DOCSLIB.ORG

TAM: an Abstract Machine Specification in Z

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
TAM: an Abstract Machine Specification in Z TAM: An Abstract Machine Specification in Z TAM: una especificación de máquina abstracta en Z Ignacio Trejos- Iván A. Salazar- Jennifer Zelaya Solano Caballero Francisco J. Computer Computer Computer Torres-Rojas Science Costa Science Costa Science Costa Computer Rica Institute of Rica Institute Rica Institute of Science Costa Technology of Technology Technology Rica Institute Costa Rica Costa Rica Costa Rica of Technology [email protected] ivan.a.salazar.so jennifer.caballer Costa Rica [email protected] [email protected] torresrojas@gm m ail.com Fecha de recibido: 01 de marzo de 2020 Fecha de aprobado: 08 de abril de 2020 Abstract—Finding bugs in the late stages like programming languages, such as of hardware design development is Pascal, Modula, Oberon, and Triangle. expensive. In particular, for a TAM’s architecture is stack-based which microprocessor architecture, unambiguity simplifies the code generation. Z’s is an essential property. Formal methods mathematical notation and its schema’s can help designers to identify structure help to describe logical and inconsistencies in a given system’s arithmetic instructions and also provide specifications. This paper presents a mechanisms suitable for modeling formal description of a subset of the complex instructions that access instruction set of the Triangle Abstract registers, memories, and the stack. This Machine (TAM) architecture in Z. TAM is research proposes a precise—yet an abstract machine suitable for the abstract—approach that avoids the implementation of block-structured, Algol- specification of low-level concepts such as 30 bits. The work reported here is a case mecanismos adecuados para modelar study in formal specification applied to a instrucciones complejas que acceden a Computing Science subject. registros, memorias y la pila. Esta investigación propone un enfoque Index Terms—formal specification, preciso, aunque abstracto, que evita la instruction set architecture, especificación de conceptos de bajo nivel, microprocessor architecture, stack como los bits. El trabajo presentado aquí computer architecture, Z notation, TAM es un estudio de caso en especificación (Triangle Abstract Machine). formal aplicado a una asignatura de Ciencias de la Computación. Resumen- Encontrar errores en las últimas etapas del desarrollo del diseño Términos del índice: especificación de hardware es costoso. En particular, formal, arquitectura de conjunto de para una arquitectura de instrucciones, arquitectura de microprocesador, la falta de ambigüedad microprocesador, arquitectura de es una propiedad esencial. Los métodos computadora de pila, notación Z, TAM formales pueden ayudar a los (Triangle Abstract Machine). diseñadores a identificar inconsistencias en las especificaciones de un sistema I. INTRODUCTION dado. Este artículo presenta una descripción formal de un subconjunto del The precise and unambiguous conjunto de instrucciones de la modeling of system properties and arquitectura Triangle Abstract Machine behavior is one of the benefits of using (TAM) en Z. TAM es una máquina abstracta adecuada para la formal specification languages [19]. implementación de lenguajes de For a microprocessor architecture, programación tipo Algol estructurados en unambiguity is an essential property. bloques, como Pascal, Modula , Oberon y Formal methods can help designers to Triangle. La arquitectura de TAM se basa identify inconsistencies in a given en la pila, lo que simplifica la generación system’s specification, and when used de código. La notación matemática de Z y in early development stages, they can la estructura de su esquema ayudan a help to avoid costly design flaws likely describir instrucciones lógicas y to appear later in the testing stages aritméticas y también proporcionan [30]. Finding bugs the late stages of 31 hardware design development is very Section II provides an overview of part expensive; for instance, the FDIV bug of the required background. The in the Intel Pentium processor had a memory and registers of TAM are quantified cost of over $400 million specified in Section III, while most of [13]. the instruction set for TAM are specified in Section IV. Section V deals On the other hand, documentation for with the loading of programs and the microprocessor instruction sets is initial state of the TAM machine. usually distributed in tables, semi- Finally, Section VII presents the formal formulae, and informal text [2], conclusions and the sketches’ future whereas a formal language work. specification of the microprocessor architecture ensures unambiguity of II. BACKGROUND the documentation and enables verification. The stack has a long and multi-faceted tradition in Computing: as a