Publications by André Platzer (BibTeX)

BibTeX Database Entries

               China, August 3-9, 2013},
  publisher = {IJCAI/AAAI},
  isbn      = {},
  eprint    = {},
  author    = {Erik P. Zawadzki and
               Andr{\'{e}} Platzer and
               Geoffrey J. Gordon},
  title     = {A Generalization of {SAT} and {\#{SAT}}
               for Policy Evaluation},
  number    = {CMU-CS-13-107},
  year      = {2013},
  month     = {},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Stefan Mitsch and
               Khalil Ghorbal and
               Andr{\'{e}} Platzer},
  title     = {On Provably Safe Obstacle Avoidance for
               Autonomous Robotic Ground Vehicles},
  booktitle = {Robotics: Science and Systems},
  year      = {2013},
  editor    = {Paul Newman and
               Dieter Fox and
               David Hsu},
  longbooktitle = {Robotics: Science and Systems IX,
               Technische Universit{\"a}t Berlin, 
               Berlin, Germany, June 24 - June 28, 
  isbn      = {978-981-07-3937-9},
  doi       = {10.15607/RSS.2013.IX.014},
  author    = {Paolo Zuliani and
               Andr{\'{e}} Platzer and
               Edmund M. Clarke},
  title     = {Bayesian Statistical Model Checking with
               Application to {Simulink/Stateflow}
  journal   = {Formal Methods in System Design},
  volume    = {43},
  number    = {2},
  year      = {2013},
  pages     = {338-367},
  doi       = {10.1007/s10703-013-0195-3},
  issn      = {0925-9856},
  keywords  = {Probabilistic verification, Hybrid systems,
               Stochastic systems, Statistical model
               checking, Hypothesis testing, Estimation},
  abstract  = {
        We address the problem of model checking
        stochastic systems, i.e., checking whether a
        stochastic system satisfies a certain temporal
        property with a probability greater (or smaller)
        than a fixed threshold. In particular, we present
        a Statistical Model Checking (SMC) approach based
        on Bayesian statistics. We show that our approach
        is feasible for a certain class of hybrid systems
        with stochastic transitions, a generalization of
        Simulink/Stateflow models. Standard approaches to
        stochastic discrete systems require numerical
        solutions for large optimization problems and
        quickly become infeasible with larger state
        spaces. Generalizations of these techniques to
        hybrid systems with stochastic effects are even
        more challenging. The SMC approach was pioneered
        by Younes and Simmons in the discrete and
        non-Bayesian case. It solves the verification
        problem by combining randomized sampling of system
        traces (which is very efficient for
        Simulink/Stateflow) with hypothesis testing (i.e.,
        testing against a probability threshold) or
        estimation (i.e., computing with high probability
        a value close to the true probability). We believe
        SMC is essential for scaling up to large
        Stateflow/Simulink models. While the answer to the
        verification problem is not guaranteed to be
        correct, we prove that Bayesian SMC can make the
        probability of giving a wrong answer arbitrarily
        small. The advantage is that answers can usually
        be obtained much faster than with standard,
        exhaustive model checking techniques. We apply our
        Bayesian SMC approach to a representative example
        of stochastic discrete-time hybrid system models
        in Stateflow/Simulink: a fuel control system
        featuring hybrid behavior and fault tolerance. We
        show that our technique enables faster
        verification than state-of-the-art statistical
        techniques. We emphasize that Bayesian SMC is by
        no means restricted to Stateflow/Simulink models.
        It is in principle applicable to a variety of
        stochastic models from other domains, e.g.,
        systems biology.
  author    = {Sarah M. Loos and
               David Witmer and
               Peter Steenkiste and
               Andr{\'{e}} Platzer},
  title     = {Efficiency Analysis of Formally
               Verified Adaptive Cruise Controllers},
  booktitle = {ITSC},
  longbooktitle = {Intelligent Transportation Systems
              (ITSC), 16th International IEEE
              Conference on, October 6-9, The
              Hague, Netherlands, Proceedings},
  year      = {2013},
  pages     = {1565-1570},
  doi       = {10.1109/ITSC.2013.6728453},
  editor    = {Andreas Hegyi and
               Bart De Schutter},
  isbn      = {978-1-4799-2914-613},
  keywords  = {Traffic theory for ITS, Network
               modeling, Driver assistance systems,
               V2V wireless communication,
               Hybrid systems, Formal verification},
  abstract  = {

  We consider an adaptive cruise control system
in which control decisions are made based on position
and velocity information received from other vehicles
via V2V wireless communication. If the vehicles
follow each other at a close distance, they have
better wireless reception but collisions may occur
when a follower car does not receive notice about the
decelerations of the leader car fast enough to react
before it is too late. If the vehicles are farther
apart, they would have a bigger safety margin, but
the wireless communication drops out more often, so
that the follower car no longer receives what the
leader car is doing. In order to guarantee safety,
such a system must return control to the driver if it
does not receive an update from a nearby vehicle
within some timeout period. The value of this timeout
parameter encodes a tradeoff between the likelihood
that an update is received and the maximum safe
acceleration. Combining formal verification
techniques for hybrid systems with a wireless
communication model, we analyze how the expected
efficiency of a provably-safe adaptive cruise control
syst em is affected by the value of this timeout.
  author    = {Khalil Ghorbal and
               Andr{\'{e}} Platzer},
  title     = {Characterizing Algebraic Invariants by
               Differential Radical Invariants},
  booktitle = {TACAS},
  year      = {2014},
  pages     = {279-294},
  doi       = {10.1007/978-3-642-54862-8_19},
  editor    = {Erika {\'A}brah{\'a}m and
               Klaus Havelund},
  longbooktitle = {Tools and Algorithms for the Construction
               and Analysis of Systems - 20th International
               Conference, TACAS 2014, Held as Part of the
               European Joint Conferences on Theory and
               Practice of Software, ETAPS 2014, Grenoble,
               France, April 5-13, 2014. Proceedings},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {8413},
  isbn      = {978-3-642-54861-1},
  author    = {Khalil Ghorbal and
               Andr{\'{e}} Platzer},
  title     = {Characterizing Algebraic Invariants by
               Differential Radical Invariants},
  number    = {CMU-CS-13-129},
  year      = {2013},
  month     = {},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Stefan Mitsch and
               Jan-David Quesel and
               Andr{\'{e}} Platzer},
  title     = {Refactoring, Refinement, and Reasoning:
               A Logical Characterization for Hybrid
  booktitle = {FM},
  year      = {2014},
  pages     = {481-496},
  doi       = {10.1007/978-3-319-06410-9_33},
  editor    = {Cliff B. Jones and
               Pekka Pihlajasaari and
               Jun Sun},
  longbooktitle = {FM 2014: Formal Methods, 19th
               International Symposium on Formal
               Methods, Singapore, May 12-16, 2014,
  publisher = {Springer},
  volume    = {8442},
  author    = {Yanni Kouskoulas and
               Andr{\'{e}} Platzer and
               Peter Kazanzides},
  title     = {Formal Methods for Robotic System Control
  journal   = {Johns Hopkins APL Technical Digest},
  volume    = {32},
  number    = {2},
  year      = {2013},
  pages     = {490-498},
  eprint = {},
  author    = {Andr\'e Platzer},
  title     = {Foundations of Cyber-Physical Systems},
  year      = {2013},
  howpublished = {Lecture Notes 15-424/624,
               Carnegie Mellon University},
  url = {}
  author    = {Erik P. Zawadzki and
               Geoffrey J. Gordon and
               Andr{\'{e}} Platzer},
  title     = {A Projection Algorithm for Strictly Monotone
               Linear Complementarity Problems},
  booktitle = {6th NIPS Workshop on Optimization for
               Machine Learning},
  year      = {2013},
  eprint    = {},
  author    = {Stefan Mitsch and
               Grant Olney Passmore and
               Andr{\'{e}} Platzer},
  title     = {Collaborative Verification-Driven
               Engineering of Hybrid Systems},
  journal   = {Mathematics in Computer Science},
  volume    = {8},
  number    = {1},
  year      = {2014},
  pages     = {71-97},
  doi       = {10.1007/s11786-014-0176-y},
  author    = {Jean{-}Baptiste Jeannin and
               Andr{\'{e}} Platzer},
  title     = {{dTL$^2$}: Differential Temporal Dynamic
               Logic with Nested Temporalities for
               Hybrid Systems},
  booktitle = {IJCAR},
  year      = {2014},
  pages     = {292-306},
  doi       = {10.1007/978-3-319-08587-6_22},
  editor    = {St{\'e}phane Demri and
               Deepak Kapur and
               Christoph Weidenbach},
  longbooktitle = {Automated Reasoning - 7th International
               Joint Conference, IJCAR 2014, Held as Part
               of the Vienna Summer of Logic, VSL 2014,
               Vienna, Austria, July 19-22, 2014.
