Automata, Logic and Games: Theory and Application

Similar documents
Automata, Logic and Games: Theory and Application

Automata, Logic and Games. C.-H. L. Ong

CHURCH SYNTHESIS PROBLEM and GAMES

Rabin Theory and Game Automata An Introduction

Infinite Games. Sumit Nain. 28 January Slides Credit: Barbara Jobstmann (CNRS/Verimag) Department of Computer Science Rice University

Complexity Bounds for Muller Games 1

Alternating nonzero automata

Weak Alternating Automata Are Not That Weak

Automata, Logic and Games. C.-H. L. Ong

Quasi-Weak Cost Automata

Languages, logics and automata

Generalized Parity Games

Two-Way Cost Automata and Cost Logics over Infinite Trees

The Non-Deterministic Mostowski Hierarchy and Distance-Parity Automata

Weak ω-automata. Shaked Flur

Automata Theory and Model Checking

Complexity Bounds for Regular Games (Extended Abstract)

Automata Theory for Presburger Arithmetic Logic

Generalized Parity Games

Optimal Bounds in Parametric LTL Games

Solving Partial-Information Stochastic Parity Games

Strategy Logic. 1 Introduction. Krishnendu Chatterjee 1, Thomas A. Henzinger 1,2, and Nir Piterman 2

CS 208: Automata Theory and Logic

On the Succinctness of Nondeterminizm

Büchi Automata and Their Determinization

FINITE MEMORY DETERMINACY

Automata-based Verification - III

Partially Ordered Two-way Büchi Automata

Games and Synthesis. Nir Piterman University of Leicester Telč, July-Autugst 2014

Algorithmic Reasoning about Böhm Trees

Automata on Infinite words and LTL Model Checking

Linear Temporal Logic and Büchi Automata

Finite Automata and Regular Languages (part II)

Automata-based Verification - III

ω-automata Automata that accept (or reject) words of infinite length. Languages of infinite words appear:

Logic and Automata I. Wolfgang Thomas. EATCS School, Telc, July 2014

A Survey of Stochastic ω-regular Games

Note on winning positions on pushdown games with omega-regular winning conditions

On Decision Problems for Probabilistic Büchi Automata

Büchi Automata and their closure properties. - Ajith S and Ankit Kumar

Semi-Automatic Distributed Synthesis

FORMAL LANGUAGES, AUTOMATA AND COMPUTABILITY

CS256/Spring 2008 Lecture #11 Zohar Manna. Beyond Temporal Logics

Bounded Synthesis. Sven Schewe and Bernd Finkbeiner. Universität des Saarlandes, Saarbrücken, Germany

CS 154, Lecture 2: Finite Automata, Closure Properties Nondeterminism,

Automata theory. An algorithmic approach. Lecture Notes. Javier Esparza

Variable Automata over Infinite Alphabets

Weak Cost Monadic Logic over Infinite Trees

From Liveness to Promptness

Finite Automata and Languages

Complexity of infinite tree languages

From Nondeterministic Büchi and Streett Automata to Deterministic Parity Automata

Minimization of Tree Automata

Branching Bisimilarity with Explicit Divergence

Theoretical Foundations of the UML

Tree Automata and Rewriting

Weak Alternating Automata and Tree Automata Emptiness

ERICH GRÄDEL a AND IGOR WALUKIEWICZ b. address: address:

Solution Concepts and Algorithms for Infinite Multiplayer Games

Pushdown Games with Unboundedness and Regular Conditions

Automata and Reactive Systems

Synthesis from Probabilistic Components

Chapter 3: Linear temporal logic

1 Logics of Programs. 2 The Mu-calculus. 3 Automata on Infinite Objects. 4 Games. 5 Membership and Emptiness Problems for NDPT Automata

Alternation Removal in Büchi Automata

Safraless Compositional Synthesis

The Small Progress Measures algorithm for Parity games

Modal and Temporal Logics

Theoretical Computer Science

Course Runtime Verification

An Alternative Construction in Symbolic Reachability Analysis of Second Order Pushdown Systems

Decision Procedures for CTL

Uniformization in Automata Theory

Introduction to the Theory of Computation. Automata 1VO + 1PS. Lecturer: Dr. Ana Sokolova.

