A proof library shared by different proof systems. Gilles Dowek

Similar documents
Proving Safety Properties of an Aircraft Landing Protocol Using I/O Automata and the PVS Theorem Prover: A Case Study

Twisted Frobenius extensions

Publications. Jaap van Oosten. December 2013

Internal aggregation models on the comb

Characterizations of Supra Generalized Preregular Closed Sets 1 Gnanambal Ilango, 2 Vidhya Menon.

Pre-Calculus AB: Topics and Assignments Weeks 1 and 2

14:30-15:00 Moa Johansson, Chalmers Univ. of Techn. - Göteborg, SE Automating Proofs by (co)-induction and Theory Exploration

(La méthode Event-B) OddEven. Express as theorems and use RODIN to prove: thm4. The multiplication of two odd numbers is odd

MAT 115: Precalculus Mathematics Homework Exercises Textbook: A Graphical Approach to Precalculus with Limits: A Unit Circle Approach, Sixth Edition

Query formalisms for relational model relational algebra

Don t Sit on the Fence

The range of a rotor walk and recurrence of directed lattices

Workbook Unit 11: Natural Deduction Proofs (II)

Network Revenue Management

A Multilayer and Time-varying Structural Analysis of the Brazilian Air Transportation Network

Policy of airline competition monopoly or duopoly

Assignment of Arrival Slots

Assignment of Arrival Slots

Somchanok Tiabtiamrat* and Supachok Wiriyacosol ABSTRACT

Australian Association for Unmanned Systems

An Analytical Approach to the BFS vs. DFS Algorithm Selection Problem 1

Formal verification of small and micro UAS

An Analysis of Dynamic Actions on the Big Long River

Algebra I Homework Book

Controlling the False Discovery Rate in Bayesian Network Structure Learning

ridesharing Sid Banerjee School of ORIE, Cornell University

Is this the wrong time to talk about social tourism?

Mathcad 14.0 Curriculum Guide

Mathcad 140 Curriculum Guide

FERNÁN: THE VALUE OF THE INTUITION (ON AN INTUITIVE SET THEORY WITHOUT ANTINOMIES)

Solution Repair/Recovery in Uncertain Optimization Environment

Hubbing and wholesale issues in international traffic exchanges between operators

Today: using MATLAB to model LTI systems

ADVANTAGES OF SIMULATION

Lesson 1: Introduction to Networks

2 nd National Airspace System Infrastructure Management Conference

Flight Arrival Simulation

ABSTRACT TIES TO CURRICULUM TIME REQUIREMENT

EE382V: Embedded System Design and Modeling

An Analysis of Communication, Navigation and Surveillance Equipment Safety Performance

easyjet response to CAA consultation on Gatwick airport market power

Unit 4: Location-Scale-Based Parametric Distributions

Incentives in Landing Slot Problems

New Approach to Search for Gliders in Cellular Automata

Team BlackSheep Drone Pilot Raphael Pirker Settles FAA Case

Math At The Amusement Park: Representing And Solving Problems (Core Math Skills (Powerkids)) By Ian F. Mahaney READ ONLINE

Performance Indicator Horizontal Flight Efficiency

Phys2010 Fall th Recitation Activity (Week 9) Work and Energy

AN ANALYSIS OF THEME AND RHEME USED IN THE FIVE-STAR HOTELS WEB SITES IN SURABAYA

BLUE PANORAMA AIRLINES POLICY ON AGENT DEBIT MEMO (ADM)

Modeling the Statistical Process with Linked Metadata. Dan Gillman BLS Franck Cotton INSEE

Rail Car Allocation Problems

Incentives in Landing Slot Problems

The Case of the Stolen CD Players

Aircom User Guide. Version 2. Site Navigation Tips and Shortcuts Steps to Commission Search

Curriculum Vitæ. Panteleimon Eleftheriou

Portability: D-cide supports Dynamic Data Exchange (DDE). The results can be exported to Excel for further manipulation or graphing.

Economic Assessment of Investments in German and European Airports.

ABSTRACT Keyword: Delay, On-Time, Station Handling, Analysis, Competitor, Airline, Survey.

Salary Survey. The Association of South African Quantity Surveyors (ASAQS) March 2016 (Published in September 2016)

UC Berkeley Working Papers

- detour drawings with traffic directions; - staging schemes with traffic directions; - number of lifts of pavement courses;

An Appointment Overbooking Model To Improve Client Access and Provider Productivity

Applications of a Terminal Area Flight Path Library

HOW TO IMPROVE HIGH-FREQUENCY BUS SERVICE RELIABILITY THROUGH SCHEDULING

Future airport concept

Demand Shifting across Flights and Airports in a Spatial Competition Model

532 - PAVEMENT MARKING - OPSS 532

Local Development Scheme

An Architecture for Combinator Graph Reduction Philip J. Koopman Jr.

