13 research outputs found
STV+Reductions: Towards Practical Verification of Strategic Ability Using Model Reductions
We present a substantially expanded version of our tool STV for strategy
synthesis and verification of strategic abilities. The new version adds
user-definable models and support for model reduction through partial order
reduction and checking for bisimulation
Strategic (Timed) Computation Tree Logic
We define extensions of CTL and TCTL with strategic operators, called
Strategic CTL (SCTL) and Strategic TCTL (STCTL), respectively. For each of the
above logics we give a synchronous and asynchronous semantics, i.e., STCTL is
interpreted over networks of extended Timed Automata (TA) that either make
synchronous moves or synchronise via joint actions. We consider several
semantics regarding information: imperfect (i) and perfect (I), and recall:
imperfect (r) and perfect (R). We prove that SCTL is more expressive than ATL
for all semantics, and this holds for the timed versions as well. Moreover, the
model checking problem for SCTL[ir] is of the same complexity as for ATL[ir],
the model checking problem for STCTL[ir] is of the same complexity as for TCTL,
while for STCTL[iR] it is undecidable as for ATL[iR]. The above results suggest
to use SCTL[ir] and STCTL[ir] in practical applications. Therefore, we use the
tool IMITATOR to support model checking of STCTL[ir]
Model Checking an Epistemic mu-calculus with Synchronous and Perfect Recall Semantics
We identify a subproblem of the model-checking problem for the epistemic
\mu-calculus which is decidable. Formulas in the instances of this subproblem
allow free variables within the scope of epistemic modalities in a restricted
form that avoids embodying any form of common knowledge. Our subproblem
subsumes known decidable fragments of epistemic CTL/LTL, may express winning
strategies in two-player games with one player having imperfect information and
non-observable objectives, and, with a suitable encoding, decidable instances
of the model-checking problem for ATLiR.Comment: 10 pages, Poster presentation at TARK 2013 (arXiv:1310.6382)
http://www.tark.or
Verification of JADE Agents Using ATL Model Checking
It is widely accepted that the key to successfully developing a system is to produce a thorough system specification and design. This task requires an appropriate formal method and a suitable tool to determine whether or not an implementation conforms to the specifications. In this paper we present an advanced technique to analyse, design and debug JADE software agents, using Alternating-time Temporal Logic (ATL) which is interpreted over concurrent game structures, considered as natural models for compositions of open systems. In development of the proposed solution, we will use our original ATL model checker. In contrast to previous approaches, our tool permits an interactive or programmatic design of the ATL models as state-transition graphs, and is based on client/server architecture: ATL Designer, the client tool, allows an interactive construction of the concurrent game structures as a directed multi-graphs and the ATL Checker, the core of our tool, represents the server part and is published as Web service
Strategic Abilities of Asynchronous Agents: Semantic Side Effects and How to Tame Them
Recently, we have proposed a framework for verification of agents' abilities
in asynchronous multi-agent systems, together with an algorithm for automated
reduction of models. The semantics was built on the modeling tradition of
distributed systems. As we show here, this can sometimes lead to
counterintuitive interpretation of formulas when reasoning about the outcome of
strategies. First, the semantics disregards finite paths, and thus yields
unnatural evaluation of strategies with deadlocks. Secondly, the semantic
representations do not allow to capture the asymmetry between proactive agents
and the recipients of their choices. We propose how to avoid the problems by a
suitable extension of the representations and change of the execution semantics
for asynchronous MAS. We also prove that the model reduction scheme still works
in the modified framework
Verification of Multi-Agent Properties in Electronic Voting: A Case Study
Formal verification of multi-agent systems is hard, both theoretically and in
practice. In particular, studies that use a single verification technique
typically show limited efficiency, and allow to verify only toy examples. Here,
we propose some new techniques and combine them with several recently developed
ones to see what progress can be achieved for a real-life scenario. Namely, we
use fixpoint approximation, domination-based strategy search, partial order
reduction, and parallelization to verify heterogeneous scalable models of the
Selene e-voting protocol. The experimental results show that the combination
allows to verify requirements for much more sophisticated models than
previously
SMT-Solvers in Action: Encoding and Solving Selected Problems in NP and EXPTIME
We compare the efficiency of seven modern SMT-solvers for several decision and combinatorial problems: the bounded Post correspondence problem (BPCP), the extended string correction problem (ESCP), and the Towers of Hanoi (ToH) of exponential solutions. For this purpose, we define new original reductions to SMT for all the above problems, and show their complexity. Our extensive experimental results allow for drawing quite interesting conclusions on efficiency and applicability of SMT-solvers depending on the theory used in the encoding
Verifying Multi-Agent Systems by Model Checking Three-valued Abstractions
ABSTRACT We develop the theoretical foundations of a predicate abstraction methodology for the verification of multi-agent systems. We put forward a specification language based on epistemic logic and a weak variant of the logic ATL interpreted on a three-valued semantics. We show that the model checking problem for multi-agent systems in this setting is tractable by giving a provably correct procedure which admits a PTime bound. We give a constructive technique for generating abstract approximations of concrete multiagent systems models and show that the truth values are preserved between abstract and concrete models. We evaluate the effectiveness of the methodology on a variant of the bit-transmission problem