Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY

Tabea Bordis; Loek Cleophas; Alexander Kittelmann; Tobias Runge; Ina Schaefer; Bruce W. Watson

doi:10.1007/978-3-031-08166-8_5

Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY

Tabea Bordis
, Loek Cleophas
, Alexander Kittelmann
, Tobias Runge
, Ina Schaefer
, Bruce W. Watson

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/Congresprocedure › Conferentiebijdrage › Academic › peer review

7 Citaten (Scopus)

Samenvatting

Deductive program verification is a post-hoc quality assurance technique following the design-by-contract paradigm where correctness of the program is proven only after it was written. Contrary, correctness-by-construction (CbC) is an incremental program construction technique. Starting with the functional specification, the program’s correctness is guaranteed by application of a small set of refinement rules. Even though CbC is supposed to lead to code with a low defect rate and improve the traceability of errors, it is not widespread. One of the main reasons is insufficient tool support which we addressed with our tool CorC. CorC provides support for CbC-based program construction with the KeY program verifier as backend prover for checking correctness of refinement rule applications. However, CorC was limited to constructing single method bodies restricting its applicability. In this work, we introduce and discuss CorC 2.0, which extends CorC ’s programming model with objects as used in object-oriented programming. We integrate CorC into a development process that allows to use post-hoc verification and CbC interchangeably to construct correct programs, and scale the applicability of CbC on the architectural level in our tool extension ArchiCorC. We developed three object-oriented case studies and evaluated the verification effort and the usability of CorC in comparison to post-hoc verification.

Originele taal-2	Engels
Titel	The Logic of Software. A Tasting Menu of Formal Methods
Subtitel	Essays Dedicated to Reiner Hähnle on the Occasion of His 60th Birthday
Redacteuren	Wolfgang Ahrendt, Bernhard Beckert, Richard Bubel, Einar Broch Johnsen
Uitgeverij	Springer
Pagina's	80-104
Aantal pagina's	25
ISBN van elektronische versie	978-3-031-08166-8
ISBN van geprinte versie	978-3-031-08165-1
DOI's	https://doi.org/10.1007/978-3-031-08166-8_5
Status	Gepubliceerd - 2022

Publicatie series

Naam	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	13360 LNCS
ISSN van geprinte versie	0302-9743
ISSN van elektronische versie	1611-3349

Bibliografische nota

Publisher Copyright:
© 2022, Springer Nature Switzerland AG.

Toegang tot document

10.1007/978-3-031-08166-8_5

Andere bestanden en links

Link naar publicatie in Scopus

Citeer dit

Bordis, T., Cleophas, L., Kittelmann, A., Runge, T., Schaefer, I., & Watson, B. W. (2022). Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY. In W. Ahrendt, B. Beckert, R. Bubel, & E. Broch Johnsen (editors), The Logic of Software. A Tasting Menu of Formal Methods: Essays Dedicated to Reiner Hähnle on the Occasion of His 60th Birthday (blz. 80-104). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13360 LNCS). Springer. https://doi.org/10.1007/978-3-031-08166-8_5

Bordis, Tabea ; Cleophas, Loek ; Kittelmann, Alexander et al. / Re-CorC-ing KeY : Correct-by-Construction Software Development Based on KeY. The Logic of Software. A Tasting Menu of Formal Methods: Essays Dedicated to Reiner Hähnle on the Occasion of His 60th Birthday. redacteur / Wolfgang Ahrendt ; Bernhard Beckert ; Richard Bubel ; Einar Broch Johnsen. Springer, 2022. blz. 80-104 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{711c7b79b2d54400946d7d58bc3be451,

title = "Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY",

abstract = "Deductive program verification is a post-hoc quality assurance technique following the design-by-contract paradigm where correctness of the program is proven only after it was written. Contrary, correctness-by-construction (CbC) is an incremental program construction technique. Starting with the functional specification, the program{\textquoteright}s correctness is guaranteed by application of a small set of refinement rules. Even though CbC is supposed to lead to code with a low defect rate and improve the traceability of errors, it is not widespread. One of the main reasons is insufficient tool support which we addressed with our tool CorC. CorC provides support for CbC-based program construction with the KeY program verifier as backend prover for checking correctness of refinement rule applications. However, CorC was limited to constructing single method bodies restricting its applicability. In this work, we introduce and discuss CorC 2.0, which extends CorC {\textquoteright}s programming model with objects as used in object-oriented programming. We integrate CorC into a development process that allows to use post-hoc verification and CbC interchangeably to construct correct programs, and scale the applicability of CbC on the architectural level in our tool extension ArchiCorC. We developed three object-oriented case studies and evaluated the verification effort and the usability of CorC in comparison to post-hoc verification.",

author = "Tabea Bordis and Loek Cleophas and Alexander Kittelmann and Tobias Runge and Ina Schaefer and Watson, \{Bruce W.\}",

