Section: Other Grants and Activities

National initiatives

CAT

Participants : Jean-Christophe Filliâtre, Claude Marché.

CAT (C Analysis Tools) is a RNTL project related to the verification of C programs. It started in June 2006 and ended in August 2009.

The goal of the project was to develop an open-source toolkit for analysing industrial-size C programs during development, verification, maintenance and evolution. The resulting environment is called Frama-C (http://frama-c.cea.fr )

Our partners: CEA List (Saclay, project leader), INRIA Rennes (Team Lande), Dassault Aviation (Saint-Cloud), Airbus France (Toulouse), Siemens.

U3CAT

Participants : Jean-Christophe Filliâtre, Claude Marché, Marc Pouzet, Guillaume Melquiond, Kalyan Krishnamani, Asma Tafat, Paolo Herms.

U3CAT (Unification of Critical C Code Analysis Techniques) is a project funded by ANR within its programme “Systèmes Embarqués et Grandes Infrastructures - ARPEGE”. It aims at verification techniques of C programs, and is partly a follow-up of the former CAT project. It started in January 2009 and will end in 2012.

The main goal of the project is to integrate various analysis techniques in a single framework, and make them cooperate in a sound way. We address the following general issues:

• Verification techniques for floating-point programs;

• Specification and verification of dynamic or temporal properties;

• Combination of static analysis techniques;

• Management of verification sessions and activities;

• Certification of the tools chains for compilation and for verification.

Partners: CEA-List (Saclay, project leader), Lande team (INRIA Rennes), Gallium team (INRIA Rocquencourt), Dassault Aviation (Saint-Cloud), Airbus France (Toulouse), ATOS Origin (Toulouse), CNAM Cedric laboratory (Evry), CS Communication & Systems (Toulouse), Hispano-Suiza/Safran (Moissy-Cramayel).

A3PAT

Participants : Sylvain Conchon, Évelyne Contejean, Stéphane Lescuyer, Andrei Paskevich.

A3PAT (Assister Automatiquement les Assistants de Preuve Avec des Traces, Helping proof assistants with full automation by means of traces, literally “on three legs”) is a project funded by ANR, started in December 2005 and ended in May 2009. http://a3pat.ensiie.fr/ .

It aimed at helping proof assistants with trustworthy decision procedures, in particular by generating proof traces in order to build proof terms.

The principal investigator was Xavier Urbain (ENSIIE). The scientific leaders were Yves Bertot (Inria Sophia), Pierre Casteran (Labri, Bordeaux 1), and Évelyne Contejean (LRI, Orsay).

Contributions of the project were:

• A solution for the certification of automated proofs in the context of first order term rewriting systems. This solution is based on a huge Coq library for rewriting: Coccinelle, and a certification engine, part of the CiME 3 rewriting tool  [79] , [78] . It involves some of the most advanced techniques for termination, amongst which some unique features; its development provided new proof techniques  [81] as well as new termination criteria  [82] , [78] . Automated provers can certify their proofs with solution, using an XML language well-suited for proof traces.

• Several formal libraries, in particular on ordinals representation in Coq .

Deliverables included publications, software, and libraries.

ADT Alt-Ergo

Participants : Sylvain Conchon, Evelyne Contejean, Claude Marché, Alain Mebsout, Mohamed Iguernelala.

The ADT (Action de Développement Technologique) Alt-Ergo is a 2-years project funded by INRIA, started in September 2009.

The goal is the maturation of the Alt-Ergo prover towards its use in an industrial context in particular for avionics. The expected outcomes of this ADT are the following:

• improving the efficiency of Alt-Ergo;

• fine tuning of Alt-Ergo for the SMT competition;

• generation of counter-examples;

• the qualification of Alt-Ergo for the norm DO-178B.

External Collaborators: Airbus France (Toulouse), Dassault Aviation (Saint-Cloud), team Typical (INRIA, École Polytechnique).

ARC CeProMi

Participants : Claude Marché, Jean-Christophe Filliâtre, Christine Paulin-Mohring, Wendi Urribarrí, Johannes Kanig, Romain Bardou, Asma Tafat.

CeProMi (Certification de Programmes manipulant la Mémoire) is a ARC (Action de Recherche Collaborative), a 2-years project funded by INRIA, started in January 2008, and ended in December 2009 http://www.lri.fr/cepromi/

The goal was to propose new theoretical bases for proving programs involving memory sharing and side effects (typically, pointer programs in C, objects in OO languages, records with mutable fields in ML).

There were three different levels of studies: extensions of specification languages with appropriate notions of invariants and description of side effects; design of advanced type systems and static analyses for detecting either alias or separation of pointers; design of verification conditions calculi incorporating notions of modules, pointer separation and refinement.

Partners: Gallium team (INRIA Rocquencourt), Cassis team (INRIA Nancy), TFC team (LIFC, Besançon), DCS team (VERIMAG, Grenoble)

CerPAN

Participants : Sylvie Boldo, Jean-Christophe Filliâtre, Ali Ayad.

CerPAN (Certification de Programmes d'Analyse Numérique) is a 3 years project funded by ANR, started in December 2005 that has been extended until June 2009. http://www-lipn.univ-paris13.fr/CerPAN/

This project aimed at developing and applying methods which allow to formally prove the soundness of programs coming from numerical analysis techniques. We were more precisely working on problems related to the verification of floating point algorithms. The partners were: University Paris 13, INRIA and CNAM.

FOST

Participants : Sylvie Boldo, Jean-Christophe Filliâtre, Guillaume Melquiond.

