers, the adaptation of the coupling invariants concept to reactive systems, and the implementation of a toolchain using a model checker. The approach was successfully evaluated using the Pick-and-Place Unit benchmark case study.}, doi = {10.1109/ETFA.2015.7301603} }ABSTRACT Copy BibTex⧉
- KeYmaera X: An axiomatic tactical theorem prover for hybrid systemsCADE@inproceedings{DBLP:conf/cade/FultonMQVP15, pdf = {pub/KeYmaeraX.pdf}, slides = {pub/KeYmaeraX-slides.pdf}, author = {['Nathan Fulton', 'Stefan Mitsch', 'Jan-David Quesel', 'Marcus Völp', 'André Platzer']}, title = {KeYmaera X: An Axiomatic Tactical Theorem Prover for Hybrid Systems}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-25, Berlin, Germany, Proceedings}, year = {2015}, pages = {527–538}, doi = {10.1007/978-3-319-21401-6_36}, editor = {['Amy P. Felty', 'Aart Middeldorp']}, publisher = {Springer}, series = {LNCS}, volume = {9195} }Copy BibTex⧉ PDF Slides
- How to prove hybrid systems and why that mattersICCSE@inproceedings{DBLP:conf/iccse/Platzer15, pdf = {pub/iccse15.pdf}, author = {['André Platzer']}, title = {How to Prove Hybrid Systems and Why That Matters}, booktitle = {ICCSE}, longbooktitle = {2015 International Conference on Complex Systems Engineering (ICCSE)}, year = {2015}, pages = {}, doi = {10.1109/ComplexSys.2015.7385983} }Copy BibTex⧉ PDF
- Forward invariant cuts to simplify proofs of safetyEMSOFT@inproceedings{DBLP:conf/emsoft/ArechigaKDPK15, author = {['Nikos Arechiga', 'James Kapinski', 'Jyotirmoy V. Deshmukh', 'André Platzer', 'Bruce H. Krogh']}, title = {Forward invariant cuts to simplify proofs of safety}, booktitle = {EMSOFT}, pages = {227-236}, year = {2015}, doi = {10.1109/EMSOFT.2015.7318278}, editor = {['Alain Girault', 'Nan Guan']}, longbooktitle = {2015 International Conference on Embedded Software, EMSOFT 2015, Amsterdam, The Netherlands, October 4-9, 2015}, publisher = {IEEE}, isbn = {978-1-4673-8079-9} }Copy BibTex⧉
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Ryan Gardner Aurora Schmidt Erik Zawadzki André PlatzerFormal verification of ACAS X, an industrial airborne collision avoidance systemEMSOFT@inproceedings{DBLP:conf/emsoft/JeanninGKGSZP15, pdf = {pub/acasx-industrial.pdf}, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Ryan Gardner', 'Aurora Schmidt', 'Erik Zawadzki', 'André Platzer']}, title = {Formal Verification of ACAS X, an Industrial Airborne Collision Avoidance System}, booktitle = {EMSOFT}, year = {2015}, pages = {127-136}, doi = {10.1109/EMSOFT.2015.7318268}, editor = {['Alain Girault', 'Nan Guan']}, longbooktitle = {2015 International Conference on Embedded Software, EMSOFT 2015, Amsterdam, The Netherlands, October 4-9, 2015}, publisher = {IEEE Press} }Copy BibTex⧉ PDF
- A uniform substitution calculus for differential dynamic logicCADE@inproceedings{DBLP:conf/cade/Platzer15, pdf = {pub/usubst.pdf}, slides = {pub/usubst-slides.pdf}, ref = {DBLP:journals/jar/Platzer17}, refname = {JAR'17}, author = {['André Platzer']}, title = {A Uniform Substitution Calculus for Differential Dynamic Logic}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-25, Berlin, Germany, Proceedings}, year = {2015}, pages = {467-481}, doi = {10.1007/978-3-319-21401-6_32}, editor = {['Amy P. Felty', 'Aart Middeldorp']}, publisher = {Springer}, series = {LNCS}, volume = {9195}, eprint = {1503.01981} }Copy BibTex⧉ PDF Slides Preprint
- A hierarchy of proof rules for checking differential invariance of algebraic setsVMCAI@inproceedings{DBLP:conf/vmcai/GhorbalSP15, pdf = {pub/alginv-bench.pdf}, slides = {pub/alginv-bench-slides.pdf}, ref = {DBLP:journals/cl/GhorbalSP17}, refname = {ComLan'17}, study = {https://www.lix.polytechnique.fr/ ghorbal/VMCAI2015}, author = {['Khalil Ghorbal', 'Andrew Sogokon', 'André Platzer']}, title = {A Hierarchy of Proof Rules for Checking Differential Invariance of Algebraic Sets}, booktitle = {VMCAI}, year = {2015}, pages = {431-448}, doi = {10.1007/978-3-662-46081-8_24}, editor = {["Deepak D'Souza", 'Akash Lal', 'Kim Guldstrand Larsen']}, longbooktitle = {Verification, Model Checking, and Abstract Interpretation - 16th International Conference, VMCAI 2015, Mumbai, India, January 12-14, 2015, Proceedings}, series = {LNCS}, volume = {8931}, publisher = {Springer} }Copy BibTex⧉ PDF Slides
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Ryan Gardner Aurora Schmidt Erik Zawadzki André PlatzerA formally verified hybrid system for the next-generation airborne collision avoidance systemTACAS@inproceedings{DBLP:conf/tacas/JeanninGKGSZP15, pdf = {pub/acasx-zones.pdf}, ref = {DBLP:journals/sttt/JeanninGKSGMP17}, refname = {STTT'17}, study = {https://www.ls.cs.cmu.edu/pub/acasx.zip}, TR = {DBLP:conf/tacas/JeanninGKGSZP15:TR}, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Ryan Gardner', 'Aurora Schmidt', 'Erik Zawadzki', 'André Platzer']}, title = {A Formally Verified Hybrid System for the Next-generation Airborne Collision Avoidance System}, booktitle = {TACAS}, year = {2015}, pages = {21-36}, doi = {10.1007/978-3-662-46681-0_2}, editor = {['Christel Baier', 'Cesare Tinelli']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems - 21st International Conference, TACAS 2015, London, UK, April 11-18, 2015, Proceedings}, series = {LNCS}, volume = {9035}, publisher = {Springer} }Copy BibTex⧉ PDF
- Refactoring, refinement, and reasoning: A logical characterization for hybrid systemsFM@inproceedings{DBLP:conf/fm/MitschQP14, pdf = {pub/refactoring.pdf}, slides = {pub/refactoring-slides.pdf}, author = {['Stefan Mitsch', 'Jan-David Quesel', 'André Platzer']}, title = {Refactoring, Refinement, and Reasoning: A Logical Characterization for Hybrid Systems}, booktitle = {FM}, year = {2014}, pages = {481-496}, doi = {10.1007/978-3-319-06410-9_33}, editor = {['Cliff B. Jones', 'Pekka Pihlajasaari', 'Jun Sun']}, longbooktitle = {FM 2014: Formal Methods, 19th International Symposium on Formal Methods, Singapore, May 12-16, 2014, Proceedings}, publisher = {Springer}, volume = {8442} }Copy BibTex⧉ PDF Slides
- ModelPlex: Verified runtime validation of verified cyber-physical system modelsRV@inproceedings{DBLP:conf/rv/MitschP14, pdf = {pub/modelplex.pdf}, slides = {pub/modelplex-slides.pdf}, ref = {DBLP:journals/fmsd/MitschP16}, refname = {FMSD'16}, study = {pub/modelplex-study.zip}, TR = {DBLP:conf/rv/MitschP14:TR}, author = {['Stefan Mitsch', 'André Platzer']}, title = {ModelPlex: Verified Runtime Validation of Verified Cyber-Physical System Models}, booktitle = {RV}, year = {2014}, pages = {199-214}, doi = {10.1007/978-3-319-11164-3_17}, editor = {['Borzoo Bonakdarpour', 'Scott A. Smolka']}, longbooktitle = {Runtime Verification - 5th International Conference, RV 2014, Toronto, ON, Canada, September 22–25, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {8734} }Copy BibTex⧉ PDF Slides
- Invariance of conjunctions of polynomial equalities for algebraic differential equationsSAS@inproceedings{DBLP:conf/sas/GhorbalSP14, pdf = {pub/alginvand-bench.pdf}, slides = {pub/alginvand-bench-slides.pdf}, study = {https://www.lix.polytechnique.fr/ ghorbal/SAS2014}, author = {['Khalil Ghorbal', 'Andrew Sogokon', 'André Platzer']}, title = {Invariance of Conjunctions of Polynomial Equalities for Algebraic Differential Equations}, booktitle = {SAS}, year = {2014}, pages = {151-167}, editor = {['Markus Müller-Olm', 'Helmut Seidl']}, longbooktitle = {Static Analysis - 21th International Symposium, SAS 2014, Munich, Germany, September 11-13, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {8723}, isbn = {978-3-319-10935-0}, doi = {10.1007/978-3-319-10936-7_10} }Copy BibTex⧉ PDF Slides
- From safety to guilty & from liveness to niceness5th workshop on formal methods for robotics and automation@inproceedings{DBLP:conf/fmra/MitschQP14, pdf = {pub/safety-guilty-liveness-niceness.pdf}, author = {['Stefan Mitsch', 'Jan-David Quesel', 'André Platzer']}, title = {From Safety to Guilty & from Liveness to Niceness}, editor = {['Calin Belta', 'Hadas Kress-Gazit']}, booktitle = {5th Workshop on Formal Methods for Robotics and Automation}, year = {2014}, doi = {10.1184/R1/6605882.v1} }Copy BibTex⧉ PDF
- Jean-Baptiste Jeannin André PlatzerdTL^2: Differential temporal dynamic logic with nested temporalities for hybrid systemsIJCAR@inproceedings{DBLP:conf/cade/JeanninP14, pdf = {pub/dTL2.pdf}, slides = {pub/dTL2-slides.pdf}, author = {['Jean-Baptiste Jeannin', 'André Platzer']}, title = {dTL$^2$: Differential Temporal Dynamic Logic with Nested Temporalities for Hybrid Systems}, booktitle = {IJCAR}, year = {2014}, pages = {292-306}, doi = {10.1007/978-3-319-08587-6_22}, editor = {['Stéphane Demri', 'Deepak Kapur', 'Christoph Weidenbach']}, longbooktitle = {Automated Reasoning - 7th International Joint Conference, IJCAR 2014, Held as Part of the Vienna Summer of Logic, VSL 2014, Vienna, Austria, July 19-22, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, subseries = {LNAI}, volume = {8562}, isbn = {978-3-319-08586-9} }Copy BibTex⧉ PDF Slides
- Khalil Ghorbal André PlatzerCharacterizing algebraic invariants by differential radical invariantsTACAS@inproceedings{DBLP:conf/tacas/GhorbalP14, pdf = {pub/diffradicalinv.pdf}, slides = {pub/diffradicalinv-slides.pdf}, study = {pub/DRI-gen.zip}, TR = {DBLP:conf/tacas/GhorbalP14:TR}, author = {['Khalil Ghorbal', 'André Platzer']}, title = {Characterizing Algebraic Invariants by Differential Radical Invariants}, booktitle = {TACAS}, year = {2014}, pages = {279-294}, doi = {10.1007/978-3-642-54862-8_19}, editor = {['Erika Ábrahám', 'Klaus Havelund']}, longbooktitle = {Tools and Algorithms for the Construction and Analysis of Systems - 20th International Conference, TACAS 2014, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2014, Grenoble, France, April 5-13, 2014. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {8413}, isbn = {978-3-642-54861-1} }Copy BibTex⧉ PDF Slides
- Teaching CPS foundations with contractsCPS-ed@inproceedings{DBLP:conf/cpsed/Platzer13, pdf = {pub/CPSFEd.pdf}, slides = {pub/CPSFEd-slides.pdf}, author = {['André Platzer']}, title = {Teaching CPS Foundations With Contracts}, year = {2013}, booktitle = {CPS-Ed}, longbooktitle = {First Workshop on Cyber-Physical Systems Education}, pages = {7-10}, eprint = {https://cps-vo.org/file/7247/download/19327} }Copy BibTex⧉ PDF Slides Preprint
- On provably safe obstacle avoidance for autonomous robotic ground vehiclesRobotics: Science and systems@inproceedings{DBLP:conf/rss/MitschGP13, pdf = {pub/robix.pdf}, slides = {pub/robix-slides.pdf}, ref = {DBLP:journals/ijrr/MitschGVP17}, refname = {IJRR'17}, study = {pub/robix-examples.zip}, author = {['Stefan Mitsch', 'Khalil Ghorbal', 'André Platzer']}, title = {On Provably Safe Obstacle Avoidance for Autonomous Robotic Ground Vehicles}, booktitle = {Robotics: Science and Systems}, year = {2013}, editor = {['Paul Newman', 'Dieter Fox', 'David Hsu']}, longbooktitle = {Robotics: Science and Systems IX, Technische Universität Berlin, Berlin, Germany, June 24 - June 28, 2013}, isbn = {978-981-07-3937-9}, doi = {10.15607/RSS.2013.IX.014} }Copy BibTex⧉ PDF Slides
- Formal verification of distributed aircraft controllersHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013@inproceedings{DBLP:conf/hybrid/LoosRP13, pdf = {pub/discworld.pdf}, slides = {pub/discworld-slides.pdf}, study = {https://www.ls.cs.cmu.edu/discworld}, TR = {DBLP:conf/hybrid/LoosRP13:TR}, author = {['Sarah M. Loos', 'David W. Renshaw', 'André Platzer']}, title = {Formal Verification of Distributed Aircraft Controllers}, year = {2013}, pages = {125-130}, doi = {10.1145/2461328.2461350}, publisher = {ACM}, editor = {['Calin Belta', 'Franjo Ivancic']}, booktitle = {Hybrid Systems: Computation and Control (part of CPS Week 2013), HSCC'13, Philadelphia, PA, USA, April 8-13, 2013} }Copy BibTex⧉ PDF Slides
- Efficiency analysis of formally verified adaptive cruise controllersITSC@inproceedings{DBLP:conf/itsc/LoosWSP13, pdf = {pub/dccs-efficiency.pdf}, slides = {pub/dccs-efficiency-slides.pdf}, study = {pub/dccs-efficiency-examples.zip}, author = {['Sarah M. Loos', 'David Witmer', 'Peter Steenkiste', 'André Platzer']}, title = {Efficiency Analysis of Formally Verified Adaptive Cruise Controllers}, booktitle = {ITSC}, longbooktitle = {Intelligent Transportation Systems (ITSC), 16th International IEEE Conference on, October 6-9, The Hague, Netherlands, Proceedings}, year = {2013}, pages = {1565-1570}, doi = {10.1109/ITSC.2013.6728453}, editor = {['Andreas Hegyi', 'Bart De Schutter']}, isbn = {978-1-4799-2914-613}, keywords = {Traffic theory for ITS, Network modeling, Driver assistance systems, V2V wireless communication, Hybrid systems, Formal verification}, abstract = { We consider an adaptive cruise control system in which control decisions are made based on position and velocity information received from other vehicles via V2V wireless communication. If the vehicles follow each other at a close distance, they have better wireless reception but collisions may occur when a follower car does not receive notice about the decelerations of the leader car fast enough to react before it is too late. If the vehicles are farther apart, they would have a bigger safety margin, but the wireless communication drops out more often, so that the follower car no longer receives what the leader car is doing. In order to guarantee safety, such a system must return control to the driver if it does not receive an update from a nearby vehicle within some timeout period. The value of this timeout parameter encodes a tradeoff between the likelihood that an update is received and the maximum safe acceleration. Combining formal verification techniques for hybrid systems with a wireless communication model, we analyze how the expected efficiency of a provably-safe adaptive cruise control syst em is affected by the value of this timeout. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Certifying the safe design of a virtual fixture control algorithm for a surgical robotHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013@inproceedings{DBLP:conf/hybrid/KouskoulasRPK13, pdf = {pub/medrobot.pdf}, slides = {pub/medrobot-slides.pdf}, study = {pub/medrobot-examples.zip}, author = {['Yanni Kouskoulas', 'David W. Renshaw', 'André Platzer', 'Peter Kazanzides']}, title = {Certifying the Safe Design of a Virtual Fixture Control Algorithm for a Surgical Robot}, year = {2013}, pages = {263-272}, doi = {10.1145/2461328.2461369}, publisher = {ACM}, editor = {['Calin Belta', 'Franjo Ivancic']}, booktitle = {Hybrid Systems: Computation and Control (part of CPS Week 2013), HSCC'13, Philadelphia, PA, USA, April 8-13, 2013} }Copy BibTex⧉ PDF Slides