The Z-formal specification language is mechanism for carrying procedure or based on set theory and mathematical call and return function [1], as a natural logic [26], [31]. This paper uses Z to way for describing syntax analysis specify a subset of the Triangle methods and program translation Abstract Machine (TAM) instruction [24], [16], and as the basis of most set as described in [28]. Arithmetic and techniques for the implementation of Boolean instructions are modeled recursion [5], among others. using common mathematical logic concepts while more complex E.W. Dijkstra and J.A. Zonneveld instructions—that involve memory solved the challenges of implementing accesses and stack manipulation— recursive procedures and functions— require the definition of a model to with their corresponding parameter- access the memory, the stack, and the passing mechanisms—in a block- registers. structured language setting in the first working compiler for Algol 60 [9]. That 32 work inspired the design of several real via interpretation can help to provide computer architectures that would use early feedback on the processor’s stacks in support of high-level desired behavior and assist in porting programming languages [6], more a language’s implementation to prominently, those by Burroughs [29]. diverse hardware architectures. The Over the years, register computer interpreter’s code can be instructive to architectures with complex instruction learners of the programming language sets (CISC) or reduced instruction sets implementation. (RISC) have tended to dominate the Formal specification languages offer market, yet stack computer an abstract, unbiased, and precise architectures have survived and alternative for modeling and thrived as abstract machines hat specifying computational systems, simplify compiler code generation such as computer architectures, using algorithms and ease a programming discrete mathematical structures. language’s portability [17], [18]. Their logic-mathematical foundation Both in academia and industry, opens the opportunity for proving “abstract” and “virtual” machines have properties of the models and been variously proposed. Of special specification documents, while it also attention are the Pascal ETH P- opens the opportunity for correct-by- System and the UCSD Pascal which construction and provably- correct use variants of Wirth’s P-machine implementation [3]. suitable for efficient compilation and Z is a formal specification language interpretation of Pascal- like developed by Oxford University’s programming languages [22], and the Programming Research Group in the Java Virtual Machine (JVM) [20]. early 1980s [21]. It is based on Abstract machines can be Zermelo Fränkel axiomatic set theory implemented in hardware circuits, in and first-order predicate logic [23]. software interpreters or translators, or Using Z, mathematical objects and combinations of both. The software their properties can be collected implementation of an abstract machine together in schemas [31]. A 33 characteristic feature of Z is the use of integrated processor for enhanced types. Every object in the reliability) microprocessor chip. mathematical language has a unique The Triangle Abstract Machine (TAM) type, represented as a maximal set in was designed as a vehicle to explain the current specification [31]. A tutorial high-level programming language introduction to the Z notation can be implementation techniques typically found within the Reference Manual used in compilers and interpreters written by Spivey [26]. [27]. TAM’s instruction set Other works have specified architecture, memory organization, microprocessors architectures using and addressing modes are explained formal specification languages. For informally and via interpreters written instance, in [2] the 8-bit Motorola 6800 in Pascal [27] or Java [28]. TAM’s microprocessor instruction set was architecture is simple, yet powerful specified using Z. This specification enough as a natural target of code- defines low-level concepts such as bits generation algorithms for imperative and words. The work described in this and object-oriented languages. paper uses a higher level of Although TAM’s interpreters are abstraction; all addresses, readily understandable, they are instructions, and data are specified as concrete representations in particular natural numbers instead. In [14], the programming languages after all. A design and verification of the FM8501 programming-language independent are presented, where several formulas description, precise and abstract, are used to verify the system. The Intel opens opportunities for analysis and 8085 microprocessor is specified in design. This research uses Z because [11] using algebra. A higher-order logic it makes the specification readable language (HOL) is used in [15] to and formally verifiable [12].
