Expression of interest for a Network of Excellence on Abstract Interpretation (AINoE)

1.  Need and Relevance

The network of excellence aims at strengthening European scientific and technological excellence through a better integration of research capacities on abstract interpretation and its applications across Europe. Software and hardware reliability, trustworthiness and security is a major societal and economic challenge for information technology based modern societies. Many semantic based program analysis and manipulation techniques have been developed in the past 20 years offering more rigour than testing and simulation and greater scalability than verification by automatic theorem proving. This includes research areas such as static analysis, abstract model checking, type and effect systems, program transformation, etc. where European researchers are leading the World. There is a profound unity in all these fields which are closely related since they can all be formalized in terms of abstract interpretation. They all aim at obtaining safe but approximate information about the behaviour of a computer system by systematically abstracting the semantics of its specification, model or program.

The network will help to integrate the various sub-communities which are centred around more specific types of analysis problems as posed by specific hardware and software specification and programming paradigms (imperative, functional, constraint/logic, object-oriented) or by particular applications (composable, scalable and reliable abstract interpretation-based software technologies for security, distribution, mobility, real-time embedded systems, knowledge bases, etc.). A closer interaction between the different groups and directions will lead to a critical mass with a huge cooperation pay-off leading to fruitful cross fertilization and new interactions. This will also intensify research by more rapidly spreading new results, reducing time to market of new ideas and supporting the currently rapidly expanding industrialization phase.

Abstract interpretation is now at a pivotal moment since it is on the verge of widespread industrialisation, and therefore the network will act to spread European scientific excellence which will, in turn, feed the industrial sector. Exchanges between academic researchers and end-users will focus research on practical issues. The "technology-push practice-pull" organisation of the network will accelerate the maturation and the industrialisation of abstract interpretation based technologies. This expression of interest is supported by AbsInt Angewandte Informatik GmbH, Airbus France S.A.S., Carlstedt Research & Technology AB, Exalead S.A., List Group S.p.A., METAFrame Technologies and Oakwood Computing Associates Ltd..

1.1  Proposed activities

1.1.1  Research activities

Semantic foundations:  

Abstract interpretation based methods rely on sound abstractionsapproximations of the semantics of computer systems. The formalization of such semantics, at various levels of detail, is therefore fundamental. The work ranges from geometric semantics of parallelism and distributed systems (to avoid combinatorial explosions in the analysis of interacting processes), to semantics for mobile processes or the semantic definition of query languages for the web.

Mathematical foundations and abstract domains:  

The central idea in abstract interpretation is to specifycompute information about computer systems by systematic abstractionsapproximations of their semantics to construct simplifiedeffective abstract semanticsmodels. Abstract domains are mathematicalalgebraic models specifying which properties of the computer system are considered relevant for its analysistransformation or synthesis from specifications. Methodologies for semantics approximation and systematic design of abstract domains are required to cope with the wide variety of paradigms (imperative, functional, declarative, object oriented, parallel including reactive, (a)synchronous, distributed, mobile), properties (correctness, security, performance) and applications to be considered. Examples include spatial approximations (such as grammar-based abstract domains combined with constraints), qualitative approximations (such as probabilistic abstract domains), generalizations of domain-specific analysis techniques, resulting in a much more useful technique, etc. Important aspects for both the precision and efficiency of analysestransformations include compositionality (to cope with interactions of analysestransformations), modularity (e.g. by taking advantage of new mechanisms for program structuring such as modules or aspects, or by developing new, incremental approaches to program certification, focussing on parts of possibly shared code, while disregarding the rest), formal assessment of precision, automated refinement of abstraction, etc.

Algorithmic and generic implementation foundations:  

The abstract semanticsmodels are generally expressed in equivalent computer-representable fixpointconstraint forms. Efficient iterative resolutionconstraint solving algorithms constitute the kernel of generic static analysis and transformation techniques. The algorithmic core of most program analysis/transformation systems is the computation of a (preferably least) solution to a system of constraints. Scalability of the system therefore crucially depends on efficient fixpointreasoning engines for computing such solutions. These engines will equip the community with tools to develop further analyses. Practical program analysis tools should be easily adaptable to newly arising analysis questions. Adaptivity usually is gained by a general framework and analyser generators which then only must be instantiated for the concrete analysis.

Domain-specific static analysis and transformation techniques:  

Analysis and transformation frameworks must be developed and implemented for various programming paradigms (in a uniform way covering e.g. procedural languages (including logic languages as well as imperative languages), multi-threaded parallel code, various distributed/mobile calculi (including Mobile Ambients and Spi), reactive embedded systems (either synchronous or asynchronous), etc.).

Another dimension in the design of abstract domains is the type of properties to be considered, ranging from precision properties (for reasoning about the accuracy of floating point computations), to spatial properties (e.g. for reasoning about arbitrary large sets of mutable data structures or control flow analyses of mobile processesambients calculi at high level or Javascripting languages supporting wireless technologies at low level), temporalperformance properties (complexityterminationworst case execution time analysisdebugging, analysis of discretediscretizedcontinuoushybrid systems) and security properties (for trust and confidence analysis of programs). For each class of property, a wide range of abstract domains has to be explored with different costprecision ratio to best fit to the considered application (e.g. precise analysis of a program component versus rapid analysis of huge programs).