  publisher = {Springer},
  series    = {LNCS},
  subseries = {LNAI},
  volume    = {8562},
  isbn      = {978-3-319-08586-9},
  author    = {Akshay Rajhans and
               Ajinkya Bhave and
               Ivan Ruchkin and
               Bruce H. Krogh and
               David Garlan and
               Andr{\'{e}} Platzer and
               Bradley Schmerl},
  title     = {Supporting Heterogeneity in Cyber-Physical
               Systems Architectures},
  journal   = {IEEE Transactions on Automatic Control},
  year      = {2014},
  volume    = {59},
  number    = {12},
  pages     = {3178-3193},
  doi       = {10.1109/TAC.2014.2351672},
  author    = {Khalil Ghorbal and
               Andrew Sogokon and
               Andr{\'{e}} Platzer},
  title     = {Invariance of Conjunctions of Polynomial
               Equalities for Algebraic Differential
  booktitle = {SAS},
  year      = {2014},
  pages     = {151-167},
  editor    = {Markus M{\"u}ller-Olm and
               Helmut Seidl},
  longbooktitle = {Static Analysis - 21th International
               Symposium, SAS 2014, Munich, Germany,
              September 11-13, 2014. Proceedings},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {8723},
  isbn      = {978-3-319-10935-0},
  doi       = {10.1007/978-3-319-10936-7_10}
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {{ModelPlex}: Verified Runtime Validation
               of Verified Cyber-Physical System Models},
  number    = {CMU-CS-14-121},
  year      = {2014},
  month     = {},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {{ModelPlex}: Verified Runtime Validation
               of Verified Cyber-Physical System Models},
  booktitle = {RV},
  year      = {2014},
  pages     = {199-214},
  doi       = {10.1007/978-3-319-11164-3_17},
  editor    = {Borzoo Bonakdarpour and
               Scott A. Smolka},
  longbooktitle = {Runtime Verification - 5th 
               International Conference, RV
               2014, Toronto, ON, Canada, September 22--25,
               2014. Proceedings},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {8734},
  author    = {Stefan Mitsch and
               Jan-David Quesel and
               Andr{\'{e}} Platzer},
  title      = {From Safety to Guilty \& from Liveness to Niceness},
  editor     = {Calin Belta and
                Hadas Kress-Gazit},
  booktitle  = {5th Workshop on Formal Methods for Robotics and Automation},
  year       = {2014},
  doi        = {10.1184/R1/6605882.v1},
  author    = {Khalil Ghorbal and
               Jean{-}Baptiste Jeannin and
               Erik P. Zawadzki and
               Andr{\'{e}} Platzer and
               Geoffrey J. Gordon and
               Peter Capell},
  title     = {Hybrid Theorem Proving of Aerospace Systems:
               Applications and Challenges},
  journal   = {Journal of Aerospace Information Systems},
  volume    = {11},
  number    = {10},
  pages     = {702-713},
  year      = {2014},
  doi       = {10.2514/1.I010178},
  author    = {Andr{\'{e}} Platzer},
  title     = {Analog and Hybrid Computation: Dynamical Systems and Programming Languages},
  journal   = {Bulletin of the {EATCS}},
  year      = {2014},
  volume    = {114},
  eprint    = {},
  author    = {Khalil Ghorbal and
               Andrew Sogokon and
               Andr{\'{e}} Platzer},
  title     = {A Hierarchy of Proof Rules for Checking
               Differential Invariance of Algebraic Sets},
  booktitle = {VMCAI},
  year      = {2015},
  pages     = {431-448},
  doi       = {10.1007/978-3-662-46081-8_24},
  editor    = {Deepak D'Souza and
               Akash Lal and
               Kim Guldstrand Larsen},
  longbooktitle = {Verification, Model Checking, and Abstract
               Interpretation - 16th International Conference,
               {VMCAI} 2015, Mumbai, India, January 12-14, 2015,
  series    = {LNCS},
  volume    = {8931},
  publisher = {Springer},
  author    = {Sarah M. Loos and
               Andr{\'{e}} Platzer},
  title     = {Teaching Cyber-Physical Systems with Logic},
  year      = {2014},
  note      = {Manuscript},
  author    = {Jean{-}Baptiste Jeannin and
               Khalil Ghorbal and
               Yanni Kouskoulas and
               Ryan Garnder and
               Aurora Schmidt and
               Erik Zawadzki and
               Andr{\'{e}} Platzer},
  title     = {A Formally Verified Hybrid System for the
               Next-Generation Airborne Collision Avoidance System},
  number    = {CMU-CS-14-138},
  year      = {2014},
  month     = {},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Andr\'e Platzer},
  title     = {Foundations of Cyber-Physical Systems},
  year      = {2014},
  howpublished = {Lecture Notes 15-424/624,
               Carnegie Mellon University},
  url = {}
  author    = {Jan-David Quesel and
               Stefan Mitsch and
               Sarah Loos and
               Nikos Ar{\'e}chiga and
               Andr{\'{e}} Platzer},
  title     = {How to Model and Prove Hybrid Systems
               with {KeYmaera}:
               A Tutorial on Safety},
  journal   = {STTT},
  year      = {2016},
  volume    = {18},
  number    = {1},
  pages     = {67-91},
  doi       = {10.1007/s10009-015-0367-0},
  author    = {Jean{-}Baptiste Jeannin and
               Khalil Ghorbal and
         Yanni Kouskoulas and
         Ryan Gardner and
         Aurora Schmidt and
         Erik Zawadzki and
               Andr{\'{e}} Platzer},
  title     = {A Formally Verified Hybrid System for the
               Next-generation Airborne Collision Avoidance System},
  booktitle = {TACAS},
  year      = {2015},
  pages     = {21-36},
  doi       = {10.1007/978-3-662-46681-0_2},
  editor    = {Christel Baier and
               Cesare Tinelli},
  longbooktitle = {Tools and Algorithms for the Construction
               and Analysis of Systems - 21st International
         Conference, TACAS 2015, London, UK, April
         11-18, 2015, Proceedings},
  series    = {LNCS},
  volume    = {9035},
  publisher = {Springer},
  author    = {Andr{\'{e}} Platzer},
  title     = {Differential Hybrid Games},
  number    = {CMU-CS-14-102},
  year      = {2014},
  month     = {December},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Andr{\'{e}} Platzer},
  title     = {A Uniform Substitution Calculus 
               for Differential Dynamic Logic},
  booktitle = {CADE},
  longbooktitle = {International Conference on
               Automated Deduction, {CADE-25}, Berlin,
               Germany, Proceedings},
  year      = {2015},
  pages     = {467-481},
  doi       = {10.1007/978-3-319-21401-6_32},
  editor    = {Amy P. Felty and
               Aart Middeldorp},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {9195},
  eprint    = {1503.01981}
  author    = {Nathan Fulton and
               Stefan Mitsch and
               Jan-David Quesel and
               Marcus V{\"o}lp and
               Andr{\'{e}} Platzer},
  title     = {{KeYmaera X}: An Axiomatic Tactical Theorem Prover
               for Hybrid Systems},
  booktitle = {CADE},
  longbooktitle = {International Conference on Automated
               Deduction, {CADE-25}, Berlin, Germany, Proceedings},
  year      = {2015},
  pages     = {527--538},
  doi       = {10.1007/978-3-319-21401-6_36},
  editor    = {Amy P. Felty and
               Aart Middeldorp},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {9195},
  author    = {Annika Peterson},
  title     = {Formal Verification of a Controlled
        Flight Between Two Robots: A Case Study},
  howpublished = {Senior thesis,
        Carnegie Mellon University, Computer
        Science Department},
  month  = {May},
  year      = {2015},
  school    = {Carnegie Mellon University,
               Computer Science Department},
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer and
               Werner Retschitzegger and
               Wieland Schwinger},
  title     = {Logic-based Modeling Approaches for Qualitative and Hybrid Reasoning in Dynamic Spatial Systems},
  journal   = {{ACM} Comput. Surv.},
  volume    = {48},
  number    = {1},
  pages     = {3:1--3:40},