FOST (Formal prOofs of Scientific compuTation programs) is a 3 years ANR “Blanc” project started in January 2009. S. Boldo is the principal investigator of this project. http://fost.saclay.inria.fr

The FOST project follows CerPAN's footprints as it aims at developing new methods to bound the global error of a numerical program. These methods will be very generic in order to prove a large range of numerical analysis programs. Moreover, FOST aims at providing reusable methods that are understandable by non-specialists of formal methods.

Partners: University Paris 13, INRIA Paris - Rocquencourt (Estime).

Hisseo

Participants : Sylvie Boldo, Claude Marché, Guillaume Melquiond, Thi-Minh-Tuyen Nguyen, Ali Ayad.

Hisseo is a 3 years Digiteo project that started in September 2008. http://hisseo.saclay.inria.fr

The Hisseo project will focus on the problems related to the treatment of floating-point computations in the compilation process, especially in the case of the compilation of critical C code.

Partners: CEA List (Saclay), INRIA Paris-Rocquencourt (Team Gallium).

Pactole

Participants : Évelyne Contejean, Jean-Christophe Filliâtre, Xavier Urbain.

Pactole is a 3 year Digiteo project which started in October 2009.

The Pactole project focuses on automation and formal verification for ubiquitous, large scale environments. Tasks include proof automation techniques for distributed systems, verification conditions for fault tolerant distributed systems, specification and design of fundamental services for mobile sensor networks. The principal investigator of Pactole is Xavier Urbain.

Partners: CÉDRIC (CNAM/ENSIIE), LIP6 (UPMC).

SIESTA

Participant : Marc Pouzet.

SIESTA is a 4 year project funded by ANR RNTL. The coordinator is Y. Parissis (LIG, Grenoble). http://www.siesta-project.com . The project started in january 2008.

This project addresses the automated testing of embedded systems implemented in SCADE or Simulink. M Pouzet is involved on the architecture of the SCADE 6 compiler to integrate verification techniques. The challenge is to take new programming constructs (e.g., hierarchical automata, reset and general forms of clocks) into account to improve verification techniques and modularity.

Partners: AIRBUS, Turbomea, Hispano-Suiza, Onera, CEA List, Esterel-Technologies, EADS, LRI, LIG.

GENCOD

Participant : Marc Pouzet.

This project is funded by DGE for two years. The coordinator is Thales. The project started in sept. 2008 (delayed by one year).

The GENCOD project aims at defining methods to certify the Esterel compiler for hardware (Norm. DO 254, the hardware version of DO 178 B used for critical software).

Partners: Dassault-Aviation, Thales, Esterel-Technologies, TNI, Airbus, LRI.

INRIA Action d'Envergure Synchronics

Participants : Marc Pouzet, Louis Mandel.

This project is funded by INRIA for 4 years and started in Jan. 2008. The coordinators are A. Girault (INRIA Rhône Alpes) and M. Pouzet. http://synchronics.wiki.irisa.fr/

The goal of the project is to propose new languages for the development of embedded systems allowing from a unique source to both simulate the system with its environment and generate code. It capitalizes on recent extensions of data-flow synchronous languages (Lucid Synchrone, ReactiveML), a relaxed form of synchrony, and means to mix discrete and continous systems inside the synchronous model of time.

The project focuses on language extensions to increase modularity, dedicated type systems to ensure safety properties, efficient compilation and the mix of discrete and continuous time.

Partners: INRIA Rhône Alpes (Alain Girault, Bertrand Jeannet), IRISA (Benoit Caillaud), VERIMAG (Erwan Jahier, Pascal Raymond), INRIA Saclay (Albert Cohen, Marc Pouzet, Louis Mandel)

SCALP

Participants : Christine Paulin-Mohring, Yann Régis-Gianas, Xavier Urbain.

This project is funded by ANR (program SESUR). http://scalp.gforge.inria.fr/

It started on january 2008 for 4 years; the coordinator is Yassine Lakhnech from VERIMAG.

Partners: Verimag, INRIA Sophia-Antipolis(Everest then Marelle team), ENS Lyon, LRI, CNAM.

The SCALP project (Security of Cryptographic Algorithms with Probabilities) aims at developping automated tools for the verification of cryptographic systems.

PARTOUT

Participants : Louis Mandel, Marc Pouzet.

This project is funded by ANR (program DEFIS).

It started on january 2009 for 4 years; the coordinator is Frédéric Boussinot from INRIA Mimosa.

Partners: INRIA Mimosa, CNAM, LRI.

The goal of the project PARTOUT is, from a programming language point of view, to study the impact on programming of the globalization of parallelism which now covers all the spectrum of informatics, ranging from multicore architectures and distributed systems, up to applications deployed on the Web.

DECERT

Participants : Sylvain Conchon, Évelyne Contejean, Stéphane Lescuyer.

DECERT (DEduction and CERTification) is an ANR “Domaines Emergents” project. It started on January 2009 for 3 years; the coordinator is Thomas Jensen from the Lande team of IRISA/INRIA Rennes.

The goal of the project DECERT is to design and implement new efficient cooperating decision procedures (in particular for fragments of arithmetics), to standardize output interfaces based on certificates proof objects and to integrate SMT provers with skeptical proof assistants and larger verification contexts such as the Rodin tool for B and the Frama-C/Jessie tool chain for verifying C programs.

The partners are: CEA List, LORIA/INRIA Nancy - Grand Est, IRISA/INRIA Rennes - Bretagne Atlantique, INRIA Sophia Antipolis - Méditerranée, Systerel