Hyperproperties are properties of systems that relate multiple computation traces, including security and concurrency properties. This paper introduces a bounded model checking (BMC) algorithm for hyperproperties expressed in HyperLTL, which - to the best of our knowledge - is the first such algorithm. Just as the classic BMC technique for LTL primarily aims at finding bugs, our approach also targets identifying counterexamples. BMC for LTL is reduced to SAT solving, because LTL describes a property via inspecting individual traces. HyperLTL allows explicit and simultaneous quantification over traces and describes properties that involves multiple traces and, hence, our BMC approach naturally reduces to QBF solving. We report on successful and efficient model checking, implemented in a tool called HyperQube, of a rich set of experiments on a variety of case studies, including security, concurrent data structures, path planning for robots, and testing.

中文翻译：

---

超属性的有界模型检查

超属性是与多个计算跟踪相关的系统属性，包括安全性和并发性属性。本文介绍了一种用于以 HyperLTL 表示的超属性的有界模型检查 (BMC) 算法，据我们所知，这是第一个此类算法。正如用于 LTL 的经典 BMC 技术主要旨在发现错误一样，我们的方法也旨在识别反例。LTL 的 BMC 简化为 SAT 求解，因为 LTL 通过检查单个跟踪来描述属性。HyperLTL 允许对迹线进行显式和同时量化，并描述涉及多个迹线的属性，因此，我们的 BMC 方法自然会简化为 QBF 求解。我们报告了在名为 HyperQube 的工具中实现的成功和高效的模型检查，