note = "Publisher Copyright: {\textcopyright} 2022, Springer Nature Switzerland AG.",

year = "2022",

doi = "10.1007/978-3-031-08166-8\_5",

language = "English",

isbn = "978-3-031-08165-1",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "80--104",

editor = "Wolfgang Ahrendt and Bernhard Beckert and Richard Bubel and \{Broch Johnsen\}, Einar",

booktitle = "The Logic of Software. A Tasting Menu of Formal Methods",

address = "Germany",

}

Bordis, T, Cleophas, L, Kittelmann, A, Runge, T, Schaefer, I & Watson, BW 2022, Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY. in W Ahrendt, B Beckert, R Bubel & E Broch Johnsen (reds.), The Logic of Software. A Tasting Menu of Formal Methods: Essays Dedicated to Reiner Hähnle on the Occasion of His 60th Birthday. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 13360 LNCS, Springer, blz. 80-104. https://doi.org/10.1007/978-3-031-08166-8_5

Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY. / Bordis, Tabea; Cleophas, Loek; Kittelmann, Alexander et al.
The Logic of Software. A Tasting Menu of Formal Methods: Essays Dedicated to Reiner Hähnle on the Occasion of His 60th Birthday. reds. / Wolfgang Ahrendt; Bernhard Beckert; Richard Bubel; Einar Broch Johnsen. Springer, 2022. blz. 80-104 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13360 LNCS).

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/Congresprocedure › Conferentiebijdrage › Academic › peer review

TY - GEN

T1 - Re-CorC-ing KeY

T2 - Correct-by-Construction Software Development Based on KeY

AU - Bordis, Tabea

AU - Cleophas, Loek

AU - Kittelmann, Alexander

AU - Runge, Tobias

AU - Schaefer, Ina

AU - Watson, Bruce W.

PY - 2022

Y1 - 2022

N2 - Deductive program verification is a post-hoc quality assurance technique following the design-by-contract paradigm where correctness of the program is proven only after it was written. Contrary, correctness-by-construction (CbC) is an incremental program construction technique. Starting with the functional specification, the program’s correctness is guaranteed by application of a small set of refinement rules. Even though CbC is supposed to lead to code with a low defect rate and improve the traceability of errors, it is not widespread. One of the main reasons is insufficient tool support which we addressed with our tool CorC. CorC provides support for CbC-based program construction with the KeY program verifier as backend prover for checking correctness of refinement rule applications. However, CorC was limited to constructing single method bodies restricting its applicability. In this work, we introduce and discuss CorC 2.0, which extends CorC ’s programming model with objects as used in object-oriented programming. We integrate CorC into a development process that allows to use post-hoc verification and CbC interchangeably to construct correct programs, and scale the applicability of CbC on the architectural level in our tool extension ArchiCorC. We developed three object-oriented case studies and evaluated the verification effort and the usability of CorC in comparison to post-hoc verification.

AB - Deductive program verification is a post-hoc quality assurance technique following the design-by-contract paradigm where correctness of the program is proven only after it was written. Contrary, correctness-by-construction (CbC) is an incremental program construction technique. Starting with the functional specification, the program’s correctness is guaranteed by application of a small set of refinement rules. Even though CbC is supposed to lead to code with a low defect rate and improve the traceability of errors, it is not widespread. One of the main reasons is insufficient tool support which we addressed with our tool CorC. CorC provides support for CbC-based program construction with the KeY program verifier as backend prover for checking correctness of refinement rule applications. However, CorC was limited to constructing single method bodies restricting its applicability. In this work, we introduce and discuss CorC 2.0, which extends CorC ’s programming model with objects as used in object-oriented programming. We integrate CorC into a development process that allows to use post-hoc verification and CbC interchangeably to construct correct programs, and scale the applicability of CbC on the architectural level in our tool extension ArchiCorC. We developed three object-oriented case studies and evaluated the verification effort and the usability of CorC in comparison to post-hoc verification.

UR - https://www.scopus.com/pages/publications/85133697951

U2 - 10.1007/978-3-031-08166-8_5

DO - 10.1007/978-3-031-08166-8_5

M3 - Conference contribution

AN - SCOPUS:85133697951

SN - 978-3-031-08165-1

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 80

EP - 104

BT - The Logic of Software. A Tasting Menu of Formal Methods

A2 - Ahrendt, Wolfgang

A2 - Beckert, Bernhard

A2 - Bubel, Richard

A2 - Broch Johnsen, Einar

PB - Springer

ER -

Bordis T, Cleophas L, Kittelmann A, Runge T, Schaefer I, Watson BW. Re-CorC-ing KeY: Correct-by-Construction Software Development Based on KeY. In Ahrendt W, Beckert B, Bubel R, Broch Johnsen E, redacteurs, The Logic of Software. A Tasting Menu of Formal Methods: Essays Dedicated to Reiner Hähnle on the Occasion of His 60th Birthday. Springer. 2022. blz. 80-104. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-08166-8_5