Introduction to Probabilistic and Quantum Programming

Introduction to Probabilistic and Quantum Programming

Part III

Ugo Dal Lago

BISS 2014, Bertinoro

Section 1

The λ-Calculus as a Functional Language

Minimal Syntax and Dynamics

I Terms:

M ::= x

|

|

I Substitution:

x{x/M } = M y{x/M } = y

N L{x/M } = (N {x/M })(L{x/M }) λy.N {x/M } = λy.(N {x/M })

I CBN Operational Semantics:

(λx.M )N → M {x/N } M → N M L → N L

I Values:

V ::= λx.M

I CBV Operational Semantics:

(λx.M )V → M {x/V } M → N M L → N L

M → N V M → V N

Minimal Syntax and Dynamics

I Terms:

M ::= x

|

|

I Substitution:

x{x/M } = M y{x/M } = y

N L{x/M } = (N {x/M })(L{x/M }) λy.N {x/M } = λy.(N {x/M })

I CBN Operational Semantics:

(λx.M )N → M {x/N } M → N M L → N L

I Values:

V ::= λx.M

I CBV Operational Semantics:

(λx.M )V → M {x/V } M → N M L → N L

M → N V M → V N

Minimal Syntax and Dynamics

I Terms:

M ::= x

|

|

I Substitution:

x{x/M } = M y{x/M } = y

N L{x/M } = (N {x/M })(L{x/M }) λy.N {x/M } = λy.(N {x/M })

I CBN Operational Semantics:

(λx.M )N → M {x/N } M → N M L → N L

I Values:

V ::= λx.M

I CBV Operational Semantics:

(λx.M )V → M {x/V } M → N M L → N L

M → N V M → V N

Minimal Syntax and Dynamics

I Terms:

M ::= x

|

|

I Substitution:

x{x/M } = M y{x/M } = y

N L{x/M } = (N {x/M })(L{x/M }) λy.N {x/M } = λy.(N {x/M })

I CBN Operational Semantics:

(λx.M )N → M {x/N } M → N M L → N L

I Values:

V ::= λx.M

I CBV Operational Semantics:

(λx.M )V → M {x/V } M → N M L → N L

M → N V M → V N

Minimal Syntax and Dynamics

I Terms:

M ::= x

|

|

I Substitution:

x{x/M } = M y{x/M } = y

N L{x/M } = (N {x/M })(L{x/M }) λy.N {x/M } = λy.(N {x/M })

I CBN Operational Semantics:

(λx.M )N → M {x/N } M → N M L → N L

I Values:

V ::= λx.M

I CBV Operational Semantics:

(λx.M )V → M {x/V } M → N M L → N L

M → N V M → V N

Observations

I Not all redexes are reduced.

I For every M there is at most one N such that M → N .

I It is easy to find a term M such that M = N₀ → N₁ → N₂→ . . .

I There is a problem with substitutions:

(λx.λy.x)(yz) →λy.yz.

(λx.λy.x)(yz) →λw.yz.

I The standard solution is to consider terms modulo so-called α-equivalence: renaming bound variables turns a term into one which is indistinguishable.

λx.λy.xxy ≡ λz.λy.zzy.

I α-equivalence is not necessary if we assume to work with closed terms.

Observations

I Not all redexes are reduced.

I For every M there is at most one N such that M → N .

I It is easy to find a term M such that M = N₀ → N₁ → N₂→ . . .

I There is a problem with substitutions:

(λx.λy.x)(yz) →λy.yz.

(λx.λy.x)(yz) →λw.yz.

I The standard solution is to consider terms modulo so-called α-equivalence: renaming bound variables turns a term into one which is indistinguishable.

λx.λy.xxy ≡ λz.λy.zzy.

I α-equivalence is not necessary if we assume to work with closed terms.

Observations

I Not all redexes are reduced.

I For every M there is at most one N such that M → N .

I It is easy to find a term M such that M = N₀ → N₁ → N₂→ . . .

I There is a problem with substitutions:

(λx.λy.x)(yz) →λy.yz.

(λx.λy.x)(yz) →λw.yz.

I The standard solution is to consider terms modulo so-called α-equivalence: renaming bound variables turns a term into one which is indistinguishable.

λx.λy.xxy ≡ λz.λy.zzy.

I α-equivalence is not necessary if we assume to work with closed terms.

Computing Simple Function on N, in CBV

I Natural Numbers

p0q = λx.λy.x;

pn + 1q = λx.λy.ypnq.

I Finite Set A = {a₁, . . . , an}

paiq = λx1· · · λx_n.xi.

I Pairs

hM, N i = λx.xM N

I Fixed-Point Combinator

Θ = λx.λy.y(λz.(xx)yz);

H = ΘΘ.

Computing Simple Functions on N, in CBV

I Successor

SUCC = λz.λx.λy.yz Indeed:

SUCCpnq → λx.λy.ypnq

I Projections

PROJ^k_i = λx.x(λy1· λy_k.yi) Indeed:

PROJ^k_ihpn1q, . . . , pnkqi → hpn1q, . . . , pnkqi(λy1· · · λy_k.y_i)

→ (λy₁· · · λy_k.y_i)pn1q · · · pnkq

→^∗ pniq.