  year      = {2015},
  doi       = {10.1145/2764901}
  author    = {Andr{\'{e}} Platzer},
  title     = {Differential Game Logic},
  journal   = {{ACM} Trans. Comput. Log.},
  volume    = {17},
  number    = {1},
  year      = {2015},
  pages     = {1:1--1:51},
  doi       = {10.1145/2817824},
  issn      = {1529-3785},
  editor    = {Roland Meyer and
               Andr{\'{e}} Platzer and
               Heike Wehrheim},
  title     = {Correct System Design
Symposium in Honor of Ernst-R{\"{u}}diger Olderog on the Occasion of His 60th Birthday Oldenburg, Germany, September 8-9, 2015 Proceedings},
  booktitle = {ERO},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {9360},
  year      = {2015},
  isbn      = {978-3-319-23505-9},
  doi       = {10.1007/978-3-319-23506-6},
  author    = {Jean{-}Baptiste Jeannin and
               Khalil Ghorbal and
               Yanni Kouskoulas and
               Ryan Gardner and
               Aurora Schmidt and
               Erik Zawadzki and
               Andr{\'{e}} Platzer},
  title     = {Formal Verification of {ACAS X},
               an Industrial Airborne Collision Avoidance System},
  booktitle = {EMSOFT},
  year      = {2015},
  pages     = {127-136},
  doi       = {10.1109/EMSOFT.2015.7318268},
  editor    = {Alain Girault and
               Nan Guan},
  longbooktitle = {2015 International Conference on Embedded
               Software, {EMSOFT} 2015, Amsterdam, The
               Netherlands, October 4-9, 2015},
  publisher = {IEEE Press},
  author    = {Nikos Arechiga and
               James Kapinski and
               Jyotirmoy V. Deshmukh and
               Andr{\'{e}} Platzer and
               Bruce H. Krogh},
  title     = {Forward invariant cuts to simplify proofs of safety},
  booktitle = {EMSOFT},
  pages     = {227-236},
  year      = {2015},
  doi       = {10.1109/EMSOFT.2015.7318278},
  editor    = {Alain Girault and
               Nan Guan},
  longbooktitle = {2015 International Conference on
               Embedded Software, {EMSOFT} 2015,
               Amsterdam, The Netherlands, October 4-9,
  publisher = {IEEE},
  isbn      = {978-1-4673-8079-9}
  author    = {Andreas M{\"u}ller and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {Verified Traffic Networks: Component-Based
               Verification of Cyber-Physical Flow Systems}, 
  booktitle = {ITSC},
  longbooktitle={Intelligent Transportation Systems (ITSC),
               2015 IEEE 18th International Conference on},
  year      = {2015},
  pages     = {757-764},
  doi       = {10.1109/ITSC.2015.128},
  keywords  = {Automobiles, Contracts, Load modeling, Mathematical model, Roads, Safety},
  author    = {Andr{\'{e}} Platzer},
  title     = {How to Prove Hybrid Systems and Why That Matters}, 
  booktitle = {ICCSE},
  longbooktitle={2015 International Conference on Complex Systems Engineering (ICCSE)},
  year      = {2015},
  pages     = {},
  doi       = {10.1109/ComplexSys.2015.7385983},
  author    = {Jean{-}Baptiste Jeannin and
               Khalil Ghorbal and
               Yanni Kouskoulas and
               Aurora Schmidt and
               Ryan Gardner and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {A Formally Verified Hybrid System for Safe Advisories in the
               Next-generation Airborne Collision Avoidance System},
  journal   = {STTT},
  longjournal = {International Journal on Software Tools for Technology Transfer},
  year      = {2017},
  volume    = {19},
  number    = {6},
  pages     = {717-741},
  doi       = {10.1007/s10009-016-0434-1},
  author    = {Andrew Sogokon and
               Khalil Ghorbal and
               Paul B. Jackson and
               Andr{\'{e}} Platzer},
  title     = {A Method for Invariant Generation for
               Polynomial Continuous Systems},
  booktitle = {VMCAI},
  year      = {2016},
  pages     = {268-288},
  doi       = {10.1007/978-3-662-49122-5_13},
  editor    = {Barbara Jobstmann and
               K. Rustan M. Leino},
  longbooktitle = {Verification, Model Checking, and Abstract
               Interpretation - 17th International
               Conference, {VMCAI} 2016, St. Petersburg, FL,
               USA, January 17-19, 2016, Proceedings},
  series    = {LNCS},
  volume    = {9583},
  publisher = {Springer},
  author    = {Nathan Fulton and
               Andr{\'{e}} Platzer},
  title     = {A Logic of Proofs for Differential Dynamic Logic:
               Toward Independently Checkable Proof Certificates for Dynamic Logics},
  booktitle = {Proceedings of the 2016 Conference on Certified Programs and Proofs,
               {CPP} 2016, St. Petersburg, FL, USA, January 18-19, 2016},
  pages     = {110-121},
  year      = {2016},
  doi       = {10.1145/2854065.2854078},
  editor    = {Jeremy Avigad and
               Adam Chlipala},
  publisher = {{ACM}},
  author    = {Khalil Ghorbal and
               Andrew Sogokon and
               Andr{\'{e}} Platzer},
  title     = {A Hierarchy of Proof Rules for
               Checking Positive Invariance of
               Algebraic and Semi-Algebraic Sets},
  journal   = {Computer Languages, Systems and Structures},
  year      = {2017},
  volume    = {47},
  number    = {1},
  pages     = {19-43},
  doi       = {10.1016/},
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {{ModelPlex}: Verified Runtime Validation of
               Verified Cyber-Physical System Models},
  journal   = {Form. Methods Syst. Des.},
  longjournal = {Formal Methods in System Design},
  year      = {2016},
  volume    = {49},
  number    = {1},
  pages     = {33-74},
  doi       = {10.1007/s10703-016-0241-z},
  issn      = {0925-9856},
  note      = {Special issue of selected papers from RV'14},
  author    = {Andr{\'{e}} Platzer},
  title     = {A Complete Uniform Substitution Calculus 
               for Differential Dynamic Logic},
  journal   = {J. Autom. Reas.},
  longjournal = {Journal of Automated Reasoning},
  year      = {2017},
  volume    = {59},
  number    = {2},
  pages     = {219-265},
  doi       = {10.1007/s10817-016-9385-1},
  author    = {Andr{\'{e}} Platzer},
  title     = {Logic \& Proofs for Cyber-Physical Systems},
  booktitle = {IJCAR},
  longbooktitle = {Automated Reasoning, 8th International Joint Conference,
               IJCAR 2016, Coimbra, Portugal, Proceedings},
  year      = {2016},
  pages     = {15-21},
  doi       = {10.1007/978-3-319-40229-1_3},
  volume    = {9706},
  editor    = {Nicola Olivetti and
               Ashish Tiwari},
  publisher = {Springer},
  series    = {LNCS},
  keywords = {logic, cyber-physical systems, multi-dynamical systems,
               differential dynamic logic, KeYmaera X},
  abstract = {\emph{Cyber-physical systems} (CPS) combine cyber aspects
               such as communication and computer control with physical
               aspects such as movement in space, which arise frequently in
               many safety-critical application domains, including aviation,
               automotive, railway, and robotics. But how can we ensure that
               these systems are guaranteed to meet their design goals, e.g.,
               that an aircraft will not crash into another one?
               This paper highlights some of the most fascinating aspects of
               cyber-physical systems and their dynamical systems models,
               such as hybrid systems that combine discrete transitions and
               continuous evolution along differential equations. Because of
               the impact that they can have on the real world, CPSs
               deserve proof as safety evidence.
               \emph{Multi-dynamical systems} understand complex systems
               as a combination of multiple elementary dynamical aspects,
               which makes them natural mathematical models for CPS,
               since they tame their complexity by compositionality.
               The family of \emph{differential dynamic logics} achieves
               this compositionality by providing compositional logics,
               programming languages, and reasoning principles for CPS.
