[{"intvolume":"        18","citation":{"chicago":"Alur, Rajeev, Robert Brayton, Thomas A Henzinger, Shaz Qadeer, and Sriram Rajamani. “Partial-Order Reduction in Symbolic State-Space Exploration.” <i>Formal Methods in System Design</i>. Springer, 2001. <a href=\"https://doi.org/10.1023/A:1008767206905\">https://doi.org/10.1023/A:1008767206905</a>.","ama":"Alur R, Brayton R, Henzinger TA, Qadeer S, Rajamani S. Partial-order reduction in symbolic state-space exploration. <i>Formal Methods in System Design</i>. 2001;18(2):97-116. doi:<a href=\"https://doi.org/10.1023/A:1008767206905\">10.1023/A:1008767206905</a>","mla":"Alur, Rajeev, et al. “Partial-Order Reduction in Symbolic State-Space Exploration.” <i>Formal Methods in System Design</i>, vol. 18, no. 2, Springer, 2001, pp. 97–116, doi:<a href=\"https://doi.org/10.1023/A:1008767206905\">10.1023/A:1008767206905</a>.","short":"R. Alur, R. Brayton, T.A. Henzinger, S. Qadeer, S. Rajamani, Formal Methods in System Design 18 (2001) 97–116.","ieee":"R. Alur, R. Brayton, T. A. Henzinger, S. Qadeer, and S. Rajamani, “Partial-order reduction in symbolic state-space exploration,” <i>Formal Methods in System Design</i>, vol. 18, no. 2. Springer, pp. 97–116, 2001.","ista":"Alur R, Brayton R, Henzinger TA, Qadeer S, Rajamani S. 2001. Partial-order reduction in symbolic state-space exploration. Formal Methods in System Design. 18(2), 97–116.","apa":"Alur, R., Brayton, R., Henzinger, T. A., Qadeer, S., &#38; Rajamani, S. (2001). Partial-order reduction in symbolic state-space exploration. <i>Formal Methods in System Design</i>. Springer. <a href=\"https://doi.org/10.1023/A:1008767206905\">https://doi.org/10.1023/A:1008767206905</a>"},"status":"public","acknowledgement":"Gerard Holzmann provided us with information on SPIN. Ken McMillan and Doron Peled contributed through discussions. The VIS group at UC Berkeley and Rajeev Ranjan in particular helped with the experiments.","abstract":[{"text":"State-space explosion is a fundamental obstacle in the formal verification of designs and protocols. Several techniques for combating this problem have emerged in the past few years, among which two are significant: partial-order reduction and symbolic state-space search. In asynchronous systems, interleavings of independent concurrent events are equivalent, and only a representative interleaving needs to be explored to verify local properties. Partial-order methods exploit this redundancy and visit only a subset of the reachable states. Symbolic techniques, on the other hand, capture the transition relation of a system and the set of reachable states as boolean functions. In many cases, these functions can be represented compactly using binary decision diagrams (BDDs). Traditionally, the two techniques have been practiced by two different schools—partial-order methods with enumerative depth-first search for the analysis of asynchronous network protocols, and symbolic breadth-first search for the analysis of synchronous hardware designs. We combine both approaches and develop a method for using partial-order reduction techniques in symbolic BDD-based invariant checking. We present theoretical results to prove the correctness of the method, and experimental results to demonstrate its efficacy.","lang":"eng"}],"user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","_id":"4599","title":"Partial-order reduction in symbolic state-space exploration","publication_identifier":{"issn":["0925-9856"]},"issue":"2","scopus_import":"1","article_type":"original","oa_version":"None","volume":18,"date_published":"2001-03-01T00:00:00Z","type":"journal_article","month":"03","extern":"1","quality_controlled":"1","article_processing_charge":"No","publication":"Formal Methods in System Design","doi":"10.1023/A:1008767206905","publisher":"Springer","date_updated":"2023-05-08T12:22:38Z","date_created":"2018-12-11T12:09:41Z","publist_id":"108","publication_status":"published","day":"01","author":[{"full_name":"Alur, Rajeev","first_name":"Rajeev","last_name":"Alur"},{"full_name":"Brayton, Robert","first_name":"Robert","last_name":"Brayton"},{"first_name":"Thomas A","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","full_name":"Henzinger, Thomas A","last_name":"Henzinger","orcid":"0000−0002−2985−7724"},{"last_name":"Qadeer","full_name":"Qadeer, Shaz","first_name":"Shaz"},{"last_name":"Rajamani","full_name":"Rajamani, Sriram","first_name":"Sriram"}],"page":"97 - 116","year":"2001","language":[{"iso":"eng"}]},{"author":[{"full_name":"Alur, Rajeev","first_name":"Rajeev","last_name":"Alur"},{"first_name":"Luca","full_name":"De Alfaro, Luca","last_name":"De Alfaro"},{"last_name":"Grosu","first_name":"Radu","full_name":"Grosu, Radu"},{"last_name":"Henzinger","orcid":"0000−0002−2985−7724","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","first_name":"Thomas A","full_name":"Henzinger, Thomas A"},{"full_name":"Kang, Myong","first_name":"Myong","last_name":"Kang"},{"first_name":"Christoph","full_name":"Kirsch, Christoph","last_name":"Kirsch"},{"full_name":"Majumdar, Ritankar","first_name":"Ritankar","last_name":"Majumdar"},{"full_name":"Mang, Freddy","first_name":"Freddy","last_name":"Mang"},{"full_name":"Wang, Bow","first_name":"Bow","last_name":"Wang"}],"page":"835 - 836","conference":{"name":"ICSE: Software Engineering"},"date_created":"2018-12-11T12:09:41Z","publication_identifier":{"isbn":["0769510507"]},"publist_id":"109","publication_status":"published","day":"07","language":[{"iso":"eng"}],"year":"2001","type":"conference","date_published":"2001-08-07T00:00:00Z","status":"public","oa_version":"None","citation":{"mla":"Alur, Rajeev, et al. “JMocha: A Model-Checking Tool That Exploits Design Structure.” <i>Proceedings of the 23rd International Conference on Software Engineering</i>, IEEE, 2001, pp. 835–36, doi:<a href=\"https://doi.org/10.1109/ICSE.2001.919196\">10.1109/ICSE.2001.919196</a>.","ama":"Alur R, De Alfaro L, Grosu R, et al. jMocha: A model-checking tool that exploits design structure. In: <i>Proceedings of the 23rd International Conference on Software Engineering</i>. IEEE; 2001:835-836. doi:<a href=\"https://doi.org/10.1109/ICSE.2001.919196\">10.1109/ICSE.2001.919196</a>","chicago":"Alur, Rajeev, Luca De Alfaro, Radu Grosu, Thomas A Henzinger, Myong Kang, Christoph Kirsch, Ritankar Majumdar, Freddy Mang, and Bow Wang. “JMocha: A Model-Checking Tool That Exploits Design Structure.” In <i>Proceedings of the 23rd International Conference on Software Engineering</i>, 835–36. IEEE, 2001. <a href=\"https://doi.org/10.1109/ICSE.2001.919196\">https://doi.org/10.1109/ICSE.2001.919196</a>.","apa":"Alur, R., De Alfaro, L., Grosu, R., Henzinger, T. A., Kang, M., Kirsch, C., … Wang, B. (2001). jMocha: A model-checking tool that exploits design structure. In <i>Proceedings of the 23rd International Conference on Software Engineering</i> (pp. 835–836). IEEE. <a href=\"https://doi.org/10.1109/ICSE.2001.919196\">https://doi.org/10.1109/ICSE.2001.919196</a>","ista":"Alur R, De Alfaro L, Grosu R, Henzinger TA, Kang M, Kirsch C, Majumdar R, Mang F, Wang B. 2001. jMocha: A model-checking tool that exploits design structure. Proceedings of the 23rd International Conference on Software Engineering. ICSE: Software Engineering, 835–836.","ieee":"R. Alur <i>et al.</i>, “jMocha: A model-checking tool that exploits design structure,” in <i>Proceedings of the 23rd International Conference on Software Engineering</i>, 2001, pp. 835–836.","short":"R. Alur, L. De Alfaro, R. Grosu, T.A. Henzinger, M. Kang, C. Kirsch, R. Majumdar, F. Mang, B. Wang, in:, Proceedings of the 23rd International Conference on Software Engineering, IEEE, 2001, pp. 835–836."},"abstract":[{"text":"Model checking is a practical tool for automated debugging of embedded software. In model checking, a high-level description of a system is compared against a logical correctness requirement to discover inconsistencies. Since model checking is based on exhaustive state-space exploration and the size of the state space of a design grows exponentially with the size of the description, scalability remains a challenge. We have thus developed techniques for exploiting modular design structure during model checking, and the model checker jMocha (Java MOdel-CHecking Algorithm) is based on this theme. Instead of manipulating unstructured state-transition graphs, it supports the hierarchical modeling framework of reactive modules. jMocha is a growing interactive software environment for specification, simulation and verification, and is intended as a vehicle for the development of new verification algorithms and approaches. It is written in Java and uses native C-code BDD libraries from VIS. jMocha offers: (1) a GUI that looks familiar to Windows/Java users; (2) a simulator that displays traces in a message sequence chart fashion; (3) requirements verification both by symbolic and enumerative model checking; (4) implementation verification by checking trace containment; (5) a proof manager that aids compositional and assume-guarantee reasoning; and (6) SLANG (Scripting LANGuage) for the rapid and structured development of new verification algorithms. jMocha is available publicly at ; it is a successor and extension of the original Mocha tool that was entirely written in C.","lang":"eng"}],"article_processing_charge":"No","user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","_id":"4600","publication":"Proceedings of the 23rd International Conference on Software Engineering","date_updated":"2023-05-08T14:06:55Z","title":"jMocha: A model-checking tool that exploits design structure","doi":"10.1109/ICSE.2001.919196","publisher":"IEEE","month":"08","extern":"1","acknowledgement":"We thank Himyanshu Anand, Ben Horowitz, Franjo Ivancic, Michael McDougall, Marius Minea, Oliver Moeller. Shaz Qadeer, Sriram Rajamani, and Jean-Francois Raskin for their assistance in the development of JMOCHA. The MOCHA project is funded in part by the DARPA grant NAG2-1214, the NSF CAREER awards CCR95-01708 and CCR97-34115, the NSF grant CCR99-70925, the NSF ITR grant CCR0085949, the MARC0 grant 98-DT-660, and the SRC contracts 99-TJ-683.003 and 