Load more

Recommended publications
  • Lazy Threads Compiler and Runtime Structures For
    Lazy Threads Compiler and Runtime Structures for FineGrained Parallel Programming by Seth Cop en Goldstein BSE Princeton University MSE University of CaliforniaBerkeley A dissertation submitted in partial satisfaction of the requirements for the degree of Do ctor of Philosophy in Computer Science in the GRADUATE DIVISION of the UNIVERSITY of CALIFORNIA at BERKELEY Committee in charge Professor David E Culler Chair Professor Susan L Graham Professor Paul McEuen Professor Katherine A Yelick Fall Abstract Lazy Threads Compiler and Runtime Structures for FineGrained Parallel Programming by Seth Cop en Goldstein Do ctor of Philosophy in Computer Science University of California Berkeley Professor David E Culler Chair Many mo dern parallel languages supp ort dynamic creation of threads or require multithreading in their implementations The threads describ e the logical parallelism in the program For ease of expression and b etter resource utilization the logical parallelism in a program often exceeds the physical parallelism of the machine and leads to applications with many negrained threads In practice however most logical threads need not b e indep endent threads Instead they could b e run as sequential calls which are inherently cheap er than indep endent threads The challenge is that one cannot generally predict which logical threads can b e implemented as sequential calls In lazy multithreading systems each logical thread b egins execution sequentially with the attendant ecientstack management and direct transfer of control and data
    [Show full text]
  • Performance Portability Libraries
    The Heterogeneous Computing Revolution Felice Pantaleo CERN - Experimental Physics Department [email protected] 1 A reminder that… CPU evolution is not B. Panzer able to cope with the increasing demand of performance 2 …CMS is in a computing emergency • Performance demand will increase substantially at HL-LHC • an order of magnitude more CPU performance offline and online 3 Today • High Level Trigger • readout of the whole detector with full granularity, based on the CMS software, running on 30,000 CPU cores • Maximum average latency is ~600ms with HT 4 The CMS Trigger in Phase 2 • Level-1 Trigger output rate will increase to 750 kHz (7.5x) • Pileup will increase by a factor 3x-4x • The reconstruction of the new highly granular Calorimeter Endcap will contribute substantially to the required computing resources • Missing an order of magnitude in computing performance 5 The Times They Are a-Changin' Achieving sustainable HEP computing requires change Long shutdown 2 represents a good opportunity to embrace a paradigm shift towards modern heterogeneous computer architectures and software techniques: • Heterogeneous Computing • Machine Learning Algorithms and Frameworks The acceleration of algorithms with GPUs is expected to benefit: • Online computing: decreasing the overall cost/volume of the event selection farm, or increasing its discovery potential/throughput • Offline computing: enabling software frameworks to execute efficiently on HPC centers and saving costs by making WLCG tiers heterogeneous • Volunteer computing: making use of accelerators that are already available on the volunteers’ machines Patatrack • Patatrack is a software R&D incubator • Born in 2016 by a very small group of passionate people • Interests: algorithms, HPC, heterogeneous computing, machine learning, software engineering • Lay the foundations of the CMS online/offline heterogeneous reconstruction starting from 2020s 8 and it’s growing fast 9 Why should our community care? • Accelerators are becoming ubiquitous • Driven by more complex and deeper B.