- A projection algorithm for strictly monotone linear complementarity problems6th NIPS workshop on optimization for machine learning@inproceedings{DBLP:conf/optml/ZawadzkiGP13, pdf = {pub/lcp-proj-short.pdf}, author = {['Erik P. Zawadzki', 'Geoffrey J. Gordon', 'André Platzer']}, title = {A Projection Algorithm for Strictly Monotone Linear Complementarity Problems}, booktitle = {6th NIPS Workshop on Optimization for Machine Learning}, year = {2013}, eprint = {https://sites.google.com/site/mloptstat/opt-2013/opt2013_submission_12.pdf} }Copy BibTex⧉ PDF Preprint
- A generalization of SAT and #SAT for policy evaluationIJCAI@inproceedings{DBLP:conf/ijcai/ZawadzkiPG13, pdf = {pub/sharpE.pdf}, TR = {DBLP:conf/ijcai/ZawadzkiPG13:TR}, author = {['Erik P. Zawadzki', 'André Platzer', 'Geoffrey J. Gordon']}, title = {A Generalization of SAT and #SAT for Policy Evaluation}, booktitle = {IJCAI}, year = {2013}, pages = {2583-2589}, editor = {['Francesca Rossi']}, longbooktitle = {IJCAI 2013, Proceedings of the 23nd International Joint Conference on Artificial Intelligence, Beijing, China, August 3-9, 2013}, publisher = {IJCAI/AAAI}, isbn = {}, eprint = {http://ijcai.org/Abstract/13/380} }Copy BibTex⧉ PDF Preprint
- Using theorem provers to guarantee closed-loop system propertiesACC@inproceedings{DBLP:conf/acc/ArechigaLPK12, pdf = {pub/TPgenloop.pdf}, author = {['Nikos Aréchiga', 'Sarah M. Loos', 'André Platzer', 'Bruce H. Krogh']}, title = {Using Theorem Provers to Guarantee Closed-Loop System Properties}, booktitle = {ACC}, longbooktitle = {American Control Conference, Montréal, Canada, June 27-29}, year = {2012}, editor = {['Dawn Tilbury']}, pages = {3573-3580}, doi = {10.1109/ACC.2012.6315388} }Copy BibTex⧉ PDF
- Towards formal verification of freeway traffic controlICCPS@inproceedings{DBLP:conf/iccps/MitschLP12, pdf = {pub/trafficcenter.pdf}, slides = {pub/trafficcenter-slides.pdf}, study = {pub/trafficcenter-examples.zip}, author = {['Stefan Mitsch', 'Sarah M. Loos', 'André Platzer']}, title = {Towards formal verification of freeway traffic control}, booktitle = {ICCPS}, longbooktitle = {ACM/IEEE Third International Conference on Cyber-Physical Systems, Beijing, China, April 17-19}, year = {2012}, pages = {171-180}, publisher = {IEEE}, isbn = {978-0-7695-4695-7}, doi = {10.1109/ICCPS.2012.25}, editor = {['Chenyang Lu']} }Copy BibTex⧉ PDF Slides
- The complete proof theory of hybrid systemsLICS@inproceedings{DBLP:conf/lics/Platzer12b, pdf = {pub/completealign.pdf}, slides = {pub/completealign-slides.pdf}, TR = {DBLP:conf/lics/Platzer12b:TR}, author = {['André Platzer']}, title = {The Complete Proof Theory of Hybrid Systems}, booktitle = {LICS}, year = {2012}, pages = {541-550}, doi = {10.1109/LICS.2012.64}, longbooktitle = {Proceedings of the 27th Annual ACM/IEEE Symposium on Logic in Computer Science, LICS 2012, Dubrovnik, Croatia, June 25???28, 2012}, publisher = {IEEE}, isbn = {978-1-4673-2263-8}, keywords = {proof theory, hybrid dynamical systems, differential dynamic logic, axiomatization, completeness}, abstract = { Hybrid systems are a fusion of continuous dynamical systems and discrete dynamical systems. They freely combine dynamical features from both worlds. For that reason, it has often been claimed that hybrid systems are more challenging than continuous dynamical systems and than discrete systems. We now show that, proof-theoretically, this is not the case. We present a complete proof-theoretical alignment that interreduces the discrete dynamics and the continuous dynamics of hybrid systems. We give a sound and complete axiomatization of hybrid systems relative to continuous dynamical systems and a sound and complete axiomatization of hybrid systems relative to discrete dynamical systems. Thanks to our axiomatization, proving properties of hybrid systems is exactly the same as proving properties of continuous dynamical systems and again, exactly the same as proving properties of discrete dynamical systems. This fundamental cornerstone sheds light on the nature of hybridness and enables flexible and provably perfect combinations of discrete reasoning with continuous reasoning that lift to all aspects of hybrid systems and their fragments.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Statistical model checking for Markov decision processesQEST@inproceedings{DBLP:conf/qest/HenriquesMZPC12, pdf = {pub/smcmdp.pdf}, slides = {pub/smcmdp-slides.pdf}, study = {https://www.cs.cmu.edu/ jmartins/QEST12.zip}, author = {['David Henriques', 'João G. Martins', 'Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Statistical Model Checking for Markov Decision Processes}, booktitle = {QEST}, year = {2012}, pages = {84-93}, doi = {10.1109/QEST.2012.19}, longbooktitle = {Ninth International Conference on Quantitative Evaluation of Systems, QEST 2012, London, UK, 17-20 September, 2012}, publisher = {IEEE Computer Society}, keywords = {statistical model checking, Markov decision processes, reinforcement learning}, abstract = { Statistical Model Checking (SMC) is a computationally very efficient verification technique based on selective system sampling. One well identified shortcoming of SMC is that, unlike probabilistic model checking, it cannot be applied to systems featuring nondeterminism, such as Markov Decision Processes (MDP). We address this limitation by developing an algorithm that resolves nondeterminism probabilistically, and then uses multiple rounds of sampling and Reinforcement Learning to provably improve resolutions of nondeterminism with respect to satisfying a Bounded Linear Temporal Logic (BLTL) property. Our algorithm thus reduces an MDP to a fully probabilistic Markov chain on which SMC may be applied to give an approximate solution to the problem of checking the probabilistic BLTL property. We integrate our algorithm in a parallelised modification of the PRISM simulation framework. Extensive validation with both new and PRISM benchmarks demonstrates that the approach scales very well in scenarios where symbolic algorithms fail to do so.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Jan-David Quesel André PlatzerPlaying hybrid games with KeYmaeraIJCAR@inproceedings{DBLP:conf/cade/QueselP12, pdf = {pub/game-KeYmaera.pdf}, slides = {pub/game-KeYmaera-slides.pdf}, study = {pub/game-KeYmaera-study.zip}, author = {['Jan-David Quesel', 'André Platzer']}, title = {Playing Hybrid Games with KeYmaera}, booktitle = {IJCAR}, year = {2012}, pages = {439-453}, doi = {10.1007/978-3-642-31365-3_34}, editor = {['Bernhard Gramlich', 'Dale Miller', 'Ulrike Sattler']}, longbooktitle = {Automated Reasoning - 6th International Joint Conference, IJCAR 2012, Manchester, UK. Proceedings}, series = {LNCS}, volume = {7364}, publisher = {Springer}, isbn = {978-3-642-31364-6} }Copy BibTex⧉ PDF Slides
- Logics of dynamical systemsLICS@inproceedings{DBLP:conf/lics/Platzer12a, pdf = {pub/lds-lics.pdf}, slides = {pub/lds-slides.pdf}, author = {['André Platzer']}, title = {Logics of Dynamical Systems}, booktitle = {LICS}, year = {2012}, pages = {13-24}, doi = {10.1109/LICS.2012.13}, longbooktitle = {Proceedings of the 27th Annual ACM/IEEE Symposium on Logic in Computer Science, LICS 2012, Dubrovnik, Croatia, June 25???28, 2012}, publisher = {IEEE}, isbn = {978-1-4673-2263-8}, keywords = {logic of dynamical systems, dynamic logic, differential dynamic logic, hybrid systems, axiomatization, deduction}, abstract = { We study the logic of dynamical systems, that is, logics and proof principles for properties of dynamical systems. Dynamical systems are mathematical models describing how the state of a system evolves over time. They are important in modeling and understanding many applications, including embedded systems and cyber-physical systems. In discrete dynamical systems, the state evolves in discrete steps, one step at a time, as described by a difference equation or discrete state transition relation. In continuous dynamical systems, the state evolves continuously along a function, typically described by a differential equation. Hybrid dynamical systems or hybrid systems combine both discrete and continuous dynamics. This is a brief survey of differential dynamic logic for specifying and verifying properties of hybrid systems. We explain hybrid system models, differential dynamic logic, its semantics, and its axiomatization for proving logical formulas about hybrid systems. We study differential invariants, i.e., induction principles for differential equations. We briefly survey theoretical results, including soundness and completeness and deductive power. Differential dynamic logic has been implemented in automatic and interactive theorem provers and has been used successfully to verify safety-critical applications in automotive, aviation, railway, robotics, and analogue electrical circuits.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Logical analysis of hybrid systems: A complete answer to a complexity challengeDCFS@inproceedings{DBLP:conf/dcfs/Platzer12, pdf = {pub/dcfs12.pdf}, author = {['André Platzer']}, title = {Logical Analysis of Hybrid Systems: A Complete Answer to a Complexity Challenge}, booktitle = {DCFS}, longbooktitle = {Descriptional Complexity of Formal Systems - 14th International Workshop, DCFS 2012, Braga, Portugal, July 23-25, 2012. Proceedings}, year = {2012}, pages = {43-49}, doi = {10.1007/978-3-642-31623-4_3}, editor = {['Martin Kutrib', 'Nelma Moreira', 'Rogério Reis']}, publisher = {Springer}, series = {LNCS}, volume = {7386}, isbn = {978-3-642-31622-7} }Copy BibTex⧉ PDF
- A differential operator approach to equational differential invariantsITP@inproceedings{DBLP:conf/itp/Platzer12, pdf = {pub/diffop.pdf}, slides = {pub/diffop-slides.pdf}, author = {['André Platzer']}, title = {A Differential Operator Approach to Equational Differential Invariants}, booktitle = {ITP}, longbooktitle = {Interactive Theorem Proving, International Conference, ITP 2012, August 13-15, Princeton, USA}, year = {2012}, pages = {28-48}, month = {}, editor = {['Lennart Beringer', 'Amy Felty']}, publisher = {Springer}, series = {LNCS}, volume = {7406}, doi = {10.1007/978-3-642-32347-8_3}, keywords = {differential dynamic logic, differential invariants, differential equations, hybrid systems}, abstract = { Hybrid systems, i.e., dynamical systems combining discrete and continuous dynamics, have a complete axiomatization in differential dynamic logic relative to differential equations. Differential invariants are a natural induction principle for proving properties of the remaining differential equations. We study the equational case of differential invariants using a differential operator view. We relate differential invariants to Lie's seminal work and explain important structural properties resulting from this view. Finally, we study the connection of differential invariants with partial differential equations in the context of the inverse characteristic method for computing differential invariants. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Using parameters in architectural views to support heterogeneous design and verificationCDC@inproceedings{DBLP:conf/cdc/RajhansBLKPG11, pdf = {pub/heterogeneous-views.pdf}, ref = {DBLP:journals/tac/RajhansBRKGPS14}, refname = {TAC'14}, author = {['Akshay Rajhans', 'Ajinkya Bhave', 'Sarah M. Loos', 'Bruce H. Krogh', 'André Platzer', 'David Garlan']}, title = {Using parameters in architectural views to support heterogeneous design and verification}, booktitle = {CDC}, longbooktitle = {50th IEEE Conference on Decision and Control and European Control Conference}, year = {2011}, pages = {2705-2710}, doi = {10.1109/CDC.2011.6161408}, isbn = {978-1-61284-800-6} }Copy BibTex⧉ PDF
- Stochastic differential dynamic logic for stochastic hybrid programsCADE@inproceedings{DBLP:conf/cade/Platzer11, pdf = {pub/SdL.pdf}, slides = {pub/SdL-slides.pdf}, TR = {DBLP:conf/cade/Platzer11:TR}, author = {['André Platzer']}, title = {Stochastic Differential Dynamic Logic for Stochastic Hybrid Programs}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-23, Wrocław, Poland, Proceedings}, year = {2011}, pages = {446-460}, doi = {10.1007/978-3-642-22438-6_34}, keywords = {dynamic logic, proof calculus, stochastic differential equations, stochastic hybrid systems, stochastic processes}, editor = {['Nikolaj Bjørner', 'Viorica Sofronie-Stokkermans']}, publisher = {Springer}, series = {LNCS}, volume = {6803}, isbn = {}, abstract = { Logic is a powerful tool for analyzing and verifying systems, including programs, discrete systems, real-time systems, hybrid systems, and distributed systems. Some applications also have a stochastic behavior, however, either because of fundamental properties of nature, uncertain environments, or simplifications to overcome complexity. Discrete probabilistic systems have been studied using logic. But logic has been chronically underdeveloped in the context of stochastic hybrid systems, i.e., systems with interacting discrete, continuous, and stochastic dynamics. We aim at overcoming this deficiency and introduce a dynamic logic for stochastic hybrid systems. Our results indicate that logic is a promising tool for understanding stochastic hybrid systems and can help taming some of their complexity. We introduce a compositional model for stochastic hybrid systems. We prove adaptivity, cadlag, and Markov time properties, and prove that the semantics of our logic is measurable. We present compositional proof rules, including rules for stochastic differential equations, and prove soundness. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Statistical model checking for distributed probabilistic-control hybrid automata with smart grid applicationsICFEM@inproceedings{DBLP:conf/icfem/MartinsPL11, pdf = {pub/bayesmc-grid.pdf}, slides = {pub/bayesmc-grid-slides.pdf}, study = {https://www.cs.cmu.edu/ jmartins/smart.html}, author = {['João Martins', 'André Platzer', 'João Leite']}, title = {Statistical Model Checking for Distributed Probabilistic-Control Hybrid Automata with Smart Grid Applications}, booktitle = {ICFEM}, year = {2011}, pages = {131-146}, doi = {10.1007/978-3-642-24559-6_11}, editor = {['Shengchao Qin', 'Zongyan Qiu']}, longbooktitle = {Formal Methods and Software Engineering, 13th International Conference on Formal Engineering Methods, ICFEM 2011, Durham, UK, October 26-28, 2011. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6991}, isbn = {}, keywords = {Bayesian statistical model checking, distributed hybrid systems, probabilistic hybrid automata, verification of smart grid} }Copy BibTex⧉ PDF Slides
