FOUNDATIONS OF A THEORY OF SPECIFICATION FOR DISTRIBUTED SYSTEMS

Quantified Score

Visualization

Abstract

This thesis investigates a particular approach, called state-transition specification, to the problem of describing the behavior of modules in a distributed or concurrent computer system. A state-transition specification consists of: (1) a state machine, which incorporates the safety or invariance properties of the module, and (2) validity conditions on the computations of the machine, which capture the desired liveness or eventuality properties. The theory and techniques of state-transition specification are developed from first principles to a point at which it is possible to write example specifications to check the specifications for consistency, and to perform correctness proofs using the specifications. The utility of the techniques is demonstrated through examples. Major contributions of the thesis include: (1) the definition of a semantic model that incorporates hierarchy of abstraction and modular decomposition as fundamental notions; (2) specification and proof techniques that smoothly handle both safety and liveness properties; (3) techniques that use liveness properties stated in rely-/guarantee-condition form to obtain simple proofs of correctness; (4) an interesting and useful notion of consistency for specifications involving liveness properties.