Computing Simple Functions on N, in CBV

I Successor

SUCC = λz.λx.λy.yz Indeed:

SUCCpnq → λx.λy.ypnq

I Projections

PROJ^k_i = λx.x(λy1· λy_k.yi) Indeed:

PROJ^k_ihpn1q, . . . , pnkqi → hpn1q, . . . , pnkqi(λy1· · · λy_k.y_i)

→ (λy₁· · · λy_k.y_i)pn1q · · · pnkq

→^∗ pniq.

Computing Simple Functions on N, in CBV

I Successor

SUCC = λz.λx.λy.yz Indeed:

SUCCpnq → λx.λy.ypnq

I Projections

PROJ^k_i = λx.x(λy1· λy_k.yi) Indeed:

PROJ^k_ihpn1q, . . . , pnkqi → hpn1q, . . . , pnkqi(λy1· · · λy_k.y_i)

→ (λy₁· · · λy_k.y_i)pn1q · · · pnkq

→^∗ pniq.

Computing Simple Functions on N, in CBV

I Successor

SUCC = λz.λx.λy.yz Indeed:

SUCCpnq → λx.λy.ypnq

I Projections

PROJ^k_i = λx.x(λy1· λy_k.yi) Indeed:

PROJ^k_ihpn1q, . . . , pnkqi → hpn1q, . . . , pnkqi(λy1· · · λy_k.y_i)

→ (λy₁· · · λy_k.y_i)pn1q · · · pnkq

→^∗ pniq.

A Simple Form of Recursion

I Suppose you have a term M_f which computes the function f : N → N, and you want to iterate over it, i.e. you want to compute g : N × N → N such that

g(0, n) = n;

g(m + 1, n) = f (g(m, n)).

I We need a form of recursion in the language. Observe that:

HV = (ΘΘ)V → (λy.y(λz.Hyz))V → V (λz.HV z)

I The function g can be computed by way of

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

A Simple Form of Recursion

I Suppose you have a term M_f which computes the function f : N → N, and you want to iterate over it, i.e. you want to compute g : N × N → N such that

g(0, n) = n;

g(m + 1, n) = f (g(m, n)).

I We need a form of recursion in the language. Observe that:

HV = (ΘΘ)V → (λy.y(λz.Hyz))V → V (λz.HV z)

I The function g can be computed by way of

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

A Simple Form of Recursion

I Suppose you have a term M_f which computes the function f : N → N, and you want to iterate over it, i.e. you want to compute g : N × N → N such that

g(0, n) = n;

g(m + 1, n) = f (g(m, n)).

I We need a form of recursion in the language. Observe that:

HV = (ΘΘ)V → (λy.y(λz.Hyz))V → V (λz.HV z)

I The function g can be computed by way of

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

A Simple Form of Recursion

M_g = H(λx.λy.y(λz.λw.zw(λq.M_f(xhq, wi)))

Mghpm + 1q, pnqi →^∗hpm + 1q, pnqi(λz.λw.zw(λq.Mf((λx.Mgx)hq, wix))

→ (λz.λw.zw(λq.Mf((λx.Mgx)hq, pnqi))pm + 1qpnq

→^∗pm + 1qpnq(λq.M^f((λx.Mgx)hq, pnqi))

→^∗(λq.Mf((λx.Mgx)hq, pnqi))pmq

→^∗Mf((λx.Mgx)hpmq, pnqi)

→^∗Mf(Mghpmq, pnqi)

Universality

I One could go on, and show that the following schemes can all be encoded:

I Composition;

I Primitive Recursion;

I Minimization.

I This implies that all partial recursive functions can be computed in the λ-calculus.

Theorem

The λ-calculus is Turing-complete, both when CBV and CBN are considered.

Why is This a Faithful Model of Functional Computation?

I Data, conditionals, basic functions, and recursion can all be encoded into the λ-calculus. We can then give programs

“informally”, in our favourite functional language.

I Take, as an example, the usual recursive program computing the factorial of a natural number

let rec fact x = if (x==0) then 1 else x*(fact x-1) I This can indeed be turned into a λ-term (where M_∗ and

M−1 are terms for multiplication and the predecessor, respectively):

let rec fact x = if (x==0) then 1 else x*(fact x-1) H(λfact.λx.if (x==0) then 1 else x*(fact x-1))

H(λfact.λx.x p1q (x*(fact x-1))) H(λfact.λx.x p1q (M^∗x (fact x-1))) H(λfact.λx.x p1q (M^∗x (fact (M−1x))))

Why is This a Faithful Model of Functional Computation?

I Data, conditionals, basic functions, and recursion can all be encoded into the λ-calculus. We can then give programs

“informally”, in our favourite functional language.