Advanced Automata Theory 7 Automatic Functions

2. Elements of the Theory of Computation, Lewis and Papadimitrou,

The Planning Spectrum One, Two, Three, Infinity

Monadic second-order logic on tree-like structures

Games with Costs and Delays

Topological extension of parity automata

Safraless Compositional Synthesis

FROM NONDETERMINISTIC BÜCHI AND STREETT AUTOMATA TO DETERMINISTIC PARITY AUTOMATA

Lecturecise 22 Weak monadic second-order theory of one successor (WS1S)

Introduction to the Theory of Computation. Automata 1VO + 1PS. Lecturer: Dr. Ana Sokolova.

Monadic Second Order Logic and Automata on Infinite Words: Büchi s Theorem

Further discussion of Turing machines

LTL is Closed Under Topological Closure

Unambiguous Languages Exhaust the Index Hierarchy

Boundedness Games. Séminaire de l équipe MoVe, LIF, Marseille, May 2nd, Nathanaël Fijalkow. Institute of Informatics, Warsaw University Poland

Trading Bounds for Memory in Games with Counters

Finitary Winning in ω-regular Games

4 Back and Forth Between Logic and Games

Automata and Fixed Point Logic: a Coalgebraic Perspective

Boundedness Games. Séminaire du LIGM, April 16th, Nathanaël Fijalkow. Institute of Informatics, Warsaw University Poland

Logic Model Checking

Deciding the weak definability of Büchi definable tree languages

Finite Automata and Regular languages

Deterministic Finite Automata (DFAs)

Chapter 5: Linear Temporal Logic

Quantitative Languages

Transcription:

Automata, Logic and Games: Theory and Application 2 Parity Games, Tree Automata, and S2S Luke Ong University of Oxford TACL Summer School University of Salerno, 14-19 June 2015 Luke Ong S2S 14-19 June 2015 1 / 40

Lecture Course Outline Part 1: Foundations Ideas and some technical details 1 Büchi Automata and S1S: Legacy of Church & Büchi 2 Parity Games, Tree Automata, and S2S: Legacy of Rain Part 2: Active research topic Mainly ideas Higher-Order Model Checking Luke Ong S2S 14-19 June 2015 2 / 40

Lecture Outline 1 Parity Games 2 Binary Trees and Tree Automata 3 S2S and Rain s Tree Theorem 4 Nondeterministic Parity Tree Automata (NPT) 5 Alternating Parity Tree Automata (APT) 6 Closure Properties of APT 7 Proof of Rain s Tree Theorem Luke Ong S2S 14-19 June 2015 3 / 40

Parity Game V V, V R, E, v 0, Ω (V V V R = ) A parity game is played over a digraph V V V R, E y V (Verifier) and R (Refuter) V V (resp V R ) is the set of vertices owned y V (resp R) Each vertex v has a priority Ω(v), where Ω : V V V R { 0,, p } with p 0 Rules A token is placed on the start vertex v 0 If the token is on v V V, then V chooses an outgoing edge (v, v ) E, and moves the token onto v ; similarly if v V R Let π e the maximal path in the digraph tracced out y a play Who wins π? If π is finite, the player who owns the last vertex loses If π is infinite, V wins if π satisfies parity: the least infinitely-occurring priority in π is even; otherwise R wins Luke Ong S2S 14-19 June 2015 5 / 40

Example: parity game Circled vertices elong to Verifier; oxed elong to Refuter Priorities are red numers a: 1 : 2 c: 3 d: 2 e: 3 f : 2 g: 3 Recall: Verifier (circle) wins if the least infinitely-occurring priority is even Does Verifier have a winning strategy from f? from d? from a? [Ans: Verifier has a winning strategy from a, ie, c, f g, d g] Luke Ong S2S 14-19 June 2015 6 / 40

Parity games: a central topic in algorithmic verification A strategy is memoryless (= history-free = positional) if it depends, not on the history, ut only on the last vertex of the play Theorem (Martin 1975, Mostowski 1991, Emerson & Jutla 1991) Parity games are (memoryless) determined: from every vertex, exactly one of V and R has a (memoryless) winning strategy PARITY (Given a finite parity game and a start vertex, does V have a winning strategy?) is in NP co-np Conjecture PARITY in P Parity games are uiquitous in algorithmic verification Standard qualitative model checking prolems aout reactive systems (Does a transition system satisfy a given temporal or modal property?) reduce to PARITY Luke Ong S2S 14-19 June 2015 7 / 40