    [Show full text]
  • A Practical Quantum Instruction Set Architecture
    A Practical Quantum Instruction Set Architecture Robert S. Smith, Michael J. Curtis, William J. Zeng Rigetti Computing 775 Heinz Ave. Berkeley, California 94710 Email: {robert, spike, will}@rigetti.com IV Quil Examples 9 Abstract—We introduce an abstract machine archi- IV-A Quantum Fourier Transform . .9 tecture for classical/quantum computations—including compilation—along with a quantum instruction lan- IV-B Variational Quantum Eigensolver . .9 guage called Quil for explicitly writing these computa- tions. With this formalism, we discuss concrete imple- IV-B1 Static Implementation . .9 mentations of the machine and non-trivial algorithms IV-B2 Dynamic Implementation . 10 targeting them. The introduction of this machine dove- tails with ongoing development of quantum computing technology, and makes possible portable descriptions V Forest: A Quantum Programming Toolkit 10 of recent classical/quantum algorithms. Keywords— quantum computing, software architecture V-A Overview . 10 V-B Applications and Tools . 11 Contents V-C Quil Manipulation . 11 I Introduction 1 V-D Compilation . 11 V-E Instruction Parallelism . 12 II The Quantum Abstract Machine 2 V-F Rigetti Quantum Virtual Machine . 12 II-A Qubit Semantics . .2 II-B Quantum Gate Semantics . .3 VI Conclusion 13 II-C Measurement Semantics . .4 VII Acknowledgements 13 III Quil: a Quantum Instruction Language 5 III-A Classical Addresses and Qubits . .5 Appendix 13 III-B Numerical Interpretation of Classical A The Standard Gate Set . 13 Memory Segments . .5 B Prior Work . 13 III-C Static and Parametric Gates . .5 B1 Embedded Domain- III-D Gate Definitions . .6 Specific Languages . 13 III-E Circuits . .6 B2 High-Level QPLs .
    [Show full text]
  • The Implementation of Prolog Via VAX 8600 Microcode ABSTRACT
    The Implementation of Prolog via VAX 8600 Microcode Jeff Gee,Stephen W. Melvin, Yale N. Patt Computer Science Division University of California Berkeley, CA 94720 ABSTRACT VAX 8600 is a 32 bit computer designed with ECL macrocell arrays. Figure 1 shows a simplified block diagram of the 8600. We have implemented a high performance Prolog engine by The cycle time of the 8600 is 80 nanoseconds. directly executing in microcode the constructs of Warren’s Abstract Machine. The imulemention vehicle is the VAX 8600 computer. The VAX 8600 is a general purpose processor Vimal Address containing 8K words of writable control store. In our system, I each of the Warren Abstract Machine instructions is implemented as a VAX 8600 machine level instruction. Other Prolog built-ins are either implemented directly in microcode or executed by the general VAX instruction set. Initial results indicate that. our system is the fastest implementation of Prolog on a commercrally available general purpose processor. 1. Introduction Various models of execution have been investigated to attain the high performance execution of Prolog programs. Usually, Figure 1. Simplified Block Diagram of the VAX 8600 this involves compiling the Prolog program first into an intermediate form referred to as the Warren Abstract Machine (WAM) instruction set [l]. Execution of WAM instructions often follow one of two methods: they are executed directly by a The 8600 consists of six subprocessors: the EBOX. IBOX, special purpose processor, or they are software emulated via the FBOX. MBOX, Console. and UO adamer. Each of the seuarate machine language of a general purpose computer.