- Sarah M. Loos André PlatzerSafe intersections: At the crossing of hybrid systems and verificationITSC@inproceedings{DBLP:conf/itsc/LoosP11, pdf = {pub/intersection.pdf}, slides = {pub/intersection-slides.pdf}, study = {pub/intersection-examples.zip}, author = {['Sarah M. Loos', 'André Platzer']}, title = {Safe Intersections: At the Crossing of Hybrid Systems and Verification}, booktitle = {ITSC}, longbooktitle = {Intelligent Transportation Systems (ITSC), 14th International IEEE Conference on, October 5-7, Washington, DC, USA, Proceedings}, year = {2011}, pages = {1181-1186}, doi = {10.1109/ITSC.2011.6083138}, keywords = {}, editor = {['Kyongsu Yi']} }Copy BibTex⧉ PDF Slides
- Quantifier elimination over finite fields with Gröbner basesCAI@inproceedings{DBLP:conf/cai/GaoPC11, pdf = {pub/QEfin.pdf}, author = {['Sicun Gao', 'André Platzer', 'Edmund M. Clarke']}, title = {Quantifier Elimination over Finite Fields with Gröbner Bases}, booktitle = {CAI}, year = {2011}, pages = {140-157}, doi = {10.1007/978-3-642-21493-6_9}, editor = {['Franz Winkler']}, longbooktitle = {Algebraic Informatics, Fourth International Conference, CAI 2011, Linz, Austria, June 21-24, 2011, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6742} }Copy BibTex⧉ PDF
- Quantified differential invariantsHSCC@inproceedings{DBLP:conf/hybrid/Platzer11, pdf = {pub/Qdiffind.pdf}, slides = {pub/Qdiffind-slides.pdf}, author = {['André Platzer']}, title = {Quantified Differential Invariants}, booktitle = {HSCC}, year = {2011}, pages = {63-72}, doi = {10.1145/1967701.1967713}, editor = {['Emilio Frazzoli', 'Radu Grosu']}, longbooktitle = {Proceedings of the 14th ACM International Conference on Hybrid Systems: Computation and Control, HSCC 2011, Chicago, USA, April 12-14, 2011}, publisher = {ACM}, isbn = {}, keywords = {distributed hybrid systems, verification logic, quantified differential equations, quantified differential invariants}, abstract = { We address the verification problem for distributed hybrid systems with nontrivial dynamics. Consider air traffic collision avoidance maneuvers, for example. Verifying dynamic appearance of aircraft during an ongoing collision avoidance maneuver is a longstanding and essentially unsolved problem. The resulting systems are not hybrid systems and their state space is not of the form R^n. They are distributed hybrid systems with nontrivial continuous and discrete dynamics in distributed state spaces whose dimension and topology changes dynamically over time. We present the first formal verification technique that can handle the complicated nonlinear dynamics of these systems. We introduce quantified differential invariants, which are properties that can be checked for invariance along the dynamics of the distributed hybrid system based on differentiation, quantified substitution, and quantifier elimination in real-closed fields. This gives a computationally attractive technique, because it works without having to solve the infinite-dimensional differential equation systems underlying distributed hybrid systems. We formally verify a roundabout maneuver in which aircraft can appear dynamically.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Logic and compositional verification of hybrid systems (invited tutorial)CAV@inproceedings{DBLP:conf/cav/Platzer11, pdf = {pub/lahs-tutorial.pdf}, slides = {pub/lahs-tutorial-slides.pdf}, author = {['André Platzer']}, title = {Logic and Compositional Verification of Hybrid Systems (Invited Tutorial)}, booktitle = {CAV}, longbooktitle = {Computer Aided Verification, 23rd International Conference, CAV 2011, Snowbird, UT, USA, July 14-20, 2011, Proceedings}, year = {2011}, pages = {28-43}, month = {}, editor = {['Ganesh Gopalakrishnan', 'Shaz Qadeer']}, publisher = {Springer}, series = {LNCS}, volume = {6806}, doi = {10.1007/978-3-642-22110-1_4}, abstract = { Hybrid systems are models for complex physical systems and have become a widely used concept for understanding their behavior. Many applications are safety-critical, including car, railway, and air traffic control, robotics, physical-chemical process control, and biomedical devices. Hybrid systems analysis studies how we can build computerised controllers for physical systems which are guaranteed to meet their design goals. The continuous dynamics of hybrid systems can be modeled by differential equations, the discrete dynamics by a combination of discrete state-transitions and conditional execution. The discrete and continuous dynamics interact to form hybrid systems, which makes them quite challenging for verification. In this tutorial, we survey state-of-the-art verification techniques for hybrid systems. In particular, we focus on a coherent logical approach for systematic hybrid systems analysis. We survey theory, practice, and applications, and show how hybrid systems can be verified in the hybrid systems verification tool KeYmaera. KeYmaera has been used successfully to verify safety, reactivity, controllability, and liveness properties, including collision freedom in air traffic, car, and railway control systems. It has also been used to verify properties of electrical circuits. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Distributed theorem proving for distributed hybrid systemsICFEM@inproceedings{DBLP:conf/icfem/RenshawLP11, pdf = {pub/dtpdhs.pdf}, study = {pub/dtpdhs-examples.zip}, errata = {pub/dtpdhs.pdf}, author = {['David W. Renshaw', 'Sarah M. Loos', 'André Platzer']}, title = {Distributed Theorem Proving for Distributed Hybrid Systems}, booktitle = {ICFEM}, year = {2011}, pages = {356-371}, doi = {10.1007/978-3-642-24559-6_25}, editor = {['Shengchao Qin', 'Zongyan Qiu']}, longbooktitle = {Formal Methods and Software Engineering, 13th International Conference on Formal Engineering Methods, ICFEM 2011, Durham, UK, October 26-28, 2011. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6991}, isbn = {}, keywords = {Hybrid systems, theorem proving, formal verification, distributed systems} }Copy BibTex⧉ PDF
- An instantiation-based theorem prover for first-order programmingProceedings of the 14th international conference on artifical intelligence and statistics (AISTATS) 2011, fort lauderdale, FL, USA@inproceedings{DBLP:conf/aistats/ZawadzkiGP11, pdf = {pub/FOPinstgen.pdf}, author = {['Erik P. Zawadzki', 'Geoffrey J. Gordon', 'André Platzer']}, title = {An Instantiation-Based Theorem Prover for First-Order Programming}, shortbooktitle = {AISTATS}, year = {2011}, pages = {}, doi = {}, booktitle = {Proceedings of the 14th International Conference on Artifical Intelligence and Statistics (AISTATS) 2011, Fort Lauderdale, FL, USA}, volume = {15}, series = {JMLR W&CP}, eprint = {https://proceedings.mlr.press/v15/zawadzki11a.html} }Copy BibTex⧉ PDF Preprint
- Adaptive cruise control: Hybrid, distributed, and now formally verifiedFM@inproceedings{DBLP:conf/fm/LoosPN11, pdf = {pub/dccs.pdf}, slides = {pub/dccs-slides.pdf}, study = {https://www.ls.cs.cmu.edu/dccs/}, TR = {DBLP:conf/fm/LoosPN11:TR}, author = {['Sarah M. Loos', 'André Platzer', 'Ligia Nistor']}, title = {Adaptive Cruise Control: Hybrid, Distributed, and Now Formally Verified}, booktitle = {FM}, year = {2011}, pages = {42-56}, doi = {10.1007/978-3-642-21437-0_6}, editor = {['Michael Butler', 'Wolfram Schulte']}, longbooktitle = {FM 2011: Formal Methods, 17th International Symposium on Formal Methods, Limerick, Ireland, June 20-24, 2011, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6664}, isbn = {}, keywords = {distributed car control, multi-agent systems, highway traffic safety, formal verification, distributed hybrid systems, adaptive cruise control} }Copy BibTex⧉ PDF Slides
- Quantified differential dynamic logic for distributed hybrid systemsCSL@inproceedings{DBLP:conf/csl/Platzer10, pdf = {pub/QdL.pdf}, slides = {pub/QdL-slides.pdf}, ref = {DBLP:journals/lmcs/Platzer12b}, refname = {LMCS'12}, TR = {DBLP:conf/csl/Platzer10:TR}, author = {['André Platzer']}, title = {Quantified Differential Dynamic Logic for Distributed Hybrid Systems}, booktitle = {CSL}, year = {2010}, pages = {469-483}, editor = {['Anuj Dawar', 'Helmut Veith']}, longbooktitle = {Computer Science Logic 24th International Workshop, CSL 2010, 19th Annual Conference of the EACSL, Brno, Czech Republic, August 23-27, 2010. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {6247}, doi = {10.1007/978-3-642-15205-4_36}, isbn = {978-3-642-15204-7}, keywords = {Dynamic logic, Distributed hybrid systems, Axiomatization, Theorem proving, Quantified differential equations}, abstract = { We address a fundamental mismatch between the combinations of dynamics that occur in complex physical systems and the limited kinds of dynamics supported in analysis. Modern applications combine communication, computation, and control. They may even form dynamic networks, where neither structure nor dimension stay the same while the system follows mixed discrete and continuous dynamics. We provide the logical foundations for closing this analytic gap. We develop a system model for distributed hybrid systems that combines quantified differential equations with quantified assignments and dynamic dimensionality-changes. We introduce a dynamic logic for verifying distributed hybrid systems and present a proof calculus for it. We prove that this calculus is a sound and complete axiomatization of the behavior of distributed hybrid systems relative to quantified differential equations. In our calculus we have proven collision freedom in distributed car control even when new cars may appear dynamically on the road.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Bayesian statistical model checking with application to Simulink/Stateflow verificationHSCC@inproceedings{DBLP:conf/hybrid/ZulianiPC10, pdf = {pub/bayesmcest.pdf}, slides = {pub/bayesmcest-slides.pdf}, TR = {DBLP:conf/hybrid/ZulianiPC10:TR}, author = {['Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Bayesian Statistical Model Checking with Application to Simulink/Stateflow Verification}, booktitle = {HSCC}, year = {2010}, pages = {243-252}, doi = {10.1145/1755952.1755987}, editor = {['Karl Henrik Johansson', 'Wang Yi']}, longbooktitle = {Proceedings of the 13th ACM International Conference on Hybrid Systems: Computation and Control, HSCC 2010, Stockholm, Sweden, April 12-15, 2010}, publisher = {ACM}, isbn = {978-1-60558-955-8}, abstract = { We address the problem of model checking stochastic systems, i.e. checking whether a stochastic system satisfies a certain temporal property with a probability greater (or smaller) than a fixed threshold. In particular, we present a novel Statistical Model Checking (SMC) approach based on Bayesian statistics. We show that our approach is feasible for hybrid systems with stochastic transitions, a generalization of Simulink/Stateflow models. Standard approaches to stochastic (discrete) systems require numerical solutions for large optimization problems and quickly become infeasible with larger state spaces. Generalizations of these techniques to hybrid systems with stochastic effects are even more challenging. The SMC approach was pioneered by Younes and Simmons in the discrete and non-Bayesian case. It solves the verification problem by combining randomized sampling of system traces (which is very efficient for Simulink/Stateflow) with hypothesis testing or estimation. We believe SMC is essential for scaling up to large Stateflow/Simulink models. While the answer to the verification problem is not guaranteed to be correct, we prove that Bayesian SMC can make the probability of giving a wrong answer arbitrarily small. The advantage is that answers can usually be obtained much faster than with standard, exhaustive model checking techniques. We apply our Bayesian SMC approach to a representative example of stochastic discrete-time hybrid system models in Stateflow/Simulink: a fuel control system featuring hybrid behavior and fault tolerance. We show that our technique enables faster verification than state-of-the-art statistical techniques, while retaining the same error bounds. We emphasize that Bayesian SMC is by no means restricted to Stateflow/Simulink models: we have in fact successfully applied it to very large stochastic models from Systems Biology.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Real world verificationCADE@inproceedings{DBLP:conf/cade/PlatzerQR09, pdf = {pub/rwv.pdf}, slides = {pub/rwv-slides.pdf}, study = {pub/rwv-examples.zip}, TR = {DBLP:conf/cade/PlatzerQR09:TR}, author = {['André Platzer', 'Jan-David Quesel', 'Philipp Rümmer']}, title = {Real World Verification}, booktitle = {CADE}, longbooktitle = {International Conference on Automated Deduction, CADE-22, Montreal, Canada, Proceedings}, year = {2009}, pages = {485-501}, editor = {['Renate A. Schmidt']}, publisher = {Springer}, series = {LNCS}, volume = {5663}, doi = {10.1007/978-3-642-02959-2_35}, keywords = {real-closed fields, decision procedures, hybrid systems, software verification}, abstract = { Scalable handling of real arithmetic is a crucial part of the verification of hybrid systems, mathematical algorithms, and mixed analog/digital circuits. Despite substantial advances in verification technology, complexity issues with classical decision procedures are still a major obstacle for formal verification of real-world applications, e.g., in automotive and avionic industries. To identify strengths and weaknesses, we examine state of the art symbolic techniques and implementations for the universal fragment of real-closed fields: approaches based on quantifier elimination, Gröbner Bases, and semidefinite programming for the Positivstellensatz. Within a uniform context of the verification tool KeYmaera, we compare these approaches qualitatively and quantitatively on verification benchmarks from hybrid systems, textbook algorithms, and on geometric problems. Finally, we introduce a new decision procedure combining Gröbner Bases and semidefinite programming for the real Nullstellensatz that outperforms the individual approaches on an interesting set of problems.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Edmund M. ClarkeFormal verification of curved flight collision avoidance maneuvers: A case studyFM@inproceedings{DBLP:conf/fm/PlatzerC09, pdf = {pub/RCAS.pdf}, slides = {pub/RCAS-slides.pdf}, study = {pub/RCAS-examples.zip}, TR = {DBLP:conf/fm/PlatzerC09:TR}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Formal Verification of Curved Flight Collision Avoidance Maneuvers: A Case Study}, booktitle = {FM}, year = {2009}, pages = {547-562}, doi = {10.1007/978-3-642-05089-3_35}, editor = {['Ana Cavalcanti', 'Dennis Dams']}, longbooktitle = {FM 2009: Formal Methods, 16th International Symposium on Formal Methods, Eindhoven, Netherlands, November 2-6, 2009, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {5850}, keywords = {formal verification of hybrid systems, deduction, air traffic control, logic for hybrid systems}, abstract = { Aircraft collision avoidance maneuvers are important and complex applications. Curved flight exhibits nontrivial continuous behavior. In combination with the control choices during air traffic maneuvers, this yields hybrid systems with challenging interactions of discrete and continuous dynamics. As a case study illustrating the use of a new proof assistant for a logic for nonlinear hybrid systems, we analyze collision freedom of roundabout maneuvers in air traffic control, where appropriate curved flight, good timing, and compatible maneuvering are crucial for guaranteeing safe spatial separation of aircraft throughout their flight. We show that formal verification of hybrid systems can scale to curved flight maneuvers required in aircraft control applications. We introduce a fully flyable variant of the roundabout collision avoidance maneuver and verify safety properties by compositional verification.} }ABSTRACT Copy BibTex⧉ PDF Slides