Σ-laelled (infinite, full) inary trees A Σ-laelled inary tree is a function t : { 0, 1 } Σ Ie the lael of the tree t at node u { 0, 1 } is t(u) Σ ɛ 0 1 00 01 10 11 Write T ω Σ for the collection of Σ-laelled inary trees A tree language is just a suset of T ω Σ A path of a tree is a sequence π = u 0 u 1 u 2 of tree nodes wherey u 0 = ɛ (the root of the tree) and u i+1 = u i 0 or u i+1 = u i 1, for every i 0 Luke Ong S2S 14-19 June 2015 9 / 40

A nondeterministic tree automaton A (for Σ-laelled inary trees) is a quintuple, (Q, Σ, q 0,, Acc), where Q is the finite set of states, q 0 is the initial state Q Σ Q Q is the transition relation, and Acc is the acceptance condition (such as Büchi, Muller, Parity, etc) The automaton is deterministic if for every q Q and a Σ, there is at most one transition (ie quadruple) in the first two components of which are q and a Luke Ong S2S 14-19 June 2015 10 / 40

Run-tree and acceptance y a Büchi tree automaton A run-tree is a Q-laelled inary tree such that the root is laelled q 0, and the laels respects the transition relation Formally a run-tree of a tree automaton A over a tree t is an assignment of states to tree, ie a function ρ : { 0, 1 } Q, such that ρ(ɛ) = q 0, and for all u { 0, 1 }, (ρ(u), t(u), ρ(u 0), ρ(u 1)) A Büchi tree automaton A = (Q, Σ, q 0,, F) accepts a tree t just if there exists a Büchi-accepting run-tree ρ of A over t, ie, in every path of ρ, a final state from F occurs infinitely often The tree language recognised y the tree automaton A, denoted L(A), is the set of trees accepted y A Luke Ong S2S 14-19 June 2015 11 / 40

Example Let T 1 e the set of { a, }-laelled inary trees t such that t has a path with infinitely many a s The Büchi tree automaton ({ q a, q, }, { a, }, q a,, { q a, }) where (q a /q, a) { (q a, ), (, q a ) } : (q a /q, ) { (q, ), (, q ) } (, a/) { (, ) } recognises the language T 1 where matches every symol Luke Ong S2S 14-19 June 2015 12 / 40

a qa a qa a a A = ({ q a, q, }, { a, }, q a,, { q a, }) where (q a /q, a) { (q a, ), (, q a ) } : (q a /q, ) { (q, ), (, q ) } (, a/) { (, ) } recognises T 1 := { t t has a path with infinitely many a s } Luke Ong S2S 14-19 June 2015 13 / 40

a qa a qa a qa a A = ({ q a, q, }, { a, }, q a,, { q a, }) where (q a /q, a) { (q a, ), (, q a ) } : (q a /q, ) { (q, ), (, q ) } (, a/) { (, ) } recognises T 1 := { t t has a path with infinitely many a s } Luke Ong S2S 14-19 June 2015 14 / 40

A Büchi-accepting run-tree a qa a qa a qa a qa A = ({ q a, q, }, { a, }, q a,, { q a, }) where (q a /q, a) { (q a, ), (, q a ) } : (q a /q, ) { (q, ), (, q ) } (, a/) { (, ) } recognises T 1 := { t t has a path with infinitely many a s } Luke Ong S2S 14-19 June 2015 15 / 40

A wrongly guessed run-tree! a qa a qa q qa a a A = ({ q a, q, }, { a, }, q a,, { q a, }) where (q a /q, a) { (q a, ), (, q a ) } : (q a /q, ) { (q, ), (, q ) } (, a/) { (, ) } recognises T 1 := { t t has a path with infinitely many a s } Luke Ong S2S 14-19 June 2015 16 / 40