Applied Software Technologies:  

The work on static analysis and transformation will be done in the context of various applied software technologies including classical program optimisation (in particular for functionalconstraintlogical programming languages), static debugging in pervasive systems (e.g. mobile, wearable systems, embedded system-on-chip), program debugging (to help automate test generation for bug detection) and program synthesis (in particular program specialisation and partial evaluation). In particular the network will encourage the transfer of successful technologies between areas (e.g. the application of tools for CLP to other languages and logics (such as Java, Java bytecode, Verilog, first order logic) using explicit semantics expressed as CLP programs).

Abstract interpretation also provides underpinning technology for developing new software technologies such as aiding program understanding (to support the programmer in the task of reasoning about code developed by a third party), the automated certification of communication protocolsdistributed programs for network safety and data security purposes (e.g. intrusion detection for smartcards or internet-based systems to automatically detect inconspicuous program features that elite hackers can exploit and potentially lever into major security holes), the optimisation of data mining tools implemented on top of a logic programming engine or tool support for production of intelligent, knowledge-based systems which are presently lacking.

1.2  Relevant priority thematic area

The proposed activities aim at fostering research and development of a wide spectrum of techniques based on abstract interpretation by integrating and strengthening the European research area (1.). The considered application areas of abstract interpretation based program analysis and manipulation techniques underlie many Information Society technologies (1.1.2) including major societal and economic challenges (1.1.2.i) such as technologies for trust and security [e.g. the verification of cryptographic protocols, confidentiality analysis, semantic program watermarking in dynamic and mobile systems], as well as communication, computing and software technologies (1.1.2.ii) in particular software technologies, embedded systems and distributed systems for which the consortium proposes to develop new software technologies for software and systems that address composability, scalability, reliability and robustness. The domain of application is that of the formal design and verification of computer systems including complex embedded distributed systems [in particular as found in aeronautics (1.1.4.i)] as well as components and microsystems (1.1.2.iii) [such as systems-on-a-chip], knowledge and interface technologies (1.1.2.iv) [such as semantic-web applications], nanotechnologies (1.1.3) [probabilistic verification], etc. The research program should foster the industrialization of abstract interpretation based software technology as an IST future and emerging technology (1.1.2.v).

1.3  Mobilisation of activities and resources

1.3.1  Application Domains

The main application areas will be defined according to the end-user needs, in particular applications requiring the development of software critical technologies for key safety and security challenges posed by the ``all-digital'' world and by the need to secure the rights of individuals and communities. This includes:

aeronautics and space:

by developing tools for detection of programming errors to reduce test costs and enhance reliability of software (ranging from safety-sensitive critical control functions up to large high-availability embedded distributed data processing);

communication, computing, software technologies for distributed systems:

by using abstract interpretation to explore designs, prototypes and implementations for matching with specifications for all the software lifetime (from first development, including the corrective and evolutive maintenance for tens of years or over);

technology for trust and security:

by using abstract interpretation to track information flow in protocols and systems;

multifunctional service creation environments:

by exploiting ideas from abstract interpretation and model checking as well as model synthesis technologies, in order to support the development, increase the reliability and guarantee quality of service.

1.3.2  Education activities

The network will promote scientific education and help establishing software reliability as a fundamental topic in the computer science curriculum. The members of the network are both World specialists in their area and committed researchers and mentors. The network will promote courses for students given by group members at other member institutions (including the Dagstuhl activities), summer schools, the exchange of students, and the distribution of course materials. The PhD output of the participants will be in peak shape to join the matching industries.

2.  Excellence

Information required: readiness and availability of the scientific and technological excellence, multidisciplinary skills and critical mass in Europe needed to achieve the network's objectives; a list of the leading academic and industrial European research centres, and other major envisaged participants, together with a very short description of their competencies and potential role in any Network of Excellence.

The expression of interest for a network of excellence on abstract interpretation is at the initiative of the following participants (given with hyperlinks to their institution, postal address , email , curriculum vitæ , research group , institution , publications , DBLP bibliography , European projects , researchers  (nb), PhDs  (nb)).