I Take, as an example, the usual recursive program computing the factorial of a natural number

let rec fact x = if (x==0) then 1 else x*(fact x-1) I This can indeed be turned into a λ-term (where M_∗ and

M−1 are terms for multiplication and the predecessor, respectively):

let rec fact x = if (x==0) then 1 else x*(fact x-1) H(λfact.λx.if (x==0) then 1 else x*(fact x-1))

H(λfact.λx.x p1q (x*(fact x-1))) H(λfact.λx.x p1q (M^∗x (fact x-1))) H(λfact.λx.x p1q (M^∗x (fact (M−1x))))

Why is This a Faithful Model of Functional Computation?

I Data, conditionals, basic functions, and recursion can all be encoded into the λ-calculus. We can then give programs

“informally”, in our favourite functional language.

I Take, as an example, the usual recursive program computing the factorial of a natural number

let rec fact x = if (x==0) then 1 else x*(fact x-1) I This can indeed be turned into a λ-term (where M_∗ and

M−1 are terms for multiplication and the predecessor, respectively):

let rec fact x = if (x==0) then 1 else x*(fact x-1) H(λfact.λx.if (x==0) then 1 else x*(fact x-1))

H(λfact.λx.x p1q (x*(fact x-1))) H(λfact.λx.x p1q (M^∗x (fact x-1))) H(λfact.λx.x p1q (M^∗x (fact (M−1x))))

Why is This a Faithful Model of Functional Computation?

I Data, conditionals, basic functions, and recursion can all be encoded into the λ-calculus. We can then give programs

“informally”, in our favourite functional language.

I Take, as an example, the usual recursive program computing the factorial of a natural number

let rec fact x = if (x==0) then 1 else x*(fact x-1) I This can indeed be turned into a λ-term (where M_∗ and

M−1 are terms for multiplication and the predecessor, respectively):

let rec fact x = if (x==0) then 1 else x*(fact x-1) H(λfact.λx.if (x==0) then 1 else x*(fact x-1))

H(λfact.λx.x p1q (x*(fact x-1))) H(λfact.λx.x p1q (M^∗x (fact x-1))) H(λfact.λx.x p1q (M^∗x (fact (M−1x))))

Why is This a Faithful Model of Functional Computation?

I Data, conditionals, basic functions, and recursion can all be encoded into the λ-calculus. We can then give programs

“informally”, in our favourite functional language.

I Take, as an example, the usual recursive program computing the factorial of a natural number

let rec fact x = if (x==0) then 1 else x*(fact x-1) I This can indeed be turned into a λ-term (where M_∗ and

M−1 are terms for multiplication and the predecessor, respectively):

let rec fact x = if (x==0) then 1 else x*(fact x-1) H(λfact.λx.if (x==0) then 1 else x*(fact x-1))

H(λfact.λx.x p1q (x*(fact x-1))) H(λfact.λx.x p1q (M^∗x (fact x-1))) H(λfact.λx.x p1q (M^∗x (fact (M−1x))))

More About Semantics

I The semantics we have adopted so far is said to be

small-step, since it derives assertions in the form M → N , each corresponding to one atomic computation step.

I There is an equivalent way of formulating the same concept, big-step semantics, in which we “jump directly to the result”:

I CBN

V ⇓ V

M ⇓ λx.N N {x/L} ⇓ V M L ⇓ V

I CBV

V ⇓ V M ⇓ λx.N L ⇓ V N {x/V } ⇓ W

M L ⇓ W

Theorem

In both CBN and CBV, M →^∗ V if and only if M ⇓ V .

I If M ⇓ V for some V , then we write M ⇓, otherwise M ⇑

More About Semantics

I The semantics we have adopted so far is said to be

small-step, since it derives assertions in the form M → N , each corresponding to one atomic computation step.

I There is an equivalent way of formulating the same concept, big-step semantics, in which we “jump directly to the result”:

I CBN

V ⇓ V

M ⇓ λx.N N {x/L} ⇓ V M L ⇓ V

I CBV

V ⇓ V M ⇓ λx.N L ⇓ V N {x/V } ⇓ W M L ⇓ W

Theorem

In both CBN and CBV, M →^∗ V if and only if M ⇓ V .

I If M ⇓ V for some V , then we write M ⇓, otherwise M ⇑

More About Semantics

I The semantics we have adopted so far is said to be

small-step, since it derives assertions in the form M → N , each corresponding to one atomic computation step.

I There is an equivalent way of formulating the same concept, big-step semantics, in which we “jump directly to the result”:

I CBN

V ⇓ V

M ⇓ λx.N N {x/L} ⇓ V M L ⇓ V

I CBV

V ⇓ V M ⇓ λx.N L ⇓ V N {x/V } ⇓ W M L ⇓ W

Theorem

In both CBN and CBV, M →^∗ V if and only if M ⇓ V .

I If M ⇓ V for some V , then we write M ⇓, otherwise M ⇑

Program Equivalence

I A fundamental question in programming language theory is the following: when can two programs be considered equivalent?

I A satisfactory answer to this question would enable:

I To validate program optimizations; you could be sure that the transformations you are performing turn programs into equivalent ones.

I To perform program verification; just compare the program at hand with another (abstract) program corresponding to the underlying specification.

I But what is the right notion of program equivalence?