The Logical System S2S (Monadic Second-order Logic of 2 Successors) The logical system S2S is defined over first-order variales x, y, ranging over { 0, 1 } (nodes in the full inary tree) and second-order variales X, Y, ranging over 2 { 0,1 } (sets of nodes of the full inary tree) Terms are uilt up from first-order variales and ɛ y the two successors, represented as concatenation with 0 and 1 respectively Let s and t e terms The atomic formulas are s X s is in X s t s is a prefix of t s = t s is equal to t S2S formulas are uilt up from the atomic formulas using the standard oolean connectives, and closed under first- and second-order quantifiers and Luke Ong S2S 14-19 June 2015 18 / 40

Semantics of S2S The logical structure of the infinite full inary tree is t 2 = (B, ɛ, S 0, S 1 ) where S i is the i-th successor function: S 0 (u) = u 0 and S 1 (u) = u 1 for u B S2S-formulas ϕ(x 1,, X n ), with free 2nd-order variales from X 1,, X n, are interpreted in expanded structures t = (t 2, P 1,, P n ) where each P i B Write t ϕ(x 1,, X n ) just if t satisfies ϕ(x) We identify t with the infinite tree t T ω B n such that for each u B, we have t(u) = ( 1,, n ) where i = 1 u P i Given an S2S formula ϕ(x) the tree language defined y ϕ(x) is the set L(ϕ(X 1,, X n )) := { t T ω B n t ϕ(x) } Luke Ong S2S 14-19 June 2015 19 / 40

Example Take ϕ(x 1 ) := Yinfinite(Y) y(y Y y X 1 ), where infinite(y) says that Y is an infinite set Then L(ϕ(X 1 )) := { t T ω B : t has infinitely many positions where P 1 holds } Our aim is to prove: Theorem (Rain 1969) For n 0, a tree language T T ω B n is S2S-definale if, and only if, it is recognisale y a nondeterministic parity tree automaton (NPT) Proof steps: (familiar pattern from Büchi s S1S) : closure of NPT under complementation ( ), union ( ), and projection ( X) : encode existence of an accepting run-tree as a S2S formula Corollary (Rain Tree Theorem) Since non-emptiness of NPT is decidale, the theory S2S is decidale Evolution of proof: Rain (1969), Gurevich & Harrington (1982), Löding (2011) Luke Ong S2S 14-19 June 2015 20 / 40

Notation Following Vardi and Kupferman, we use acronym X Y Z where X ranges over automaton modes: deterministic, nondeterministic and alternating, Y ranges over acceptance / winning conditions: Büchi, Muller, Rain, Streett, parity, and weak, Z ranges over input structures: words and trees For example, DMW and NPT are shorthand for deterministic Muller word automaton and nondeterministic parity tree automaton respectively Luke Ong S2S 14-19 June 2015 22 / 40

Parity Tree Automata A nondeterministic parity tree automaton is a tuple A = (Q, Σ, q 0,, Ω) with priority map Ω : Q { 0,, k } A accepts a tree t just if there is a run-tree ρ of A over t such that for every path of ρ, the least priority that occurs infinitely often is Verifier Luke Ong S2S 14-19 June 2015 23 / 40

Example Recall T 1 is the set of { a, }-laelled inary trees t such that t has a path with infinitely many a s The nondeterministic parity tree automaton ({ q a, q, }, { a, }, q a,, Ω) where (q a /q, a) { (q a, ), (, q a ) } : (q a /q, ) { (q, ), (, q ) } (, a/) { (, ) } and Ω : q a 0, 0; q 1 recognises the language T 1 Indeed, every nondeterministic Büchi automaton can e viewed as a nondeterministic parity automaton with priorities { 0, 1 } Luke Ong S2S 14-19 June 2015 24 / 40

Eg This tree is not in T 2 := { t every path of t has only finitely many a s } a qa a qa qa q qa q a qa a qa qa q q q q q q Deterministic parity ({ q a, q }, { a, }, q a,, Ω) where { (qa /q, a) { (q a, q a ) } : (q a /q, ) { (q, q ) } and Ω : q a 1; q 2 recognises T 2 NB For each path π of t, there are infinitely many s (resp a s) on π iff the corresponding path of the unique run-tree over t has infinitely many q s (resp q a s) Luke Ong S2S 14-19 June 2015 25 / 40

