An Exercise in Invariant-based Programming with Interactive and Automatic Theorem Prover Support

Invariant-Based Programming (IBP) is a diagram-based correct-by-construction programming methodology in which the program is structured around the invariants, which are additionally formulated before the actual code. Socos is a program construction and verification environment built specifically to support IBP. The front-end to Socos is a graphical diagram editor, allowing the programmer to construct invariant-based programs and check their correctness. The back-end component of Socos, the program checker, computes the verification conditions of the program and tries to prove them automatically. It uses the theorem prover PVS and the SMT solver Yices to discharge as many of the verification conditions as possible without user interaction. In this paper, we first describe the Socos environment from a user and systems level perspective; we then exemplify the IBP workflow by building a verified implementation of heapsort in Socos. The case study highlights the role of both automatic and interactive theorem proving in three sequential stages of the IBP workflow: developing the background theory, formulating the program specification and invariants, and proving the correctness of the final implementation.Comment: In Proceedings THedu'11, arXiv:1202.453

Participatory varietal selection of potato using the mother & baby trial design: A gender-responsive trainer’s guide.

This guide aims to provide step-by-step guidance on facilitating and documenting the PVS dynamics using the MBT design to select, and eventually release, potato varieties preferred by end-users that suit male and female farmers ’different needs, diverse agro-systems, and management practices, as well as traders ’and consumers’ preferences

Extending and Relating Semantic Models of Compensating CSP

Business transactions involve multiple partners coordinating and interacting with each other. These transactions have hierarchies of activities which need to be orchestrated. Usual database approaches (e.g.,checkpoint, rollback) are not applicable to handle faults in a long running transaction due to interaction with multiple partners. The compensation mechanism handles faults that can arise in a long running transaction. Based on the framework of Hoare's CSP process algebra, Butler et al introduced Compensating CSP (cCSP), a language to model long-running transactions. The language introduces a method to declare a transaction as a process and it has constructs for orchestration of compensation. Butler et al also defines a trace semantics for cCSP. In this thesis, the semantic models of compensating CSP are extended by defining an operational semantics, describing how the state of a program changes during its execution. The semantics is encoded into Prolog to animate the specification. The semantic models are further extended to define the synchronisation of processes. The notion of partial behaviour is defined to model the behaviour of deadlock that arises during process synchronisation. A correspondence relationship is then defined between the semantic models and proved by using structural induction. Proving the correspondence means that any of the presentation can be accepted as a primary definition of the meaning of the language and each definition can be used correctly at different times, and for different purposes. The semantic models and their relationships are mechanised by using the theorem prover PVS. The semantic models are embedded in PVS by using Shallow embedding. The relationships between semantic models are proved by mutual structural induction. The mechanisation overcomes the problems in hand proofs and improves the scalability of the approach

Empowering Distributed Solar PV Energy For Malaysian Rural Housing: Towards Energy Security And Equitability Of Rural Communities

This paper illustrates on how Malaysia’s development landscapes has been powered by cheap oil and gas making it dependent and addicted on using large amounts of fossil fuels. As a country that is primarily depended on fossil fuels for generating power supply, Malaysia needs to cogitate of long-term energy security due to fossil fuel depletion and peak oil issues. Loss of these resources could leadto thereduction of power generation capacitywhich will threaten the stability of the electricity supply in Malaysia. This could potentially influence in an increase in electricity costs which lead to a phase of power scarcity and load shedding for the country. With the risk of interrupted power supplies, rural households, especially those of low-income groups are particularly vulnerable to the post-effects of a power outage and an inequitable distribution to the people. Distributed generation of electricity by solar PVs diminishes the vulnerability of these households and can also offer an income to them by feeding the power supply to the national grid through Feed-in Tariff scheme. At the moment, the deployment of solar PV installations is still in the introductory stage in Malaysia, where roof-mounted PV panels are only available to commercial and urban residential buildings. This is due to the lack of a suitable renewable energy policy for rural householdsandthe high cost of the solar PV technology. This paper will put forward an analysis for incorporating solar photovoltaic on roofs of rural houses by identifying the energy consumption of these households and the extent to which PVs can alleviate electricity insecurity. The results present significant potential for distributed PV power generation in rural areas in Malaysia which shown a considerable amount of electricity needed to be harvested from roof-mounted solar PV for rural people in Malaysi

Catheter ablation of atrial fibrillation : radiofrequency catheter ablation for redo procedures after cryoablation

Aim: To evaluate the effectiveness of two different strategies using radiofrequency catheter ablation for redo procedures after cryoablation of atrial fibrillation. Methods: Thirty patients (paroxysmal atrial fibrillation: 22 patients, persistent atrial fibrillation: 8 patients) had to undergo a redo procedure after initially successful circumferential pulmonary vein (PV) isolation with the cryoballoon technique (Arctic Front Balloon, CryoCath Technologies/Medtronic). The redo ablation procedures were performed using a segmental approach or a circumferential ablation strategy (CARTO; Biosense Webster) depending on the intra-procedural findings. After discharge, patients were scheduled for repeated visits at the arrhythmia clinic. A 7-day Holter monitoring was performed at 3, 12 and 24 mo after the ablation procedure. Results: During the redo procedure, a mean number of 2.9 re-conducting pulmonary veins (SD ± 1.0 PVs) were detected (using a circular mapping catheter). In 20 patients, a segmental approach was sufficient to eliminate the residual pulmonary vein conduction because there were only a few recovered pulmonary vein fibres. In the remaining 10 patients, a circumferential ablation strategy was used because of a complete recovery of the PV-LA conduction. All recovered pulmonary veins could be isolated successfully again. At 2-year follow-up, 73.3% of all patients were free from an arrhythmia recurrence (22/30). There were no major complications. Conclusion: In patients with an initial circumferential pulmonary vein isolation using the cryoballoon technique, a repeat ablation procedure can be performed safely and effectively using radiofrequency catheter ablation

Practical Theory Extension in Event-B

Abstract. The Rodin tool for Event-B supports formal modelling and proof using a mathematical language that is based on predicate logic and set theory. Although Rodin has in-built support for a rich set of operators and proof rules, for some application areas there may be a need to extend the set of operators and proof rules supported by the tool. This paper outlines a new feature of the Rodin tool, the theory component, that allows users to extend the mathematical language supported by the tool. Using theories, Rodin users may define new data types and polymorphic operators in a systematic and practical way. Theories also allow users to extend the proof capabilities of Rodin by defining new proof rules that get incorporated into the proof mechanisms. Soundness of new definitions and rules is provided through validity proof obligations.