- André Platzer Jan-David QueselEuropean Train Control System: A case study in formal verificationICFEM@inproceedings{DBLP:conf/icfem/PlatzerQ09, pdf = {pub/ETCS.pdf}, slides = {pub/ETCS-slides.pdf}, TR = {DBLP:conf/icfem/PlatzerQ09:TR}, author = {['André Platzer', 'Jan-David Quesel']}, title = {European Train Control System: A Case Study in Formal Verification}, booktitle = {ICFEM}, year = {2009}, pages = {246-265}, doi = {10.1007/978-3-642-10373-5_13}, editor = {['Karin Breitman', 'Ana Cavalcanti']}, longbooktitle = {Formal Methods and Software Engineering, 11th International Conference on Formal Engineering Methods, ICFEM 2009, Rio de Janeiro, Brasil, December 9-12, 2009. Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {5885}, isbn = {}, keywords = {formal verification of hybrid systems, train control, theorem proving, parameter constraint identification, disturbances}, abstract = { Complex physical systems have several degrees of freedom. They only work correctly when their control parameters obey corresponding constraints. Based on the informal specification of the European Train Control System (ETCS), we design a controller for its cooperation protocol. For its free parameters, we successively identify constraints that are required to ensure collision freedom. We formally prove the parameter constraints to be sharp by characterizing them equivalently in terms of reachability properties of the hybrid system dynamics. Using our deductive verification tool KeYmaera, we formally verify controllability, safety, liveness, and reactivity properties of the ETCS protocol that entail collision freedom. We prove that the ETCS protocol remains correct even in the presence of perturbation by disturbances in the dynamics. We verify that safety is preserved when a PI controlled speed supervision is used.} }ABSTRACT Copy BibTex⧉ PDF Slides
- A Bayesian approach to model checking biological systemsCMSB@inproceedings{DBLP:conf/cmsb/JhaCLLPZ09, pdf = {pub/bayesmcbio.pdf}, TR = {DBLP:conf/cmsb/JhaCLLPZ09:TR}, author = {['Sumit Kumar Jha', 'Edmund Clarke', 'Christopher Langmead', 'Axel Legay', 'André Platzer', 'Paolo Zuliani']}, title = {A Bayesian Approach to Model Checking Biological Systems}, booktitle = {CMSB}, year = {2009}, pages = {218-234}, editor = {['Pierpaolo Degano', 'Roberto Gorrieri']}, longbooktitle = {Computational Methods in Systems Biology, 7th International Conference, CMSB 2009, Bologna, Italy, Proceedings}, publisher = {Springer}, series = {LNCS}, volume = {5688}, doi = {10.1007/978-3-642-03845-7_15}, abstract = { Recently, there has been considerable interest in the use of Model Checking for Systems Biology. Unfortunately, the state space of stochastic biological models is often too large for classical Model Checking techniques. For these models, a statistical approach to Model Checking has been shown to be an effective alternative. Extending our earlier work, we present the first algorithm for performing statistical Model Checking using Bayesian Sequential Hypothesis Testing. We show that our Bayesian approach outperforms current statistical Model Checking techniques, which rely on tests from Classical (aka Frequentist) statistics, by requiring fewer system simulations. Another advantage of our approach is the ability to incorporate prior Biological knowledge about the model being verified. We demonstrate our algorithm on a variety of models from the Systems Biology literature and show that it enables faster verification than state-of-the-art techniques, even when no prior knowledge is available.} }ABSTRACT Copy BibTex⧉ PDF
- André Platzer Jan-David QueselLogical verification and systematic parametric analysis in train control.HSCC@inproceedings{DBLP:conf/hybrid/PlatzerQ08, pdf = {pub/ETCS-short.pdf}, author = {['André Platzer', 'Jan-David Quesel']}, title = {Logical Verification and Systematic Parametric Analysis in Train Control.}, booktitle = {HSCC}, longbooktitle = {Hybrid Systems: Computation and Control, 10th International Conference, HSCC 2008, St. Louis, USA, Proceedings}, year = {2008}, pages = {646-649}, doi = {10.1007/978-3-540-78929-1_55}, editor = {['Magnus Egerstedt', 'Bud Mishra']}, publisher = {Springer}, series = {LNCS}, volume = {4981}, isbn = {978-3-540-78928-4}, keywords = {parametric verification, logic for hybrid systems, symbolic decomposition}, abstract = { We formally verify hybrid safety properties of cooperation protocols in a fully parametric version of the European Train Control System (ETCS). We present a formal model using hybrid programs and verify correctness using our logic-based decomposition procedure. This procedure supports free parameters and parameter discovery, which is required to determine correct design choices for free parameters of ETCS.} }ABSTRACT Copy BibTex⧉ PDF
- André Platzer Jan-David QueselKeYmaera: A hybrid theorem prover for hybrid systems.IJCAR@inproceedings{DBLP:conf/cade/PlatzerQ08, pdf = {pub/KeYmaera.pdf}, slides = {pub/KeYmaera-slides.pdf}, author = {['André Platzer', 'Jan-David Quesel']}, title = {KeYmaera: A Hybrid Theorem Prover for Hybrid Systems.}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, Fourth International Joint Conference, IJCAR 2008, Sydney, Australia, Proceedings}, year = {2008}, pages = {171-178}, editor = {['Alessandro Armando', 'Peter Baumgartner', 'Gilles Dowek']}, publisher = {Springer}, series = {LNCS}, volume = {5195}, isbn = {978-3-540-71069-1}, issn = {0302-9743}, subseries = {LNAI}, doi = {10.1007/978-3-540-71070-7_15}, keywords = {dynamic logic, automated theorem proving, decision procedures, computer algebra, verification of hybrid systems}, abstract = { KeYmaera is a hybrid verification tool for hybrid systems that combines deductive, real algebraic, and computer algebraic prover technologies. It is an automated and interactive theorem prover for a natural specification and verification logic for hybrid systems. KeYmaera supports differential dynamic logic, which is a real-valued first-order dynamic logic for hybrid programs, a program notation for hybrid automata. For automating the verification process, KeYmaera implements a generalized free-variable sequent calculus and automatic proof strategies that decompose the hybrid system specification symbolically. To overcome the complexity of real arithmetic, we integrate real quantifier elimination following an iterative background closure strategy. Our tool is particularly suitable for verifying parametric hybrid systems and has been used successfully for verifying collision avoidance in case studies from train control and air traffic management.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Differential dynamic logics. Automated theorem proving for hybrid systemsProceedings des gemeinsamen workshops der graduiertenkollegs 2008, dagstuhl@inproceedings{Platzer2008Dagstuhl, author = {['André Platzer']}, title = {Differential Dynamic Logics. Automated Theorem Proving for Hybrid Systems}, booktitle = {Proceedings des gemeinsamen Workshops der Graduiertenkollegs 2008, Dagstuhl}, year = {2008}, editor = {['Malte Diehl', 'Henrik Lipskoch', 'Roland Meyer', 'Christian Storm']}, series = {Trustworthy Software Systems}, pages = {29}, address = {Berlin}, month = {May}, publisher = {GI}, isbn = {978-3-940019-39-4}, location = {May 19–21, 2008, Dagstuhl, Germany}, url = {https://dl.gi.de/handle/20.500.12116/33599} }Copy BibTex⧉
- André Platzer Edmund M. ClarkeComputing differential invariants of hybrid systems as fixedpointsCAV@inproceedings{DBLP:conf/cav/PlatzerC08, pdf = {pub/fpdi.pdf}, slides = {pub/fpdi-slides.pdf}, ref = {DBLP:journals/fmsd/PlatzerC09}, refname = {FMSD'09}, study = {pub/fpdi-examples.zip}, TR = {DBLP:conf/cav/PlatzerC08:TR}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Computing Differential Invariants of Hybrid Systems as Fixedpoints}, booktitle = {CAV}, longbooktitle = {Computer Aided Verification, 20th International Conference, CAV 2008, Princeton, NJ, USA, July 7-14, 2008, Proceedings}, year = {2008}, pages = {176-189}, month = {}, editor = {['Aarti Gupta', 'Sharad Malik']}, publisher = {Springer}, series = {LNCS}, volume = {5123}, isbn = {978-3-540-70543-7}, doi = {10.1007/978-3-540-70545-1_17}, keywords = {verification of hybrid systems, differential invariants, verification logic, fixedpoint engine}, abstract = { We introduce a fixedpoint algorithm for verifying safety properties of hybrid systems with differential equations whose right-hand sides are polynomials in the state variables. In order to verify nontrivial systems without solving their differential equations and without numerical errors, we use a continuous generalization of induction, for which our algorithm computes the required differential invariants. As a means for combining local differential invariants into global system invariants in a sound way, our fixedpoint algorithm works with a compositional verification logic for hybrid systems. To improve the verification power, we further introduce a saturation procedure that refines the system dynamics successively with differential invariants until safety becomes provable. By complementing our symbolic verification algorithm with a robust version of numerical falsification, we obtain a fast and sound verification procedure. We verify roundabout maneuvers in air traffic management and collision avoidance in train control.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Analysis and verification challenges for cyber-physical transportation systemsNITRD national workshop for research on transportation cyber-physical systems: Automotive, aviation, and rail@inproceedings{ClarkeKPR08, author = {['Edmund M. Clarke', 'Bruce Krogh', 'André Platzer', 'Raj Rajkumar']}, title = {Analysis and Verification Challenges for Cyber-Physical Transportation Systems}, year = {2008}, booktitle = {NITRD National Workshop for Research on Transportation Cyber-Physical Systems: Automotive, Aviation, and Rail}, pdf = {http://www.ee.washington.edu/research/nsl/aar-cps/AndrePlatzer-20081020163241.pdf}, abstract = { Substantial technological and engineering advances in various disciplines make it possible more than ever before to provide autonomous control choices for cars, trains, and aircraft. Correct automatic control can improve overall safety tremendously. Yet, ensuring a safe operation of those control assistants under all circumstances requires analysis techniques that are prepared for the rising complexity resulting from combinations of several computerized safety measures. We identify cases where cyber-physical transportation systems pose particularly demanding challenges for future research in formal analysis techniques.} }ABSTRACT Copy BibTex⧉ PDF
- André Platzer Edmund M. ClarkeThe image computation problem in hybrid systems model checkingHSCC@inproceedings{DBLP:conf/hybrid/PlatzerC07, pdf = {pub/happroximation.pdf}, slides = {pub/happroximation-slides.pdf}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {The Image Computation Problem in Hybrid Systems Model Checking}, booktitle = {HSCC}, longbooktitle = {Hybrid Systems: Computation and Control, 10th International Conference, HSCC 2007, Pisa, Italy, Proceedings}, year = {2007}, pages = {473-486}, doi = {10.1007/978-3-540-71493-4_37}, editor = {['Alberto Bemporad', 'Antonio Bicchi', 'Giorgio Buttazzo']}, publisher = {Springer}, series = {LNCS}, volume = {4416}, isbn = {978-3-540-71492-7}, keywords = {model checking, hybrid systems, image computation}, abstract = { In this paper, we analyze limits of approximation techniques for (non-linear) continuous image computation in model checking hybrid systems. In particular, we show that even a single step of continuous image computation is not semidecidable numerically even for a very restricted class of functions. Moreover, we show that symbolic insight about derivative bounds provides sufficient additional information for approximation refinement model checking. Finally, we prove that purely numerical algorithms can perform continuous image computation with arbitrarily high probability. Using these results, we analyze the prerequisites for a safe operation of the roundabout maneuver in air traffic collision avoidance.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Stephanie Kemper André PlatzerSAT-based abstraction refinement for real-time systemsFormal aspects of component software, third international workshop, FACS 2006, prague, czech republic, proceedings@inproceedings{DBLP:journals/entcs/KemperP07, pdf = {pub/SAAtRe.pdf}, slides = {pub/SAAtRe-slides.pdf}, author = {['Stephanie Kemper', 'André Platzer']}, title = {SAT-based Abstraction Refinement for Real-time Systems}, booktitle = {Formal Aspects of Component Software, Third International Workshop, FACS 2006, Prague, Czech Republic, Proceedings}, year = {2007}, editor = {['Frank S. de Boer', 'Vladimir Mencl']}, journal = {Electr. Notes Theor. Comput. Sci.