Acceptance Parity Game Given a NPT A = (Q, Σ, q I,, Ω) and a tree t, we define a parity game, called the acceptance parity game, G A,t = (V V, V R, E, (ɛ, q I ), λ, Ω ) as follows Lemma V V = { 0, 1 } Q V R = { 0, 1 } (Q Q) for each vertex (v, q) V V, for each transition (q, a, q 0, q 1 ) with t(v) = a, we have ((v, q), (v, (q 0, q 1 )) E for each vertex (v, (q 0, q 1 )) V R, we have ((v, (q 0, q 1 )), (v 0, q 0 )), ((v, (q 0, q 1 )), (v 1, q 1 )) E Ω : (v, q) Ω(q) and (v, (q 0, q 1 )) max(ω(q 0 ), Ω(q 1 )) Verifier has a winning strategy in G A,t from vertex (ɛ, q I ) if and only if t L(A) Luke Ong S2S 14-19 June 2015 26 / 40

Non-emptiness Parity Game Given a NPT A = (Q, Σ, q I,, Ω), we define a parity game, called the non-emptiness parity game, G A = (V V, V R, E, q I, λ, Ω ) as follows Lemma V V = Q V R = for each vertex q V V, and for each transition (q, a, q 0, q 1 ), we have (q, (q, a, q 0, q 1 )) E for each vertex (q, a, q 0, q 1 ) V R, we have ((q, a, q 0, q 1 ), q 0 ), ((q, a, q 0, q 1 ), q 1 ) E Ω : q Ω(q) and (q, a, q 0, q 1 ) Ω(q) Verifier has a winning strategy in G A from vertex q I if and only if L(A) Luke Ong S2S 14-19 June 2015 27 / 40

Theorem (Rain Basis Theorem) 1 The emptiness prolem for NPT is decidale 2 If an NPT accepts some tree then it accepts a regular tree Let A = (Q, Σ, q I,, Ω) e an NPT 1 The non-emptiness game G A is a parity game on a finite graph, hence solvale: there is an algorithm to determine the winning region for each player By the previous lemma, Verifier has a winning strategy from q I iff L(A) 2 Omitted Luke Ong S2S 14-19 June 2015 28 / 40

Alternating (tree) automata - An automaton mode, introduced y Chandra & Kozen (1986?) Complexity theory motivation - Generalises determinism and nondeterminism - Natural duality: counterpart of 2-player game Define the set B + (X) of positive oolean formulas consisting of formulas uilt up from atoms in X using and The transition function δ : Q Σ B + ({ 0, 1 } Q) of an alternating tree automaton descries which moves are controlled y players: disjunctions y Verifier conjunction y Refuter and negation swaps the rôle of player Example δ(q, a) := (0, q) (1, q) ( (0, q ) (1, q ) ) Assume in state q at node x in t with t(x) = a Refuter could choose (0, q ) (1, q ), then Verifier could choose (1, q ) Automaton would then move to the right successor of x (the node x 1), change to state q Luke, and Ong continue the computation S2S therefrom 14-19 June 2015 30 / 40

Alternating parity tree automata An alternating parity tree automaton A (for Σ-laelled inary trees) is a tuple (Q, Σ, q I, δ, Ω) where Q is the finite set of states, q I is the initial state δ : Q Σ B + ({ 0, 1 } Q) is the transition function, and Ω : Q { 0,, k } is the priority function We define the language L(A) recognised y A to e the set of trees t such that Verifier has a winning strategy in the (alternating) acceptance parity game G A,t starting from vertex (ɛ, q I ) Luke Ong S2S 14-19 June 2015 31 / 40

Acceptance Game for Alternating Parity Automata Given APT A = (Q, Σ, q I, δ, Ω) and tree t, the acceptance parity game G A,t = (V V, V R, E, (ɛ, q I ), Ω ) is defined as follows Let U := { 0, 1 } Q and V := U ({ 0, 1 } B + ({ 0, 1 } Q)) V V is the set of nodes of the form (x, q), or nodes of the form (x, ψ) for ψ a disjunction or a single atom; V R is the set of nodes of the form (x, ψ) for ψ a conjunction; for all q Q, x { 0, 1 }, d { 0, 1 }, and ψ B + ({ 0, 1 } Q): ((x, q), (x, δ(q, t(x))) E ((x, ψ 1 ψ 2 ), (x, ψ i )) E for i { 1, 2 } ((x, ψ 1 ψ 2 ), (x, ψ i )) E for i { 1, 2 } ((x, (d, q)), (x d, q)) E Ω : { (x, q) Ω(q) (x, ψ) max Ω(Q) Luke Ong S2S 14-19 June 2015 32 / 40