Airspace Management Decision Tool

Simplification Using Map Method

Temporal Deviations from Flight Plans:

Aviation Maintenance Technology

ARRIVALS REVIEW GATWICK

Airspace Structure Changes and ATC Operational Procedure Changes. Stuart Lindsey Airspace Regulation

Air Traffic Information System

Mathcad Prime 3.0. Curriculum Guide

The Single European Sky and SESAR, the European ATM modernisation programme. Patrick Ky, Executive Director 26 May 2010

ANNEXURE A Terminology and definitions

Swanwick Airspace Optimisation. Work Package 1. November 2016: v1.6

HRODC Postgraduate Training Institute

THEORY OF CHANGE. Kigali, Rwanda 10 March 2014

Outline. 1. Timetable Development 2. Fleet Size. Nigel H.M. Wilson. 3. Vehicle Scheduling J/11.543J/ESD.226J Spring 2010, Lecture 18

Motion 2. 1 Purpose. 2 Theory

ALASKA AIRLINES AND VIRGIN AMERICA AVIATION SAFETY ACTION PROGRAM (ASAP) FOR FLIGHT ATTENDANTS MEMORANDUM OF UNDERSTANDING

A Turing Machine In Conway's Game Life. Paul Rendell

EU GPP CRITERIA FOR INDOOR CLEANING SERVICES 1. INTRODUCTION

Rolling with Roller Coasters

Advisory Circular AC61-3 Revision 11 SUPERSEDED Define and identify, on a diagram of the earth, and explain the meaning of the following:

Abstract. Introduction

KS3 KIDZANIA POST-VISIT LEARNING RESOURCES KIDZANIA POST-VISIT LESSON PLAN

Measurement of environmental benefits by ICAO Secretariat

IMPETUS: Engineering Workbook Model Roller Coaster Competition

Recommendations on Consultation and Transparency

Optimization Model Integrated Flight Schedule and Maintenance Plans

4 March To the Witherlea School Community. Dear Parents & Community Members WITHERLEA SCHOOL UPDATE TO HOME ZONE BACKGROUND

CLASSICS Mission Statement Program Objectives Student Learning Objectives

Stoneham High School Calendar-Handbook

AQME 10 System Description

Transcription:

A proof library shared by different proof systems Gilles Dowek

Sharing data A C program can be executed on any computer A jpg, png... photo can be seen on any telephone, computer... A webpage can be displayed in any browser

Sharing proofs accross systems A PVS proof of x + y = y + x A HOL Light proof of x + y = y + x A Coq proof of x + y = y + x...

Although We all would like to have a proof of Hales theorem the correctness of ACCoRD the Four color theorem Heule s theorem in PVS, Coq, HOL Light...

Why don t we have it? Lack of standard But also different logics

I. Building a shared library in five steps

Step 1: A logical framework

Different logics: nothing new ZF Every vector has a unique decomposition in a base ZF Every vector space has a base ZFC Every vector space has a base

From logics to theories But... ZF and ZFC are expressed in the same logical framework (Predicate logic) Only the axioms differ Easy to analyse if a proof uses the axiom of choice or not

Logical frameworks Predicate logic λπ-calculus (Harper, Honsell, Plotkin, 1993): proof-terms, binders Deduction modulo theory (D, Hardin, Kircher, 2003): computations, cut elimination λπ-calculus modulo theory (Cousineau, D, 2007) implemented in Dedukti (Boespflug, Saillard, et al.) Many others: LFSC, ProofCert...

Step 2: Expressing logics in Dedukti

Simple type theory as a theory in the λπ-calculus modulo theory type : Type η : type Type o : type nat : type arrow : type type type ε : (η o) Type : (η o) (η o) (η o) : Πa : type (((η a) (η o)) (η o)) (η (arrow x y)) (η x) (η y) (ε ( x y)) (ε x) (ε y) (ε ( x y)) Πz : (η x) (ε (y z))

Examples Types: nat nat expressed as (arrow nat nat) of type type Then as (η (arrow nat nat)) of type Type that reduces to (η nat) (η nat) Terms: λx : nat x expressed as λx : (η nat) x of type (η nat) (η nat) Propositions: X : o (X X ) expressed as o λx : (η o) ( X X ) of type (η o) Then as (ε ( o λx : (η o) ( X X ))) of type Type that reduces to ΠX : (η o) ((ε X ) (ε X )). Proofs: well-know expressed as λx : (η o) λα : (ε X ) α of type ΠX : (η o) ((ε X ) (ε X ))

The Calculus of constructions as a theory in the λπ-calculus modulo theory type : Type η : type Type o : type nat : type arrow : Πx : type (((η x) type) type) ε : (η o) Type : Πx : (η o) (((ε x) (η o)) (η o)) : Πx : type (((η x) (η o)) (η o)) π : Πx : (η o) (((ε x) type) type) (η (arrow x y)) Πz : (η x) (η (y z)) (ε ( x y)) Πz : (ε x) (ε (y z)) (ε ( x y)) Πz : (η x) (ε (y z)) (η (π x y)) Πz : (ε x) (η (y z))

Coq and Matita The Calculus of constructions + inductive types, universes... Calculus of constructions with inductive types, universes... in Dedukti (Boespflug, Burel, Assaf, 2015)

Step 3: Translating proofs to Dedukti

HOL Light proofs: Assaf (2015) Matita proofs: Assaf (2015) FoCaLiZe proofs: Cauderlier, Dubois (2016) Zenon modulo proofs: Halmagrand (2016) i-prover modulo proofs: Burel (2014) On going: Coq proofs, SAT proofs, SMT proofs...