}, volume = {182}, series = {ENTCS}, issn = {1571-0661}, pages = {107-122}, doi = {10.1016/j.entcs.2006.09.034}, annote = {Appeared as UNU-IIST Report No. 344 http://www.iist.unu.edu/newrh/III/1/docs/techreports/report344.html}, keywords = {abstraction refinement, model checking, real-time systems, SAT, Craig interpolation}, abstract = { In this paper, we present an abstraction refinement approach for model checking safety properties of real-time systems using SAT-solving. We present a faithful embedding of bounded model checking for systems of timed automata into propositional logic with linear arithmetic and prove correctness. With this logical representation, we achieve a linear-size representation of parallel composition and introduce a quick abstraction technique that works uniformly for clocks, events, and states. When necessary, abstractions are refined by analysing spurious counterexamples using a promising extension of counterexample-guided abstraction refinement with syntactic information about Craig interpolants. To support generalisations, our overall approach identifies the algebraic and logical principles required for logic-based abstraction refinement.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Differential logic for reasoning about hybrid systemsHSCC@inproceedings{DBLP:conf/hybrid/Platzer07, pdf = {pub/dL-short.pdf}, author = {['André Platzer']}, title = {Differential Logic for Reasoning about Hybrid Systems}, booktitle = {HSCC}, longbooktitle = {Hybrid Systems: Computation and Control, 10th International Conference, HSCC 2007, Pisa, Italy, Proceedings}, year = {2007}, pages = {746-749}, doi = {10.1007/978-3-540-71493-4_75}, editor = {['Alberto Bemporad', 'Antonio Bicchi', 'Giorgio Buttazzo']}, publisher = {Springer}, series = {LNCS}, volume = {4416}, isbn = {978-3-540-71492-7}, keywords = {dynamic logic, hybrid systems, parametric verification}, abstract = { We propose a first-order dynamic logic for reasoning about hybrid systems. As a uniform model for discrete and continuous evolutions in hybrid systems, we introduce hybrid programs with differential actions. Our logic can be used to specify and verify correctness statements about hybrid programs, which are suitable for symbolic processing by calculus rules. Using first-order variables, our logic supports systems with symbolic parameters. With dynamic modalities, it is prepared to handle multiple system components.} }ABSTRACT Copy BibTex⧉ PDF
- Differential logic for hybrid system verification – reasoning about interacting discrete and continuous changeDagstuhl “zehn plus eins” – zehn informatik-graduiertenkollegs und ein informatik-forschungskolleg stellen sich vor@inproceedings{Platzer2007Dagstuhl, author = {['André Platzer']}, title = {Differential Logic for Hybrid System Verification – Reasoning about Interacting Discrete and Continuous Change}, booktitle = {Dagstuhl “zehn plus eins” – Zehn Informatik-Graduiertenkollegs und ein Informatik-Forschungskolleg stellen sich vor}, year = {2007}, pages = {80}, address = {Aachen}, month = {June}, publisher = {Verlagshaus Mainz} }Copy BibTex⧉
- Differential dynamic logic for verifying parametric hybrid systems.TABLEAUX@inproceedings{DBLP:conf/tableaux/Platzer07, pdf = {pub/dL.pdf}, slides = {pub/dL-slides.pdf}, study = {info/KeYmaera.html#case-studies}, TR = {DBLP:conf/tableaux/Platzer07:TR}, author = {['André Platzer']}, title = {Differential Dynamic Logic for Verifying Parametric Hybrid Systems.}, booktitle = {TABLEAUX}, longbooktitle = {Automated Reasoning with Analytic Tableaux and Related Methods, 16th International Conference, TABLEAUX 2007, Aix en Provence, France, July 3-6, 2007, Proceedings}, year = {2007}, pages = {216-232}, doi = {10.1007/978-3-540-73099-6_17}, editor = {['Nicola Olivetti']}, volume = {4548}, series = {LNCS}, publisher = {Springer}, isbn = {978-3-540-73098-9}, keywords = {dynamic logic, sequent calculus, verification of parametric hybrid systems, quantifier elimination}, abstract = { We introduce a first-order dynamic logic for reasoning about systems with discrete and continuous state transitions, and we present a sequent calculus for this logic. As a uniform model, our logic supports hybrid programs with discrete and differential actions. For handling real arithmetic during proofs, we lift quantifier elimination to dynamic logic. To obtain a modular combination, we use side deductions for verifying interacting dynamics. With this, our logic supports deductive verification of hybrid systems with symbolic parameters and first-order definable flows. Using our calculus, we prove a parametric inductive safety constraint for speed supervision in a train control system.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Combining deduction and algebraic constraints for hybrid system analysis.VERIFY’07 at CADE, bremen, germany@inproceedings{DBLP:conf/verify/Platzer07, slides = {pub/cdachsa-slides.pdf}, author = {['André Platzer']}, title = {Combining Deduction and Algebraic Constraints for Hybrid System Analysis.}, booktitle = {VERIFY'07 at CADE, Bremen, Germany}, longbooktitle = {4th International Verification Workshop VERIFY'07, at CADE-21, Bremen, Germany, July 15-16, 2007}, year = {2007}, pages = {164-178}, editor = {['Bernhard Beckert']}, volume = {259}, publisher = {CEUR-WS.org}, series = {CEUR Workshop Proceedings}, issn = {1613-0073}, pdf = {http://ceur-ws.org/Vol-259/paper14.pdf}, eprint = {https://ceur-ws.org/Vol-259/paper14.pdf}, keywords = {modular prover combination, analytic tableaux, verification of hybrid systems, dynamic logic}, abstract = { We show how theorem proving and methods for handling real algebraic constraints can be combined for hybrid system verification. In particular, we highlight the interaction of deductive and algebraic reasoning that is used for handling the joint discrete and continuous behaviour of hybrid systems. We illustrate proof tasks that occur when verifying scenarios with cooperative traffic agents. From the experience with these examples, we analyse proof strategies for dealing with the practical challenges for integrated algebraic and deductive verification of hybrid systems, and we propose an iterative background closure strategy.} }ABSTRACT Copy BibTex⧉ PDF Slides Preprint
- Werner Damm Alfred Mikschl Jens Oehlerking Ernst-Rüdiger Olderog Jun Pang André Platzer Marc Segelken Boris WirtzAutomating verification of cooperation, control, and design in traffic applicationsFormal methods and hybrid real-time systems@inproceedings{DBLP:conf/birthday/DammMOOPPSW07, pdf = {pub/avccdta.pdf}, author = {['Werner Damm', 'Alfred Mikschl', 'Jens Oehlerking', 'Ernst-Rüdiger Olderog', 'Jun Pang', 'André Platzer', 'Marc Segelken', 'Boris Wirtz']}, title = {Automating Verification of Cooperation, Control, and Design in Traffic Applications}, booktitle = {Formal Methods and Hybrid Real-Time Systems}, longbooktitle = {Formal Methods and Hybrid Real-Time Systems, Essays in Honor of Dines Bjørner and Chaochen Zhou on the Occasion of Their 70th Birthdays}, year = {2007}, pages = {115-169}, doi = {10.1007/978-3-540-75221-9_6}, editor = {['Cliff B. Jones', 'Zhiming Liu', 'Jim Woodcock']}, publisher = {Springer}, series = {LNCS}, volume = {4700}, isbn = {978-3-540-75220-2}, keywords = {}, abstract = { We present a verification methodology for cooperating traffic agents covering analysis of cooperation strategies, realization of strategies through control, and implementation of control. For each layer, we provide dedicated approaches to formal verification of safety and stability properties of the design. The range of employed verification techniques invoked to span this verification space includes application of pre-verified design patterns, automatic synthesis of Lyapunov functions, constraint generation for parameterized designs, model-checking in rich theories, and abstraction refinement. We illustrate this approach with a variant of the European Train Control System (ETCS), employing layer specific verification techniques to layer specific views of an ETCS design.} }ABSTRACT Copy BibTex⧉ PDF
- A temporal dynamic logic for verifying hybrid system invariantsLFCS@inproceedings{DBLP:conf/lfcs/Platzer07, pdf = {pub/dTL.pdf}, slides = {pub/dTL-slides.pdf}, study = {info/KeYmaera.html#case-studies}, TR = {DBLP:conf/lfcs/Platzer07:TR}, author = {['André Platzer']}, title = {A Temporal Dynamic Logic for Verifying Hybrid System Invariants}, booktitle = {LFCS}, longbooktitle = {Logical Foundations of Computer Science, 5th International Symposium, LFCS'07, New York, USA, June 4-7, 2007, Proceedings}, year = {2007}, pages = {457-471}, doi = {10.1007/978-3-540-72734-7_32}, editor = {['Sergei N. Artëmov', 'Anil Nerode']}, publisher = {Springer}, series = {LNCS}, volume = {4514}, isbn = {978-3-540-72732-3}, keywords = {dynamic logic, temporal logic, sequent calculus, logic for hybrid systems, deductive verification of embedded systems}, abstract = { We combine first-order dynamic logic for reasoning about possible behaviour of hybrid systems with temporal logic for reasoning about the temporal behaviour during their operation. Our logic supports verification of hybrid programs with first-order definable flows and provides a uniform treatment of discrete and continuous evolution. For our combined logic, we generalise the semantics of dynamic modalities to refer to hybrid traces instead of final states. Further, we prove that this gives a conservative extension of dynamic logic. On this basis, we provide a modular verification calculus that reduces correctness of temporal behaviour of hybrid systems to non-temporal reasoning. Using this calculus, we analyse safety invariants in a train control system and symbolically synthesise parametric safety constraints. } }ABSTRACT Copy BibTex⧉ PDF Slides
- Dynamic logic with non-rigid functions: A basis for object-oriented program verification.IJCAR@inproceedings{DBLP:conf/cade/BeckertP06, pdf = {pub/odl.pdf}, slides = {pub/odl-slides.pdf}, author = {['Bernhard Beckert', 'André Platzer']}, title = {Dynamic Logic with Non-rigid Functions: A Basis for Object-oriented Program Verification.}, booktitle = {IJCAR}, longbooktitle = {Automated Reasoning, Third International Joint Conference, IJCAR 2006, Seattle, WA, USA, Proceedings}, year = {2006}, pages = {266-280}, doi = {10.1007/11814771_23}, editor = {['Ulrich Furbach', 'Natarajan Shankar']}, publisher = {Springer}, series = {LNCS}, volume = {4130}, isbn = {3-540-37187-7}, issn = {0302-9743}, subseries = {LNAI}, keywords = {dynamic logic, sequent calculus, program logic, software verification, logical foundations of programming languages, object-orientation}, abstract = { We introduce a dynamic logic that is enriched by non-rigid functions, i.e., functions that may change their value from state to state (during program execution), and we present a (relatively) complete sequent calculus for this logic. In conjunction with dynamically typed object enumerators, non-rigid functions allow to embed notions of object-orientation in dynamic logic, thereby forming a basis for verification of object-oriented programs. A semantical generalisation of substitutions, called state update, which we add to the logic, constitutes the central technical device for dealing with object aliasing during function modification. With these few extensions, our dynamic logic captures the essential aspects of the complex verification system KeY and, hence, constitutes a foundation for object-oriented verification with the principles of reasoning that underly the successful KeY case studies.} }ABSTRACT Copy BibTex⧉ PDF Slides
manuscript
- Relational test tables: A practical specification language for evolution and security@unpublished{PERR20, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Suhyun Cha', 'Bernhard Beckert Birgit Vogel-Heuser']}, title = {Relational Test Tables: A Practical Specification Language for Evolution and Security}, note = {PERR 2020: 4th Workshop on Program Equivalence and Relational Reasoning}, year = {2020} }Copy BibTex⧉
- Sarah M. Loos André PlatzerTeaching cyber-physical systems with logic@unpublished{LoosP14:TeachCPS, pdf = {pub/TeachCPS.pdf}, author = {['Sarah M. Loos', 'André Platzer']}, title = {Teaching Cyber-Physical Systems with Logic}, year = {2014}, note = {Manuscript} }Copy BibTex⧉ PDF
chapter
- The VerifyThis Collaborative Long Term Challenge@inbook{DVBOOK, author = {['Marieke Huisman', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, publisher = {Springer}, title = {The VerifyThis Collaborative Long Term Challenge}, year = {2020}, note = {accepted}, booktitle = {Deductive Verification – The next 20 years} }Copy BibTex⧉
- A retrospective on developing hybrid systems provers in the KeYmaera family - A tale of three provers@incollection{DBLP:series/lncs/MitschP20, pdf = {pub/tale-of-three-provers.pdf}, author = {['Stefan Mitsch', 'André Platzer']}, title = {A Retrospective on Developing Hybrid Systems Provers in the KeYmaera Family - A Tale of Three Provers}, booktitle = {Deductive Software Verification: Future Perspectives - Reflections on the Occasion of 20 Years of KeY}, pages = {21-64}, year = {2020}, doi = {10.1007/978-3-030-64354-6_2}, editor = {['Wolfgang Ahrendt', 'Bernhard Beckert', 'Richard Bubel', 'Reiner Hähnle', 'Matthias Ulbrich']}, series = {LNCS}, volume = {12345}, publisher = {Springer}, isbn = {978-3-030-64353-9}, addresss = {} }Copy BibTex⧉ PDF
- Formal verification of evolutionary changes@incollection{DBLP:books/sp/19/BeckertMUW19, author = {['Bernhard Beckert', 'Jakob Mund', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Formal Verification of Evolutionary Changes}, booktitle = {Managed Software Evolution}, pages = {309–332}, year = {2019}, publisher = {Springer}, url = {https://doi.org/10.1007/978-3-030-13499-0_11}, doi = {10.1007/978-3-030-13499-0_11}, editor = {['Ralf H. Reussner', 'Michael Goedicke', 'Wilhelm Hasselbring', 'Birgit Vogel-Heuser', 'Jan Keim', 'Lukas Märtin']}, timestamp = {Fri, 31 Jan 2020 21:31:48 +0100}, biburl = {https://dblp.org/rec/books/sp/19/BeckertMUW19.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Verification of hybrid systems@incollection{DBLP:reference/mc/DoyenFPP18, pdf = {pub/HBMC.pdf}, author = {['Laurent Doyen', 'Goran Frehse', 'George J. Pappas', 'André Platzer']}, title = {Verification of Hybrid Systems}, booktitle = {Handbook of Model Checking}, editor = {['Edmund M. Clarke', 'Thomas A. Henzinger', 'Helmut Veith', 'Roderick Bloem']}, publisher = {Springer}, year = {2018}, pages = {1047-1110}, doi = {10.1007/978-3-319-10575-8_30}, address = {Cham} }Copy BibTex⧉ PDF
book