               Differential dynamic logics, as implemented in the theorem
               prover KeYmaera X, have been instrumental in verifying many
               applications, including the Airborne Collision Avoidance
               System ACAS X, the European Train Control System ETCS,
               automotive systems, mobile robot navigation, and a surgical
               robot system for skull-base surgery. This combination of
               strong theoretical foundations with practical theorem proving
               challenges and relevant applications makes
               \emph{Logic for CPS} an ideal area for compelling
               and rewarding research.}
  author    = {Andreas M{\"u}ller and
               Stefan Mitsch and
               Werner Retschitzegger and
               Wieland Schwinger and
               Andr{\'{e}} Platzer},
  title     = {A Component-based Approach to
               Hybrid Systems Safety Verification}, 
  booktitle = {IFM},
  longbooktitle={Integrated Formal Methods - 12th
               International Conference, {IFM} 2016,
               Reykjavik, Iceland, June 1-4, 2016, Proceedings},
  year      = {2016},
  pages     = {441-456},
  doi       = {10.1007/978-3-319-33693-0_28},
  editor    = {Erika Abraham and
               Marieke Huisman},
  series    = {LNCS},
  volume    = {9681},
  publisher = {Springer},
  author    = {Andreas M{\"u}ller and
               Stefan Mitsch and
               Werner Retschitzegger and
               Wieland Schwinger and
               Andr{\'{e}} Platzer},
  title     = {A Component-based Approach to
               Hybrid Systems Safety Verification}, 
  number    = {CMU-CS-16-100},
  year      = {2016},
  month     = {June},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Andr\'e Platzer},
  title     = {Foundations of Cyber-Physical Systems},
  year      = {2016},
  howpublished = {Lecture Videos 15-424/624/824,
               Carnegie Mellon University},
  author    = {Andr\'e Platzer},
  title     = {Foundations of Cyber-Physical Systems},
  year      = {2016},
  howpublished = {Lecture Notes 15-424/624/824,
               Carnegie Mellon University},
  url = {},
  author    = {Stefan Mitsch and
               Khalil Ghorbal and
               David Vogelbacher and
               Andr{\'{e}} Platzer},
  title     = {Formal Verification of Obstacle Avoidance
               and Navigation of Ground Robots},
  journal   = {I. J. Robotics Res.},
  longjournal={International Journal of Robotics Research},
  volume    = {36},
  number    = {12},
  pages     = {1312-1340},
  year      = {2017},
  doi       = {10.1177/0278364917733549},
  arXiv     = {1605.00604}
  author    = {Loos, Sarah M.},
  school    = {Computer Science Department,
             School of Computer Science,
             Carnegie Mellon University},
  title     = {Differential Refinement Logic},
  year      = {2016},
  url       = {},
  author    = {Sarah M. Loos and
               Andr{\'{e}} Platzer},
  title     = {Differential Refinement Logic},
  booktitle = {LICS},
  year      = {2016},
  pages     = {505-514},
  doi       = {10.1145/2933575.2934555},
  longbooktitle = {Proceedings of the 31st Annual
               {ACM/IEEE} Symposium on Logic in Computer
               Science, {LICS} '16, New York, NY, USA,
               July 5-8, 2016},
  publisher = {ACM},
  editor    = {Martin Grohe and
               Eric Koskinen and
               Natarajan Shankar}
  author    = {Laurent Doyen and
               Goran Frehse and 
               George J. Pappas and
               Andr{\'{e}} Platzer},
  title     = {Verification of Hybrid Systems},
  booktitle = {Handbook of Model Checking},
  editor    = {Edmund M. Clarke and Thomas A. Henzinger and Helmut Veith and Roderick Bloem},
  publisher = {Springer},
  year      = {2018},
  pages     = {1047-1110},
  doi       = {10.1007/978-3-319-10575-8_30},
  address   = {Cham}
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {The {KeYmaera X} proof {IDE}:
               Concepts on usability in hybrid systems theorem proving},
  booktitle = {3rd Workshop on Formal Integrated Development Environment},
  pages     = {67-81},
  year      = {2016},
  doi       = {10.4204/EPTCS.240.5},
  editor    = {Catherine Dubois and
               Paolo Masci and
               Dominique M{\'{e}}ry},
  optpublisher = {Open Publishing Association},
  series    = {EPTCS},
  volume    = {240},
  author    = {Brandon Bohrer and
               Vincent Rahli and
               Ivana Vukotic and
               Marcus V{\"o}lp and
               Andr{\'{e}} Platzer},
  title     = {Formally Verified Differential Dynamic Logic},
  pages     = {208-221},
  year      = {2017},
  doi       = {10.1145/3018610.3018616},
  editor    = {Yves Bertot and
               Viktor Vafeiadis},
  booktitle = {Certified Programs and Proofs -
               6th ACM SIGPLAN Conference, CPP 2017,
               Paris, France, January 16-17, 2017},
  publisher = {{ACM}},
  isbn      = {}
  author    = {Andr\'e Platzer},
  title     = {Foundations of Cyber-Physical Systems},
  year      = {2017},
  howpublished = {Lecture Notes 15-424/624/824,
               Carnegie Mellon University},
  url = {}
  author    = {Franz Franchetti and
               Tze Meng Low and
               Stefan Mitsch and
               Juan Paolo Mendoza and
               Liangyan Gui and
               Amarin Phaosawasdi and
               David Padua and
               Soummya Kar and
               Jos\'e M. F. Moura and
               Mike Franusich and
               Jeremy Johnson and
               Andr{\'{e}} Platzer and
               Manuela Veloso},
  title     = {High-Assurance {SPIRAL}:
               End-to-End Guarantees for Robot
               and Car Control},
  journal   = {IEEE Control Systems},
  year      = {2017},
  volume    = {37},
  number    = {2},
  pages     = {82-103},
  doi       = {10.1109/MCS.2016.2643244},
  author    = {Andreas M{\"u}ller and
               Stefan Mitsch and
               Werner Retschitzegger and
               Wieland Schwinger and
               Andr{\'{e}} Platzer},
  title     = {Change and Delay Contracts for
               Hybrid System Component Verification}, 
  booktitle = {FASE},
  year      = {2017},
  pages     = {134-151},
  doi       = {10.1007/978-3-662-54494-5_8},
  editor    = {Marieke Huisman and
               Julia Rubin},
  series    = {LNCS},
  volume    = {10202},
  publisher = {Springer},
  author    = {Andr{\'{e}} Platzer},
  title     = {Differential Hybrid Games},
  journal   = {{ACM} Trans. Comput. Log.},
  volume    = {18},
  number    = {3},
  year      = {2017},
  pages     = {19:1-19:44},
  doi       = {10.1145/3091123},
  issn      = {1529-3785},
  author    = {Nathan Fulton and
               Stefan Mitsch and
               Brandon Bohrer and
               Andr{\'{e}} Platzer},
  title     = {Bellerophon: Tactical Theorem Proving
               for Hybrid Systems},
  booktitle = {ITP},
  longbooktitle = {Interactive Theorem Proving,
               International Conference, ITP 2017},
  year      = {2017},
  pages     = {207-224},
  month     = {},
  doi       = {10.1007/978-3-319-66107-0_14},
  editor    = {Mauricio Ayala-Rinc{\'o}n and
               C{\'e}sar A. Mu{\~n}oz},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {10499},
  isbn      = {978-3-319-66106-3},
  author    = {Andr{\'{e}} Platzer},
  title     = {Logical Foundations of Cyber-Physical Systems},
  publisher = {Springer},
  address   = {Cham},
  year      = {2018},
  isbn      = {978-3-319-63587-3},
  e-isbn    = {978-3-319-63588-0},
  doi       = {10.1007/978-3-319-63588-0},
  author    = {Andr\'e Platzer},
  title     = {Videos for Logical Foundations of Cyber-Physical Systems},
  year      = {2018},
  howpublished = {YouTube},
  url = {}
  author    = {Andr{\'{e}} Platzer and
               Yong Kiam Tan},
  title     = {How to Prove ``All'' Differential Equation Properties},
  number    = {CMU-CS-17-117},
  year      = {2017},
  month     = {August},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {},
  note      = {Extended version at arXiv:1802.01226.pdf},
  author    = {Stefan Mitsch and
               Marco Gario and
