coq-club AT inria.fr

Subject: The Coq mailing list

List archive

Re: [Coq-Club] meaning of formal specifications

From: Ian Atol <iatol AT calpoly.edu>
To: "coq-club AT inria.fr" <coq-club AT inria.fr>
Subject: Re: [Coq-Club] meaning of formal specifications
Date: Mon, 25 Jan 2021 15:51:41 +0000
Accept-language: en-US
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=calpoly.edu; dmarc=pass action=none header.from=calpoly.edu; dkim=pass header.d=calpoly.edu; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hM4jVzUHW9G1JVbswoj4XHIcuCmNREDjlCFMdvy+kzA=; b=FYK0IH2zy54h5Wogy7HWzskjLpuNz45pENKNfmQABNz+c2E1aPc6X2kxzlsoGPZVaMIH31Zfaf4YIb22q2sE8BLdOyObwxhllbUKgMjq7xRh2UCCjco8zkq5ily4l9XySAURN/poG3OLdmj7RVNf17KA2jpR0UtfNFYQ7fOwRMe6rEVmPK2J5gygp2NBlH0g0a1l1JGclmvabtItBFeIwUS73isiJ1oI+VyoBFH4sT1KhV5NDY0/3P0w4EYRt1zYVMeJfdLscJTPuWtzmbEBlKb10Dcaw5zP7gKYHLRccPVCY3a60mPJEWLIoj7e09P5Rg+zr5hd7KzW7kJmfGy/MQ==
Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Tqx9gvck10EzY/HvWSdWDB6xVp45vm5L9sdvvXhAMkhqYphrA3u2jF6kvnRzvRj1qq1RdBwlVPdDHCy3rY7A8NSoczNKC1tZXnDlzZe1mObUltFn6qoymvLlVh9pPB4/T2cIY3Fyjdr7UqZD6/GDkVfRFjlucIGD3jaMH/SBisuOn9+/3Lo6jn/URFRI4qgcSxDnnZOdRpgGArgxRHD7kkgp+NPVMy7McxqjnIUPeCtJogMVYZHZ6ZKKtVNi+SDDdjLFdnNR0/KdG3Eh6yci4rr4T3txPBK9ng2MKZXw1qorczgSTaPExzWJxkQ//T3tBoEIlkJkUBt0RAypc8UmoQ==
Authentication-results: mail2-smtp-roc.national.inria.fr; spf=None smtp.pra=iatol AT calpoly.edu; spf=None smtp.mailfrom=iatol AT calpoly.edu; spf=Pass smtp.helo=postmaster AT NAM02-CY1-obe.outbound.protection.outlook.com
Ironport-phdr: 9a23:fbfg0xeJFheSQripcJRh9RtPlGMj4u6mDksu8pMizoh2WeGdxcW9YR7h7PlgxGXEQZ/co6odzbaP4ua6Aidcvd7B6ClELMUTEUddyI0/pE8JOIa9E0r1LfrnPWQRPf9pcxtbxUy9KlVfA83kZlff8TWY5D8WHQjjZ0IufrymUoHdgN6q2O+s5pbdfxtHhCanYbN1MR66sRjdutMZjId/Lqs90AXFr3VHd+lZym5jOFafkwrh6suq85Nv7iZdt+g9+8JcVKnxYrg1Q6FfADk6KW4++dfltQPETQuB53scVnsZnx9VCAXb7x/0Q4n8vDLiuuVyxCeVM8v2TaspWTu59KdkVAXoiCYcODEn9mzcl9F9g7haoBKloBx/3pLUbYSIP/dwYq/RYdUXTndHU81MVSJOH5m8YpMPAeQfIOhYs4fzqVgArRS8BAmjGOzgxyRSiXPqx6A3yfgtHR3E0QEmAtkAsG7UrNLwNKoKUu661q/IxijfYvNK3jf97JXDfxcgof6WQbJwds7RxFIzGAzfilWQsYvlPzeV1+gXrWeU8vdgWPuphmU6pA5/viKhyd0wionVmI0V0FbE+D19zYooONG1SFJ3b9GnHZZOsyyWKoV7T98sTmxqvCs316EKtJ24cSYKxpopxxDRZvibfoWH7R/tW/icLDZ7iXxlfr+0mhi88U+lyuLmV8m01k5HrjddktbSsHAN0Qbf5daaRftg+EqqxDWB1xjL5+xLPUw4j7fXJ4Ijz7IqlJcesF7PEjLrlEjylKObdFso9vK15+npbbjqvIGQO5Johg3kMKkjntSzDfo5PwQSUWWW/Pmw2KH48kD4RbhHgOE6nrTcvZ3bJ8kWo6u0DgFb34sl9h2xFS2p0M4CknkCNF9FeAyIj4zuO1zWOP71EfCxj0iynDty2f3JPKDtDozKLnfYjrjtZ7F961NAyAUoytBf+pRUBawbLPLrQE/xs8DYAQElPAyowubnD9N92pkZWWKSHq+ZNKTSsViL5u41P+aMY4oVtC78K/gj+fHukWc0lFABcaWzwJcbdHK1Eu5kLkiYe3bgn8oNHGMSsgo7VuPqiVmCUTBJZ3a1WqIx/jA7B5i6DYfEQoCgm6CO0z2/Hp1OYWBGDlCNHW32eIqZRvcAcDiSLdN5kjwYSbihTJcs2g2ptA/j0rZoMu7U+jADup/4z9h05+jTlQko+jBuDsSd1XuNT2BukW8SST82xvM3nUsogFyEyO1zh+FSPd1V/fJAFAkgf9aIxOtjTtv2Rwjpf9GTSV/gTM/wUh8rSddk4tYIK29hHNHq2hHKwy2uK7Qck6SMAI1y/67BiSuib/1hwmrLgfFyx2ItRdFCYDX/2vxPsjPLDouMqH230r6wfP1HjiXE8H+EyXvIsU1FAlYpDPf1GEsHb06TluzXo0PPS7jyVuYBGy4Zk4upG/IPbdfky1JbWP3kJdLSJXqrnHu9DgqJwbXKa5f2f2Ia32PWD01WyllCr0bDDhA3A2Kam0ybCTVvEVz1ZEa1qrt1oXejSUsliQyGch852g==