- The 28th international conference on automated deductionSpringer. in , Springer@proceedings{DBLP:conf/cade/2021, editor = {['André Platzer', 'Geoff Sutcliffe']}, longtitle = {Automated Deduction - CADE-28, 28th International Conference on Automated Deduction, Pittsburgh, USA, July 12-15, 2021, Proceedings}, title = {The 28th International Conference on Automated Deduction}, booktitle = {CADE}, publisher = {Springer}, series = {LNCS}, volume = {12699}, year = {2021}, address = {}, isbn = {978-3-030-79875-8}, doi = {10.1007/978-3-030-79876-5} }Copy BibTex⧉
- VerifyThis long-term challenge: proceedingsin , Karlsruhe@proceedings{VTLTC2020, title = {VerifyThis Long-term Challenge: Proceedings}, editor = {['Marieke Huismann', 'Raúl E. Monti', 'Mattias Ulbrich', 'Alexander Weigl']}, address = {Karlsruhe}, booktitle = {}, month = {June}, year = {2020}, size = {26 pages}, doi = {10.5445/IR/1000119426} }Copy BibTex⧉
- 17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019IEEE. in , IEEE@proceedings{DBLP:conf/indin/2019, title = {17th IEEE International Conference on Industrial Informatics, INDIN 2019, Helsinki, Finland, July 22-25, 2019}, publisher = {IEEE}, year = {2019}, url = {https://ieeexplore.ieee.org/xpl/conhome/8961950/proceeding}, isbn = {978-1-7281-2927-3}, timestamp = {Tue, 04 Feb 2020 11:25:12 +0100}, biburl = {https://dblp.org/rec/conf/indin/2019.bib}, bibsource = {dblp computer science bibliography, https://dblp.org}, skipbib = {true} }Copy BibTex⧉
- Verified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papersSpringer. in , Springer@proceedings{DBLP:conf/vstte/2018, editor = {['Ruzica Piskac', 'Philipp Rümmer']}, title = {Verified Software. Theories, Tools, and Experiments - 10th International Conference, VSTTE 2018, Oxford, UK, July 18-19, 2018, Revised Selected Papers}, series = {Lecture Notes in Computer Science}, volume = {11294}, publisher = {Springer}, year = {2018}, url = {https://doi.org/10.1007/978-3-030-03592-1}, doi = {10.1007/978-3-030-03592-1}, isbn = {978-3-030-03591-4}, timestamp = {Tue, 14 May 2019 10:00:49 +0200}, biburl = {https://dblp.org/rec/conf/vstte/2018.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Proceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018in ,@proceedings{DBLP:journals/corr/abs-1803-08668, editor = {['John P. Gallagher', 'Rob van Glabbeek', 'Wendelin Serwe']}, title = {Proceedings Third Workshop on Models for Formal Analysis of Real Systems and Sixth International Workshop on Verification and Program Transformation, MARS/VPT@ETAPS 2018, Thessaloniki, Greece, 20th April 2018}, series = {EPTCS}, volume = {268}, year = {2018}, url = {http://arxiv.org/abs/1803.08668}, timestamp = {Tue, 08 Oct 2019 13:24:16 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1803-08668.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Logical foundations of cyber-physical systemsSpringer. in , Springer Cham@book{Platzer18, slides = {https://lfcps.org/lfcps/lfcps-slides.zip}, study = {https://www.springer.com/978-3-319-63587-3}, errata = {lfcps/lfcps-errata.txt}, author = {['André Platzer']}, title = {Logical Foundations of Cyber-Physical Systems}, publisher = {Springer}, address = {Cham}, year = {2018}, isbn = {978-3-319-63587-3}, e-isbn = {978-3-319-63588-0}, doi = {10.1007/978-3-319-63588-0} }Copy BibTex⧉ Slides
- 15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017IEEE. in , IEEE@proceedings{DBLP:conf/indin/2017, title = {15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, July 24-26, 2017}, publisher = {IEEE}, year = {2017}, url = {https://ieeexplore.ieee.org/xpl/conhome/8095148/proceeding}, isbn = {978-1-5386-0837-1}, timestamp = {Wed, 16 Oct 2019 14:14:52 +0200}, biburl = {https://dblp.org/rec/conf/indin/2017.bib}, bibsource = {dblp computer science bibliography, https://dblp.org}, skipbib = {true} }Copy BibTex⧉
- Proceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016in ,@proceedings{DBLP:journals/corr/TribastoneW16, editor = {['Mirco Tribastone', 'Herbert Wiklicky']}, title = {Proceedings 14th International Workshop Quantitative Aspects of Programming Languages and Systems, QAPL 2016, Eindhoven, The Netherlands, April 2-3, 2016}, series = {EPTCS}, volume = {227}, year = {2016}, url = {https://doi.org/10.4204/EPTCS.227}, doi = {10.4204/EPTCS.227}, timestamp = {Wed, 09 Oct 2019 16:19:29 +0200}, biburl = {https://dblp.org/rec/journals/corr/TribastoneW16.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Correct system design symposium in honor of ernst-rüdiger olderog on the occasion of his 60th birthday oldenburg, germany, september 8-9, 2015 proceedingsSpringer. in , Springer@proceedings{DBLP:conf/festschrift/ERO60, editor = {['Roland Meyer', 'André Platzer', 'Heike Wehrheim']}, title = {Correct System Design Symposium in Honor of Ernst-Rüdiger Olderog on the Occasion of His 60th Birthday Oldenburg, Germany, September 8-9, 2015 Proceedings}, booktitle = {ERO}, publisher = {Springer}, series = {LNCS}, volume = {9360}, year = {2015}, isbn = {978-3-319-23505-9}, doi = {10.1007/978-3-319-23506-6} }Copy BibTex⧉
- Logical analysis of hybrid systems: Proving theorems for complex dynamicsSpringer. in , Springer Heidelberg@book{Platzer10, study = {https://www.springer.com/978-3-642-14508-7}, errata = {lahs/lahs-errata.txt}, author = {['André Platzer']}, title = {Logical Analysis of Hybrid Systems: Proving Theorems for Complex Dynamics}, publisher = {Springer}, address = {Heidelberg}, year = {2010}, isbn = {978-3-642-14508-7}, e-isbn = {978-3-642-14509-4}, doi = {10.1007/978-3-642-14509-4} }Copy BibTex⧉
article-journal
- Formally verified next-generation airborne collision avoidance games in ACAS X@article{DBLP:journals/tecs/CleavelandMP23, author = {['Rachel Cleaveland', 'Stefan Mitsch', 'André Platzer']}, title = {Formally Verified Next-Generation Airborne Collision Avoidance Games in ACAS X}, journal = {ACM Trans. Embed. Comput. Syst.}, volume = {22}, number = {1}, articleno = {10}, pages = {1-30}, year = {2023}, doi = {10.1145/3544970}, issn = {1539-9087} }Copy BibTex⧉
- William Simmons André PlatzerDifferential elimination and algebraic invariants of polynomial dynamical systems@article{DBLP:journals/corr/abs-2301-10935, author = {['William Simmons', 'André Platzer']}, title = {Differential Elimination and Algebraic Invariants of Polynomial Dynamical Systems}, journal = {CoRR}, volume = {abs/2301.10935}, year = {2023}, url = {http://arxiv.org/abs/2301.10935} }Copy BibTex⧉
- Verified train controllers for the Federal Railroad Administration train kinematics model: Balancing competing brake and track forces@article{DBLP:journals/tcad/KabraMP22, slides = {pub/traingrade-slides.pdf}, author = {['Aditi Kabra', 'Stefan Mitsch', 'André Platzer']}, title = {Verified Train Controllers for the Federal Railroad Administration Train Kinematics Model: Balancing Competing Brake and Track Forces}, journal = {IEEE Trans. Comput. Aided Des. Integr. Circuits Syst.}, longjournal = {IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems}, volume = {41}, number = {11}, pages = {4409-4420}, year = {2022}, doi = {10.1109/TCAD.2022.3197690}, issn = {0278-0070} }Copy BibTex⧉ Slides
- Safe and resilient practical waypoint-following for autonomous vehicles@article{DBLP:journals/csyl/LinMPD22, pdf = {pub/resilient-waypoints.pdf}, author = {['Qin Lin', 'Stefan Mitsch', 'André Platzer', 'John M. Dolan']}, title = {Safe and Resilient Practical Waypoint-following for Autonomous Vehicles}, journal = {IEEE Control Syst. Lett.}, volume = {6}, year = {2022}, doi = {10.1109/LCSYS.2021.3125717}, pages = {1574-1579} }Copy BibTex⧉ PDF
- Pegasus: Sound continuous invariant generation@article{DBLP:journals/fmsd/SogokonMTCP22, pdf = {https://link.springer.com/content/pdf/10.1007/s10703-020-00355-z.pdf}, ref = {DBLP:conf/fm/SogokonMTCP19}, refname = {FM'19}, author = {['Andrew Sogokon', 'Stefan Mitsch', 'Yong Kiam Tan', 'Katherine Cordwell', 'André Platzer']}, title = {Pegasus: Sound Continuous Invariant Generation}, journal = {Form. Methods Syst. Des.}, longjournal = {Formal Methods in System Design}, year = {2022}, volume = {58}, number = {1}, pages = {5-41}, doi = {10.1007/s10703-020-00355-z}, issn = {0925-9856}, note = {Special issue for selected papers from FM'19} }Copy BibTex⧉ PDF
- Noah Abou El Wafa André PlatzerFirst-order game logic and modal mu-calculus@article{DBLP:journals/corr/abs-2201-10012, author = {['Noah Abou El Wafa', 'André Platzer']}, title = {First-Order Game Logic and Modal Mu-Calculus}, journal = {CoRR}, volume = {abs/2201.10012}, year = {2022}, url = {http://arxiv.org/abs/2201.10012} }Copy BibTex⧉
- Brandon Bohrer André PlatzerStructured proofs for adversarial cyber-physical systems@article{DBLP:journals/tecs/BohrerP21, pdf = {https://dl.acm.org/doi/pdf/10.1145/3477024}, author = {['Brandon Bohrer', 'André Platzer']}, title = {Structured Proofs for Adversarial Cyber-Physical Systems}, journal = {ACM Trans. Embed. Comput. Syst.}, volume = {20}, number = {5s}, pages = {93:1-93:26}, year = {2021}, doi = {10.1145/3477024}, note = {Special issue on EMSOFT 2021} }Copy BibTex⧉ PDF
- An axiomatic approach to existence and liveness for differential equations@article{DBLP:journals/fac/TanP21, pdf = {https://link.springer.com/content/pdf/10.1007/s00165-020-00525-0.pdf}, ref = {DBLP:conf/fm/TanP19}, refname = {FM'19}, author = {['Yong Kiam Tan', 'André Platzer']}, title = {An Axiomatic Approach to Existence and Liveness for Differential Equations}, journal = {Formal Aspects Comput.}, volume = {33}, number = {4}, pages = {461-518}, year = {2021}, doi = {10.1007/s00165-020-00525-0}, issn = {0934-5043}, note = {Special issue for selected papers from FM'19} }Copy BibTex⧉ PDF
- Differential equation invariance axiomatization@article{DBLP:journals/jacm/PlatzerT20, pdf = {https://dl.acm.org/doi/pdf/10.1145/3380825}, slides = {pub/diffaxiomatic-long-slides.pdf}, author = {['André Platzer', 'Yong Kiam Tan']}, title = {Differential Equation Invariance Axiomatization}, journal = {J. ACM}, volume = {67}, number = {1}, pages = {6:1–6:66}, year = {2020}, doi = {10.1145/3380825} }Copy BibTex⧉ PDF Slides
- Uniform substitution at one fell swoop@article{DBLP:journals/corr/abs-1902-07230, author = {['André Platzer']}, title = {Uniform Substitution At One Fell Swoop}, journal = {CoRR}, volume = {abs/1902.07230}, year = {2019}, url = {http://arxiv.org/abs/1902.07230} }Copy BibTex⧉
- Relational test tables: A practical specification language for evolution and security@article{DBLP:journals/corr/abs-1910-09068, author = {['Alexander Weigl', 'Mattias Ulbrich', 'Suhyun Cha', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Relational Test Tables: A Practical Specification Language for Evolution and Security}, journal = {CoRR}, volume = {abs/1910.09068}, year = {2019}, url = {http://arxiv.org/abs/1910.09068}, archivePrefix = {arXiv}, eprint = {1910.09068}, timestamp = {Tue, 22 Oct 2019 18:17:16 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1910-09068.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉ Preprint
- Overview of logical foundations of cyber-physical systems@article{DBLP:conf/mod/Platzer19, author = {['André Platzer']}, title = {Overview of Logical Foundations of Cyber-Physical Systems}, journal = {CoRR}, volume = {abs/1910.11232}, year = {2019}, url = {http://arxiv.org/abs/1910.11232}, archivePrefix = {arXiv}, eprint = {1910.11232} }Copy BibTex⧉ Preprint
- Differential equation invariance axiomatization@article{DBLP:journals/corr/abs-1905-13429, author = {['André Platzer', 'Yong Kiam Tan']}, title = {Differential Equation Invariance Axiomatization}, journal = {CoRR}, volume = {abs/1905.13429}, year = {2019}, archivePrefix = {arXiv}, eprint = {1905.13429} }Copy BibTex⧉ Preprint
- A formal safety net for waypoint following in ground robots@article{DBLP:journals/ral/BohrerTMSP19, study = {https://ieeexplore.ieee.org/ielx7/7083369/8668830/8736770/lra-bohrer-2923099-mm.zip}, author = {['Brandon Bohrer', 'Yong Kiam Tan', 'Stefan Mitsch', 'Andrew Sogokon', 'André Platzer']}, title = {A Formal Safety Net for Waypoint Following in Ground Robots}, journal = {IEEE Robotics and Automation Letters}, volume = {4}, number = {3}, year = {2019}, pages = {2910-2917}, doi = {10.1109/LRA.2019.2923099} }Copy BibTex⧉
- Verified runtime validation for partially observable hybrid systems@article{DBLP:journals/corr/abs-1811-06502, author = {['Stefan Mitsch', 'André Platzer']}, title = {Verified Runtime Validation for Partially Observable Hybrid Systems}, journal = {CoRR}, volume = {abs/1811.06502}, year = {2018}, url = {http://arxiv.org/abs/1811.06502} }Copy BibTex⧉
- Tactical contract composition for hybrid system component verification@article{DBLP:journals/sttt/MullerMRSP18, pdf = {https://link.springer.com/content/pdf/10.1007/s10009-018-0502-9.pdf}, ref = {DBLP:conf/fase/MullerMRSP17}, refname = {FASE'17}, study = {https://www.cs.cmu.edu/ smitsch/resource/components}, author = {['Andreas Müller', 'Stefan Mitsch', 'Werner Retschitzegger', 'Wieland Schwinger', 'André Platzer']}, title = {Tactical Contract Composition for Hybrid System Component Verification}, journal = {STTT}, volume = {20}, number = {6}, year = {2018}, pages = {615-643}, doi = {10.1007/s10009-018-0502-9}, note = {Special issue for selected papers from FASE'17} }Copy BibTex⧉ PDF
- Relational equivalence proofs between imperative and MapReduce algorithms@article{DBLP:journals/corr/abs-1801-08766, author = {['Bernhard Beckert', 'Timo Bingmann', 'Moritz Kiefer', 'Peter Sanders', 'Mattias Ulbrich', 'Alexander Weigl']}, title = {Relational Equivalence Proofs Between Imperative and MapReduce Algorithms}, journal = {CoRR}, volume = {abs/1801.08766}, year = {2018}, url = {http://arxiv.org/abs/1801.08766}, archivePrefix = {arXiv}, eprint = {1801.08766}, timestamp = {Mon, 13 Aug 2018 16:49:05 +0200}, biburl = {https://dblp.org/rec/journals/corr/abs-1801-08766.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉ Preprint
- Debugging program verification proof scripts (tool paper)@article{journals_corr_abs-1804-04402, author = {['Bernhard Beckert', 'Sarah Grebing', 'Alexander Weigl']}, title = {Debugging Program Verification Proof Scripts (Tool Paper)}, journal = {CoRR}, volume = {abs/1804.04402}, year = {2018}, month = {April}, url = {http://arxiv.org/abs/1804.04402}, archivePrefix = {arXiv}, eprint = {1804.04402} }Copy BibTex⧉ Preprint
- Applicability of generalized test tables: A case study using the manufacturing system demonstrator xPPU@article{DBLP:journals/at/ChaWUBV18, ids = {Cha2018}, author = {['Suhyun Cha', 'Alexander Weigl', 'Mattias Ulbrich', 'Bernhard Beckert', 'Birgit Vogel-Heuser']}, title = {Applicability of generalized test tables: a case study using the manufacturing system demonstrator xPPU}, journal = {Automatisierungstechnik}, volume = {66}, number = {10}, pages = {834–848}, year = {2018}, url = {https://doi.org/10.1515/auto-2018-0028}, doi = {10.1515/auto-2018-0028}, timestamp = {Sat, 19 Oct 2019 19:19:30 +0200}, biburl = {https://dblp.org/rec/journals/at/ChaWUBV18.bib}, bibsource = {dblp computer science bibliography, https://dblp.org} }Copy BibTex⧉