               Christof J. Budnik and
               Michael Golm and 
               Andr{\'{e}} Platzer},
  title     = {Formal Verification of Train Control with
               Air Pressure Brakes},
  booktitle = {RSSRail},
  longbooktitle = {RSSRail 2017: Reliability, Safety,
               and Security of Railway Systems},
  year      = {2017},
  pages     = {173-191},
  editor    = {Alessandro Fantechi and
               Thierry Lecomte and
               Alexander Romanovsky},
  volume    = {10598},
  doi       = {10.1007/978-3-319-68499-4_12},
  series    = {LNCS},
  publisher = {Springer},
  author    = {Nathan Fulton and
               Andr{\'{e}} Platzer},
  title     = {Safe Reinforcement Learning via Formal Methods:
               Toward Safe Control Through Proof and Learning},
  booktitle = {Proceedings of the Thirty-Second {AAAI} Conference
               on Artificial Intelligence,
               February 2-7, 2018, New Orleans, Louisiana, {USA.}},
  pages     = {6485-6492},
  year      = {2018},
  doi       = {10.1609/aaai.v32i1.12107},
  editor    = {Sheila McIlraith and
               Kilian Weinberger},
  publisher = {{AAAI} Press},
  eprint    = {},
  author    = {Brandon Bohrer and
               Yong Kiam Tan and
               Stefan Mitsch and
               Magnus O. Myreen and
               Andr{\'{e}} Platzer},
  title     = {{VeriPhy}: Verified Controller Executables
               from Verified Cyber-Physical System Models},
  pages     = {617-630},
  year      = {2018},
  doi       = {10.1145/3192366.3192406},
  publisher = {{ACM}},
  editor    = {Dan Grossman},
  booktitle = {PLDI},
  longbooktitle = {Proceedings of the 39th {ACM} {SIGPLAN}
               Conference on Programming Language
               Design and Implementation, {PLDI} 2018},
  author    = {Andr{\'{e}} Platzer},
  title     = {Uniform Substitution for Differential Game Logic},
  booktitle = {IJCAR},
  longbooktitle = {Automated Reasoning, 9th International Joint Conference,
               IJCAR 2018, Oxford, UK, Proceedings},
  year      = {2018},
  pages     = {211-227},
  doi       = {10.1007/978-3-319-94205-6_15},
  editor    = {Didier Galmiche and
               Stephan Schulz and
               Roberto Sebastiani},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {10900},
  subseries = {LNAI},
  author    = {Andr{\'{e}} Platzer and
               Yong Kiam Tan},
  title     = {Differential Equation Axiomatization:
               The Impressive Power of Differential Ghosts},
  booktitle = {LICS},
  year      = {2018},
  pages     = {819-828},
  doi       = {10.1145/3209108.3209147},
  editor    = {Anuj Dawar and
               Erich Gr{\"{a}}del},
  longbooktitle = {Proceedings of the 33rd Annual ACM/IEEE Symposium on Logic in
               Computer Science, LICS},
  publisher = {ACM},
  key       = {LICS},
  isbn      = {978-1-4503-5583-4},
  address   = {New York},
  author    = {Brandon Bohrer and
               Andr{\'{e}} Platzer},
  title     = {A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow},
  booktitle = {LICS},
  year      = {2018},
  pages     = {115-124},
  doi       = {10.1145/3209108.3209151},
  editor    = {Anuj Dawar and
               Erich Gr{\"{a}}del},
  longbooktitle = {Proceedings of the 33rd Annual ACM/IEEE Symposium on Logic in
               Computer Science, LICS},
  publisher = {ACM},
  key       = {LICS},
  isbn      = {978-1-4503-5583-4},
  address   = {New York},
  author    = {Andrew Sogokon and
               Khalil Ghorbal and
               Yong Kiam Tan and
               Andr\'{e} Platzer},
  title     = {Vector Barrier Certificates and Comparison Systems},
  booktitle = {FM},
  year      = {2018},
  pages     = {418-437},
  doi       = {10.1007/978-3-319-95582-7_25},
  editor    = {Klaus Havelund and
               Bill Roscoe and
               Jan Peleska},
  longbooktitle = {{FM} 2018: Formal Methods - 
               22nd International Symposium, Oxford,
               UK, July 15-17, 2018, Proceedings},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {10951},
  address   = {},
  author   = {Brandon Bohrer and
              Adriel Luo and
              Xue An Chuang and
              Andr{\'{e}} Platzer},
  editor   = {Alessandro Abate and
              Antoine Girard and
              Maurice Heemels},
  title    = {{CoasterX}: {A} Case Study in Component-Driven  Hybrid Systems Proof Automation},
  booktitle = {6th {IFAC} Conference on Analysis and Design of Hybrid Systems, {ADHS}
              2018, Oxford, UK, July 11-13, 2018},
  series    = {IFAC-PapersOnLine},
  volume    = {51},
  number    = {16},
  pages     = {55--60},
  publisher = {Elsevier},
  year      = {2018},
  doi       = {10.1016/j.ifacol.2018.08.010},
  author   = {Andreas M{\"{u}}ller and
              Stefan Mitsch and
              Werner Retschitzegger and
              Wieland Schwinger and
              Andr{\'{e}} Platzer},
  title     = {Tactical Contract Composition for Hybrid System Component Verification},
  journal   = {STTT},
  volume    = {20},
  number    = {6},
  year      = {2018},
  pages     = {615-643},
  doi       = {10.1007/s10009-018-0502-9},
  note      = {Special issue for selected papers from FASE'17}
  author    = {Nathan Fulton and
               Andr{\'{e}} Platzer},
  title     = {Safe {AI} for {CPS}},
  booktitle = {{IEEE} International Test Conference,
               {ITC} 2018, Phoenix, AZ, USA,
               October 29 - Nov. 1, 2018},
  pages     = {},
  year      = {2018},
  publisher = {IEEE},
  doi       = {10.1109/TEST.2018.8624774},
  isbn      = {978-1-5386-8382-8},
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {Verified Runtime Validation for Partially Observable Hybrid Systems},
  journal   = {CoRR},
  volume    = {abs/1811.06502},
  year      = {2018},
  url       = {},
  author    = {Fulton, Nathan},
  school    = {Computer Science Department,
             School of Computer Science,
             Carnegie Mellon University},
  title     = {Verifiably Safe Autonomy for Cyber-Physical Systems},
  year      = {2018},
  url       = {},
  author    = {Brandon Bohrer and
               Andr{\'{e}} Platzer},
  title     = {A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow},
  number    = {CMU-CS-18-105},
  year      = {2018},
  month     = {},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Luis Garcia and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {{HyPLC}: Hybrid Programmable Logic Controller Program Translation for Verification},
  booktitle = {ICCPS},
  longbooktitle = {10th IEEE/ACM International Conference on Cyber-Physical Systems},
  year      = {2019},
  editor    = {Linda Bushnell and
               Miroslav Pajic},
  pages     = {47-56 },
  publisher = {},
  isbn      = {},
  doi       = {10.1145/3302509.3311036},
  author    = {Nathan Fulton and
               Andr{\'{e}} Platzer},
  title     = {Verifiably Safe Off-Model Reinforcement Learning},
  booktitle = {TACAS},
  year      = {2019},
  pages     = {413-430},
  doi       = {10.1007/978-3-030-17462-0_28},
  editor    = {Tomas Vojnar and
               Lijun Zhang},
  longbooktitle = {Tools and Algorithms for the Construction
               and Analysis of Systems, TACAS 2019, Part {I}},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {11427},
  address   = {},
  isbn      = {},
  author    = {Andr{\'{e}} Platzer},
  title     = {Uniform Substitution At One Fell Swoop},
  journal   = {CoRR},
  volume    = {abs/1902.07230},
  year      = {2019},
  url       = {},
  author    = {Andr{\'{e}} Platzer},
  title     = {Uniform Substitution At One Fell Swoop},
  booktitle = {CADE},
  longbooktitle = {International Conference on Automated Deduction, {CADE-27}, Natal, Brazil, Proceedings},
  year      = {2019},
  pages     = {425-441},
  doi       = {10.1007/978-3-030-29436-6_25},
  editor    = {Pascal Fontaine},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {11716},
  address   = {},
  author    = {Katherine Cordwell and
               Andr{\'{e}} Platzer},
  title     = {Towards Physical Hybrid Systems},
  booktitle = {CADE},
  longbooktitle = {International Conference on Automated Deduction, {CADE-27}, Natal, Brazil, Proceedings},
  year      = {2019},
  pages     = {216-232},