I M ≡ N iff M = N ;trivial!

I M ≡ N iff either M ⇓ V and N ⇓ V for some V or M ⇑ and N ⇑;does not equate values which behave the same.

I M ≡ N iff M and N “have the same semantics”;nice, but we do not have time to talk about program’s semantics.

Program Equivalence

I A fundamental question in programming language theory is the following: when can two programs be considered equivalent?

I A satisfactory answer to this question would enable:

I To validate program optimizations; you could be sure that the transformations you are performing turn programs into equivalent ones.

I To perform program verification; just compare the program at hand with another (abstract) program corresponding to the underlying specification.

I But what is the right notion of program equivalence?

I M ≡ N iff M = N ;trivial!

I M ≡ N iff either M ⇓ V and N ⇓ V for some V or M ⇑ and N ⇑;does not equate values which behave the same.

I M ≡ N iff M and N “have the same semantics”;nice, but we do not have time to talk about program’s semantics.

Program Equivalence

I A fundamental question in programming language theory is the following: when can two programs be considered equivalent?

I A satisfactory answer to this question would enable:

I To validate program optimizations; you could be sure that the transformations you are performing turn programs into equivalent ones.

I To perform program verification; just compare the program at hand with another (abstract) program corresponding to the underlying specification.

I But what is the right notion of program equivalence?

I M ≡ N iff M = N ;trivial!

I M ≡ N iff either M ⇓ V and N ⇓ V for some V or M ⇑ and N ⇑;does not equate values which behave the same.

I M ≡ N iff M and N “have the same semantics”;nice, but we do not have time to talk about program’s semantics.

Program Equivalence

I A fundamental question in programming language theory is the following: when can two programs be considered equivalent?

I A satisfactory answer to this question would enable:

I To validate program optimizations; you could be sure that the transformations you are performing turn programs into equivalent ones.

I To perform program verification; just compare the program at hand with another (abstract) program corresponding to the underlying specification.

I But what is the right notion of program equivalence?

I M ≡ N iff M = N ;trivial!

I M ≡ N iff either M ⇓ V and N ⇓ V for some V or M ⇑ and N ⇑;does not equate values which behave the same.

I M ≡ N iff M and N “have the same semantics”;nice, but we do not have time to talk about program’s semantics.

Program Equivalence

I A fundamental question in programming language theory is the following: when can two programs be considered equivalent?

I A satisfactory answer to this question would enable:

I To validate program optimizations; you could be sure that the transformations you are performing turn programs into equivalent ones.

I To perform program verification; just compare the program at hand with another (abstract) program corresponding to the underlying specification.

I But what is the right notion of program equivalence?

I M ≡ N iff M = N ;trivial!

I M ≡ N iff either M ⇓ V and N ⇓ V for some V or M ⇑ and N ⇑;does not equate values which behave the same.

I M ≡ N iff M and N “have the same semantics”;nice, but we do not have time to talk about program’s semantics.

Context Equivalence

I What we need is a notion of equivalence which equates terms with the same behaviour.

I More specifically, we would like to equate those terms which have the same observable behavior in every context.

I Observable Behaviour. Two terms M and N have the same observable behaviour whenver M ⇓ iff N ⇓ .

I Contexts. They are defined as terms, but they contain a unique placeholder [·]:

C ::= [·]

|

|

|

The term C[M ] is the one obtained from C by substituting [·] with M .

I We can then stipulate that M ≡ N iff for every C, C[M ] ⇓ iff C[N ] ⇓.

Context Equivalence

I What we need is a notion of equivalence which equates terms with the same behaviour.

I More specifically, we would like to equate those terms which have the same observable behavior in every context.

I Observable Behaviour. Two terms M and N have the same observable behaviour whenver M ⇓ iff N ⇓ .

I Contexts. They are defined as terms, but they contain a unique placeholder [·]:

C ::= [·]

|

|

|

The term C[M ] is the one obtained from C by substituting [·] with M .

I We can then stipulate that M ≡ N iff for every C, C[M ] ⇓ iff C[N ] ⇓.

Context Equivalence

I What we need is a notion of equivalence which equates terms with the same behaviour.

I More specifically, we would like to equate those terms which have the same observable behavior in every context.

I Observable Behaviour. Two terms M and N have the same observable behaviour whenver M ⇓ iff N ⇓ .

I Contexts. They are defined as terms, but they contain a unique placeholder [·]:

C ::= [·]

|

|

|

The term C[M ] is the one obtained from C by substituting [·] with M .

I We can then stipulate that M ≡ N iff for every C, C[M ] ⇓ iff C[N ] ⇓.

Context Equivalence

I Examples:

λx.x ≡ λx.(λy.y)x (λx.xx)(λx.xx) = Ω 6≡ λx.Ω

I Exercise: is it true that for every closed M , M ≡ λx.M x?

I Proving that two terms are not context equivalent seems to be easier than proving that they are.

I We need some new techniques to overcome this problem.

Context Equivalence

I Examples:

λx.x ≡ λx.(λy.y)x (λx.xx)(λx.xx) = Ω 6≡ λx.Ω

I Exercise: is it true that for every closed M , M ≡ λx.M x?