- Franz Franchetti Tze Meng Low Stefan Mitsch Juan Paolo Mendoza Liangyan Gui Amarin Phaosawasdi David Padua Soummya Kar José M. F. Moura Mike Franusich Jeremy Johnson André Platzer Manuela VelosoHigh-assurance SPIRAL: End-to-end guarantees for robot and car control@article{DBLP:journals/csm/FranchettiLMMGPPKMFJPV17, pdf = {https://users.ece.cmu.edu/ franzf/papers/has2017.pdf}, author = {['Franz Franchetti', 'Tze Meng Low', 'Stefan Mitsch', 'Juan Paolo Mendoza', 'Liangyan Gui', 'Amarin Phaosawasdi', 'David Padua', 'Soummya Kar', 'José M. F. Moura', 'Mike Franusich', 'Jeremy Johnson', 'André Platzer', 'Manuela Veloso']}, title = {High-Assurance SPIRAL: End-to-End Guarantees for Robot and Car Control}, journal = {IEEE Control Systems}, year = {2017}, volume = {37}, number = {2}, pages = {82-103}, doi = {10.1109/MCS.2016.2643244} }Copy BibTex⧉ PDF
- Formal verification of obstacle avoidance and navigation of ground robots@article{DBLP:journals/ijrr/MitschGVP17, pdf = {pub/morerobix.pdf}, author = {['Stefan Mitsch', 'Khalil Ghorbal', 'David Vogelbacher', 'André Platzer']}, title = {Formal Verification of Obstacle Avoidance and Navigation of Ground Robots}, journal = {I. J. Robotics Res.}, longjournal = {International Journal of Robotics Research}, volume = {36}, number = {12}, pages = {1312-1340}, year = {2017}, doi = {10.1177/0278364917733549}, arXiv = {1605.00604} }Copy BibTex⧉ PDF
- Differential hybrid games@article{DBLP:journals/tocl/Platzer17, pdf = {https://dl.acm.org/doi/pdf/10.1145/3091123}, author = {['André Platzer']}, title = {Differential Hybrid Games}, journal = {ACM Trans. Comput. Log.}, volume = {18}, number = {3}, year = {2017}, pages = {19:1-19:44}, doi = {10.1145/3091123}, issn = {1529-3785} }Copy BibTex⧉ PDF
- A hierarchy of proof rules for checking positive invariance of algebraic and semi-algebraic sets@article{DBLP:journals/cl/GhorbalSP17, pdf = {pub/alginv-bench-long.pdf}, ref = {DBLP:conf/vmcai/GhorbalSP15}, refname = {VMCAI'15}, study = {pub/alginv-bench-long-study.zip}, author = {['Khalil Ghorbal', 'Andrew Sogokon', 'André Platzer']}, title = {A Hierarchy of Proof Rules for Checking Positive Invariance of Algebraic and Semi-Algebraic Sets}, journal = {Computer Languages, Systems and Structures}, year = {2017}, volume = {47}, number = {1}, pages = {19-43}, doi = {10.1016/j.cl.2015.11.003} }Copy BibTex⧉ PDF
- Jean-Baptiste Jeannin Khalil Ghorbal Yanni Kouskoulas Aurora Schmidt Ryan Gardner Stefan Mitsch André PlatzerA formally verified hybrid system for safe advisories in the next-generation airborne collision avoidance system@article{DBLP:journals/sttt/JeanninGKSGMP17, pdf = {pub/acasx-zones-long.pdf}, ref = {DBLP:conf/tacas/JeanninGKGSZP15}, refname = {TACAS'15}, study = {https://www.ls.cs.cmu.edu/pub/AcasX-long.zip}, author = {['Jean-Baptiste Jeannin', 'Khalil Ghorbal', 'Yanni Kouskoulas', 'Aurora Schmidt', 'Ryan Gardner', 'Stefan Mitsch', 'André Platzer']}, title = {A Formally Verified Hybrid System for Safe Advisories in the Next-generation Airborne Collision Avoidance System}, journal = {STTT}, longjournal = {International Journal on Software Tools for Technology Transfer}, year = {2017}, volume = {19}, number = {6}, pages = {717-741}, doi = {10.1007/s10009-016-0434-1} }Copy BibTex⧉ PDF
- A complete uniform substitution calculus for differential dynamic logic@article{DBLP:journals/jar/Platzer17, pdf = {https://link.springer.com/content/pdf/10.1007/s10817-016-9385-1.pdf}, author = {['André Platzer']}, title = {A Complete Uniform Substitution Calculus for Differential Dynamic Logic}, journal = {J. Autom. Reas.}, longjournal = {Journal of Automated Reasoning}, year = {2017}, volume = {59}, number = {2}, pages = {219-265}, doi = {10.1007/s10817-016-9385-1} }Copy BibTex⧉ PDF
- ModelPlex: Verified runtime validation of verified cyber-physical system models@article{DBLP:journals/fmsd/MitschP16, pdf = {https://link.springer.com/content/pdf/10.1007/s10703-016-0241-z.pdf}, ref = {DBLP:conf/rv/MitschP14}, refname = {RV'14}, author = {['Stefan Mitsch', 'André Platzer']}, title = {ModelPlex: Verified Runtime Validation of Verified Cyber-Physical System Models}, journal = {Form. Methods Syst. Des.}, longjournal = {Formal Methods in System Design}, year = {2016}, volume = {49}, number = {1}, pages = {33-74}, doi = {10.1007/s10703-016-0241-z}, issn = {0925-9856}, note = {Special issue of selected papers from RV'14} }Copy BibTex⧉ PDF
- How to model and prove hybrid systems with KeYmaera: A tutorial on safety@article{DBLP:journals/sttt/QueselMLAP16, pdf = {https://link.springer.com/content/pdf/10.1007/s10009-015-0367-0.pdf}, author = {['Jan-David Quesel', 'Stefan Mitsch', 'Sarah Loos', 'Nikos Aréchiga', 'André Platzer']}, title = {How to Model and Prove Hybrid Systems with KeYmaera: A Tutorial on Safety}, journal = {STTT}, year = {2016}, volume = {18}, number = {1}, pages = {67-91}, doi = {10.1007/s10009-015-0367-0} }Copy BibTex⧉ PDF
- Logic-based modeling approaches for qualitative and hybrid reasoning in dynamic spatial systems@article{DBLP:journals/csur/MitschPRS15, pdf = {pub/surveydynamicspatial.pdf}, author = {['Stefan Mitsch', 'André Platzer', 'Werner Retschitzegger', 'Wieland Schwinger']}, title = {Logic-based Modeling Approaches for Qualitative and Hybrid Reasoning in Dynamic Spatial Systems}, journal = {ACM Comput. Surv.}, volume = {48}, number = {1}, pages = {3:1–3:40}, year = {2015}, doi = {10.1145/2764901} }Copy BibTex⧉ PDF
- Differential game logic@article{DBLP:journals/tocl/Platzer15, pdf = {https://dl.acm.org/doi/pdf/10.1145/2817824}, errata = {pub/dGL-errata.txt}, author = {['André Platzer']}, title = {Differential Game Logic}, journal = {ACM Trans. Comput. Log.}, volume = {17}, number = {1}, year = {2015}, pages = {1:1–1:51}, doi = {10.1145/2817824}, issn = {1529-3785} }Copy BibTex⧉ PDF
- Supporting heterogeneity in cyber-physical systems architectures@article{DBLP:jourals/tac/RajhansBRKGPS14, author = {['Akshay Rajhans', 'Ajinkya Bhave', 'Ivan Ruchkin', 'Bruce H. Krogh', 'David Garlan', 'André Platzer', 'Bradley Schmerl']}, title = {Supporting Heterogeneity in Cyber-Physical Systems Architectures}, journal = {IEEE Transactions on Automatic Control}, year = {2014}, volume = {59}, number = {12}, pages = {3178-3193}, doi = {10.1109/TAC.2014.2351672} }Copy BibTex⧉
- Hybrid theorem proving of aerospace systems: Applications and challenges@article{DBLP:journals/jais/GhorbalJZPGC14, pdf = {https://hal.archives-ouvertes.fr/hal-01660905/document}, author = {['Khalil Ghorbal', 'Jean-Baptiste Jeannin', 'Erik P. Zawadzki', 'André Platzer', 'Geoffrey J. Gordon', 'Peter Capell']}, title = {Hybrid Theorem Proving of Aerospace Systems: Applications and Challenges}, journal = {Journal of Aerospace Information Systems}, volume = {11}, number = {10}, pages = {702-713}, year = {2014}, doi = {10.2514/1.I010178} }Copy BibTex⧉ PDF
- Collaborative verification-driven engineering of hybrid systems@article{DBLP:journals/mics/MitschPP14, pdf = {pub/proofide.pdf}, author = {['Stefan Mitsch', 'Grant Olney Passmore', 'André Platzer']}, title = {Collaborative Verification-Driven Engineering of Hybrid Systems}, journal = {Mathematics in Computer Science}, volume = {8}, number = {1}, year = {2014}, pages = {71-97}, doi = {10.1007/s11786-014-0176-y} }Copy BibTex⧉ PDF
- Analog and hybrid computation: Dynamical systems and programming languages@article{DBLP:journals/eatcs/Platzer14, pdf = {pub/hybrid-computing.pdf}, author = {['André Platzer']}, title = {Analog and Hybrid Computation: Dynamical Systems and Programming Languages}, journal = {Bulletin of the EATCS}, year = {2014}, volume = {114}, eprint = {http://eatcs.org/beatcs/index.php/beatcs/article/view/292} }Copy BibTex⧉ PDF Preprint
- Formal methods for robotic system control software@article{DBLP:journals/jhuapltechdigest/KouskoulasPK13, pdf = {http://techdigest.jhuapl.edu/TD/td3202/32_02-Kouskoulas.pdf}, author = {['Yanni Kouskoulas', 'André Platzer', 'Peter Kazanzides']}, title = {Formal Methods for Robotic System Control Software}, journal = {Johns Hopkins APL Technical Digest}, volume = {32}, number = {2}, year = {2013}, pages = {490-498}, eprint = {http://techdigest.jhuapl.edu/TD/td3202/32_02-Kouskoulas.pdf} }Copy BibTex⧉ PDF Preprint
- Bayesian statistical model checking with application to Simulink/Stateflow verification@article{DBLP:journals/fmsd/ZulianiPC13, pdf = {pub/bayesmcest-FMSD.pdf}, author = {['Paolo Zuliani', 'André Platzer', 'Edmund M. Clarke']}, title = {Bayesian Statistical Model Checking with Application to Simulink/Stateflow Verification}, journal = {Formal Methods in System Design}, volume = {43}, number = {2}, year = {2013}, pages = {338-367}, doi = {10.1007/s10703-013-0195-3}, issn = {0925-9856}, keywords = {Probabilistic verification, Hybrid systems, Stochastic systems, Statistical model checking, Hypothesis testing, Estimation}, abstract = { We address the problem of model checking stochastic systems, i.e., checking whether a stochastic system satisfies a certain temporal property with a probability greater (or smaller) than a fixed threshold. In particular, we present a Statistical Model Checking (SMC) approach based on Bayesian statistics. We show that our approach is feasible for a certain class of hybrid systems with stochastic transitions, a generalization of Simulink/Stateflow models. Standard approaches to stochastic discrete systems require numerical solutions for large optimization problems and quickly become infeasible with larger state spaces. Generalizations of these techniques to hybrid systems with stochastic effects are even more challenging. The SMC approach was pioneered by Younes and Simmons in the discrete and non-Bayesian case. It solves the verification problem by combining randomized sampling of system traces (which is very efficient for Simulink/Stateflow) with hypothesis testing (i.e., testing against a probability threshold) or estimation (i.e., computing with high probability a value close to the true probability). We believe SMC is essential for scaling up to large Stateflow/Simulink models. While the answer to the verification problem is not guaranteed to be correct, we prove that Bayesian SMC can make the probability of giving a wrong answer arbitrarily small. The advantage is that answers can usually be obtained much faster than with standard, exhaustive model checking techniques. We apply our Bayesian SMC approach to a representative example of stochastic discrete-time hybrid system models in Stateflow/Simulink: a fuel control system featuring hybrid behavior and fault tolerance. We show that our technique enables faster verification than state-of-the-art statistical techniques. We emphasize that Bayesian SMC is by no means restricted to Stateflow/Simulink models. It is in principle applicable to a variety of stochastic models from other domains, e.g., systems biology. } }ABSTRACT Copy BibTex⧉ PDF
- The structure of differential invariants and differential cut elimination@article{DBLP:journals/lmcs/Platzer12, pdf = {https://lmcs.episciences.org/809/pdf}, author = {['André Platzer']}, title = {The Structure of Differential Invariants and Differential Cut Elimination}, journal = {Logical Methods in Computer Science}, volume = {8}, number = {4}, year = {2012}, pages = {1-38}, doi = {10.2168/LMCS-8(4:16)2012}, keywords = {Proof theory, differential equations, differential invariants, differential cut elimination, differential dynamic logic hybrid systems, logics of programs, real differential semialgebraic geometry}, abstract = { The biggest challenge in hybrid systems verification is the handling of differential equations. Because computable closed-form solutions only exist for very simple differential equations, proof certificates have been proposed for more scalable verification. Search procedures for these proof certificates are still rather ad-hoc, though, because the problem structure is only understood poorly. We investigate differential invariants, which define an induction principle for differential equations and which can be checked for invariance along a differential equation just by using their differential structure, without having to solve them. We study the structural properties of differential invariants. To analyze trade-offs for proof search complexity, we identify more than a dozen relations between several classes of differential invariants and compare their deductive power. As our main results, we analyze the deductive power of differential cuts and the deductive power of differential invariants with auxiliary differential variables. We refute the differential cut elimination hypothesis and show that, unlike standard cuts, differential cuts are fundamental proof principles that strictly increase the deductive power. We also prove that the deductive power increases further when adding auxiliary differential variables to the dynamics. } }ABSTRACT Copy BibTex⧉ PDF
- Logical analysis of hybrid systems: A complete answer to a complexity challenge@article{DBLP:journals/jalc/Platzer12, pdf = {pub/dcfs12-long.pdf}, author = {['André Platzer']}, title = {Logical Analysis of Hybrid Systems: A Complete Answer to a Complexity Challenge}, journal = {Journal of Automata, Languages and Combinatorics}, volume = {17}, number = {2-4}, year = {2012}, pages = {265-275} }Copy BibTex⧉ PDF
- Dynamic logics of dynamical systems@article{DBLP:journals/corr/abs-1205-4788, author = {['André Platzer']}, title = {Dynamic Logics of Dynamical Systems}, journal = {CoRR}, volume = {abs/1205.4788}, year = {2012} }Copy BibTex⧉
- A complete axiomatization of quantified differential dynamic logic for distributed hybrid systems@article{DBLP:journals/lmcs/Platzer12b, pdf = {https://lmcs.episciences.org/720/pdf}, ref = {DBLP:conf/csl/Platzer10}, refname = {CSL'10}, author = {['André Platzer']}, title = {A Complete Axiomatization of Quantified Differential Dynamic Logic for Distributed Hybrid Systems}, journal = {Logical Methods in Computer Science}, volume = {8}, number = {4}, year = {2012}, pages = {1-44}, doi = {10.2168/LMCS-8(4:17)2012}, note = {Special issue for selected papers from CSL'10} }Copy BibTex⧉ PDF
