Skip to content
STIMSMITH

Term-Level Modeling

Concept WIKI v1 · 5/25/2026

Term-level modeling is an abstraction style used in formal verification, where data values can be treated as uninterpreted terms and operations can be represented by uninterpreted functions. In the UCLID5-based verification of pipelined Y86-64 microprocessors, this style is described as suitable for Burch-Dill correspondence checking and for modeling hardware blocks whose detailed functionality is unnecessary as long as they behave consistently across the pipeline and the sequential reference model.

Overview

Term-level modeling is a formal-verification modeling style in which values may be represented as uninterpreted terms. In the UCLID5 setting described for verifying pipelined Y86-64 microprocessors, uninterpreted data is identified as suitable for the term-level modeling demonstrated by Burch and Dill. These terms can be tested for equality, and they can be used together with uninterpreted functions whose behavior is arbitrary but consistent. [term-level-uninterpreted]

Role in hardware verification

In the cited UCLID5 verification flow, the modeled system combines a pipelined microprocessor with a sequential reference implementation, and the verification script describes the steps for Burch-Dill correspondence checking. For pipelined microprocessor verification, the hardware modeling aspects of UCLID5 are used: hardware is represented as state machines that compute a next state from the current state and then transition to that next state. [uclid5-verification-setting]

Within that setting, term-level modeling supports abstraction of hardware blocks. Uninterpreted functions can model blocks whose internal implementation details are not required for the proof, provided those blocks behave consistently in both the pipeline model and the sequential reference model. [hardware-block-abstraction]

Uninterpreted functions

A central mechanism in term-level modeling is the use of uninterpreted functions. UCLID5 treats such functions as arbitrary but consistent: for a function f over two arguments, if x₁ = x₂ and y₁ = y₂, then f(x₁, y₁) = f(x₂, y₂). This consistency property allows the verifier to reason about equality without requiring a concrete implementation of the function. [uninterpreted-function-consistency]

The evidence gives branch-decision logic as an example: whether a branch should be taken can be modeled as an uninterpreted function returning a Boolean value, with arguments including an enumerated function-code type and an uninterpreted condition-code type. [branch-decision-example]

Abstraction level

The UCLID5 modeling discussion emphasizes that different data types create choices about abstraction level. The stated general rule is to use the most abstract model that still captures the properties needed to guarantee correctness. In the Y86-64 pipeline verification work, different pipeline variants required different levels of abstraction. [abstraction-guideline]

Interaction with SMT-based verification

Given a model and a verification script, UCLID5 generates verification conditions expressed as formulas over the theories used by the model, typically as negations of the properties being checked. It then invokes an SMT solver; in the cited work, Z3 was used. The SMT solver may report the formula unsatisfiable, satisfiable, or indeterminate. A satisfiable result can provide concrete values for data elements, including uninterpreted functions, which UCLID5 uses to generate counterexamples. [smt-flow]

LINKED ENTITIES

1 links
Uninterpreted Functions USES

CITATIONS

7 sources
7 citations
[1] term-level-uninterpreted Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5
[2] uclid5-verification-setting Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5
[3] hardware-block-abstraction Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5
[4] uninterpreted-function-consistency Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5
[5] branch-decision-example Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5
[6] abstraction-guideline Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5
[7] smt-flow Formal Verification of Pipelined Y86-64 Microprocessors with UCLID5