A Certified Proof Checker for Deep Neural Network Verification in Imandra

Remi Desmartin; Omri Isac; Grant Passmore; Ekaterina Komendantskaya; Kathrin Stark; Guy Katz

doi:10.4230/LIPIcs.ITP.2025.1

A Certified Proof Checker for Deep Neural Network Verification in Imandra

Remi Desmartin
, Omri Isac
, Grant Passmore
, Ekaterina Komendantskaya
, Kathrin Stark
, Guy Katz

The Rachel and Selim Benin School of Engineering and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Recent advances in the verification of deep neural networks (DNNs) have opened the way for a broader usage of DNN verification technology in many application areas, including safety-critical ones. However, DNN verifiers are themselves complex programs that have been shown to be susceptible to errors and numerical imprecision; this, in turn, has raised the question of trust in DNN verifiers. One prominent attempt to address this issue is enhancing DNN verifiers with the capability of producing certificates of their results that are subject to independent algorithmic checking. While formulations of Marabou certificate checking already exist on top of the state-of-the-art DNN verifier Marabou, they are implemented in C++, and that code itself raises the question of trust (e.g., in the precision of floating point calculations or guarantees for implementation soundness). Here, we present an alternative implementation of the Marabou certificate checking in Imandra – an industrial functional programming language and an interactive theorem prover (ITP) – that allows us to obtain full proof of certificate correctness. The significance of the result is two-fold. Firstly, it gives stronger independent guarantees for Marabou proofs. Secondly, it opens the way for the wider adoption of DNN verifiers in interactive theorem proving in the same way as many ITPs already incorporate SMT solvers.

Original language	English
Title of host publication	16th International Conference on Interactive Theorem Proving, ITP 2025
Editors	Yannick Forster, Chantal Keller
Publisher	Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing
ISBN (Electronic)	9783959773966
DOIs	https://doi.org/10.4230/LIPIcs.ITP.2025.1
State	Published - 22 Sep 2025
Event	16th International Conference on Interactive Theorem Proving, ITP 2025 - Reykjavik, Iceland Duration: 28 Sep 2025 → 1 Oct 2025

Publication series

Name	Leibniz International Proceedings in Informatics, LIPIcs
Volume	352
ISSN (Print)	1868-8969

Conference

Conference	16th International Conference on Interactive Theorem Proving, ITP 2025
Country/Territory	Iceland
City	Reykjavik
Period	28/09/25 → 1/10/25

Bibliographical note

Publisher Copyright:
© Remi Desmartin, Omri Isac, Grant Passmore, Ekaterina Komendantskaya, Kathrin Stark, and Guy Katz;

Keywords

Farkas Lemma
Neural Network Verification
Proof Certification

Access to Document

10.4230/LIPIcs.ITP.2025.1

Cite this

Desmartin, R., Isac, O., Passmore, G., Komendantskaya, E., Stark, K., & Katz, G. (2025). A Certified Proof Checker for Deep Neural Network Verification in Imandra. In Y. Forster, & C. Keller (Eds.), 16th International Conference on Interactive Theorem Proving, ITP 2025 Article 1 (Leibniz International Proceedings in Informatics, LIPIcs; Vol. 352). Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing. https://doi.org/10.4230/LIPIcs.ITP.2025.1

Desmartin, Remi ; Isac, Omri ; Passmore, Grant et al. / A Certified Proof Checker for Deep Neural Network Verification in Imandra. 16th International Conference on Interactive Theorem Proving, ITP 2025. editor / Yannick Forster ; Chantal Keller. Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing, 2025. (Leibniz International Proceedings in Informatics, LIPIcs).

@inproceedings{e3af30f03e0043d0af7f031d5d84c2fe,

title = "A Certified Proof Checker for Deep Neural Network Verification in Imandra",

abstract = "Recent advances in the verification of deep neural networks (DNNs) have opened the way for a broader usage of DNN verification technology in many application areas, including safety-critical ones. However, DNN verifiers are themselves complex programs that have been shown to be susceptible to errors and numerical imprecision; this, in turn, has raised the question of trust in DNN verifiers. One prominent attempt to address this issue is enhancing DNN verifiers with the capability of producing certificates of their results that are subject to independent algorithmic checking. While formulations of Marabou certificate checking already exist on top of the state-of-the-art DNN verifier Marabou, they are implemented in C++, and that code itself raises the question of trust (e.g., in the precision of floating point calculations or guarantees for implementation soundness). Here, we present an alternative implementation of the Marabou certificate checking in Imandra – an industrial functional programming language and an interactive theorem prover (ITP) – that allows us to obtain full proof of certificate correctness. The significance of the result is two-fold. Firstly, it gives stronger independent guarantees for Marabou proofs. Secondly, it opens the way for the wider adoption of DNN verifiers in interactive theorem proving in the same way as many ITPs already incorporate SMT solvers.",

keywords = "Farkas Lemma, Neural Network Verification, Proof Certification",

author = "Remi Desmartin and Omri Isac and Grant Passmore and Ekaterina Komendantskaya and Kathrin Stark and Guy Katz",

note = "Publisher Copyright: {\textcopyright} Remi Desmartin, Omri Isac, Grant Passmore, Ekaterina Komendantskaya, Kathrin Stark, and Guy Katz;; 16th International Conference on Interactive Theorem Proving, ITP 2025 ; Conference date: 28-09-2025 Through 01-10-2025",