- Differential-algebraic dynamic logic for differential-algebraic programs@article{DBLP:journals/logcom/Platzer10, pdf = {pub/DAL.pdf}, ref = {DBLP:conf/tableaux/Platzer07}, refname = {TABLEAUX'07}, study = {info/KeYmaera.html#case-studies}, errata = {pub/DAL-errata.txt}, author = {['André Platzer']}, title = {Differential-algebraic Dynamic Logic for Differential-algebraic Programs}, journal = {J. Log. Comput.}, longjournal = {Journal of Logic and Computation}, year = {2010}, volume = {20}, number = {1}, pages = {309-352}, note = {Advance Access published on November 18, 2008}, doi = {10.1093/logcom/exn070}, keywords = {dynamic logic, differential constraints, sequent calculus, verification of hybrid systems, differential induction, theorem proving}, abstract = { We generalise dynamic logic to a logic for differential-algebraic programs, i.e., discrete programs augmented with first-order differential-algebraic formulas as continuous evolution constraints in addition to first-order discrete jump formulas. These programs characterise interacting discrete and continuous dynamics of hybrid systems elegantly and uniformly. For our logic, we introduce a calculus over real arithmetic with discrete induction and a new differential induction with which differential-algebraic programs can be verified by exploiting their differential constraints algebraically without having to solve them. We develop the theory of differential induction and differential refinement and analyse their deductive power. As a case study, we present parametric tangential roundabout maneuvers in air traffic control and prove collision avoidance in our calculus.} }ABSTRACT Copy BibTex⧉ PDF
- Differential dynamic logics: Automated theorem proving for hybrid systems@article{DBLP:journals/ki/Platzer10, author = {['André Platzer']}, title = {Differential Dynamic Logics: Automated Theorem Proving for Hybrid Systems}, journal = {Künstliche Intelligenz}, year = {2010}, volume = {24}, number = {1}, doi = {10.1007/s13218-010-0014-6}, pages = {75-77}, issn = {0933-1875}, abstract = { Designing and analyzing hybrid systems, which are models for complex physical systems, is expensive and error-prone. The dissertation presented in this article introduces a verification logic that is suitable for analyzing the behavior of hybrid systems. It presents a proof calculus and a new deductive verification tool for hybrid systems that has been used successfully to verify aircraft and train control.} }ABSTRACT Copy BibTex⧉
- Verification of cyberphysical transportation systems@article{DBLP:journals/expert/Platzer09, author = {['André Platzer']}, title = {Verification of Cyberphysical Transportation Systems}, journal = {IEEE Intelligent Systems}, volume = {24}, number = {4}, year = {2009}, pages = {10-13}, doi = {10.1109/MIS.2009.81}, issn = {1541-1672}, keywords = {cyber-physical transportation systems, train control, air traffic control, logic-based analysis, verification}, abstract = { Cyberphysical system technology has an important share in modern intelligent transportation systems, including next generation flight, rail, and car control. This control technology is intended to help improve performance objectives like throughput and improve overall system safety. To ensure that these transportation systems operate correctly, new analysis techniques are needed that consider physical movement combined with computational control to establish properties like collision freedom. Logic-based analysis can verify the correct functioning of these cyberphysical systems.} }ABSTRACT Copy BibTex⧉
- André Platzer Edmund M. ClarkeComputing differential invariants of hybrid systems as fixedpoints@article{DBLP:journals/fmsd/PlatzerC09, pdf = {pub/cdifp.pdf}, ref = {DBLP:conf/cav/PlatzerC08}, refname = {CAV'08}, study = {pub/cdifp-examples.zip}, author = {['André Platzer', 'Edmund M. Clarke']}, title = {Computing Differential Invariants of Hybrid Systems as Fixedpoints}, journal = {Form. Methods Syst. Des.}, longjournal = {Formal Methods in System Design}, year = {2009}, volume = {35}, number = {1}, pages = {98-120}, doi = {10.1007/s10703-009-0079-8}, keywords = {verification of hybrid systems, differential invariants, verification logic, fixedpoint engine}, abstract = { We introduce a fixedpoint algorithm for verifying safety properties of hybrid systems with differential equations whose right-hand sides are polynomials in the state variables. In order to verify nontrivial systems without solving their differential equations and without numerical errors, we use a continuous generalization of induction, for which our algorithm computes the required differential invariants. As a means for combining local differential invariants into global system invariants in a sound way, our fixedpoint algorithm works with a compositional verification logic for hybrid systems. With this compositional approach we exploit locality in system designs. To improve the verification power, we further introduce a saturation procedure that refines the system dynamics successively with differential invariants until safety becomes provable. By complementing our symbolic verification algorithm with a robust version of numerical falsification, we obtain a fast and sound verification procedure. We verify roundabout maneuvers in air traffic management and collision avoidance in train control and car control.} }ABSTRACT Copy BibTex⧉ PDF
- Differential dynamic logic for hybrid systems.@article{DBLP:journals/jar/Platzer08, pdf = {https://link.springer.com/content/pdf/10.1007/s10817-008-9103-8.pdf}, study = {info/KeYmaera.html#case-studies}, author = {['André Platzer']}, title = {Differential Dynamic Logic for Hybrid Systems.}, journal = {J. Autom. Reas.}, longjournal = {Journal of Automated Reasoning}, year = {2008}, volume = {41}, number = {2}, pages = {143-189}, doi = {10.1007/s10817-008-9103-8}, issn = {0168-7433}, keywords = {dynamic logic, differential equations, sequent calculus, axiomatisation, automated theorem proving, verification of hybrid systems}, abstract = { Hybrid systems are models for complex physical systems and are defined as dynamical systems with interacting discrete transitions and continuous evolutions along differential equations. With the goal of developing a theoretical and practical foundation for deductive verification of hybrid systems, we introduce a dynamic logic for hybrid programs, which is a program notation for hybrid systems. As a verification technique that is suitable for automation, we introduce a free variable proof calculus with a novel combination of real-valued free variables and Skolemisation for lifting quantifier elimination for real arithmetic to dynamic logic. The calculus is compositional, i.e., it reduces properties of hybrid programs to properties of their parts. Our main result proves that this calculus axiomatises the transition behaviour of hybrid systems completely relative to differential equations. In a case study with cooperating traffic agents of the European Train Control System, we further show that our calculus is well-suited for verifying realistic hybrid systems with parametric system dynamics. } }ABSTRACT Copy BibTex⧉ PDF
- Towards a hybrid dynamic logic for hybrid dynamic systems@article{DBLP:journals/entcs/Platzer07, slides = {pub/hdL-slides.pdf}, author = {['André Platzer']}, title = {Towards a Hybrid Dynamic Logic for Hybrid Dynamic Systems}, booktitle = {International Workshop on Hybrid Logic, HyLo'06, Seattle, USA, Proceedings}, year = {2007}, editor = {['Patrick Blackburn', 'Thomas Bolander', 'Torben Braüner', 'Valeria de Paiva', 'Jørgen Villadsen']}, series = {ENTCS}, journal = {Electr. Notes Theor. Comput. Sci.}, issn = {1571-0661}, volume = {174}, number = {6}, month = {June}, pages = {63-77}, doi = {10.1016/j.entcs.2006.11.026}, pdf = {https://lfcps.org/pub/hdL.pdf}, keywords = {hybrid logic, dynamic logic, sequent calculus, compositional verification, real-time hybrid dynamic systems}, abstract = { We introduce a hybrid variant of a dynamic logic with continuous state transitions along differential equations, and we present a sequent calculus for this extended hybrid dynamic logic. With the addition of satisfaction operators, this hybrid logic provides improved system introspection by referring to properties of states during system evolution. In addition to this, our calculus introduces state-based reasoning as a paradigm for delaying expansion of transitions using nominals as symbolic state labels. With these extensions, our hybrid dynamic logic advances the capabilities for compositional reasoning about (semialgebraic) hybrid dynamic systems. Moreover, the constructive reasoning support for goal-oriented analytic verification of hybrid dynamic systems carries over from the base calculus to our extended calculus.} }ABSTRACT Copy BibTex⧉ PDF Slides
- Weihan LiFormal verification of the winning strategies of pursuit-evasion games@misc{Li22, pdf = {https://www.ls.cs.cmu.edu/pub/theses/wli.pdf}, author = {['Weihan Li']}, title = {Formal Verification of the Winning Strategies of Pursuit-Evasion Games}, howpublished = {Master's thesis, Carnegie Mellon University, Computer Science Department}, month = {August}, year = {2022}, school = {Carnegie Mellon University, Computer Science Department} }Copy BibTex⧉ PDF
- Rachel CleavelandFormal verification of next-generation airborne collision avoidance system with adversarial intruder behavior@misc{Cleaveland21, pdf = {https://www.ls.cs.cmu.edu/pub/theses/rcleaveland.pdf}, slides = {https://www.ls.cs.cmu.edu/pub/theses/rcleaveland-slides.pdf}, ref = {DBLP:journals/tecs/CleavelandMP23}, refname = {TECS'23}, study = {https://www.ls.cs.cmu.edu/pub/theses/rcleaveland.zip}, author = {['Rachel Cleaveland']}, title = {Formal Verification of Next-Generation Airborne Collision Avoidance System with Adversarial Intruder Behavior}, howpublished = {Senior thesis, Carnegie Mellon University, Computer Science Department}, month = {May}, year = {2021}, school = {Carnegie Mellon University, Computer Science Department} }Copy BibTex⧉ PDF Slides
- KeYmaera X tutorial@misc{KeYmaeraXTutorial, pdf = {https://keymaerax.org/KeYmaeraX-tutorial.pdf}, author = {['André Platzer']}, title = {KeYmaera X Tutorial}, pages = {1–66}, year = {2019}, url = {https://keymaerax.org/Xtutorial.html}, howpublished = {https://keymaerax.org/Xtutorial.html} }Copy BibTex⧉ PDF
- KASTEL industry 4.0 demonstrator: Provably forgetting information in PLC software@misc{Weigl2019, author = {['Alexander Weigl']}, year = {2019}, month = {October}, title = {KASTEL Industry 4.0 Demonstrator: Provably Forgetting Information in PLC software}, howpublished = {Presentation in the KASTEL Seminar, Karlsruhe, Germany}, keywords = {Information flow control,reactive system,security}, doi = {10.5445/IR/1000098887}, language = {english} }Copy BibTex⧉
- Videos for logical foundations of cyber-physical systems@misc{Platzer18:videos, ref = {Platzer18}, refname = {Textbook}, author = {['André Platzer']}, title = {Videos for Logical Foundations of Cyber-Physical Systems}, year = {2018}, howpublished = {YouTube}, url = {http://video.lfcps.org/} }Copy BibTex⧉
- Foundations of cyber-physical systems@misc{FCPS17, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2017}, howpublished = {Lecture Notes 15-424/624/824, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps17.html} }Copy BibTex⧉
- Foundations of cyber-physical systems@misc{FCPS16:videos, slides = {https://lfcps.org/course/fcps16-schedule.html}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2016}, howpublished = {Lecture Videos 15-424/624/824, Carnegie Mellon University} }Copy BibTex⧉ Slides
- Foundations of cyber-physical systems@misc{FCPS16, pdf = {course/fcps16/fcps16.pdf}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2016}, howpublished = {Lecture Notes 15-424/624/824, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps16/fcps16.pdf} }Copy BibTex⧉ PDF
- Annika PetersonFormal verification of a controlled flight between two robots: A case study@misc{Peterson15, pdf = {https://www.ls.cs.cmu.edu/pub/theses/apeterson.pdf}, study = {https://www.ls.cs.cmu.edu/pub/theses/apeterson.zip}, author = {['Annika Peterson']}, title = {Formal Verification of a Controlled Flight Between Two Robots: A Case Study}, howpublished = {Senior thesis, Carnegie Mellon University, Computer Science Department}, month = {May}, year = {2015}, school = {Carnegie Mellon University, Computer Science Department} }Copy BibTex⧉ PDF
- Foundations of cyber-physical systems@misc{FCPS14, pdf = {course/fcps14/fcps14.pdf}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2014}, howpublished = {Lecture Notes 15-424/624, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps14/fcps14.pdf} }Copy BibTex⧉ PDF
- Foundations of cyber-physical systems@misc{FCPS13, pdf = {course/fcps13/fcps13.pdf}, ref = {Platzer18}, refname = {textbook}, author = {['André Platzer']}, title = {Foundations of Cyber-Physical Systems}, year = {2013}, howpublished = {Lecture Notes 15-424/624, Carnegie Mellon University}, url = {https://lfcps.org/course/fcps13/fcps13.pdf} }Copy BibTex⧉ PDF
- Using a program verification calculus for constructing specifications from implementations@misc{Platzer_2004, author = {['André Platzer']}, title = {Using a Program Verification Calculus for Constructing Specifications from Implementations}, howpublished = {Minor thesis, University of Karlsruhe, Department of Computer Science. Institute for Logic, Complexity and Deduction Systems}, month = {February}, year = {2004}, school = {University of Karlsruhe, Department of Computer Science. Institute for Logic, Complexity and Deduction Systems}, pages = {83}, abstract = { In this thesis we examine the possibility of automatically constructing the program specification from an implementation, both from a theoretical perspective and as a practical approach with a sequent calculus. As a setting for program specifications we choose dynamic logic for the Java programming language. We show that—despite the undecidable nature of program analysis—the strongest specification of any program can always be constructed algorithmically. Further we outline a practical approach embedded into a sequent calculus for dynamic logic and with a higher focus on readability. Therefor, the central aspect of describing unbounded state changes incorporates the concept of modifies lists for expressing the modifiable portion of the state space. The underlying deductions are carried out by the theorem prover of the KeY System. }, pdf = {https://lfcps.org/logic/Minoranthe.pdf}, slides = {https://lfcps.org/logic/Minoranslides.pdf} }ABSTRACT Copy BibTex⧉ PDF Slides