François BOURDONCLE, Exalead S.A. (France), , , , , , , ,  (3),  (4)

Maurice BRUYNOOGHE, Katholieke Universiteit Leuven (Belgium), , , , , , , , ,  (6),  (2)

Michael CODISH, Ben-Gurion University of the Negev (Israel), , , , , , , , ,  (3)

Agostino CORTESI, Università Ca' Foscari di Venezia (Italy), , , , , , , ,  (10)

Patrick COUSOT, École Normale Supérieure/CNRS (France), , , , , , , , ,  (4),  (3)

Radhia COUSOT, École Polytechnique/CNRS (France), , , , , , , , ,  (2),  (4)

Olivier DANVY, University of Aarhus (Denmark), , , , , , , , ,  (5),  (2)

Javier ESPARZA, University of Edinburgh (UK), , , , , , , , ,  (4)

Christian FERDINAND, AbsInt Angewandte Informatik GmbH (Germany), , , , , , ,  (5)

Gilberto FILÉ,  Universitá di Padova (Italy), , , , , , , , ,  (4)

John GALLAGHER, Roskilde University (Denmark), , , , , , , , ,  (1),  (2)

Roberto GIACOBAZZI, Universitá degli Studi di Verona (Italy), , , , , , , , ,  (4),  (3)

Éric GOUBAULT, CEA/LIST (France), , , , , , ,  (3)

Nicolas HALBWACHS, Vérimag/CNRS (France), , , , , , , , ,  (5)

Chris HANKIN, Imperial College (UK), , , , , , , ,  (5),  (4)

Manual HERMENEGILDO, Universidad Politécnica de Madrid (Spain), , , , , , , , ,  (7),  (4)

John HUGHES, University of Chalmers (Sweden), , , , , , , , ,  (0)

Thomas JENSEN, IRISA/CNRS (France), , , , , , ,  (5),  (8)

Neil JONES, DIKU, University of Copenhagen (Denmark), , , , , , , , ,  (8),  (6)

Andy KING, University of Kent (UK), , , , , , , , ,  (3)

Baudouin LE CHARLIER, Université Catholique de Louvain (Belgium), , , , , , , , ,  (0)

Giorgio LEVI, Universitá di Pisa (Italy), , , , , , , , ,  (5)

Alan MYCROFT, University of Cambridge (UK), , , , , , , ,  (3)

Flemming NIELSON, The Technical University of Denmark (Denmark), , , , , , , , ,  (2),  (1)

Andreas PODELSKI, Max-Planck-Institut für Informatik (Germany), , , , , , , , ,  (2),  (3)

German PUEBLA, Universidad Politécnica de Madrid (Spain), , , , , , , , ,  (7),  (4)

Famantanantsoa RANDIMBIVOLOLONA, Airbus France (France), , , ,  (3)

Hanne RIIS NIELSON, The Technical University of Denmark (Denmark), , , , , , , , ,  (1),  (1)

Mooly SAGIV, Tel-Aviv University (Israel), , , , , , , ,  (0),  (10)

David SANDS, Chalmers University of Technology (Sweden), , , , , , , , ,  (5)

Helmut SEIDL, Universität Trier (Germany), , , , , , , ,  (2)

Bernhard STEFFEN, Universität Dortmund (Germany), , , , , , , ,  (5)

Reinhard WILHELM, Universität des Saarlandes (Germany), , , , , ,  (10),  (3)

The effort should be international and therefore the participants promote a strong international cooperation in particular with Australia (Harald SøNDERGAARD (Melbourne University), Kim MARRIOTT (Monash University)), India (R.K.  SHYAMASUNDAR (Tata Institute of Fundamental Research)), Korea (Kwangkeun YI (KAIST)) and the USA (Alex AIKEN (Berkeley University), Saumya DEBRAY (The University of Arizona), Michael LOWRY (NASA Ames Research Center), Jens PALSBERG (Purdue University), Thomas REPS (University of Wisconsin-Madison), Barbara RYDER (Rutgers University), David SCHMIDT (Kansas State University), Pascal VAN HENTENRYCK (Brown University)) to cite a few. The international activities of the network will be through meetings at the Schloß Dagstuhl international conference and research center for computer science, the Static Analysis Symposium (SAS) and the International Conference on Verification, Model Checking and Abstract Interpretation (VMCAI).

3.  Integration and Structuring Effect

The European cooperation in this area is often organized nationally or through small groups addressing separately various applications. The network will therefore widen and deepen their collaboration. There is a need to disseminate formal methods for software engineering in the European industry where the uptake is slow (though growing) and restricted to certain dedicated areas. A network visible at the European level with existing contacts to industry will be able to organize focussed tutorials and workshops and coordinate the use of techniques and tools in European projects where software analysis is being employed.

The basic integration measures propounded by the network will include e-mail list, web site, database of interests and skills, periodic meetings in the different countries participating to the network, post-doc exchanges and fellowships.

The technical integration measures proposed by the network include the development of composable libraries implementing abstract domains to be used in sharable program analysis engines.

At the educational level, the network will advocate an international PhD programme in abstract interpretation-based software technologies with a unique advisory board for the PhD, made of the representatives of the different sites. The objective is to support collaborations through common rules for student financial support, student/teaching exchange and partnership (evaluation, co-tutoring, visiting vacancies, thesis standards etc.). This program would be enhanced by a high-speed satellite connectivity among the different partners of the network. This technology is essential to share seminars, teaching and meetings in video-conferencing.

The involvement with spin-offs and start-up companies as well as the academic/industrial integration will be put forward by industrial fellowships (that is visiting positions from academia to industry and vice versa), formulation of shared course materials, training courses for industry.