Justin Hsu’s research while affiliated with Cornell University and other places

What is this page?

This page lists works of an author who doesn't have a ResearchGate profile or hasn't added the works to their profile yet. It is automatically generated from public (personal) data to further our legitimate goal of comprehensive and accurate scientific recordkeeping. If you are this author and want this page removed, please let us know.

Publications (24)

Fig. 3. Statistics
Constraint-Based Synthesis of Coupling Proofs: 30th International Conference, CAV 2018, Held as Part of the Federated Logic Conference, FloC 2018, Oxford, UK, July 14-17, 2018, Proceedings, Part I
  • Chapter
  • Full-text available

July 2018

·

13 Reads

·

4 Citations

Lecture Notes in Computer Science

Aws Albarghouthi

·

Justin Hsu

Proof by coupling is a classical technique for proving properties about pairs of randomized algorithms by carefully relating (or coupling) two probabilistic executions. In this paper, we show how to automatically construct such proofs for probabilistic programs. First, we present f-coupled postconditions, an abstraction describing two correlated program executions. Second, we show how properties of f-coupled postconditions can imply various probabilistic properties of the original programs. Third, we demonstrate how to reduce the proof-search problem to a purely logical synthesis problem of the form Open image in new window , making probabilistic reasoning unnecessary. We develop a prototype implementation to automatically build coupling proofs for probabilistic properties, including uniformity and independence of program expressions.

Download
Convex Language Semantics for Nondeterministic Probabilistic Automata

May 2018

·

13 Reads

Gerco van Heerdt

·

Justin Hsu

·

Joël Ouaknine

·

We explore language semantics for automata combining probabilistic and nondeterministic behavior. We first show that there are precisely two natural semantics for probabilistic automata with nondeterminism. For both choices, we show that these automata are strictly more expressive than deterministic probabilistic automata, and we prove that the problem of checking language equivalence is undecidable by reduction from the threshold problem. However, we provide a discounted metric that can be computed to arbitrarily high precision.

Constraint-Based Synthesis of Coupling Proofs

April 2018

·

15 Reads

·

3 Citations

Aws Albarghouthi

·

Justin Hsu

Proof by coupling is a classical technique for proving properties about pairs of randomized algorithms by carefully relating (or coupling) two probabilistic executions. In this paper, we show how to automatically construct such proofs for probabilistic programs. First, we present f-coupled postconditions, an abstraction describing two correlated program executions. Second, we show how properties of f-coupled postconditions can imply various probabilistic properties of the original programs. Third, we demonstrate how to reduce the proof-search problem to a purely logical synthesis problem of the form f.X.ϕ\exists f\ldotp \forall X\ldotp \phi, making probabilistic reasoning unnecessary. We develop a prototype implementation to automatically build coupling proofs for probabilistic properties, including uniformity and independence of program expressions.

Synthesizing Coupling Proofs of Differential Privacy

September 2017

Aws Albarghouthi

·

Justin Hsu

Differential privacy has emerged as a promising probabilistic formulation of privacy, generating intense interest within academia and industry. We present a push-button, automated technique for verifying ε\varepsilon-differential privacy of sophisticated randomized algorithms. We make several conceptual, algorithmic, and practical contributions: (i) Inspired by the recent advances on approximate couplings and randomness alignment, we present a new proof technique called coupling strategies, which casts differential privacy proofs as a winning strategy in a game where we have finite privacy resources to expend. (ii) To discover a winning strategy, we present a constraint-based formulation of the problem as a set of Horn modulo couplings (HMC) constraints, a novel combination of first-order Horn clauses and probabilistic constraints. (iii) We present a technique for solving HMC constraints by transforming probabilistic constraints into logical constraints with uninterpreted functions. (iv) Finally, we implement our technique in the FairSquare verifier and provide the first automated privacy proofs for a number of challenging algorithms from the differential privacy literature, including Report Noisy Max, the Exponential Mechanism, and the Sparse Vector Mechanism.

Citations (9)

... [11,13]). New equivalences keep appearing in the literature, such as the recently introduced convex language semantics of nondeterministic probabilistic automata [37]. ...

Reference:

Graded Monads for the Linear Time - Branching Time Spectrum
Convex Language Semantics for Nondeterministic Probabilistic Automata
  • Citing Article

  • March 2025

Theoretical Computer Science

Gerco van Heerdt

·

Justin Hsu

·

Joël Ouaknine

·

... It remains unclear whether probability independence is provable by bisimulation when the output distribution is non-uniform. Symbolic inference [92]- [94] provides automated methods to answer symbolic queries about distributions induced by probabilistic programs. Though it is possible to encode uniformity queries in such methods, existing formalisms of symbolic inference [44] fall short in specifying parameterized systems like those considered by this work. ...