Hi Fritjof,

My understanding is that in the context of inside a Coq program, formal specification is mostly used as you say (the definition of theorems that we intend to construct a value to occupy - #2 on your list). But outside of that context, some refer to entire Coq programs as formal specifications, since they are a formal specification of the behavior of another program or some mathematical construct.

Ian

On Jan 25, 2021, 7:39 AM -0800, Fritjof <fritjof AT uni-bremen.de>, wrote:

Hi,

I have a question regarding what formal specification exactly means in the
proof assistant context.

First *formal verification* means an implementation satisfies its formal specification.
The satisfiability is shown using formal methods of mathematics, e.g., a constructed proof
in Coq.

So we have the following terms:

1) implementation
2) formal specification
3) constructed proofs

In the context of proof assistants, e.g., Coq, I would describe:

1) implementation - as the *program*, collection of function definitions and data types
2) formal specification - as the properties that argue about the program, e.g., theorems, lemmas or axioms
3) constructed proofs - statements of the LTac language

However, I have also read that the implementation part is referred to as a formal specification:
- https://www.cis.upenn.edu/~bcpierce/papers/pierce-etaps2018.pdf

or the combination of 1,2 and 3 is referred to as a formal specification, like in: a program in haskell
is extracted from this formal specification.

Am I right, that the term *formal specification* often donetes the combination of 1,2 and 3, or just 1
or am I missing something?

Kind Regards,
fritjof

[Coq-Club] meaning of formal specifications, Fritjof, 01/25/2021
- Re: [Coq-Club] meaning of formal specifications, Ian Atol, 01/25/2021
  - Re: [Coq-Club] meaning of formal specifications, Benoît Viguier, 01/25/2021
    - Re: [Coq-Club] meaning of formal specifications, Abhishek Anand, 01/26/2021
- Re: [Coq-Club] meaning of formal specifications, Agnishom Chattopadhyay, 01/25/2021
- Re: [Coq-Club] meaning of formal specifications, Adam Chlipala, 01/25/2021
  - Re: [Coq-Club] meaning of formal specifications, Michael Soegtrop, 01/25/2021
    - Re: [Coq-Club] meaning of formal specifications, Adam Chlipala, 01/27/2021
- Re: [Coq-Club] meaning of formal specifications, Xavier Leroy, 01/25/2021
  - Re: [Coq-Club] meaning of formal specifications, Vincent Semeria, 01/25/2021
    - Re: [Coq-Club] meaning of formal specifications, Adam Chlipala, 01/27/2021
      - Re: [Coq-Club] meaning of formal specifications, Vincent Semeria, 01/27/2021