  doi       = {10.1007/978-3-030-29436-6_13},
  editor    = {Pascal Fontaine},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {11716},
  address   = {},
  author    = {Brandon Bohrer and
               Manuel Fern{\'{a}}ndez and
               Andr{\'{e}} Platzer},
  title     = {{dL$_\iota$}: Definite Descriptions in Differential Dynamic Logic},
  booktitle = {CADE},
  longbooktitle = {International Conference on Automated Deduction, {CADE-27}, Natal, Brazil, Proceedings},
  year      = {2019},
  pages     = {94-110},
  doi       = {10.1007/978-3-030-29436-6_6},
  editor    = {Pascal Fontaine},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {11716},
  address   = {},
  author    = {Brandon Bohrer and
               Yong Kiam Tan and
               Stefan Mitsch and
               Andrew Sogokon and
               Andr{\'{e}} Platzer},
  title     = {A Formal Safety Net for
               Waypoint Following in Ground Robots},
  journal   = {{IEEE} Robotics and Automation Letters},
  volume    = {4},
  number    = {3},
  year      = {2019},
  pages     = {2910-2917},
  doi       = {10.1109/LRA.2019.2923099},
  author    = {Yong Kiam Tan and
               Andr{\'{e}} Platzer},
  title     = {An Axiomatic Approach to Liveness
               for Differential Equations},
  booktitle = {FM},
  year      = {2019},
  pages     = {371-388},
  doi       = {10.1007/978-3-030-30942-8_23},
  editor    = {ter Beek, Maurice and
               McIver, Annabelle and
               Oliviera, Jos{\'{e}} N.},
  longbooktitle = {FM 2019: Formal Methods -- The Next 30 Years},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {11800},
  author    = {Andr{\'{e}} Platzer and
               Yong Kiam Tan},
  title     = {Differential Equation Invariance Axiomatization},
  journal   = {CoRR},
  volume    = {abs/1905.13429},
  year      = {2019},
  archivePrefix = {arXiv},
  opteprint    = {1905.13429},
  author    = {Andrew Sogokon and
               Stefan Mitsch and
               Yong Kiam Tan and
               Katherine Cordwell and
               Andr\'{e} Platzer},
  title     = {{Pegasus}: A Framework for Sound Continuous Invariant Generation},
  booktitle = {FM},
  year      = {2019},
  pages     = {138-157},
  doi       = {10.1007/978-3-030-30942-8_10},
  editor    = {ter Beek, Maurice and
               McIver, Annabelle and
               Oliviera, Jos{\'{e}} N.},
  longbooktitle = {FM 2019: Formal Methods -- The Next 30 Years},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {11800},
  author    = {Jo{\~a}o Martins and
               Andr{\'{e}} Platzer and
               Jo{\~a}o Leite},
  title     = {Dynamic Doxastic Differential Dynamic Logic
               for Belief-Aware Cyber-Physical Systems},
  booktitle = {TABLEAUX},
  pages     = {428-445},
  year      = {2019},
  doi       = {10.1007/978-3-030-29026-9_24},
  editor    = {Serenella Cerrito and
               Andrei Popescu},
  longbooktitle = {Automated Reasoning with Analytic
               Tableaux and Related Methods - 27th
               International Conference, {TABLEAUX} 2019,
               London, September 3-5, 2019, Proceedings},
  series    = {LNCS},
  volume    = {11714},
  publisher = {Springer},
  author    = {Andr{\'{e}} Platzer},
  title     = {The Logical Path to Autonomous Cyber-Physical Systems},
  booktitle = {QEST},
  pages     = {25-33},
  year      = {2019},
  doi       = {10.1007/978-3-030-30281-8_2},
  editor    = {David Parker and
               Verena Wolf},
  longbooktitle = {International Conference on 
               Quantitative Evaluation of 
               SysTems, {QEST}, Proceedings},
  series    = {LNCS},
  volume    = {11785},
  publisher = {Springer},
  author    = {Andreas M{\"{u}}ller and
               Stefan Mitsch and
               Wieland Schwinger and
               Andr{\'{e}} Platzer},
  title     = {A Component-Based Hybrid Systems 
               Verification and Implementation Tool
               in KeYmaera {X} (Tool Demonstration)},
  booktitle = {Cyber Physical Systems.
               Model-Based Design - 8th International Workshop,
               CyPhy 2018, and 14th International Workshop, {WESE} 2018, Turin, Italy,
               October 4-5, 2018,
               Revised Selected Papers},
  pages     = {91--110},
  year      = {2018},
  doi       = {10.1007/978-3-030-23703-5\_5},
  editor    = {Roger D. Chamberlain and
               Walid Taha and
               Martin T{\"{o}}rngren},
  series    = {LNCS},
  volume    = {11615},
  publisher = {Springer},
  author    = {Andr{\'{e}} Platzer},
  title     = {Overview of Logical Foundations of Cyber-Physical Systems},
  journal   = {CoRR},
  volume    = {abs/1910.11232},
  year      = {2019},
  url       = {},
  archivePrefix = {arXiv},
  eprint    = {1910.11232},
  author    = {Brandon Bohrer and
               Manuel Fern{\'{a}}ndez and
               Andr{\'{e}} Platzer},
  title     = {{dL$_\iota$}: Definite Descriptions in Differential Dynamic Logic},
  number    = {CMU-CS-19-111},
  year      = {2019},
  month     = {},
  institution = {School of Computer Science,
               Carnegie Mellon University},
  address   = {Pittsburgh, PA},
  pdf = {}
  author    = {Andr{\'{e}} Platzer and
               Yong Kiam Tan},
  title     = {Differential Equation Invariance Axiomatization},
  journal   = {J. {ACM}},
  volume    = {67},
  number    = {1},
  pages     = {6:1--6:66},
  year      = {2020},
  doi       = {10.1145/3380825},
  author    = {Andr{\'{e}} Platzer},
  title     = {{KeYmaera~X} Tutorial},
  pages     = {1--66},
  year      = {2019},
  url       = {},
  howpublished = {\url{}}
  author    = {Brandon Bohrer and
               Andr{\'{e}} Platzer},
  title     = {Constructive Game Logic},
  year      = {2020},
  pages     = {},
  doi       = {10.1007/978-3-030-44914-8_4},
  editor    = {Peter M{\"{u}}ller},
  booktitle = {Programming Languages and Systems -
                29th European Symposium on Programming,
               {ESOP} 2020, Held as Part of the 
               European Joint Conferences on Theory
               and Practice of Software, {ETAPS} 2020,
               Dublin, Ireland, April 25-30, 2020, Proceedings},
  series    = {LNCS},
  volume    = {12075},
  publisher = {Springer},
  author    = {Brandon Bohrer and
               Andr{\'{e}} Platzer},
  title     = {Constructive Hybrid Games},
  booktitle = {IJCAR},
  longbooktitle = {Automated Reasoning, 10th International Joint Conference,
               IJCAR 2020, Paris, France, Proceedings},
  year      = {2020},
  pages     = {454-473},
  doi       = {10.1007/978-3-030-51074-9_26},
  editor    = {Nicolas Peltier and
               Viorica Sofronie-Stokkermans},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {12166},
  subseries = {LNAI},
  author    = {Brandon Bohrer and
               Andr{\'{e}} Platzer},
  editor    = {Zena M. Ariola},
  title     = {Refining Constructive Hybrid Games},
  booktitle = {5th International Conference on Formal Structures for Computation
               and Deduction, {FSCD} 2020, June 29 - July 5, 2020, Paris, France},
  series    = {LIPIcs},
  volume    = {167},
  pages     = {},
  publisher = {Schloss Dagstuhl - Leibniz-Zentrum f{\"{u}}r Informatik},
  year      = {2020},
  doi       = {10.4230/LIPIcs.FSCD.2020.14},
  author    = {Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {A Retrospective on Developing Hybrid Systems Provers
               in the {KeYmaera} Family -
               {A} Tale of Three Provers},
  booktitle = {Deductive Software Verification: Future Perspectives -
               Reflections on the Occasion of 20 Years of {KeY}},
  pages     = {21-64},
  year      = {2020},
  doi       = {10.1007/978-3-030-64354-6_2},
  editor    = {Wolfgang Ahrendt and
               Bernhard Beckert and
               Richard Bubel and
               Reiner H{\"{a}}hnle and
               Matthias Ulbrich},
  series    = {LNCS},
  volume    = {12345},
  publisher = {Springer},
  isbn      = {978-3-030-64353-9},
  addresss  = {}
  author    = {Andrew Sogokon and
               Stefan Mitsch and
               Yong Kiam Tan and
               Katherine Cordwell and
               Andr{\'{e}} Platzer},
  title     = {Pegasus: Sound Continuous Invariant Generation},