Reference:

Probabilistic Bisimulation for Parameterized Anonymity and Uniformity Verification
Symbolic execution for randomized programs
  • Citing Article

  • October 2022

Proceedings of the ACM on Programming Languages

Zachary Susag

·

Sumit Lahiri

·

Justin Hsu

·

Subhajit Roy

... The weakest pre-expectation transformer [McIver and Morgan 2005;Olmedo et al. 2016] is a generalisation of the weakest precondition transformer [Dijkstra 1975]. This notion is used to verify properties such as termination probabilities and probabilistic invariants [Bao et al. 2022;Batz et al. 2023] for imperative probabilistic programming languages. The expected runtime transformer ] is a similar notion proposed for verification of expected costs. ...

Reference:

Automated Verification of Higher-Order Probabilistic Programs via a Dependent Refinement Type System
Data-Driven Invariant Learning for Probabilistic Programs

Lecture Notes in Computer Science

Jialu Bao

·

Nitesh Trivedi

·

Drashti Pathak

·

[...]

·

Subhajit Roy

... Originally [46], the resources were data structures in memory, and the separating conjunction guaranteed the absence of aliasing. In modern versions of the logic, this has been generalized to cover other types of resources, such as the state of a concurrent protocol [29] or sources of randomness [9,7,37]. ...

Reference:

Cryptis: Cryptographic Reasoning in Separation Logic
A separation logic for negative dependence
  • Citing Article

  • January 2022

Proceedings of the ACM on Programming Languages

Jialu Bao

·

Marco Gaboardi

·

Justin Hsu

·

... Capturing probabilistic independence in separation logic was first explored by Barthe et al. [2019], however the resulting Probabilistic Separation Logic (PSL) was limited in its ability to reason about control flow, and the frame rule had stringent side conditions. DIBI later extended the PSL model to include conditioning, but did not include a full program logic [Bao et al. 2021]. Lilac built on the two aforementioned logics and used conditioning to improve on PSL's handling of control flow, although without mutable state [Li et al. 2023]. ...

Reference:

Probabilistic Concurrent Reasoning in Outcome Logic: Independence, Conditioning, and Invariants
A Bunched Logic for Conditional Independence
  • Citing Conference Paper

  • June 2021

Jialu Bao

·

Simon Docherty

·

Justin Hsu

·

... These encoding are well-known in propositional dynamic logic [22,16] and Kleene algebra with tests (KAT) [23,24]. The set of PWP terms is the minimal subset W of PCoR { * } satisfying the following: ...

Reference:

Undecidability of the Emptiness Problem of Deterministic Propositional While Programs with Graph Loop: Hypothesis Elimination Using Loops
Guarded Kleene algebra with tests: verification of uninterpreted programs in nearly linear time
  • Citing Article

  • December 2019

Proceedings of the ACM on Programming Languages

Steffen Smolka

·

·

Justin Hsu

·

[...]

·

... The goal is to query for various properties about the network's behavior: for instance, the probability of a packet reaching the end of the network, or of a packet queue overflowing. This example task is inspired by prior work on using probabilistic programming languages to perform network verification [18,53]. The situation in Fig. 1 is a small illustrative example of packet arrival, but programs like it are extremely challenging for today's PPLs because they mix different kinds of program structure. ...

Reference:

Multi-Language Probabilistic Programming
Scalable Verification of Probabilistic Networks
  • Citing Preprint

  • April 2019

Steffen Smolka

·

Praveen Kumar

·

David M Kahn

·

[...]

·

... There are also many domain-specific automated analyses for specific probabilistic properties, such as termination and resource analysis [Chatterjee et al. 2016;Moosbrugger et al. 2021;Wang et al. 2021], accuracy Smith et al. 2019], reliability [Carbin et al. 2012], differential privacy [Albarghouthi and Hsu 2018b;Barthe et al. 2021] and other relational properties [Albarghouthi and Hsu 2018a;Farina et al. 2021], and long-run properties of probabilistic loops [Bartocci et al. 2019[Bartocci et al. , 2020. Our approach aims to create a general-purpose analysis. ...

Reference:

Symbolic Execution for Randomized Programs
Constraint-Based Synthesis of Coupling Proofs: 30th International Conference, CAV 2018, Held as Part of the Federated Logic Conference, FloC 2018, Oxford, UK, July 14-17, 2018, Proceedings, Part I

Lecture Notes in Computer Science

Aws Albarghouthi

·

Justin Hsu