This course provides a hands-on introduction to formal methods for software engineering. The purpose of formal methods is to enable the construction of highly reliable software. Their foundation is the precise specification of run-time properties that a software system is expected to satisfy. Formal methods are concerned with specifications that are precise for being stated in languages endowed with a formal syntax, semantics, and theory. Formality helps the specification process in at least two ways:
As we will see, formal specification techniques allow for the construction of highly automated verification tools that help software developers analyze specifications and corresponding code, looking for errors in requirements, models, designs, and implementations.
We will study a few techniques for formal software development, spanning the whole development process: from high-level semantic modeling to coding and debugging. The study will not be done in the abstract, however, but through the use of actual tools supporting these techniques. In this course, students will
Students should be prepared to put in considerable time and effort into reading to become familiar with the course's topics, and into homework and exercises to gain experience with the techniques seen in class.
Students are invited to drop by during the hours listed below to discuss questions about the course material or concerns. The instructors are also available by appointment if you are unable to attend the scheduled drop-in hours.
Prof: Tue 2:15pm-3:15pm (office only), Wed 11:30pm-12:30pm (Zoom only), Thu 4:00pm-5pm (office only), and by appointment. Zoom: 884 316 858.
TA: Mon 4:00pm-5:00pm, Thu 1:00pm-2:00pm, Fri 9:00am-10:00am, and by appointment (all times Zoom only). Zoom: 991 287 672 63
Program Proofs
by K. Rustan Leino. MIT Press, 2023.
Weekly readings and exercises will be posted in the Lectures section and updated as the course progresses. Readings will include various class notes and handouts, papers on formal software specification and verification, and material on how to use the specification/verification tools adopted in the course.
The formalisms used in this class are ultimately based on propositional logic and on first-order logic (aka, predicate calculus). Links to background reading material on that will also be available on the course website.
You may find it useful to use your account on the CS remote servers which have a working installation of some of the software tools used in this course. Instructions on how to access those machines, on-site or remotely, and use the installed software are provided on the course website.
Alternatively, you are welcome to use your own computer for course work but you are responsible for installing any necessary software. We regret that maybe not be able to provide assistance for any problems with your own installation.
Several exercises will be given during the course of the semester, some of them during lecture, covering the material from the readings and the lectures. All of these exercises are required although only some of them may be collected and graded.
There will be six graded homework assignments: three introductory assignments, to be done individually, and three mini-projects, to be done in teams of 2 people.
For the mini-projects, every team member will be expected to be involved in all aspects of the assignment (no dividing up the work). The whole team is responsible for the work submitted. Although the work is shared, each students will received an individualized grade. Team members will be asked to submit an evaluation of how well they and their teammates performed as team members. Each evaluation is confidential and will be be incorporated into the calculation of the individual grade.
Each student is responsible for contacting other students and form a team. The discussion forum on Piazza can be use to establish initial contacts. It is okay to form different teams for each project. Teams of 1 are accepted but not encouraged. In particular, no reduction of work will be granted to them.
There will be one midterm exam and one final exam. They will be both on campus for the UI students and both online for the Grinnell students. The midterm will be held during class time. The final exam will be held during exam week as per university schedule. The midterm exam will cover material from approximately half of the course, including information presented in lecture, and the assigned readings. The final will be comprehensive. Both exams will test student's knowledge of basic concepts, terms, and general techniques discussed in the course. More information will be posted on the Exams section at least a week before the exam. In preparation for each exam, it is strongly recommended that students complete all the readings, exercises, and homework assigned until then.
Regular and prompt attendance is expected for this course. Since a substantial percentage of your grade (10%) will be based on class attendance and participation, it is in your interest to attend every class and be ready to make significant contributions to in-class discussions. Participation includes being up to date with the course readings so as to be able to answer questions from the instructor and actively contribute to the solution of in-class exercises.
The weighting of items in grade determination will be the following:
Grades are not curved in this course. It is theoretically possible for everyone in the class to get an A (or an F). Your final grade depends only on your own final score and not on that of others.
The University of Iowa expects students to set high academic standards for themselves and work hard towards achieving them. You can achieve true academic excellence only through dedicated work. An average workload of 6 hours a week besides class attendance should be considered the norm for this course. More effort might be needed depending on your background, predisposition and academic ambition.
All students in CLAS courses are expected to abide by the CLAS Code of Academic Honesty. In particular, under no circumstances should you pass off someone else's work as your own. Undergraduate academic misconduct will be reported by instructors to CLAS according to these procedures. Graduate academic misconduct will be reported to the Graduate College according to Section F of the Graduate College Manual.
This course assumes that work submitted by students will be generated by the students themselves, working individually or in groups. This means that the following will be considered violations of academic integrity: a student has another person/entity do the writing of any substantive portion of an assignment or exam for them; this includes hiring a person or a company to write homework or exam solutions, and using artificial intelligence applications like ChatGPT.
Exams: The midterm and final exams are individual tests. Each student must complete them without any help from others. Exam answers showing strong similarities and/or duplication will receive a fail grade and the students involved will be reported to the Department and the College.
If you are unclear about what constitutes academic dishonesty bit is your responsibility to contact the instructors or consult the CLAS policy (online version). Be aware that repeated academic dishonesty offenses lead to suspension or expulsion from the University.