I Proving that two terms are not context equivalent seems to be easier than proving that they are.

I We need some new techniques to overcome this problem.

Context Equivalence

I Examples:

λx.x ≡ λx.(λy.y)x (λx.xx)(λx.xx) = Ω 6≡ λx.Ω

I Exercise: is it true that for every closed M , M ≡ λx.M x?

I Proving that two terms are not context equivalent seems to be easier than proving that they are.

I We need some new techniques to overcome this problem.

Context Equivalence

I Examples:

λx.x ≡ λx.(λy.y)x (λx.xx)(λx.xx) = Ω 6≡ λx.Ω

I Exercise: is it true that for every closed M , M ≡ λx.M x?

I Proving that two terms are not context equivalent seems to be easier than proving that they are.

I We need some new techniques to overcome this problem.

Context Equivalence

I Examples:

λx.x ≡ λx.(λy.y)x (λx.xx)(λx.xx) = Ω 6≡ λx.Ω

I Exercise: is it true that for every closed M , M ≡ λx.M x?

I Proving that two terms are not context equivalent seems to be easier than proving that they are.

I We need some new techniques to overcome this problem.

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ... M

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

M eval V

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

M eval V

λx.N

Applicative Bisimulation

Terms Values

M

N

L ...

V

W

Z ...

M eval V

N {x/W } W λx.N

Applicative Bisimulation

I Simulation.

I If M R N and M ⇓ λx.L, then N ⇓ λx.P and for every argument Q, (L{Q/x}) R (P {Q/x}).

I Bisimulation.

I If M R N then:

I If M ⇓ λx.L, then N ⇓ λx.P and for every argument Q, (L{Q/x}) R (P {Q/x}).

I If N ⇓ λx.L, then M ⇓ λx.P and for every argument Q, (L{Q/x}) R (P {Q/x}).

I Similarity: union of all simulations, denoted-;

I Bisimilarity: union of all bisimulation, denoted ∼.

Theorem (Full Abstraction) M ≡ N iff M ∼ N .

Applicative Bisimulation

I Simulation.

I If M R N and M ⇓ λx.L, then N ⇓ λx.P and for every argument Q, (L{Q/x}) R (P {Q/x}).

I Bisimulation.

I If M R N then:

I If M ⇓ λx.L, then N ⇓ λx.P and for every argument Q, (L{Q/x}) R (P {Q/x}).

I If N ⇓ λx.L, then M ⇓ λx.P and for every argument Q, (L{Q/x}) R (P {Q/x}).

I Similarity: union of all simulations, denoted-;

I Bisimilarity: union of all bisimulation, denoted ∼.

Theorem (Full Abstraction) M ≡ N iff M ∼ N .

Applicative Bisimulation

I Suppose we want to prove that, indeed, M = λx.x ≡ λx.(λy.y)x = N.

I In principle, we should consider all possible contexts.

I But we can also exploit full-abstraction, and just exhibit one applicative bisimulation containing (M, N ).

I Here it is:

R = {(M, N )}

∪{(L, (λx.x)L) | L is a closed term}

∪{((λx.x)L, L) | L is a closed term}

∪{(L, L) | L is a closed term}

I Exercise: prove that R is indeed an applicative bisimulation.

Applicative Bisimulation

I Suppose we want to prove that, indeed, M = λx.x ≡ λx.(λy.y)x = N.

I In principle, we should consider all possible contexts.

I But we can also exploit full-abstraction, and just exhibit one applicative bisimulation containing (M, N ).

I Here it is:

R = {(M, N )}

∪{(L, (λx.x)L) | L is a closed term}

∪{((λx.x)L, L) | L is a closed term}

∪{(L, L) | L is a closed term}

I Exercise: prove that R is indeed an applicative bisimulation.

Applicative Bisimulation

I Suppose we want to prove that, indeed, M = λx.x ≡ λx.(λy.y)x = N.

I In principle, we should consider all possible contexts.

I But we can also exploit full-abstraction, and just exhibit one applicative bisimulation containing (M, N ).

I Here it is:

R = {(M, N )}

∪{(L, (λx.x)L) | L is a closed term}

∪{((λx.x)L, L) | L is a closed term}

∪{(L, L) | L is a closed term}

I Exercise: prove that R is indeed an applicative bisimulation.

Applicative Bisimulation

I Suppose we want to prove that, indeed, M = λx.x ≡ λx.(λy.y)x = N.

I In principle, we should consider all possible contexts.

I But we can also exploit full-abstraction, and just exhibit one applicative bisimulation containing (M, N ).

I Here it is:

R = {(M, N )}

∪{(L, (λx.x)L) | L is a closed term}

∪{((λx.x)L, L) | L is a closed term}

∪{(L, L) | L is a closed term}

I Exercise: prove that R is indeed an applicative bisimulation.

Applicative Bisimulation

I Suppose we want to prove that, indeed, M = λx.x ≡ λx.(λy.y)x = N.

I In principle, we should consider all possible contexts.

