Model Checking for ACL Compliance Verification - Department of

Crudely, the model checking verification process can then be understood as follows: Given a system. S, which we wish to verify satisfies some property φ ex-.
Télécharger le PDF
159KB taille 1 téléchargements 246 vues
commentaire
Report
Model Checking for ACL Compliance Verification Marc-Philippe Huget

Michael Wooldridge

Department of Computer Science University of Liverpool Liverpool L69 7ZF, UK

Department of Computer Science University of Liverpool Liverpool L69 7ZF, UK

[email protected]

[email protected]

ABSTRACT

 

      ! "# $ %% '&(# #%  )"$* ! "+, -  ! #/. 0  1    .23/  "4 5%6 %3#7% 0"$3 '&-#5 $+ "+  !+  3 3&* 8%"9' " $ "$' 3#:  ;   0?r"$2=  '& i 3sQ"B&@"B tHW%   "$T"$* ! "  ."$0?uCv^QT   "$0Hw 0Hx"$"$%$ 3 "*?@%>2 -3# i   V E"$%* ! " , o5p2q#0- 57  .@ 0?1"+  #"+ 53.@Ja)bWcMde3! "G Ny@ "$"$0?1."$a)b4cMd@e5z "+ "$"$!= 0?- "$"$%$ 3-  3.  3 CD\  "WH&!G%3#  + Ro5p2q/"$*! %" 0?." #73U8@6   2 m#? uN@# 3  1CZ^Q[  . "B$= R .+  8N HW' R@./ 5% {"$ $40 "$)"B . ?"C

Keywords

| 3 ! "G2ST? ~}Z  G |  !+}Z3#/. 0=  TI 3.233G € * ! "G,N > 0  

1.

INTRODUCTION

 

      ! "# $ %% '&(# #%  )"$* ! "+, -  ! #/. 0  1    .23/  "4 5%6 %3#7% 0"$3 '&-#5 $+ "+  !+  3 3&* 8%"9' " $ "$' 3#:  ; 2 3P 9/. ' i=6  !4"B&"B %#"[” •–—AC ST?@ m %N J"9R  iO!.+ 2=4H "9?U3 350?EHW'   R:  * {#N  ?"93#R. F&E: ).  * 0  '&VU8% ':&@    7>2 N6F"B= E"B&@"B #")# #%) #5 ,  3T"$5%'> 6

0=   "X”'˜N—]C‚ V2#š™\#?% N@3›P "$"E: 3s   l%2"E"$3#-  5%$\&¡©Ÿ%y6  %"$"$0?#* #5 2  3[ª{G3% W  W«  8W"B$ .% .  ¬ ­-$ "$53 ? J /9G22?*  ENN#HW%  %¬ ­® ¯)°7©,G lC 3CGHW%  %W©"4ª`6]U3 i?*  9« 8+"B$ .% . ¬ ­ CMDFu    "BH%"™]&!"$›@Gu 1  R"B&@"B ±" = "B>2" R"$5%> 0  I²   %$HW"$)9?@!"W  0C ³ .  8N-  #? ~ %N #Y[  7o5p2q*3# i   

L""j:3  =HW"C,D\J U3.",  5%9” • –—AG!HZ9?@"$%  50? 3.@[>  "B)# #%= 3-  a)b4cMd@e- i  .2  3CVa)b4cMd@e "#- i  .2  1! 2?@0?XY /  E?"$3   ? .  * EU3% '6 >2 3r +/. ' '6F  !/"B&@"B #"²ZJ"/"$"$!   '&( #5%$6  U8*@ 3 ## 1  3.  3 Gj .  #! 0?Q !&V"$3##Y . %" :   €   2 1z "4  !$6]  ! 0?T@ 3 ## J 3?@3´”˜0µ=—A§ E $ . i=0G23! "2J  *"$* ! "7    4#"$" 33§ ÄJ"j  ,·0‡$º “ ŒA¶%Œlˆ ŒY W¤2£$‡%\‰ … 2† ŒYlŒA… GHWN*"B %"   +3 ?' 3 "  WR. "B3 ?EE ?NÌ EX”'˜=µ0—]$G CmÆuq3FÆ C»”'˜0–—AG~ 2H ? G5CmÈ@Ê5FÌ IKJ Ä@È@Fo L_”'˜ M—ACZ. "G@ ' 3.  E + $  `"B$ . % .@ "kl' %  IG "$0O!. % 3G42?("$% %% 35nJ "$R