    [Show full text]
  • GPU As a Prototype for Next Generation Supercomputer Viktor K
    GPU as a Prototype for Next Generation Supercomputer Viktor K. Decyk and Tajendra V. Singh UCLA Abstract The next generation of supercomputers will likely consist of a hierarchy of parallel computers. If we can define each node as a parameterized abstract machine, then it is possible to design algorithms even if the actual hardware varies. Such an abstract machine is defined by the OpenCL language to consist of a collection of vector (SIMD) processors, each with a small shared memory, communicating via a larger global memory. This abstraction fits a variety of hardware, such as Graphical Processing Units (GPUs), and multi-core processors with vector extensions. To program such an abstract machine, one can use ideas familiar from the past: vector algorithms from vector supercomputers, blocking or tiling algorithms from cache-based machines, and domain decomposition from distributed memory computers. Using the OpenCL language itself is not necessary. Examples from our GPU Particle-in-Cell code will be shown to illustrate this approach. Sunday, May 13, 2012 Outline of Presentation • Abstraction of future computer hardware • Short Tutorial on Cuda Programming • Particle-in-Cell Algorithm for GPUs • Performance Results on GPU • Other Parallel Languages Sunday, May 13, 2012 Revolution in Hardware Many new architectures • Multi-core processors • SIMD accelerators, GPUs • Low power embedded processors, FPGAs • Heterogeneous processors (co-design) Driven by: • Increasing shared memory parallelism, since clock speed is not increasing • Low power computing
    [Show full text]
  • Copyright © IEEE. Citation for the Published Paper
    Copyright © IEEE. Citation for the published paper: This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of BTH's products or services Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by sending a blank email message to [email protected]. By choosing to view this document, you agree to all provisions of the copyright laws protecting it. CudaRF: A CUDA-based Implementation of Random Forests Håkan Grahn, Niklas Lavesson, Mikael Hellborg Lapajne, and Daniel Slat School of Computing Blekinge Institute of Technology SE-371 39 Karlskrona, Sweden [email protected], [email protected] Abstract—Machine learning algorithms are frequently applied where the RF implementation was done using Direct3D and in data mining applications. Many of the tasks in this domain the high level shader language (HLSL). concern high-dimensional data. Consequently, these tasks are of- In this paper, we present a parallel CUDA-based imple- ten complex and computationally expensive. This paper presents a GPU-based parallel implementation of the Random Forests mentation of the Random Forests algorithm. The algorithm algorithm. In contrast to previous work, the proposed algorithm is experimentally evaluated on a NVIDIA GT220 graphics is based on the compute unified device architecture (CUDA). An card with 48 CUDA cores and 1 GB of memory. The perfor- experimental comparison between the CUDA-based algorithm mance is compared with two state-of-the-art implementations (CudaRF), and state-of-the-art Random Forests algorithms (Fas- of Random Forests: LibRF [8] and FastRF in Weka [9].
    [Show full text]
  • Multicore Semantics and Programming Mark Batty
    Multicore Semantics and Programming Mark Batty University of Cambridge January, 2013 – p.1 These Lectures Semantics of concurrency in multiprocessors and programming languages. Establish a solid basis for thinking about relaxed-memory executions, linking to usage, microarchitecture, experiment, and semantics. x86, POWER/ARM, C/C++11 Today: x86 – p.2 Inventing a Usable Abstraction Have to be: Unambiguous Sound w.r.t. experimentally observable behaviour Easy to understand Consistent with what we know of vendors intentions Consistent with expert-programmer reasoning – p.3 Inventing a Usable Abstraction Key facts: Store buffering (with forwarding) is observable IRIW is not observable, and is forbidden by the recent docs Various other reorderings are not observable and are forbidden These suggest that x86 is, in practice, like SPARC TSO. – p.4 x86-TSO Abstract Machine Thread Thread Write Buffer Write Buffer Lock Shared Memory – p.5 SB, on x86 Thread 0 Thread 1 MOV [x] 1 (write x=1) MOV [y] 1 (write y=1) ← ← MOV EAX [y] (read y) MOV EBX [x] (read x) ← ← Thread Thread Write Buffer Write Buffer Lock x=0 Shared Memory y= 0 – p.6 SB, on x86 Thread 0 Thread 1 MOV [x] 1 (write x=1) MOV [y] 1 (write y=1) ← ← MOV EAX [y] (read y) MOV EBX [x] (read x) ← ← Thread Thread t0:W x=1 Write Buffer Write Buffer Lock x= 0 Shared Memory y= 0 – p.6 SB, on x86 Thread 0 Thread 1 MOV [x] 1 (write x=1) MOV [y] 1 (write y=1) ← ← MOV EAX [y] (read y) MOV EBX [x] (read x) ← ← Thread Thread Write Buffer Write Buffer (x,1) Lock x= 0 Shared Memory y= 0 – p.6 SB, on x86 Thread
    [Show full text]
  • The Abstract Machine a Pattern for Designing Abstract Machines