I But we can also exploit full-abstraction, and just exhibit one applicative bisimulation containing (M, N ).

I Here it is:

R = {(M, N )}

∪{(L, (λx.x)L) | L is a closed term}

∪{((λx.x)L, L) | L is a closed term}

∪{(L, L) | L is a closed term}

I Exercise: prove that R is indeed an applicative bisimulation.

Type Systems

I We haven’t considered any form of static type for our programs, so far.

I Some concrete programming languages are designed as to do type-checking only at runtime, i.e., they do not have any static type system.

I Scheme, Python, etc.

I Actually, endowing the λ-calculus with a type system is relatively simple.

I Types: A, B ::= bool

|

|

|

|

I Judgments: x₁: A₁, . . . , x_n : A_n` M : B.

I Rules (Examples):

Γ ` M : A → B Γ ` N : A Γ ` M N : B

Γ, x : A ` M : B Γ ` λx.M : A → B

Γ, x : A ` x : A Γ ` H : (A → A) → A

Type Systems

I We haven’t considered any form of static type for our programs, so far.

I Some concrete programming languages are designed as to do type-checking only at runtime, i.e., they do not have any static type system.

I Scheme, Python, etc.

I Actually, endowing the λ-calculus with a type system is relatively simple.

I Types: A, B ::= bool

|

|

|

|

I Judgments: x₁: A₁, . . . , x_n : A_n` M : B.

I Rules (Examples):

Γ ` M : A → B Γ ` N : A Γ ` M N : B

Γ, x : A ` M : B Γ ` λx.M : A → B

Γ, x : A ` x : A Γ ` H : (A → A) → A

Type Systems

I We haven’t considered any form of static type for our programs, so far.

I Some concrete programming languages are designed as to do type-checking only at runtime, i.e., they do not have any static type system.

I Scheme, Python, etc.

I Actually, endowing the λ-calculus with a type system is relatively simple.

I Types: A, B ::= bool

|

|

|

|

I Judgments: x₁: A₁, . . . , x_n : A_n` M : B.

I Rules (Examples):

Γ ` M : A → B Γ ` N : A Γ ` M N : B

Γ, x : A ` M : B Γ ` λx.M : A → B

Γ, x : A ` x : A Γ ` H : (A → A) → A

Type Systems

I We haven’t considered any form of static type for our programs, so far.

I Some concrete programming languages are designed as to do type-checking only at runtime, i.e., they do not have any static type system.

I Scheme, Python, etc.

I Actually, endowing the λ-calculus with a type system is relatively simple.

I Types: A, B ::= bool

|

|

|

|

I Judgments: x₁: A₁, . . . , x_n : A_n` M : B.

I Rules (Examples):

Γ ` M : A → B Γ ` N : A Γ ` M N : B

Γ, x : A ` M : B Γ ` λx.M : A → B

Γ, x : A ` x : A Γ ` H : (A → A) → A

Type Systems

I We haven’t considered any form of static type for our programs, so far.

I Some concrete programming languages are designed as to do type-checking only at runtime, i.e., they do not have any static type system.

I Scheme, Python, etc.

I Actually, endowing the λ-calculus with a type system is relatively simple.

I Types: A, B ::= bool

|

|

|

|

I Judgments: x₁: A₁, . . . , x_n : A_n` M : B.

I Rules (Examples):

Γ ` M : A → B Γ ` N : A Γ ` M N : B

Γ, x : A ` M : B Γ ` λx.M : A → B

Γ, x : A ` x : A Γ ` H : (A → A) → A

Section 2

Probabilistic λ-Calculi

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Terms: M, N ::= x

|

|

|

I Values: V ::= λx.M ;

I How should we define the semantics of a probabilistic term M ?

I Informally, M ⊕ N rewrites to M or to N with probability

1

2: this is just like flippling a coin and choosing one of the two terms according to the result.

I A value distribution is a functionD from the set V of values to R such X

V ∈V

D(V ) ≤ 1.

I The fact the sum can be strictly smaller than 1 is a way to reflect (the probability of) divergence.

I The empty value distribution is denoted as ∅.

I Useful notation for finite distributions: {V₁^p1, . . . , V_n^pn}.

I Value distributions can be ordere, pointwise.

I S(D) is the support of D, i.e. the set of values to which D assigns nonnull probability.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Terms: M, N ::= x

|

|

|

I Values: V ::= λx.M ;

I How should we define the semantics of a probabilistic term M ?

I Informally, M ⊕ N rewrites to M or to N with probability

1

2: this is just like flippling a coin and choosing one of the two terms according to the result.

I A value distribution is a functionD from the set V of values to R such X

V ∈V

D(V ) ≤ 1.

I The fact the sum can be strictly smaller than 1 is a way to reflect (the probability of) divergence.

I The empty value distribution is denoted as ∅.

I Useful notation for finite distributions: {V₁^p1, . . . , V_n^pn}.

I Value distributions can be ordere, pointwise.

I S(D) is the support of D, i.e. the set of values to which D assigns nonnull probability.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Terms: M, N ::= x

|

|

|

I Values: V ::= λx.M ;

I How should we define the semantics of a probabilistic term M ?