99-TJ-688. ","quality_controlled":"1"},{"conference":{"location":"Vienna, Austria","end_date":"2001-09-14","start_date":"2001-09-10","name":"FSE: Foundations of Software Engineering"},"page":"109 - 120","author":[{"first_name":"Luca","full_name":"De Alfaro, Luca","last_name":"De Alfaro"},{"orcid":"0000−0002−2985−7724","last_name":"Henzinger","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","first_name":"Thomas A","full_name":"Henzinger, Thomas A"}],"day":"01","publist_id":"83","publication_status":"published","publication_identifier":{"isbn":["9781581133905"]},"date_created":"2018-12-11T12:09:48Z","language":[{"iso":"eng"}],"year":"2001","scopus_import":"1","status":"public","type":"conference","date_published":"2001-06-01T00:00:00Z","citation":{"ista":"De Alfaro L, Henzinger TA. 2001. Interface automata. Proceedings of the 8th European software engineering conference. FSE: Foundations of Software Engineering, 109–120.","apa":"De Alfaro, L., &#38; Henzinger, T. A. (2001). Interface automata. In <i>Proceedings of the 8th European software engineering conference</i> (pp. 109–120). Vienna, Austria: ACM. <a href=\"https://doi.org/10.1145/503209.503226\">https://doi.org/10.1145/503209.503226</a>","short":"L. De Alfaro, T.A. Henzinger, in:, Proceedings of the 8th European Software Engineering Conference, ACM, 2001, pp. 109–120.","ieee":"L. De Alfaro and T. A. Henzinger, “Interface automata,” in <i>Proceedings of the 8th European software engineering conference</i>, Vienna, Austria, 2001, pp. 109–120.","ama":"De Alfaro L, Henzinger TA. Interface automata. In: <i>Proceedings of the 8th European Software Engineering Conference</i>. ACM; 2001:109-120. doi:<a href=\"https://doi.org/10.1145/503209.503226\">10.1145/503209.503226</a>","mla":"De Alfaro, Luca, and Thomas A. Henzinger. “Interface Automata.” <i>Proceedings of the 8th European Software Engineering Conference</i>, ACM, 2001, pp. 109–20, doi:<a href=\"https://doi.org/10.1145/503209.503226\">10.1145/503209.503226</a>.","chicago":"De Alfaro, Luca, and Thomas A Henzinger. “Interface Automata.” In <i>Proceedings of the 8th European Software Engineering Conference</i>, 109–20. ACM, 2001. <a href=\"https://doi.org/10.1145/503209.503226\">https://doi.org/10.1145/503209.503226</a>."},"oa_version":"None","title":"Interface automata","date_updated":"2023-05-08T12:01:02Z","doi":"10.1145/503209.503226","publisher":"ACM","publication":"Proceedings of the 8th European software engineering conference","_id":"4622","user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","article_processing_charge":"No","abstract":[{"text":"Conventional type systems specify interfaces in terms of values and domains. We present a light-weight formalism that captures the temporal aspects of software component interfaces. Specifically, we use an automata-based language to capture both input assumptions about the order in which the methods of a component are called, and output guarantees about the order in which the component calls external methods. The formalism supports automatic compatability checks between interface models, and thus constitutes a type system for component interaction. Unlike traditional uses of automata, our formalism is based on an optimistic approach to composition, and on an alternating approach to design refinement. According to the optimistic approach, two components are compatible if there is some environment that can make them work together. According to the alternating approach, one interface refines another if it has weaker input assumptions, and stronger output guarantees. We show that these notions have game-theoretic foundations that lead to efficient algorithms for checking compatibility and refinement.","lang":"eng"}],"quality_controlled":"1","extern":"1","acknowledgement":"We thank Edward A. Lee, Xiaojun Liu, Freddy Mang, and Yuhong Xiong for fruitful discussions. This research was supported in part by the AFOSR MURI grant F49620-00-1-0327, the DARPA MoBIES grant F33615-00-C-1703, the MARCO GSRC grant 98-DT-660, the NSF Theory grant CCR-9988172, and the NSF ITR grant CCR-0085949.","month":"06"},{"scopus_import":"1","publication_identifier":{"isbn":["9783540426738"]},"acknowledgement":"This research was supported in part by the AFOSR MURI grant F49620-00-1-0327, the DARPA ITO grant F33615-00-C-1693, the MARCO grant 98-DT-660, and the NSF ITR grant CCR-0085949.","abstract":[{"lang":"eng","text":"We classify component-based models of computation into component models and interface models. A component model specifies for each component howthe component behaves in an arbitrary environment; an interface model specifies for each component what the component expects from the environment. Component models support compositional abstraction, and therefore component-based verification. Interface models support compositional refinement, and therefore componentbased design. Many aspects of interface models, such as compatibility and refinement checking between interfaces, are properly viewed in a gametheoretic setting, where the input and output values of an interface are chosen by different players."