    The Abstract Machine A Pattern for Designing Abstract Machines Julio García-Martín Miguel Sutil-Martín Universidad Politécnica de Madrid1. Abstract Because of the increasing gap between modern high-level programming languages and existing hardware, it has often become necessary to introduce intermediate languages and to build abstract machines on top of the primitive hardware. This paper describes the ABSTRACT- MACHINE, a structural pattern that captures the essential features addressing the definition of abstract machines. The pattern describes both the static and dynamic features of abstract machines as separate components, as well as it considers the instruction set and the semantics for these instructions as other first-order components of the pattern. Intent Define a common template for the design of Abstract Machines. The pattern captures the essential features underlying abstract machines (i.e., data area, program, instruction set, etc...), encapsulating them in separated loose-coupled components into a structural pattern. Furthermore, the proposal provides the collaboration structures how components of an abstract machine interact. Also known as Virtual Machine, Abstract State Machine. Motivation Nowadays, one of the buzziest of the buzzwords in computer science is Java. Though to be an object- oriented language for the development of distributed and GUI applications, Java is almost every day adding new quite useful programming features and facilities. As a fact, in the success of Java has been particular significant of Java the use of the virtual machine's technology2. As well known, the Java Virtual Machine (JVM) is an abstract software-based machine that can operate over different microprocessor machines (i.e., hardware independent).
    [Show full text]
  • Abstract Machines for Programming Language Implementation
    Future Generation Computer Systems 16 (2000) 739–751 Abstract machines for programming language implementation Stephan Diehl a,∗, Pieter Hartel b, Peter Sestoft c a FB-14 Informatik, Universität des Saarlandes, Postfach 15 11 50, 66041 Saarbrücken, Germany b Department of Electronics and Computer Science, University of Southampton, Highfield, Southampton SO17 1BJ, UK c Department of Mathematics and Physics, Royal Veterinary and Agricultural University, Thorvaldsensvej 40, DK-1871 Frederiksberg C, Denmark Accepted 24 June 1999 Abstract We present an extensive, annotated bibliography of the abstract machines designed for each of the main programming paradigms (imperative, object oriented, functional, logic and concurrent). We conclude that whilst a large number of efficient abstract machines have been designed for particular language implementations, relatively little work has been done to design abstract machines in a systematic fashion. © 2000 Elsevier Science B.V. All rights reserved. Keywords: Abstract machine; Compiler design; Programming language; Intermediate language 1. What is an abstract machine? next instruction to be executed. The program counter is advanced when the instruction is finished. This ba- Abstract machines are machines because they per- sic control mechanism of an abstract machine is also mit step-by-step execution of programs; they are known as its execution loop. abstract because they omit the many details of real (hardware) machines. 1.1. Alternative characterizations Abstract machines provide an intermediate lan- guage stage for compilation. They bridge the gap The above characterization fits many abstract ma- between the high level of a programming language chines, but some abstract machines are more abstract and the low level of a real machine.
    [Show full text]
  • Distributed Microarchitectural Protocols in the TRIPS Prototype Processor
    Øh Appears in the ¿9 Annual International Symposium on Microarchitecture Distributed Microarchitectural Protocols in the TRIPS Prototype Processor Karthikeyan Sankaralingam Ramadass Nagarajan Robert McDonald Ý Rajagopalan DesikanÝ Saurabh Drolia M.S. Govindan Paul Gratz Divya Gulati Heather HansonÝ ChangkyuKim HaimingLiu NityaRanganathan Simha Sethumadhavan Sadia SharifÝ Premkishore Shivakumar Stephen W. Keckler Doug Burger Department of Computer Sciences ÝDepartment of Electrical and Computer Engineering The University of Texas at Austin [email protected] www.cs.utexas.edu/users/cart Abstract are clients on one or more micronets. Higher-level mi- croarchitectural protocols direct global control across the Growing on-chip wire delays will cause many future mi- micronets and tiles in a manner invisible to software. croarchitectures to be distributed, in which hardware re- In this paper, we describe the tile partitioning, micronet sources within a single processor become nodes on one or connectivity, and distributed protocols that provide global more switched micronetworks. Since large processor cores services in the TRIPS processor, including distributed fetch, will require multiple clock cycles to traverse, control must execution, flush, and commit. Prior papers have described be distributed, not centralized. This paper describes the this approach to exploiting parallelism as well as high-level control protocols in the TRIPS processor, a distributed, tiled performanceresults [15, 3], but have not described the inter- microarchitecture that supports dynamic execution. It de- tile connectivity or protocols. Tiled architectures such as tails each of the five types of reused tiles that compose the RAW [23] use static orchestration to manage global oper- processor, the control and data networks that connect them, ations, but in a dynamically scheduled, distributed archi- and the distributed microarchitectural protocols that imple- tecture such as TRIPS, hardware protocols are required to ment instruction fetch, execution, flush, and commit.