_kA  ?(2?@0?¡=  3"$ '& #?%  0?¡ 5n/   "$Y3.2?¡v  3.23"E"$. š "EpIG9  ! " -a7bWcMd@eJ20U84Jƒ*‡N]º3ˆ “ ]º F‡NG@3"$"B RI? ["B$ .% . "  2=M  "$%M   [YU3%$&1"$.N #/.@6 0 U8+ %)@ %6]3 ?' 3   ?*)5 "B$6]3 ?' 3ICjÍ  *  '&!G  )"$* ! "WY +#3#R.  U8[%9FIH  7?%>  0?T "9   '  FI H   B  ' 3V2"+  7Y3  0HW  "B$ .% .  § K!J "EÔ8; ÒS Ô8!$Õ # =Ö  Ö Ô!× % # Ö    Ö HW%  &G V2?QÔ8;Ò  *  *"$ ?%0GM %!0Gj 2?X%3! ! , )#"$"   7 "$5%% U8 '&!G`  ' ? E"4  )2#7M  )5%$6 :  *= U33C9 [Y  0HW E "?@%>2  ) %6] 2?@  - 2? 5 "B$6]3 ?' 3_"$"$! 0?HW' Q / #/. 0 U8R N FIH+C D]#"/H$  %3##!    =H‚  "$E"$* ! "J= 1?@0 ' HW' P !&Q a)bWcMdeX%3#  %7HW P'R3% "JÄÅÆIÇWÈ@q o %?3C ^¡ 7 "$5%{ 9  @ %6]3 ?' 3IG   5=U85%$:  *= U3 ?@%>2'  P"R$  "$ = 0?r! VÄ@Å ÆuÇWÈqošŽ ’º £$†8‡ †_‰ … ƒRƒ#º 2† HW' T Y  0HW *"B$ . N . 3C Ô !(Õ # Ö   )  Ö #(*¡× Õ Ö ÒÕ  Õ×3×3ÓL!Õ T™ #(* ›7"ÄÅÆIÇWÈ@q o{z "3. ??*%3#*  ?/"B$ . N . 3§~ [  %i 0  IC ÙZ%:   00U  "#"$% 3uG  ' 3IC

S J Õ$ Õ!Õ3OJ =Ö< !Õ Ö





Verifying Pre-Conditions

P







@44D$}

d e fgIij m

"=Ö -J!2"]Ô8Ò; S J Õ$  Õ!Õ3P  Ô8Ò; S J Õ$  Õ!Õ3OJ = Ö< !Õ Ö





  

? * §§ ¯ ÓL!Õ Ö< ® , S ?44D$} ( , [S ® 7D   ,7GuC%C0CG Db E,

 

77.Ny "BU8 % !"   m mO!. O!.2 !  !' >2'>20=   3  77@   #!  U8+"$"3  ?' 3 " 7R "B3= !4# 5! WU8"W%"Wy@Y ./ .?E i ! &E 3% RR33!!94?!% "$2 %?@"4"W::    /R..      R7 "$ 'H2 Q% 0?. 3. "V3! "-½  Y3  0HW    Ó 3Õ B× Õ 1>2 3C "= Ö  -!J 2"1Ô8Ò  S J $Õ  Õ!3 Õ  Ô8Ò  S J $Õ  Õ!3 Õ Ô8Ò  S "7" &@"[ 2=[  / %!Ek 3n+ W =Ö  Q#"$"   JHW   'H2 43U8  5=U8 ²@ . *a7bWcMd@eJHW #  Ny # "B&@"B w##0?@i=  '&*3@>  #" "C ³ `%3. "$ G!  W  ;*0&/ "$7 56 0=  Tm  %