}],"user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","_id":"4623","title":"Interface theories for component-based design","citation":{"short":"L. De Alfaro, T.A. Henzinger, in:, Proceedings of the 1st International Workshop on Embedded Software, ACM, 2001, pp. 148–165.","ieee":"L. De Alfaro and T. A. Henzinger, “Interface theories for component-based design,” in <i>Proceedings of the 1st International Workshop on Embedded Software</i>, Tahoe City, CA, USA, 2001, vol. 2211, pp. 148–165.","ista":"De Alfaro L, Henzinger TA. 2001. Interface theories for component-based design. Proceedings of the 1st International Workshop on Embedded Software. EMSOFT: Embedded Software , LNCS, vol. 2211, 148–165.","apa":"De Alfaro, L., &#38; Henzinger, T. A. (2001). Interface theories for component-based design. In <i>Proceedings of the 1st International Workshop on Embedded Software</i> (Vol. 2211, pp. 148–165). Tahoe City, CA, USA: ACM. <a href=\"https://doi.org/10.1007/3-540-45449-7_11\">https://doi.org/10.1007/3-540-45449-7_11</a>","chicago":"De Alfaro, Luca, and Thomas A Henzinger. “Interface Theories for Component-Based Design.” In <i>Proceedings of the 1st International Workshop on Embedded Software</i>, 2211:148–65. ACM, 2001. <a href=\"https://doi.org/10.1007/3-540-45449-7_11\">https://doi.org/10.1007/3-540-45449-7_11</a>.","ama":"De Alfaro L, Henzinger TA. Interface theories for component-based design. In: <i>Proceedings of the 1st International Workshop on Embedded Software</i>. Vol 2211. ACM; 2001:148-165. doi:<a href=\"https://doi.org/10.1007/3-540-45449-7_11\">10.1007/3-540-45449-7_11</a>","mla":"De Alfaro, Luca, and Thomas A. Henzinger. “Interface Theories for Component-Based Design.” <i>Proceedings of the 1st International Workshop on Embedded Software</i>, vol. 2211, ACM, 2001, pp. 148–65, doi:<a href=\"https://doi.org/10.1007/3-540-45449-7_11\">10.1007/3-540-45449-7_11</a>."},"intvolume":"      2211","status":"public","year":"2001","language":[{"iso":"eng"}],"date_created":"2018-12-11T12:09:48Z","publist_id":"84","publication_status":"published","day":"26","author":[{"last_name":"De Alfaro","first_name":"Luca","full_name":"De Alfaro, Luca"},{"id":"40876CD8-F248-11E8-B48F-1D18A9856A87","first_name":"Thomas A","full_name":"Henzinger, Thomas A","last_name":"Henzinger","orcid":"0000−0002−2985−7724"}],"page":"148 - 165","alternative_title":["LNCS"],"conference":{"start_date":"2001-10-08","name":"EMSOFT: Embedded Software ","location":"Tahoe City, CA, USA","end_date":"2001-10-10"},"month":"09","extern":"1","quality_controlled":"1","article_processing_charge":"No","publication":"Proceedings of the 1st International Workshop on Embedded Software","publisher":"ACM","date_updated":"2023-05-08T12:11:20Z","doi":"10.1007/3-540-45449-7_11","oa_version":"None","volume":2211,"type":"conference","date_published":"2001-09-26T00:00:00Z"},{"status":"public","intvolume":"      2154","citation":{"ieee":"L. De Alfaro, T. A. Henzinger, and R. Jhala, “Compositional methods for probabilistic systems,” in <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, Aalborg, Denmark, 2001, vol. 2154, pp. 351–365.","short":"L. De Alfaro, T.A. Henzinger, R. Jhala, in:, Proceedings of the 12th International Conference on on Concurrency Theory, Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001, pp. 351–365.","ista":"De Alfaro L, Henzinger TA, Jhala R. 2001. Compositional methods for probabilistic systems. Proceedings of the 12th International Conference on on Concurrency Theory. CONCUR: Concurrency Theory, LNCS, vol. 2154, 351–365.","apa":"De Alfaro, L., Henzinger, T. A., &#38; Jhala, R. (2001). Compositional methods for probabilistic systems. In <i>Proceedings of the 12th International Conference on on Concurrency Theory</i> (Vol. 2154, pp. 351–365). Aalborg, Denmark: Schloss Dagstuhl - Leibniz-Zentrum für Informatik. <a href=\"https://doi.org/10.1007/3-540-44685-0_24\">https://doi.org/10.1007/3-540-44685-0_24</a>","chicago":"De Alfaro, Luca, Thomas A Henzinger, and Ranjit Jhala. “Compositional Methods for Probabilistic Systems.” In <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, 2154:351–65. Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001. <a href=\"https://doi.org/10.1007/3-540-44685-0_24\">https://doi.org/10.1007/3-540-44685-0_24</a>.","ama":"De Alfaro L, Henzinger TA, Jhala R. Compositional methods for probabilistic systems. In: <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>. Vol 2154. Schloss Dagstuhl - Leibniz-Zentrum für Informatik; 2001:351-365. doi:<a href=\"https://doi.org/10.1007/3-540-44685-0_24\">10.1007/3-540-44685-0_24</a>","mla":"De Alfaro, Luca, et al. “Compositional Methods for Probabilistic Systems.” <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, vol. 2154, Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001, pp. 351–65, doi:<a href=\"https://doi.org/10.1007/3-540-44685-0_24\">10.1007/3-540-44685-0_24</a>."