21 research outputs found
On the Generation of Positivstellensatz Witnesses in Degenerate Cases
One can reduce the problem of proving that a polynomial is nonnegative, or
more generally of proving that a system of polynomial inequalities has no
solutions, to finding polynomials that are sums of squares of polynomials and
satisfy some linear equality (Positivstellensatz). This produces a witness for
the desired property, from which it is reasonably easy to obtain a formal proof
of the property suitable for a proof assistant such as Coq. The problem of
finding a witness reduces to a feasibility problem in semidefinite programming,
for which there exist numerical solvers. Unfortunately, this problem is in
general not strictly feasible, meaning the solution can be a convex set with
empty interior, in which case the numerical optimization method fails.
Previously published methods thus assumed strict feasibility; we propose a
workaround for this difficulty. We implemented our method and illustrate its
use with examples, including extractions of proofs to Coq.Comment: To appear in ITP 201
Formal Proofs for Nonlinear Optimization
We present a formally verified global optimization framework. Given a
semialgebraic or transcendental function and a compact semialgebraic domain
, we use the nonlinear maxplus template approximation algorithm to provide a
certified lower bound of over . This method allows to bound in a modular
way some of the constituents of by suprema of quadratic forms with a well
chosen curvature. Thus, we reduce the initial goal to a hierarchy of
semialgebraic optimization problems, solved by sums of squares relaxations. Our
implementation tool interleaves semialgebraic approximations with sums of
squares witnesses to form certificates. It is interfaced with Coq and thus
benefits from the trusted arithmetic available inside the proof assistant. This
feature is used to produce, from the certificates, both valid underestimators
and lower bounds for each approximated constituent. The application range for
such a tool is widespread; for instance Hales' proof of Kepler's conjecture
yields thousands of multivariate transcendental inequalities. We illustrate the
performance of our formal framework on some of these inequalities as well as on
examples from the global optimization literature.Comment: 24 pages, 2 figures, 3 table
Encoding inductive invariants as barrier certificates: synthesis via difference-of-convex programming
A barrier certificate often serves as an inductive invariant that isolates an
unsafe region from the reachable set of states, and hence is widely used in
proving safety of hybrid systems possibly over an infinite time horizon. We
present a novel condition on barrier certificates, termed the invariant
barrier-certificate condition, that witnesses unbounded-time safety of
differential dynamical systems. The proposed condition is the weakest possible
one to attain inductive invariance. We show that discharging the invariant
barrier-certificate condition -- thereby synthesizing invariant barrier
certificates -- can be encoded as solving an optimization problem subject to
bilinear matrix inequalities (BMIs). We further propose a synthesis algorithm
based on difference-of-convex programming, which approaches a local optimum of
the BMI problem via solving a series of convex optimization problems. This
algorithm is incorporated in a branch-and-bound framework that searches for the
global optimum in a divide-and-conquer fashion. We present a weak completeness
result of our method, namely, a barrier certificate is guaranteed to be found
(under some mild assumptions) whenever there exists an inductive invariant (in
the form of a given template) that suffices to certify safety of the system.
Experimental results on benchmarks demonstrate the effectiveness and efficiency
of our approach.Comment: To be published in Inf. Comput. arXiv admin note: substantial text
overlap with arXiv:2105.1431
Certification of Bounds of Non-linear Functions: the Templates Method
The aim of this work is to certify lower bounds for real-valued multivariate
functions, defined by semialgebraic or transcendental expressions. The
certificate must be, eventually, formally provable in a proof system such as
Coq. The application range for such a tool is widespread; for instance Hales'
proof of Kepler's conjecture yields thousands of inequalities. We introduce an
approximation algorithm, which combines ideas of the max-plus basis method (in
optimal control) and of the linear templates method developed by Manna et al.
(in static analysis). This algorithm consists in bounding some of the
constituents of the function by suprema of quadratic forms with a well chosen
curvature. This leads to semialgebraic optimization problems, solved by
sum-of-squares relaxations. Templates limit the blow up of these relaxations at
the price of coarsening the approximation. We illustrate the efficiency of our
framework with various examples from the literature and discuss the interfacing
with Coq.Comment: 16 pages, 3 figures, 2 table
Solving generic nonarchimedean semidefinite programs using stochastic game algorithms
A general issue in computational optimization is to develop combinatorial
algorithms for semidefinite programming. We address this issue when the base
field is nonarchimedean. We provide a solution for a class of semidefinite
feasibility problems given by generic matrices. Our approach is based on
tropical geometry. It relies on tropical spectrahedra, which are defined as the
images by the valuation of nonarchimedean spectrahedra. We establish a
correspondence between generic tropical spectrahedra and zero-sum stochastic
games with perfect information. The latter have been well studied in
algorithmic game theory. This allows us to solve nonarchimedean semidefinite
feasibility problems using algorithms for stochastic games. These algorithms
are of a combinatorial nature and work for large instances.Comment: v1: 25 pages, 4 figures; v2: 27 pages, 4 figures, minor revisions +
benchmarks added; v3: 30 pages, 6 figures, generalization to non-Metzler sign
patterns + some results have been replaced by references to the companion
work arXiv:1610.0674
A Decision Procedure for Univariate Polynomial Systems Based on Root Counting and Interval Subdivision
This paper presents a formally verified decision procedure for determining the satisfiability of a system of univariate polynomial relations over the real line. The procedure combines a root counting function, based on Sturm's theorem, with an interval subdivision algorithm. Given a system of polynomial relations over the same variable, the decision procedure progressively subdivides the real interval into smaller intervals. The subdivision continues until the satisfiability of the system can be determined on each subinterval using Sturm's theorem on a subset of the system's polynomials. The decision procedure has been formally verified in the Prototype Verification System (PVS). In PVS, the decision procedure is specified as a computable Boolean function on a deep embedding of polynomial relations. This function is used to define a proof producing strategy for automatically proving existential and universal statements on polynomial systems. The soundness of the strategy solely depends on the internal logic of PVS
A Formally-Verified Decision Procedure for Univariate Polynomial Computation Based on Sturm's Theorem
Sturm's Theorem is a well-known result in real algebraic geometry that provides a function that computes the number of roots of a univariate polynomial in a semiopen interval. This paper presents a formalization of this theorem in the PVS theorem prover, as well as a decision procedure that checks whether a polynomial is always positive, nonnegative, nonzero, negative, or nonpositive on any input interval. The soundness and completeness of the decision procedure is proven in PVS. The procedure and its correctness properties enable the implementation of a PVS strategy for automatically proving existential and universal univariate polynomial inequalities. Since the decision procedure is formally verified in PVS, the soundness of the strategy depends solely on the internal logic of PVS rather than on an external oracle. The procedure itself uses a combination of Sturm's Theorem, an interval bisection procedure, and the fact that a polynomial with exactly one root in a bounded interval is always nonnegative on that interval if and only if it is nonnegative at both endpoints