Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Verification of Multi-Agent Properties in Electronic Voting: A Case Study

Damian Kurpiewski, Wojciech Jamroga, Łukasz Maśko, Łukasz Mikulski, Witold Pazderski, Wojciech Penczek, Teofil Sidoruk

TL;DR

The paper tackles the hard problem of verifying strategic-epistemic properties in realistic multi-agent systems by integrating multiple verification techniques, including fixpoint approximation, depth-first strategy search, domination-based pruning, and partial-order reduction, with parallelized variants. It extends POR to handle nested epistemic modalities within subjective strategic ability and applies the approach to a modular, scalable model of the Selene e-voting protocol. The results demonstrate verification of more sophisticated Selene models than prior work and provide insights into the relative strengths of each technique, showing practical gains from parallelization and POR while identifying limitations of some approaches. The work offers a concrete methodology and technical contributions that advance scalable MAS verification for socio-technical systems and points toward broader applicability to real-world protocols.

Abstract

Formal verification of multi-agent systems is hard, both theoretically and in practice. In particular, studies that use a single verification technique typically show limited efficiency, and allow to verify only toy examples. Here, we propose some new techniques and combine them with several recently developed ones to see what progress can be achieved for a real-life scenario. Namely, we use fixpoint approximation, domination-based strategy search, partial order reduction, and parallelization to verify heterogeneous scalable models of the Selene e-voting protocol. The experimental results show that the combination allows to verify requirements for much more sophisticated models than previously.

Verification of Multi-Agent Properties in Electronic Voting: A Case Study

TL;DR

The paper tackles the hard problem of verifying strategic-epistemic properties in realistic multi-agent systems by integrating multiple verification techniques, including fixpoint approximation, depth-first strategy search, domination-based pruning, and partial-order reduction, with parallelized variants. It extends POR to handle nested epistemic modalities within subjective strategic ability and applies the approach to a modular, scalable model of the Selene e-voting protocol. The results demonstrate verification of more sophisticated Selene models than prior work and provide insights into the relative strengths of each technique, showing practical gains from parallelization and POR while identifying limitations of some approaches. The work offers a concrete methodology and technical contributions that advance scalable MAS verification for socio-technical systems and points toward broader applicability to real-world protocols.

Abstract

Formal verification of multi-agent systems is hard, both theoretically and in practice. In particular, studies that use a single verification technique typically show limited efficiency, and allow to verify only toy examples. Here, we propose some new techniques and combine them with several recently developed ones to see what progress can be achieved for a real-life scenario. Namely, we use fixpoint approximation, domination-based strategy search, partial order reduction, and parallelization to verify heterogeneous scalable models of the Selene e-voting protocol. The experimental results show that the combination allows to verify requirements for much more sophisticated models than previously.
Paper Structure (24 sections, 2 theorems, 2 equations, 5 figures, 4 tables)

This paper contains 24 sections, 2 theorems, 2 equations, 5 figures, 4 tables.

Table of Contents

  1. Introduction
  2. Preliminaries
  3. Models of Asynchronous Interaction
  4. Reasoning About Strategies and Knowledge
  5. How to Specify Voters and Coercers
  6. Short Description of Selene
  7. Asynchronous MAS for Selene
  8. Agents
  9. Specification of Properties
  10. Model definition
  11. Agent definition
  12. Verification Algorithms
  13. Verification by Fixpoint Approximation
  14. Depth-First Strategy Search
  15. Domination-Based Strategy Search
  16. ...and 9 more sections

Key Result

theorem 1

Let $S\xspace$ be an AMAS, $J \subseteq A \subseteq \A$, $\mathit{M} = IIS^{\text{\normalsize$\epsilon$}}(S\xspace,I)$, and let $\mathit{M}' \subseteq \mathit{M}$ be the reduced model generated by DFS with the choice of $E(\mathit{g}')$ for $\mathit{g}' \in \States'$ given by conditions C1-C3. Then

Figures (5)

  • Figure 1: ASV$_1^2$: agents $\mathit{Voter_{1}}$ (left) and $\mathit{Coercer}$ (right)
  • Figure 2: The undeadlocked model $IIS^{\text{\normalsize$\epsilon$}}(ASV_1^2)$
  • Figure 3: Voter template
  • Figure 4: Coercer template
  • Figure 5: Model generation times for 3 candidates 3 revotes

Theorems & Definitions (13)

  • definition 1: Asynchronous MAS
  • definition 2: Interleaved interpreted systems
  • definition 3: Enabled events
  • definition 4: Undeadlocked IIS
  • definition 5: Standard outcome
  • definition 6: Reactive outcome
  • definition 7: Indistinguishable states
  • definition 8: ($J$-)stuttering equivalence
  • definition 9: Invisibility and independence of events
  • theorem 1
  • ...and 3 more