},"abstract":[{"lang":"eng","text":"We present a compositional trace-based model for probabilistic systems. The behavior of a system with probabilistic choice is a stochastic process, namely, a probability distribution on traces, or “bundle.” Consequently, the semantics of a system with both nondeterministic and probabilistic choice is a set of bundles. The bundles of a composite system can be obtained by combining the bundles of the components in a simple mathematical way. Refinement between systems is bundle containment. We achieve assume-guarantee compositionality for bundle semantics by introducing two scoping mechanisms. The first mechanism, which is standard in compositional modeling, distinguishes inputs from outputs and hidden state. The second mechanism, which arises in probabilistic systems, partitions the state into probabilistically independent regions."}],"user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","_id":"4632","title":"Compositional methods for probabilistic systems","acknowledgement":"This research was supported in part by the SRC contract 99-TJ-683.003, the AFOSR MURI grant F49620-00-1-0327, the MARCO GSRC grant 98-DT-660, the NSF Theory grant CCR-9988172, and the DARPA SEC grant F33615-C-98-3614.","publication_identifier":{"isbn":["9783540424970"]},"scopus_import":"1","volume":2154,"type":"conference","date_published":"2001-08-13T00:00:00Z","oa_version":"None","article_processing_charge":"No","publication":"Proceedings of the 12th International Conference on on Concurrency Theory","publisher":"Schloss Dagstuhl - Leibniz-Zentrum für Informatik","date_updated":"2023-05-08T10:24:59Z","doi":"10.1007/3-540-44685-0_24","month":"08","extern":"1","quality_controlled":"1","author":[{"first_name":"Luca","full_name":"De Alfaro, Luca","last_name":"De Alfaro"},{"full_name":"Henzinger, Thomas A","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","first_name":"Thomas A","last_name":"Henzinger","orcid":"0000−0002−2985−7724"},{"last_name":"Jhala","full_name":"Jhala, Ranjit","first_name":"Ranjit"}],"page":"351 - 365","alternative_title":["LNCS"],"conference":{"start_date":"2001-08-20","name":"CONCUR: Concurrency Theory","location":"Aalborg, Denmark","end_date":"2001-08-25"},"date_created":"2018-12-11T12:09:51Z","publication_status":"published","publist_id":"75","day":"13","language":[{"iso":"eng"}],"year":"2001"},{"conference":{"start_date":"2001-08-20","name":"CONCUR: Concurrency Theory","location":"Aalborg, Denmark","end_date":"2001-08-25"},"page":"536 - 550","alternative_title":["LNCS"],"author":[{"last_name":"De Alfaro","full_name":"De Alfaro, Luca","first_name":"Luca"},{"full_name":"Henzinger, Thomas A","first_name":"Thomas A","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","last_name":"Henzinger","orcid":"0000−0002−2985−7724"},{"first_name":"Ritankar","full_name":"Majumdar, Ritankar","last_name":"Majumdar"}],"day":"13","publication_status":"published","publist_id":"73","date_created":"2018-12-11T12:09:52Z","language":[{"iso":"eng"}],"year":"2001","date_published":"2001-08-13T00:00:00Z","type":"conference","volume":2154,"oa_version":"None","doi":"10.1007/3-540-44685-0_36","publisher":"Schloss Dagstuhl - Leibniz-Zentrum für Informatik","date_updated":"2023-05-08T09:57:31Z","publication":"Proceedings of the 12th International Conference on on Concurrency Theory","article_processing_charge":"No","quality_controlled":"1","extern":"1","month":"08","publication_identifier":{"isbn":["9783540424970"]},"scopus_import":"1","status":"public","citation":{"mla":"De Alfaro, Luca, et al. “Symbolic Algorithms for Infinite-State Games.” <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, vol. 2154, Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001, pp. 536–50, doi:<a href=\"https://doi.org/10.1007/3-540-44685-0_36\">10.1007/3-540-44685-0_36</a>.","ama":"De Alfaro L, Henzinger TA, Majumdar R. Symbolic algorithms for infinite-state games. In: <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>. Vol 2154. Schloss Dagstuhl - Leibniz-Zentrum für Informatik; 2001:536-550. doi:<a href=\"https://doi.org/10.1007/3-540-44685-0_36\">10.1007/3-540-44685-0_36</a>","chicago":"De Alfaro, Luca, Thomas A Henzinger, and Ritankar Majumdar. “Symbolic Algorithms for Infinite-State Games.” In <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, 2154:536–50. Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001. <a href=\"https://doi.org/10.1007/3-540-44685-0_36\">https://doi.org/10.1007/3-540-44685-0_36</a>.","apa":"De Alfaro, L., Henzinger, T. A., &#38; Majumdar, R. (2001). Symbolic algorithms for infinite-state games. In <i>Proceedings of the 12th International Conference on on Concurrency Theory</i> (Vol. 2154, pp. 536–550). Aalborg, Denmark: Schloss Dagstuhl - Leibniz-Zentrum für Informatik. <a href=\"https://doi.org/10.1007/3-540-44685-0_36\">https://doi.org/10.1007/3-540-44685-0_36</a>","ista":"De Alfaro L, Henzinger TA, Majumdar R. 2001. Symbolic algorithms for infinite-state games. Proceedings of the 12th International Conference on on Concurrency Theory. CONCUR: Concurrency Theory, LNCS, vol. 2154, 536–550.","ieee":"L. De Alfaro, T. A. Henzinger, and R. Majumdar, “Symbolic algorithms for infinite-state games,” in <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, Aalborg, Denmark, 2001, vol. 2154, pp. 536–550.","short":"L. De Alfaro, T.A. Henzinger, R. Majumdar, in:, Proceedings of the 12th International Conference on on Concurrency Theory, Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001, pp. 536–550."