  journal   = {Form. Methods Syst. Des.},
  longjournal = {Formal Methods in System Design},
  year      = {2022},
  volume    = {58},
  number    = {1},
  pages     = {5-41},
  doi       = {10.1007/s10703-020-00355-z},
  issn      = {0925-9856},
  note      = {Special issue for selected papers from FM'19},
  author    = {Yong Kiam Tan and
               Andr{\'{e}} Platzer},
  title     = {An Axiomatic Approach to Existence and Liveness
               for Differential Equations},
  journal   = {Formal Aspects Comput.},
  volume    = {33},
  number    = {4},
  pages     = {461-518},
  year      = {2021},
  doi       = {10.1007/s00165-020-00525-0},
  issn      = {0934-5043},
  note      = {Special issue for selected papers from FM'19},
  author    = {Yong Kiam Tan and
               Andr{\'{e}} Platzer},
  editor    = {Jan Friso Groote and
               Kim G. Larsen},
  title     = {Deductive Stability Proofs for Ordinary Differential Equations},
  booktitle = {Tools and Algorithms for the Construction and Analysis of Systems
               - 27th International Conference, {TACAS} 2021, Held as Part of the
               European Joint Conferences on Theory and Practice of Software, {ETAPS}
               2021, Proceedings, Part {II}},
  series    = {LNCS},
  volume    = {12652},
  pages     = {181–199},
  publisher = {Springer},
  year      = {2021},
  doi       = {10.1007/978-3-030-72013-1_10},
  author    = {Yong Kiam Tan and
              Andr{\'{e}} Platzer},
  editor    = {Rapha{\"{e}}l M. Jungers and
               Necmiye Ozay and
               Alessandro Abate},
  title     = {Switched Systems as Hybrid Programs},
  booktitle = {7th {IFAC} Conference on Analysis and Design of Hybrid Systems, {ADHS}
               2021, Brussels, Belgium, July 7-9, 2021},
  series    = {IFAC-PapersOnLine},
  volume    = {54},
  number    = {5},
  pages     = {247--252},
  publisher = {Elsevier},
  year      = {2021},
  doi       = {10.1016/j.ifacol.2021.08.506},
  author    = {Katherine Cordwell and
               Yong Kiam Tan and
               Andr{\'{e}} Platzer},
  editor    = {Liron Cohen and
               Cezary Kaliszyk},
  title     = {A Verified Decision Procedure for Univariate Real Arithmetic with
               the {BKR} Algorithm},
  booktitle = {12th International Conference on Interactive Theorem Proving, {ITP}
               2021, June 29 to July 1, 2021, Rome, Italy},
  series    = {LIPIcs},
  volume    = {193},
  pages     = {14:1--14:20},
  publisher = {Schloss Dagstuhl - Leibniz-Zentrum f{\"{u}}r Informatik},
  year      = {2021},
  doi       = {10.4230/LIPIcs.ITP.2021.14},
  biburl    = {},
  author    = {Bohrer, Rose},
  school    = {Computer Science Department,
               School of Computer Science,
               Carnegie Mellon University},
  title     = {Practical End-to-End Verification of Cyber-Physical Systems},
  year      = {2021},
  url       = {},
  author    = {Rachel Cleaveland},
  title     = {Formal Verification of Next-Generation Airborne Collision Avoidance System with Adversarial Intruder Behavior},
  howpublished = {Senior thesis,
        Carnegie Mellon University, Computer
        Science Department},
  month  = {May},
  year      = {2021},
  school    = {Carnegie Mellon University,
               Computer Science Department},
  editor    = {Andr{\'{e}} Platzer and
               Geoff Sutcliffe},
  longtitle = {Automated Deduction - {CADE}-28, 28th
                International Conference
               on Automated Deduction, Pittsburgh, USA,
               July 12-15, 2021, Proceedings},
  title     = {The 28th International Conference on Automated Deduction},
  booktitle = {CADE},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {12699},
  year      = {2021},
  address   = {},
  isbn      = {978-3-030-79875-8},
  doi       = {10.1007/978-3-030-79876-5},
  author    = {Brandon Bohrer and
               Andr{\'{e}} Platzer},
  title     = {Structured Proofs for Adversarial Cyber-Physical Systems},
  journal   = {{ACM} Trans. Embed. Comput. Syst.},
  volume    = {20},
  number    = {5s},
  pages     = {93:1-93:26},
  year      = {2021},
  doi       = {10.1145/3477024},
  note      = {Special issue on EMSOFT 2021}
  author    = {Matias Scharager and
               Katherine Cordwell and
               Stefan Mitsch and
               Andr\'{e} Platzer},
  title     = {Verified Quadratic Virtual Substitution for Real Arithmetic},
  booktitle = {FM},
  year      = {2021},
  pages     = {200-217},
  doi       = {10.1007/978-3-030-90870-6_11},
  editor    = {Huisman, Marieke and
               Pasareanu, Corina S. and
               Zhan, Naijun},
  longbooktitle = {FM 2021: Formal Methods},
  longlongbooktitle = {Formal Methods - 24th International Symposium, {FM} 2021,
                 November 20-26, 2021, Proceedings},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {13047},
  author    = {Qin Lin and
               Stefan Mitsch and
               Andr{\'{e}} Platzer and
               John M. Dolan},
  title     = {Safe and Resilient Practical Waypoint-following for Autonomous Vehicles},
  journal   = {{IEEE} Control Syst. Lett.},
  volume    = {6},
  year      = {2022},
  doi       = {10.1109/LCSYS.2021.3125717},
  pages     = {1574-1579},
  author    = {Yong Kiam Tan and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {Verifying Switched System Stability With Logic},
  year      = {2022},
  pages     = {2:1--2:22},
  doi       = {10.1145/3501710.3519541},
  publisher = {ACM},
  editor    = {Ezio Bartocci and
               Sylvie Putot},
  booktitle = {{HSCC} '22: 25th {ACM} International Conference on Hybrid Systems:
               Computation and Control, Milan, Italy, May 4 - 6, 2022},
  author    = {Abou El Wafa, Noah and
               Platzer, Andr{\'{e}}},
  title     = {First-Order Game Logic and Modal Mu-Calculus},
  journal   = {CoRR},
  volume    = {abs/2201.10012},
  year      = {2022},
  url       = {},
  author    = {Gallicchio, James and
               Tan, Yong Kiam and
               Mitsch, Stefan and
               Platzer, Andr{\'{e}}},
  title     = {Implicit Definitions with Differential Equations for {KeYmaera} {X}
               - (System Description)},
  booktitle = {IJCAR},
  longbooktitle = {Automated Reasoning, International
               Joint Conference, IJCAR 2022, Proceedings},
  year      = {2022},
  pages     = {723-733},
  doi       = {10.1007/978-3-031-10769-6_42},
  editor    = {Jasmin Blanchette and
               Laura Kov{\'{a}}cs and
               Dirk Pattinson},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {13385},
  author    = {Rachel Cleaveland and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {Formally Verified Next-Generation Airborne Collision Avoidance Games in {ACAS X}},
  journal   = {{ACM} Trans. Embed. Comput. Syst.},
  volume    = {22},
  number    = {1},
  articleno = {10},
  pages     = {1-30},
  year      = {2023},
  doi       = {10.1145/3544970},
  issn      = {1539-9087},
  author    = {Yong Kiam Tan},
  school    = {Computer Science Department, School of Computer Science, Carnegie Mellon University},
  title     = {Deductive Verification for Ordinary Differential Equations: Safety, Liveness, and Stability},
  year      = {2022},
  url       = {},
  doi       = {10.1184/R1/20286534.v1}
  author    = {Weihan Li},
  title     = {Formal Verification of the Winning Strategies of Pursuit-Evasion Games},
  howpublished = {Master's thesis,
        Carnegie Mellon University, Computer
        Science Department},
  month  = {August},
  year      = {2022},
  school    = {Carnegie Mellon University,
               Computer Science Department},
  author    = {Kabra, Aditi and
               Mitsch, Stefan and
               Platzer, Andr{\'{e}}},
  title     = {Verified Train Controllers for the
               {Federal Railroad Administration} Train Kinematics Model:
               Balancing Competing Brake and Track Forces}, 
  journal   = {{IEEE} Trans. Comput. Aided Des. Integr. Circuits Syst.},
  longjournal = {{IEEE} Transactions on Computer-Aided Design of
               Integrated Circuits and Systems}, 
  volume    = {41},
  number    = {11},
  pages     = {4409-4420},
  year      = {2022},