Step 4: Reverse mathematics

Simple type theory as a theory in the λπ-calculus modulo theory type : Type η : type Type o : type nat : type arrow : type type type ε : (η o) Type : (η o) (η o) (η o) : Πa : type (((η a) (η o)) (η o)) (η (arrow x y)) (η x) (η y) (ε ( x y)) (ε x) (ε y) (ε ( x y)) Πz : (η x) (ε (y z))

The Calculus of constructions as a theory in the λπ-calculus modulo theory type : Type η : type Type o : type nat : type arrow : Πx : type (((η x) type) type) ε : (η o) Type : Πx : (η o) (((ε x) (η o)) (η o)) : Πx : type (((η x) (η o)) (η o)) π : Πx : (η o) (((ε x) type) type) (η (arrow x y)) Πz : (η x) (η (y z)) (ε ( x y)) Πz : (ε x) (ε (y z)) (ε ( x y)) Πz : (η x) (ε (y z)) (η (π x y)) Πz : (ε x) (η (y z))

The Calculus of constructions as a theory in the λπ-calculus modulo theory type : Type η : type Type o : type nat : type arrow : Πx : type (((η x) type) type) ε : (η o) Type : Πx : (η o) (((ε x) (η o)) (η o)) : Πx : type (((η x) (η o)) (η o)) π : Πx : (η o) (((ε x) type) type) (η (arrow x y)) Πz : (η x) (η (y z)) (ε ( x y)) Πz : (ε x) (ε (y z)) (ε ( x y)) Πz : (η x) (ε (y z)) (η (π x y)) Πz : (ε x) (η (y z))

Analyzing proofs expressed in the Calculus of constructions A subset of the proofs expressed in the Calculus of constructions do not use the dependency of arrow do not use the dependency of the symbol, do not use the symbol π Can be translated to Simple type theory: just replace (arrow A λx : (η A) B) with (arrow A B) (similar for )

Otherwise The proof genuinely uses a feature of the Calculus of constructions that does not exist in Simple type theory Should be labeled as such Same as in ZFC: genuinely uses the axiom of choice: not in ZF

The arithmetic library of Matita The arithmetic library of Matita in Dedukti, including a proof of Fermat s little theorem Dependency of arrow and, π, and universes can be eliminated from this library (Thiré, 2018) Inductive types: replaced by a induction on natural numbers Actual proofs are much simpler than what is allowed by the logic

Fermat s little theorem A proof in constructive Simple type theory Novelty: a formal proof in a theory weaker than Matita Also weaker than HOL Light (excluded middle, extensionality, choice...)

(Genuine) reverse mathematics Friedman, Simpson... An important source of inspiration But some differences: analyze proofs not theorems focus on formal proofs expressed and checked in computerized proof systems less ambitious: the Calculus of constructions, Simple type theory... rather than fragments of Second-order arithmetic

Step 5: Exporting from Dedukti

Exporting this library From Dedukti To HOL Light, Isabelle/HOL, HOL4 (using OpenTheory) To Coq and (of course) to Matita 1.5 Mo, 340 lemmas https://github.com/francoisthire/sharinganarithmeticlibrary

II. Abstracting enough

Natural numbers Both in Matita and HOL Light Proving propositions by induction / defining functions by induction But justified in different ways Inductive type vs. impredicative definition of finite cardinals Ignored by the library Left to the host (the proof must land on a comfortable enough pillow) Any system containing a notion of natural number and an induction principle

Connectives and quantifiers Same as natural numbers Inductive types / Q 0 Should be ignored by the library Making formal the saying: Cauchy sequences or Dedekind cuts immaterial (isomorphic and only structural statements)

III. What about PVS?

Using the library PVS contains Simple type theory The full arithmetic library can be translated to PVS (or has it been translated already?)

Contributing to the library Express PVS in Dedukti What is the logic of PVS already? (Gilbert, 2018) Can it be expressed in Dedukti?

Future work Arithmetic library: the beginning of a shared library Label each lemma by the rewrite rules and axioms it requires A formal proof of Fermat s little theorem in constructive Simple type theory: weaker theories (predicative, PA...)

2024 © travelsdocbox.com Privacy Policy | Terms of Service | Feedback