},"intvolume":"      2154","title":"Symbolic algorithms for infinite-state games","_id":"4633","user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","abstract":[{"text":"A procedure for the analysis of state spaces is called symbolic if it manipulates not individual states, but sets of states that are represented by constraints. Such a procedure can be used for the analysis of infinite state spaces, provided termination is guaranteed. We present symbolic procedures, and corresponding termination criteria, for the solution of infinite-state games, which occur in the control and modular verification of infinite-state systems. To characterize the termination of symbolic procedures for solving infinite-state games, we classify these game structures into four increasingly restrictive categories:\r\n1  \tClass 1 consists of infinite-state structures for which all safety and reachability games can be solved.\r\n2  \tClass 2 consists of infinite-state structures for which all ω-regular games can be solved.\r\n3  \tClass 3 consists of infinite-state structures for which all nested positive boolean combinations of ω-regular games can be solved.\r\n4  \tClass 4 consists of infinite-state structures for which all nested boolean combinations of ω-regular games can be solved.\r\nWe give a structural characterization for each class, using equivalence relations on the state spaces of games which range from game versions of trace equivalence to a game version of bisimilarity. We provide infinite-state examples for all four classes of games from control problems for hybrid systems. We conclude by presenting symbolic algorithms for the synthesis of winning strategies (“controller synthesis”) for infinitestate games with arbitrary ω-regular objectives, and prove termination over all class-2 structures. This settles, in particular, the symbolic controller synthesis problem for rectangular hybrid systems.","lang":"eng"}],"acknowledgement":"This research was supported in part by the AFOSR MURI grant F49620-00-1-0327, the DARPA SEC grant F33615-C-98-3614, the MARCO GSRC grant 98-DT-660, the NSF Theory grant CCR-9988172, and the NSF ITR grant CCR-0085949."},{"publication_identifier":{"isbn":["9783540424970"]},"scopus_import":"1","status":"public","citation":{"ama":"De Alfaro L, Henzinger TA, Mang F. The control of synchronous systems, Part II. In: <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>. Vol 2154. Schloss Dagstuhl - Leibniz-Zentrum für Informatik; 2001:566-581. doi:<a href=\"https://doi.org/10.1007/3-540-44685-0_38\">10.1007/3-540-44685-0_38</a>","mla":"De Alfaro, Luca, et al. “The Control of Synchronous Systems, Part II.” <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, vol. 2154, Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001, pp. 566–81, doi:<a href=\"https://doi.org/10.1007/3-540-44685-0_38\">10.1007/3-540-44685-0_38</a>.","chicago":"De Alfaro, Luca, Thomas A Henzinger, and Freddy Mang. “The Control of Synchronous Systems, Part II.” In <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, 2154:566–81. Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001. <a href=\"https://doi.org/10.1007/3-540-44685-0_38\">https://doi.org/10.1007/3-540-44685-0_38</a>.","ista":"De Alfaro L, Henzinger TA, Mang F. 2001. The control of synchronous systems, Part II. Proceedings of the 12th International Conference on on Concurrency Theory. CONCUR: Concurrency Theory, LNCS, vol. 2154, 566–581.","apa":"De Alfaro, L., Henzinger, T. A., &#38; Mang, F. (2001). The control of synchronous systems, Part II. In <i>Proceedings of the 12th International Conference on on Concurrency Theory</i> (Vol. 2154, pp. 566–581). Aalborg, Denmark: Schloss Dagstuhl - Leibniz-Zentrum für Informatik. <a href=\"https://doi.org/10.1007/3-540-44685-0_38\">https://doi.org/10.1007/3-540-44685-0_38</a>","short":"L. De Alfaro, T.A. Henzinger, F. Mang, in:, Proceedings of the 12th International Conference on on Concurrency Theory, Schloss Dagstuhl - Leibniz-Zentrum für Informatik, 2001, pp. 566–581.","ieee":"L. De Alfaro, T. A. Henzinger, and F. Mang, “The control of synchronous systems, Part II,” in <i>Proceedings of the 12th International Conference on on Concurrency Theory</i>, Aalborg, Denmark, 2001, vol. 2154, pp. 566–581."},"intvolume":"      2154","_id":"4634","title":"The control of synchronous systems, Part II","abstract":[{"lang":"eng","text":"A controller is an environment for a system that achieves a particular control objective by providing inputs to the system without constraining the choices of the system. For synchronous systems, where system and controller make simultaneous and interdependent choices, the notion that a controller must not constrain the choices of the system can be formalized by type systems for composability. In a previous paper, we solved the control problem for static and dynamic types: a static type is a dependency relation between inputs and outputs, and composition is well-typed if it does not introduce cyclic dependencies; a dynamic type is a set of static types, one for each state. Static and dynamic types, however, cannot capture many important digital circuits, such as gated clocks, bidirectional buses, and random-access memory. We therefore introduce more general type systems, so-called dependent and bidirectional types, for modeling these situations, and we solve the corresponding control problems.