  doi       = {10.1109/TCAD.2022.3197690},
  issn      = {0278-0070},
  author    = {Jonathan Laurent and
               Andr{\'{e}} Platzer},
  title     = {Learning to Find Proofs and Theorems by Learning to Refine Search Strategies},
  year      = {2022},
  pages     = {4843–4856},
  booktitle = {Advances in Neural Information Processing Systems},
  editor    = {Sanmi Koyejo and
               Shakir Mohamed and
               Alekh Agarwal and
               Danielle Belgrave and
               Kyunghyun Cho and
               Alice Oh},
  publisher = {Curran Associates, Inc.},
  volume    = {35},
  url       = {\_files/paper/2022/hash/1f14ac136d55c34a18a04ce3db083599-Abstract-Conference.html},
  author    = {Katherine Kosaian and
               Yong Kiam Tan and
               Andr{\'{e}} Platzer},
  title     = {A First Complete Algorithm for Real Quantifier Elimination in {Isabelle/HOL}},
  booktitle = {Proceedings of the 12th ACM SIGPLAN International Conference on
               Certified Programs and Proofs},
  pages     = {211-224},
  editor    = {Brigitte Pientka and
               Steve Zdancewic},
  publisher = {ACM},
  year      = {2023},
  isbn      = {9798400700262},
  address   = {New York},
  doi       = {10.1145/3573105.3575672},
  author    = {Simmons, William and
               Platzer, Andr{\'{e}}},
  title     = {Differential Elimination and Algebraic Invariants of Polynomial
  Dynamical Systems},
  journal   = {CoRR},
  volume    = {abs/2301.10935},
  year      = {2023},
  url       = {},
  author    = {Andr{\'{e}} Platzer},
  editor    = {Uwe Gl{\"{a}}sser and
               Jos{\'{e}} Creissac Campos and
			   Dominique M{\'{e}}ry and
               Philippe Palanque},
  title     = {Refinements of Hybrid Dynamical Systems Logic},
  booktitle = {Rigorous State-Based Methods - 9th International Conference, {ABZ}
               2023, Nancy, France, Proceedings},
  series    = {LNCS},
  volume    = {14010},
  pages     = {3-14},
  publisher = {Springer},
  year      = {2023},
  doi       = {10.1007/978-3-031-33163-3_1},
  author    = {Marvin Brieger and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {Uniform Substitution for Dynamic Logic with Communicating Hybrid Programs},
  booktitle = {CADE},
  longbooktitle = {Automated Deduction -- CADE 29},
  otherbooktitle = {International Conference on Automated Deduction, CADE-29, Rome, Italy, Proceedings},
  year      = {2023},
  pages     = {96-115},
  doi       = {10.1007/978-3-031-38499-8_6},
  editor    = {Brigitte Pientka and
               Cesare Tinelli},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {14132},
  address   = {},
  isbn      = {},
  author    = {Katherine Kosaian},
  school    = {Computer Science Department, School of Computer Science, Carnegie Mellon University},
  title     = {Formally Verifying Algorithms for Real Quantifier Elimination},
  year      = {2023},
  url       = {},
  author    = {Aditi Kabra and
               Jonathan Laurent and
               Stefan Mitsch and
               Andr{\'{e}} Platzer},
  title     = {{CESAR}: Control Envelope Synthesis via Angelic Refinements},
  booktitle = {TACAS},
  year      = {2024},
  pages     = {144--164},
  doi       = {10.1007/978-3-031-57246-3_9},
  editor    = {Bernd Finkbeiner and
               Laura Kov{\'{a}}cs},
  longbooktitle = {Tools and Algorithms for the Construction
               and Analysis of Systems. TACAS 2024},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {14570},
  isbn      = {978-3-031-57246-3},
  author    = {Prebet, Enguerrand and
               Platzer, Andr{\'{e}}},
  title     = {Uniform Substitution for Differential Refinement Logic},
  booktitle = {IJCAR},
  longbooktitle = {Automated Reasoning, International
               Joint Conference, IJCAR 2024, Proceedings},
  year      = {2024},
  pages     = {196-215},
  doi       = {10.1007/978-3-031-63501-4_11},
  editor    = {Christoph Benzm{\"{u}}ller and
               Marijn J. Heule and
               Renate A. Schmidt},
  publisher = {Springer},
  series    = {LNCS},
  volume    = {14740},
  author    = {Abou El Wafa, Noah and
               Platzer, Andr{\'{e}}},
  title     = {Complete Game Logic with Sabotage},
  booktitle = {LICS},
  year      = {2024},
  pages     = {1:1-1:15},
  doi       = {10.1145/3661814.3662121},
  editor  = {Pawel Sobocinski and
                  Ugo Dal Lago and
                  Javier Esparza},
  longbooktitle = {Proceedings of the 39th Annual ACM/IEEE Symposium on Logic in
               Computer Science, LICS},
  publisher = {ACM},
  address   = {New York},
  author = {Andr{\'{e}} Platzer},
  title = {{Intersymbolic {AI}: {I}nterlinking Symbolic {AI} and Subsymbolic {AI}}},
  booktitle = {ISoLA 2024}, 
  OPTbooktitle = {Proceedings of the 12th International Symposium on Leveraging Applications of Formal Methods, Verification and Validation (ISoLA'24)},
  editor = {Tiziana  Margaria and Bernhard Steffen},
  publisher = {Springer},
  series = {LNCS},
  volume = {15222},
  year = {2024},
  pages = {162-180},
  doi = {10.1007/978-3-031-75387-9_11},
  author       = {Andr{\'{e}} Platzer},
  editor       = {Emil Sekerinski and
                  Leila Ribeiro},
  title        = {The Significance of Symbolic Logic for Scientific Education},
  booktitle    = {Formal Methods Teaching: 6th International Workshop, FMTea 2024, Milano,
                  Italy, September 10, 2024, Proceedings},
  series       = {LNCS},
  volume       = {14939},
  pages        = {3-22},
  publisher    = {Springer},
  year         = {2024},
  doi          = {10.1007/978-3-031-71379-8_1},
  author       = {Andr{\'{e}} Platzer},
  title        = {Hybrid Dynamical Systems Logic and Its Refinements},
  journal      = {Sci. Comput. Program.},
  volume       = {239},
  pages        = {103179},
  year         = {2025},
  doi          = {10.1016/J.SCICO.2024.103179},
  issn        = {0167-6423},
  author = {Broy, Manfred and
               Brucker, Achim and
               Fantechi, Alessandro and
               Gleirscher, Mario and
               Havelund, Klaus and
               Kuppe, Markus Alexander and
               Mendes, Alexandra and
               Platzer, Andr{\'{e}} and
               Ringert, Jan and
               Sullivan, Allison},
  title = {Does Every Computer Scientist Need to Know Formal Methods?},
  year = {2024},
  optpublisher = {Association for Computing Machinery},
  optaddress = {New York, NY, USA},
  issn = {0934-5043},
  doi = {10.1145/3670795},
  journal = {Form. Asp. Comput.},
  volume = {37},
  number = {1},
  articleno = {6},
  pages = {1-17},
  author = {Teuber, Samuel and
               Mitsch, Stefan and
               Platzer, Andr{\'{e}}},
  title        = {Provably Safe Neural Network Controllers via Differential Dynamic Logic},
  year         = {2024},
  booktitle    = {Advances in Neural Information Processing Systems},
  publisher    = {Curran Associates, Inc.},
  editor       = {A. Globerson and L. Mackey and A. Fan and C. Zhang and D. Belgrave and J. Tomczak and U. Paquet},
  author    = {Platzer, Andr{\'{e}} and
               Qian, Long},
  title     = {Axiomatization of Compact Initial Value Problems: Open Properties},
  journal   = {CoRR},
  volume    = {abs/2410.13836},
  year      = {2024},
  url       = {},
  author    = {Brieger, Marvin and
               Mitsch, Stefan and
               Platzer, Andr{\'{e}}},
  title     = {Complete Dynamic Logic of Communicating Hybrid Programs},
  journal   = {CoRR},
  volume    = {abs/2408.05012},
  year      = {2024},
  url       = {},
  author    = {Laurent, Jonathan and
                Platzer, Andr{\'{e}}},
  title     = {Oracular Programming: A Modular Foundation for Building {LLM}-Enabled Software},
  journal   = {CoRR},
  volume    = {abs/2502.05310},
  year      = {2025},
  url       = {},
Copyright of publications is with the publisher or author as indicated. Author's versions of papers are posted with permission of the publisher for your personal use. Not for redistribution or commercial purpose. Slides are copyright © by the author. All information and materials on this site are provided solely for informational purposes on an AS-IS basis, and any and all implied warranties are expressly disclaimed.