ProB Validation Methods: Difference between revisions

Latest revision as of 09:00, 16 January 2015

ProB offers various validation techniques:

Here we want to describe the advantages and disadvantages of the various methods.

*Comparing ProB Validation Techniques*
Question	Model Checking	LTL Model Checking	CBC Checking	Bounded Model Checking
Can find Invariant Violations ?	yes	yes (`G{INV}`)	yes	yes
Only reachable counter-examples from initial state?	yes	yes	no	yes
Search Technique for counter-examples?	mixed df/bf, df, bf	depth-first (df)	length 1	breadth-first (bf)
Can deal with large branching factor?	no	no	yes	yes
Can find deep counter-examples?	yes	yes	n/a (length 1)	no
Can find deadlocks ?	yes	yes (`G not(deadlock)`)	yes	not yet
Can find assertion violations ?	yes	(`G{ASS}`)	static	no
Can confirm absence of errors ?	finite statespace	finite statespace	invariant strong enough	bound on trace length

@@ Line 1: / Line 1: @@
 ProB offers various validation techniques:
@@ Line 12: / Line 11: @@
 {| border="1"
-|+ align="bottom" style="color:#e76700;" |''Question''
+|+ align="bottom" style="color:#e76700;" |''Comparing ProB Validation Techniques''
+!  Question
 !  Model Checking
 ! LTL Model Checking
@@ Line 20: / Line 20: @@
 | Can find Invariant Violations ?
 | yes
-| yes
+| yes (<tt>G{INV}</tt>)
 | yes
 | yes
@@ Line 29: / Line 29: @@
   |no
 | yes
+|-
+ | Search Technique for counter-examples?
+| mixed df/bf, df, bf
+| depth-first (df)
+ | length 1
+| breadth-first (bf)
 |-
   | Can deal with large branching factor?
@@ Line 44: / Line 50: @@
   | Can find deadlocks ?
 | yes
-| yes (G not {deadlock})
+| yes (<tt>G not(deadlock)</tt>)
 | yes
 | not yet
@@ Line 50: / Line 56: @@
   | Can find assertion violations ?
 | yes
-| no
+|  (<tt>G{ASS}</tt>)
 | static
 | no