\r\nIn a system with a dependent type, the dependencies between inputs and outputs are determined gradually through a game of the system against the controller. In a system with a bidirectional type, also the distinction between inputs and outputs is resolved dynamically by such a game. The game proceeds in several rounds. In each round the system and the controller choose to update some variables dependent on variables that have already been updated. The solution of the control problem for dependent and bidirectional types is based on algorithms for solving these games."}],"user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","acknowledgement":"This research was supported in part by the SRC contract 99-TJ-683.003, the DARPA SEC grant F33615-C-98-3614, the MARCO GSRC grant 98-DT-660, the AFOSR MURI grant F49620-00-1-0327, and the NSF Theory grant CCR-9988172.","alternative_title":["LNCS"],"page":"566 - 581","conference":{"end_date":"2001-08-25","location":"Aalborg, Denmark","name":"CONCUR: Concurrency Theory","start_date":"2001-08-20"},"author":[{"full_name":"De Alfaro, Luca","first_name":"Luca","last_name":"De Alfaro"},{"orcid":"0000−0002−2985−7724","last_name":"Henzinger","first_name":"Thomas A","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","full_name":"Henzinger, Thomas A"},{"last_name":"Mang","first_name":"Freddy","full_name":"Mang, Freddy"}],"publication_status":"published","publist_id":"74","day":"13","date_created":"2018-12-11T12:09:52Z","language":[{"iso":"eng"}],"year":"2001","volume":2154,"date_published":"2001-08-13T00:00:00Z","type":"conference","oa_version":"None","publication":"Proceedings of the 12th International Conference on on Concurrency Theory","doi":"10.1007/3-540-44685-0_38","publisher":"Schloss Dagstuhl - Leibniz-Zentrum für Informatik","date_updated":"2023-05-08T10:20:19Z","article_processing_charge":"No","extern":"1","quality_controlled":"1","month":"08"},{"year":"2001","language":[{"iso":"eng"}],"publication_identifier":{"isbn":["9781581133486"]},"date_created":"2018-12-11T12:09:52Z","publication_status":"published","publist_id":"71","day":"01","author":[{"full_name":"De Alfaro, Luca","first_name":"Luca","last_name":"De Alfaro"},{"full_name":"Henzinger, Thomas A","id":"40876CD8-F248-11E8-B48F-1D18A9856A87","first_name":"Thomas A","orcid":"0000−0002−2985−7724","last_name":"Henzinger"},{"full_name":"Mang, Freddy","first_name":"Freddy","last_name":"Mang"}],"page":"86 - 87","conference":{"end_date":"2000-05-05","location":"Hong Kong, Hong Kong","name":"WWW: World Wide Web Conference","start_date":"2001-05-01"},"month":"05","extern":"1","quality_controlled":"1","abstract":[{"lang":"eng","text":"We show how model checking techniques can be applied to the analysis of connectivity and cost-of-traversal properties of Web sites."}],"article_processing_charge":"No","user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","_id":"4635","publication":"Proceedings of the 10th international conference on World Wide Web","title":"MCWEB: A model-checking tool for web-site debugging","publisher":"ACM","date_updated":"2023-05-08T09:39:02Z","oa_version":"None","main_file_link":[{"url":"https://ir.webis.de/anthology/2001.wwwconf_conference-2001p.57/"}],"citation":{"short":"L. De Alfaro, T.A. Henzinger, F. Mang, in:, Proceedings of the 10th International Conference on World Wide Web, ACM, 2001, pp. 86–87.","ieee":"L. De Alfaro, T. A. Henzinger, and F. Mang, “MCWEB: A model-checking tool for web-site debugging,” in <i>Proceedings of the 10th international conference on World Wide Web</i>, Hong Kong, Hong Kong, 2001, pp. 86–87.","ista":"De Alfaro L, Henzinger TA, Mang F. 2001. MCWEB: A model-checking tool for web-site debugging. Proceedings of the 10th international conference on World Wide Web. WWW: World Wide Web Conference, 86–87.","apa":"De Alfaro, L., Henzinger, T. A., &#38; Mang, F. (2001). MCWEB: A model-checking tool for web-site debugging. In <i>Proceedings of the 10th international conference on World Wide Web</i> (pp. 86–87). Hong Kong, Hong Kong: ACM.","chicago":"De Alfaro, Luca, Thomas A Henzinger, and Freddy Mang. “MCWEB: A Model-Checking Tool for Web-Site Debugging.” In <i>Proceedings of the 10th International Conference on World Wide Web</i>, 86–87. ACM, 2001.","ama":"De Alfaro L, Henzinger TA, Mang F. MCWEB: A model-checking tool for web-site debugging. In: <i>Proceedings of the 10th International Conference on World Wide Web</i>. ACM; 2001:86-87.","mla":"De Alfaro, Luca, et al. “MCWEB: A Model-Checking Tool for Web-Site Debugging.” <i>Proceedings of the 10th International Conference on World Wide Web</i>, ACM, 2001, pp. 86–87."