I Informally, M ⊕ N rewrites to M or to N with probability

1

2: this is just like flippling a coin and choosing one of the two terms according to the result.

I A value distribution is a functionD from the set V of values to R such X

V ∈V

D(V ) ≤ 1.

I The fact the sum can be strictly smaller than 1 is a way to reflect (the probability of) divergence.

I The empty value distribution is denoted as ∅.

I Useful notation for finite distributions: {V₁^p1, . . . , V_n^pn}.

I Value distributions can be ordere, pointwise.

I S(D) is the support of D, i.e. the set of values to which D assigns nonnull probability.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Approximation (Big-Step) Semantics, CBN:

M ⇓ ∅ V ⇓ {V¹}

M ⇓D N ⇓E M ⊕ N ⇓ ¹₂D +¹₂E M ⇓D {P {x/N } ⇓Eλx.P}λx.P ∈S(D)

M N ⇓ P

V ∈S(F)D(V )Eλx.P

I Example: consider M = I ⊕ ((II) ⊕ Ω), where I = λx.x and Ω = (λx.xx)(λx.xx).

M ⇓ ∅ M ⇓ {I¹²} M ⇓ {I³⁴}

I Semantics: [[M ]] = sup_{M ⇓D}D;

I Variations: Small-Step Semantics, CBV.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Approximation (Big-Step) Semantics, CBN:

M ⇓ ∅ V ⇓ {V¹}

M ⇓D N ⇓E M ⊕ N ⇓ ¹₂D +¹₂E M ⇓D {P {x/N } ⇓Eλx.P}λx.P ∈S(D)

M N ⇓ P

V ∈S(F)D(V )Eλx.P

I Example: consider M = I ⊕ ((II) ⊕ Ω), where I = λx.x and Ω = (λx.xx)(λx.xx).

M ⇓ ∅ M ⇓ {I¹²} M ⇓ {I³⁴}

I Semantics: [[M ]] = sup_{M ⇓D}D;

I Variations: Small-Step Semantics, CBV.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Approximation (Big-Step) Semantics, CBN:

M ⇓ ∅ V ⇓ {V¹}

M ⇓D N ⇓E M ⊕ N ⇓ ¹₂D +¹₂E M ⇓D {P {x/N } ⇓Eλx.P}λx.P ∈S(D)

M N ⇓ P

V ∈S(F)D(V )Eλx.P

I Example: consider M = I ⊕ ((II) ⊕ Ω), where I = λx.x and Ω = (λx.xx)(λx.xx).

M ⇓ ∅ M ⇓ {I¹²} M ⇓ {I³⁴}

I Semantics: [[M ]] = sup_{M ⇓D}D;

I Variations: Small-Step Semantics, CBV.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Approximation (Big-Step) Semantics, CBN:

M ⇓ ∅ V ⇓ {V¹}

M ⇓D N ⇓E M ⊕ N ⇓ ¹₂D +¹₂E M ⇓D {P {x/N } ⇓Eλx.P}λx.P ∈S(D)

M N ⇓ P

V ∈S(F)D(V )Eλx.P

I Example: consider M = I ⊕ ((II) ⊕ Ω), where I = λx.x and Ω = (λx.xx)(λx.xx).

M ⇓ ∅ M ⇓ {I¹²} M ⇓ {I³⁴}

I Semantics: [[M ]] = sup_{M ⇓D}D;

I Variations: Small-Step Semantics, CBV.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Approximation (Big-Step) Semantics, CBN:

M ⇓ ∅ V ⇓ {V¹}

M ⇓D N ⇓E M ⊕ N ⇓ ¹₂D +¹₂E M ⇓D {P {x/N } ⇓Eλx.P}λx.P ∈S(D)

M N ⇓ P

V ∈S(F)D(V )Eλx.P

I Example: consider M = I ⊕ ((II) ⊕ Ω), where I = λx.x and Ω = (λx.xx)(λx.xx).

M ⇓ ∅ M ⇓ {I¹²} M ⇓ {I³⁴}

I Semantics: [[M ]] = sup_{M ⇓D}D;

I Variations: Small-Step Semantics, CBV.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I Approximation (Big-Step) Semantics, CBN:

M ⇓ ∅ V ⇓ {V¹}

M ⇓D N ⇓E M ⊕ N ⇓ ¹₂D +¹₂E M ⇓D {P {x/N } ⇓Eλx.P}λx.P ∈S(D)

M N ⇓ P

V ∈S(F)D(V )Eλx.P

I Example: consider M = I ⊕ ((II) ⊕ Ω), where I = λx.x and Ω = (λx.xx)(λx.xx).

M ⇓ ∅ M ⇓ {I¹²} M ⇓ {I³⁴}

I Semantics: [[M ]] = sup_{M ⇓D}D;

I Variations: Small-Step Semantics, CBV.