Example Consider T 3 := { t T ω { a, } : elow every a-node there is a -node } Define an APT A := ({ q, q, }, { a, }, q, δ, Ω) where δ : and Ω : q, 0; q 1 (q, a) (0, q) (1, q) ( (0, q ) (1, q ) ) (q, ) (0, q) (1, q) (q, a) (0, q ) (1, q ) (q, ), (, a/) (0, ) Consider some tree t T ω { a, } In state q, Refuter chooses a path in t If he sees a, he can switch to q, which represents a challenge to Verifier to witness a elow the current a-node In state q, Verifier chooses a path If she sees, then she moves to a sink state with priority 0, so Verifier wins If not, then Verifier remains forever in state q with priority 1, so Verifier loses Luke Ong S2S 14-19 June 2015 33 / 40

Special types of alternating automata Nondeterministic tree automaton Alternating automaton where every transition is of the form i (0, qi 0 ) (1, qi 1 ) In other words, a nondeterministic automaton is an alternating automaton that sends exactly one state to each successor Deterministic tree automaton Alternating automaton where every transition is of the form (0, q 0 ) (1, q 1 ) Luke Ong S2S 14-19 June 2015 34 / 40

Closure under Complementation Theorem (Closure under Complementation) Given an APT A, there is an algorithm to construct an APT for T ω { a, } \ L(A) Dualise the transition function and acceptance condition of A = (Q, Σ, q I, δ, Ω) Dual of δ : Q Σ (B + ({ 0, 1 } Q) is the transition function δ otained y exchanging and in all formulas in δ Dual of the parity condition Ω, is Ω : q Ω(q) + 1 Dualisation switches the rôles of Refuter and Verifier in the acceptance games Thanks to determinacy of parity games, Ã := (Q, Σ, q I, δ, Ω) recognises T ω { a, } \ L(A) Luke Ong S2S 14-19 June 2015 36 / 40

Closure under Union and Intersection Lemma (Closure under Union and Intersection) Given APT A 1 and A 2, there is an algorithm to construct an APT for L(A 1 ) L(A 2 ) and an APT for L(A 1 ) L(A 2 ) Straightforward for alternating automata (Exercise) Given s t T ω Γ Σ where s t : u (s(u), t(u)), the Σ-projection of s t is the tree t, and the Σ-projection of the language T T ω Γ Σ is denoted π Σ(T) Lemma (Closure under Projection) Given an APT recognising the language T of (Γ Σ)-laelled inary trees, there is an algorithm to construct an APT recognising π Σ (T) Straightforward for nondeterministic automata, ut challenging for alternating automata! Goal Prove that APT can e simulated y NPT Luke Ong S2S 14-19 June 2015 37 / 40

Simulation of APT y NPT Theorem (Simulation of APT y NPT) Given an APT A, there is an algorithm to construct an NPT B such that L(A) = L(B) The proof relies on two fundamental results: 1 Memoryless determinacy of parity games, and 2 Complementation and determinising NBW to DPW Informally, on input t, B guesses an annotation of t with a memoryless strategy for Verifier in the acceptance game G A,t, and B runs a DPW on each ranch of this annotated tree in order to check that the strategy is winning Luke Ong S2S 14-19 June 2015 38 / 40

Decidaility Theorem (Rain 1969) A tree language T T ω B n is S2S-definale if and only if it is recognisale y a NPT : Given an NPT, write an equivalent S2S-formula: formula asserts the existence of a run-tree of APT : Given S2S-formula, construct an equivalent NPT y induction on the structure of the formula, using closure (and equivalence etween APT and NPT) under complementation, union and projection Theorem (Rain s Tree Theorem) Since non-emptiness of NTP is decidale, so is the theory S2S Luke Ong S2S 14-19 June 2015 40 / 40

2024 © sciencedocbox.com Privacy Policy | Terms of Service | Feedback