},"date_published":"2001-05-01T00:00:00Z","type":"conference","status":"public"},{"publication_identifier":{"isbn":["076951281X"]},"date_created":"2018-12-11T12:09:52Z","publication_status":"published","publist_id":"72","day":"07","author":[{"last_name":"De Alfaro","first_name":"Luca","full_name":"De Alfaro, Luca"},{"id":"40876CD8-F248-11E8-B48F-1D18A9856A87","first_name":"Thomas A","full_name":"Henzinger, Thomas A","orcid":"0000−0002−2985−7724","last_name":"Henzinger"},{"first_name":"Ritankar","full_name":"Majumdar, Ritankar","last_name":"Majumdar"}],"page":"279 - 290","conference":{"name":"LICS: Logic in Computer Science","start_date":"2001-06-16","end_date":"2001-06-19","location":"Boston, MA, USA"},"year":"2001","language":[{"iso":"eng"}],"oa_version":"None","citation":{"ama":"De Alfaro L, Henzinger TA, Majumdar R. From verification to control: dynamic programs for omega-regular objectives. In: <i>Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science</i>. IEEE; 2001:279-290. doi:<a href=\"https://doi.org/10.1109/LICS.2001.932504\">10.1109/LICS.2001.932504</a>","mla":"De Alfaro, Luca, et al. “From Verification to Control: Dynamic Programs for Omega-Regular Objectives.” <i>Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science</i>, IEEE, 2001, pp. 279–90, doi:<a href=\"https://doi.org/10.1109/LICS.2001.932504\">10.1109/LICS.2001.932504</a>.","chicago":"De Alfaro, Luca, Thomas A Henzinger, and Ritankar Majumdar. “From Verification to Control: Dynamic Programs for Omega-Regular Objectives.” In <i>Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science</i>, 279–90. IEEE, 2001. <a href=\"https://doi.org/10.1109/LICS.2001.932504\">https://doi.org/10.1109/LICS.2001.932504</a>.","ista":"De Alfaro L, Henzinger TA, Majumdar R. 2001. From verification to control: dynamic programs for omega-regular objectives. Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science. LICS: Logic in Computer Science, 279–290.","apa":"De Alfaro, L., Henzinger, T. A., &#38; Majumdar, R. (2001). From verification to control: dynamic programs for omega-regular objectives. In <i>Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science</i> (pp. 279–290). Boston, MA, USA: IEEE. <a href=\"https://doi.org/10.1109/LICS.2001.932504\">https://doi.org/10.1109/LICS.2001.932504</a>","ieee":"L. De Alfaro, T. A. Henzinger, and R. Majumdar, “From verification to control: dynamic programs for omega-regular objectives,” in <i>Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science</i>, Boston, MA, USA, 2001, pp. 279–290.","short":"L. De Alfaro, T.A. Henzinger, R. Majumdar, in:, Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science, IEEE, 2001, pp. 279–290."},"type":"conference","date_published":"2001-08-07T00:00:00Z","status":"public","month":"08","extern":"1","quality_controlled":"1","abstract":[{"lang":"eng","text":"Abstract. Dynamic programs, or fixpoint iteration schemes, are useful for solving many problems on state spaces, including model checking on Kripke structures (“verification”), computing shortest paths on weighted graphs (“optimization”), computing the value of games played on game graphs (“control”). For Kripke structures, a rich fixpoint theory is available in the form of the µ-calculus. Yet few connections have been made between different interpretations of fixpoint algorithms. We study the question of when a particular fixpoint iteration scheme ϕ for verifying an ω-regular property Ψ on a Kripke structure can be used also for solving a two-player game on a game graph with winning objective Ψ. We provide a sufficient and necessary criterion for the answer to be affirmative in the form of an extremal-model theorem for games: under a game interpretation, the dynamic program ϕ solves the game with objective Ψ if and only if both (1) under an existential interpretation on Kripke structures, ϕ is equivalent to ∃Ψ, and (2) under a universal interpretation on Kripke structures, ϕ is equivalent to ∀Ψ. In other words, ϕ is correct on all two-player game graphs iff it is correct on all extremal game graphs, where one or the other player has no choice of moves. The theorem generalizes to quantitative interpretations, where it connects two-player games with costs to weighted graphs. While the standard translations from ω-regular properties to the µ-calculus violate (1) or (2), we give a translation that satisfies both conditions. Our construction, therefore, yields fixpoint iteration schemes that can be uniformly applied on Kripke structures, weighted graphs, game graphs, and game graphs with costs, in order to meet or optimize a given ω-regular objective."}],"article_processing_charge":"No","user_id":"ea97e931-d5af-11eb-85d4-e6957dddbf17","publication":"Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science","_id":"4636","date_updated":"2023-05-08T09:48:06Z","doi":"10.1109/LICS.2001.932504","title":"From verification to control: dynamic programs for omega-regular objectives","publisher":"IEEE"}]