    [Show full text]
  • A Retrospective on the VAX VMM Security Kernel
    IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, VOL. 17, NO. 11, NOVEMBER 1991 1147 A Retrospective on the VAX VMM Security Kernel Paul A. Karger, Member, IEEE, Mary Ellen Zurko, Douglas W. Bonin, Andrew H. Mason, and Clifford E. Kahn Abstract-This paper describes the development of a virtual- Attempting to meet all of these goals, represented a very machine monitor (VMM) security kernel for the VAX archi- ambitious undertaking, because no system had ever simulta- tecture. The paper particularly focuses on how the system’s neously met the security, performance, and software compati- hardware, microcode, and software are aimed at meeting Al-level security requirements while maintaining the standard interfaces bility goals. Indeed, very few systems have ever met just the and applications of the VMS and ULTRIX-32 operating systems. security goal, as most so-called secure systems have proven The VAX Security Kernel supports multiple concurrent virtual to be easily penetrable [l]. machines on a single VAX system, providing isolation and con- trolled sharing of sensitive data. Rigorous engineering standards were applied during development to comply with the assurance 11. BACKGROUND requirements for verification and configuration management. This section presents a brief summary of the basics of The VAX Security Kernel has been developed with a heavy computer security as background for the remainder of the emphasis on performance and system management tools. The kernel performs sufficiently well that much of its development paper. Most secure systems are based on an abstract notion was carried out in virtual machines running on the kernel itself, of subjects and objects. The secure system must mediate rather than in a conventional time-sharing system.
    [Show full text]
  • Deriving an Abstract Machine for Strong Call by Need
    Deriving an Abstract Machine for Strong Call by Need Małgorzata Biernacka Institute of Computer Science, University of Wrocław, Poland [email protected] Witold Charatonik Institute of Computer Science, University of Wrocław, Poland [email protected] Abstract Strong call by need is a reduction strategy for computing strong normal forms in the lambda calculus, where terms are fully normalized inside the bodies of lambda abstractions and open terms are allowed. As typical for a call-by-need strategy, the arguments of a function call are evaluated at most once, only when they are needed. This strategy has been introduced recently by Balabonski et al., who proved it complete with respect to full β-reduction and conservative over weak call by need. We show a novel reduction semantics and the first abstract machine for the strong call-by-need strategy. The reduction semantics incorporates syntactic distinction between strict and non-strict let constructs and is geared towards an efficient implementation. It has been defined within the framework of generalized refocusing, i.e., a generic method that allows to go from a reduction semantics instrumented with context kinds to the corresponding abstract machine; the machine is thus correct by construction. The format of the semantics that we use makes it explicit that strong call by need is an example of a hybrid strategy with an infinite number of substrategies. 2012 ACM Subject Classification Theory of computation → Lambda calculus; Theory of computa- tion → Operational semantics Keywords and phrases abstract machines, reduction semantics Digital Object Identifier 10.4230/LIPIcs.FSCD.2019.8 Funding This research is supported by the National Science Centre of Poland, under grant number 2014/15/B/ST6/00619.
    [Show full text]