Probabilistic λ-Calculus: Syntax and Operational Semantics

I As an example, consider the following recursive program, and call it M :

let rec fancy x = x (+) (fancy x+1) I One can easily check that:

M p0q ⇓ ∅ M p0q ⇓ {p0q¹²} M p0q ⇓ {p0q¹², p1q¹⁴} · · ·

I As a consequence:

[[M p0q]] = sup

M p0q⇓DD = {p0q¹², p1q¹⁴, p2q¹⁸, . . .}

I As an exercise, find a term N such that [[N ]] = {p1q¹², p4q¹⁴, p9q¹⁸, . . .}

Probabilistic λ-Calculus: Syntax and Operational Semantics

I As an example, consider the following recursive program, and call it M :

let rec fancy x = x (+) (fancy x+1) I One can easily check that:

M p0q ⇓ ∅ M p0q ⇓ {p0q¹²} M p0q ⇓ {p0q¹², p1q¹⁴} · · ·

I As a consequence:

[[M p0q]] = sup

M p0q⇓DD = {p0q¹², p1q¹⁴, p2q¹⁸, . . .}

I As an exercise, find a term N such that [[N ]] = {p1q¹², p4q¹⁴, p9q¹⁸, . . .}

Probabilistic λ-Calculus: Syntax and Operational Semantics

I As an example, consider the following recursive program, and call it M :

let rec fancy x = x (+) (fancy x+1) I One can easily check that:

M p0q ⇓ ∅ M p0q ⇓ {p0q¹²} M p0q ⇓ {p0q¹², p1q¹⁴} · · ·

I As a consequence:

[[M p0q]] = sup

M p0q⇓DD = {p0q¹², p1q¹⁴, p2q¹⁸, . . .}

I As an exercise, find a term N such that [[N ]] = {p1q¹², p4q¹⁴, p9q¹⁸, . . .}

Probabilistic λ-Calculus: Syntax and Operational Semantics

I As an example, consider the following recursive program, and call it M :

let rec fancy x = x (+) (fancy x+1) I One can easily check that:

M p0q ⇓ ∅ M p0q ⇓ {p0q¹²} M p0q ⇓ {p0q¹², p1q¹⁴} · · ·

I As a consequence:

[[M p0q]] = sup

M p0q⇓DD = {p0q¹², p1q¹⁴, p2q¹⁸, . . .}

I As an exercise, find a term N such that [[N ]] = {p1q¹², p4q¹⁴, p9q¹⁸, . . .}

Probabilistic λ-Calculus: Syntax and Operational Semantics

I As an example, consider the following recursive program, and call it M :

let rec fancy x = x (+) (fancy x+1) I One can easily check that:

M p0q ⇓ ∅ M p0q ⇓ {p0q¹²} M p0q ⇓ {p0q¹², p1q¹⁴} · · ·

I As a consequence:

[[M p0q]] = sup

M p0q⇓DD = {p0q¹², p1q¹⁴, p2q¹⁸, . . .}

I As an exercise, find a term N such that [[N ]] = {p1q¹², p4q¹⁴, p9q¹⁸, . . .}

Probabilistic λ-Calculus: Syntax and Operational Semantics

I As an example, consider the following recursive program, and call it M :

let rec fancy x = x (+) (fancy x+1) I One can easily check that:

M p0q ⇓ ∅ M p0q ⇓ {p0q¹²} M p0q ⇓ {p0q¹², p1q¹⁴} · · ·

I As a consequence:

[[M p0q]] = sup

M p0q⇓DD = {p0q¹², p1q¹⁴, p2q¹⁸, . . .}

I As an exercise, find a term N such that [[N ]] = {p1q¹², p4q¹⁴, p9q¹⁸, . . .}

Contextual Equivalence in a Probabilistic Setting

I In analogy to the deterministic setting, we observe convergence, which now becomes quantitative.

I The observable behaviour of M is given by P[[M ]] = P_{V ∈V}[[M ]](V ).

I ButP[[M ]] is nothing more than the probability of convergence for the term M .

I Contexts are extended to reflect the presence of probabilistic choice

C ::= [·]

|

|

|

|

|

I Analogously to the deterministic case, M ≡ N iff for every C, the following equality holds:

X[[C[M ]]] =X

[[C[N ]]].

Motivating Example: Perfect Security

Motivating Example: Perfect Security

I We want to formalize the notion of perfect security for an encryption scheme.

I Take M and C as the random variables modeling messages and cryptograms, respectively.

I Of course, the two variables are not independent, at least in principle.

I If we want the underlying scheme to be secure, we need to be sure that they are as independent as possible.

Pr (M = m | C = c) = Pr (M = m).

Pr (C = c | M = m) = Pr (C = c).

Pr (C = c | M = m0) = Pr (C = c | M = m1).

Motivating Example: Perfect Security

I We want to formalize the notion of perfect security for an encryption scheme.

I Take M and C as the random variables modeling messages and cryptograms, respectively.

I Of course, the two variables are not independent, at least in principle.

I If we want the underlying scheme to be secure, we need to be sure that they are as independent as possible.

Pr (M = m | C = c) = Pr (M = m).

Pr (C = c | M = m) = Pr (C = c).

Pr (C = c | M = m0) = Pr (C = c | M = m1).