year = "2025",

month = sep,

day = "22",

doi = "10.4230/LIPIcs.ITP.2025.1",

language = "אנגלית",

series = "Leibniz International Proceedings in Informatics, LIPIcs",

publisher = "Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing",

editor = "Yannick Forster and Chantal Keller",

booktitle = "16th International Conference on Interactive Theorem Proving, ITP 2025",

address = "גרמניה",

}

Desmartin, R, Isac, O, Passmore, G, Komendantskaya, E, Stark, K & Katz, G 2025, A Certified Proof Checker for Deep Neural Network Verification in Imandra. in Y Forster & C Keller (eds), 16th International Conference on Interactive Theorem Proving, ITP 2025., 1, Leibniz International Proceedings in Informatics, LIPIcs, vol. 352, Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing, 16th International Conference on Interactive Theorem Proving, ITP 2025, Reykjavik, Iceland, 28/09/25. https://doi.org/10.4230/LIPIcs.ITP.2025.1

A Certified Proof Checker for Deep Neural Network Verification in Imandra. / Desmartin, Remi; Isac, Omri; Passmore, Grant et al.
16th International Conference on Interactive Theorem Proving, ITP 2025. ed. / Yannick Forster; Chantal Keller. Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing, 2025. 1 (Leibniz International Proceedings in Informatics, LIPIcs; Vol. 352).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A Certified Proof Checker for Deep Neural Network Verification in Imandra

AU - Desmartin, Remi

AU - Isac, Omri

AU - Passmore, Grant

AU - Komendantskaya, Ekaterina

AU - Stark, Kathrin

AU - Katz, Guy

N1 - Publisher Copyright: © Remi Desmartin, Omri Isac, Grant Passmore, Ekaterina Komendantskaya, Kathrin Stark, and Guy Katz;

PY - 2025/9/22

Y1 - 2025/9/22

N2 - Recent advances in the verification of deep neural networks (DNNs) have opened the way for a broader usage of DNN verification technology in many application areas, including safety-critical ones. However, DNN verifiers are themselves complex programs that have been shown to be susceptible to errors and numerical imprecision; this, in turn, has raised the question of trust in DNN verifiers. One prominent attempt to address this issue is enhancing DNN verifiers with the capability of producing certificates of their results that are subject to independent algorithmic checking. While formulations of Marabou certificate checking already exist on top of the state-of-the-art DNN verifier Marabou, they are implemented in C++, and that code itself raises the question of trust (e.g., in the precision of floating point calculations or guarantees for implementation soundness). Here, we present an alternative implementation of the Marabou certificate checking in Imandra – an industrial functional programming language and an interactive theorem prover (ITP) – that allows us to obtain full proof of certificate correctness. The significance of the result is two-fold. Firstly, it gives stronger independent guarantees for Marabou proofs. Secondly, it opens the way for the wider adoption of DNN verifiers in interactive theorem proving in the same way as many ITPs already incorporate SMT solvers.

AB - Recent advances in the verification of deep neural networks (DNNs) have opened the way for a broader usage of DNN verification technology in many application areas, including safety-critical ones. However, DNN verifiers are themselves complex programs that have been shown to be susceptible to errors and numerical imprecision; this, in turn, has raised the question of trust in DNN verifiers. One prominent attempt to address this issue is enhancing DNN verifiers with the capability of producing certificates of their results that are subject to independent algorithmic checking. While formulations of Marabou certificate checking already exist on top of the state-of-the-art DNN verifier Marabou, they are implemented in C++, and that code itself raises the question of trust (e.g., in the precision of floating point calculations or guarantees for implementation soundness). Here, we present an alternative implementation of the Marabou certificate checking in Imandra – an industrial functional programming language and an interactive theorem prover (ITP) – that allows us to obtain full proof of certificate correctness. The significance of the result is two-fold. Firstly, it gives stronger independent guarantees for Marabou proofs. Secondly, it opens the way for the wider adoption of DNN verifiers in interactive theorem proving in the same way as many ITPs already incorporate SMT solvers.

KW - Farkas Lemma

KW - Neural Network Verification

KW - Proof Certification

UR - https://www.scopus.com/pages/publications/105019535388

U2 - 10.4230/LIPIcs.ITP.2025.1

DO - 10.4230/LIPIcs.ITP.2025.1

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:105019535388

T3 - Leibniz International Proceedings in Informatics, LIPIcs

BT - 16th International Conference on Interactive Theorem Proving, ITP 2025

A2 - Forster, Yannick

A2 - Keller, Chantal

PB - Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing

T2 - 16th International Conference on Interactive Theorem Proving, ITP 2025

Y2 - 28 September 2025 through 1 October 2025

ER -

Desmartin R, Isac O, Passmore G, Komendantskaya E, Stark K, Katz G. A Certified Proof Checker for Deep Neural Network Verification in Imandra. In Forster Y, Keller C, editors, 16th International Conference on Interactive Theorem Proving, ITP 2025. Schloss Dagstuhl- Leibniz-Zentrum fur Informatik GmbH, Dagstuhl Publishing. 2025. 1. (Leibniz International Proceedings in Informatics, LIPIcs). doi: 10.4230/LIPIcs.ITP.2025.1

A Certified Proof Checker for Deep Neural Network Verification in Imandra

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this