%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 % Electronic Journal of Mathematics and Technology (eJMT) %

 % style sheet for LaTeX.  Please do not modify sections   %

 % or commands marked 'eJMT'.                              %

 %                                                         %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %                                                         %

 % eJMT commands                                           %

 %                                                         %

 \documentclass[12pt,a4paper]{article}%                    %

 \usepackage{times}                                        %

 \usepackage{amsfonts,amsmath,amssymb}                     %

 \usepackage[a4paper]{geometry}                            %

 \usepackage{fancyhdr}                                     %

 \usepackage{color}                                        %

 \usepackage[pdftex]{hyperref} % see note below            %

 \usepackage{graphicx}%                                    %

 \hypersetup{                                              %

     a4paper,                                              %

     breaklinks                                            %

 }                                                         %

 %                                                         %

 \newtheorem{theorem}{Theorem}                             %

 \newtheorem{acknowledgement}[theorem]{Acknowledgement}    %

 \newtheorem{algorithm}[theorem]{Algorithm}                %

 \newtheorem{axiom}[theorem]{Axiom}                        %

 \newtheorem{case}[theorem]{Case}                          %

 \newtheorem{claim}[theorem]{Claim}                        %

 \newtheorem{conclusion}[theorem]{Conclusion}              %

 \newtheorem{condition}[theorem]{Condition}                %

 \newtheorem{conjecture}[theorem]{Conjecture}              %

 \newtheorem{corollary}[theorem]{Corollary}                %

 \newtheorem{criterion}[theorem]{Criterion}                %

 \newtheorem{definition}[theorem]{Definition}              %

 \newtheorem{example}[theorem]{Example}                    %

 \newtheorem{exercise}[theorem]{Exercise}                  %

 \newtheorem{lemma}[theorem]{Lemma}                        %

 \newtheorem{notation}[theorem]{Notation}                  %

 \newtheorem{problem}[theorem]{Problem}                    %

 \newtheorem{proposition}[theorem]{Proposition}            %

 \newtheorem{remark}[theorem]{Remark}                      %

 \newtheorem{solution}[theorem]{Solution}                  %

 \newtheorem{summary}[theorem]{Summary}                    %

 \newenvironment{proof}[1][Proof]{\noindent\textbf{#1.} }  %

 {\ \rule{0.5em}{0.5em}}                                   %

 %                                                         %

 % eJMT page dimensions                                    %

 %                                                         %

 \geometry{left=2cm,right=2cm,top=3.2cm,bottom=4cm}        %

 %                                                         %

 % eJMT header & footer                                    %

 %                                                         %

 \newcounter{ejmtFirstpage}                                %

 \setcounter{ejmtFirstpage}{1}                             %

 \pagestyle{empty}                                         %

 \setlength{\headheight}{14pt}                             %

 \geometry{left=2cm,right=2cm,top=3.2cm,bottom=4cm}        %

 \pagestyle{fancyplain}                                    %

 \fancyhf{}                                                %

 \fancyhead[c]{\small The Electronic Journal of Mathematics%

 \ and Technology, Volume 1, Number 1, ISSN 1933-2823}     %

 \cfoot{%                                                  %

   \ifnum\value{ejmtFirstpage}=0%                          %

     {\vtop to\hsize{\hrule\vskip .2cm\thepage}}%          %

   \else\setcounter{ejmtFirstpage}{0}\fi%                  %

 }                                                         %

 %                                                         %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %

 % Please place your own definitions here

 %

 \def\isac{${\cal I}\mkern-2mu{\cal S}\mkern-5mu{\cal AC}$}

 \def\sisac{\footnotesize${\cal I}\mkern-2mu{\cal S}\mkern-5mu{\cal AC}$}

 \usepackage{color}

 \definecolor{lgray}{RGB}{238,238,238}

 %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %                                                         %

 % How to use hyperref                                     %

 % -------------------                                     %

 %                                                         %

 % Probably the only way you will need to use the hyperref %

 % package is as follows.  To make some text, say          %

 % "My Text Link", into a link to the URL                  %

 % http://something.somewhere.com/mystuff, use             %

 %                                                         %

 % \href{http://something.somewhere.com/mystuff}{My Text Link}

 %                                                         %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %

 \begin{document}

 %

 % document title

 %

 \title{Trials with TP-based Programming

 \\

 for Interactive Course Material}%

 %

 % Single author.  Please supply at least your name,

 % email address, and affiliation here.

 %

 \author{\begin{tabular}{c}

 \textit{Jan Ro\v{c}nik} \\

 jan.rocnik@student.tugraz.at \\

 IST, SPSC\\

 Graz University of Technologie\\

 Austria\end{tabular}

 }%

 %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %                                                         %

 % eJMT commands - do not change these                     %

 %                                                         %

 \date{}                                                   %

 \maketitle                                                %

 %                                                         %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %

 % abstract

 %

 \begin{abstract}

 Traditional course material in engineering disciplines lacks an

 important component, interactive support for step-wise problem

 solving. Theorem-Proving (TP) technology is appropriate for one part

 of such support, in checking user-input. For the other part of such

 support, guiding the learner towards a solution, another kind of

 technology is required. %TODO ... connect to prototype ...

 A prototype combines TP with a programming language, the latter

 interpreted in a specific way: certain statements in a program, called

 tactics, are treated as breakpoints where control is handed over to

 the user. An input formula is checked by TP (using logical context

 built up by the interpreter); and if a learner gets stuck, a program

 describing the steps towards a solution of a problem ``knows the next

 step''. This kind of interpretation is called Lucas-Interpretation for

 \emph{TP-based programming languages}.

 This paper describes the prototype's TP-based programming language

 within a case study creating interactive material for an advanced

 course in Signal Processing: implementation of definitions and

 theorems in TP, formal specification of a problem and step-wise

 development of the program solving the problem. Experiences with the

 ork flow in iterative development with testing and identifying errors

 are described, too. The description clarifies the components missing

 in the prototype's language as well as deficiencies experienced during

 programming.

 \par

 These experiences are particularly notable, because the author is the

 first programmer using the language beyond the core team which

 developed the prototype's TP-based language interpreter.

 %

 \end{abstract}%

 %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %                                                         %

 % eJMT command                                            %

 %                                                         %

 \thispagestyle{fancy}                                     %

 %                                                         %

 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

 %

 % Please use the following to indicate sections, subsections,

 % etc.  Please also use \subsubsection{...}, \paragraph{...}

 % and \subparagraph{...} as necessary.

 %

 \section{Introduction}\label{intro}

 % \paragraph{Didactics of mathematics} 

 %WN: wenn man in einem high-quality paper von 'didactics' spricht, 

 %WN muss man am state-of-the-art ankn"upfen -- siehe

 %WN W.Neuper, On the Emergence of TP-based Educational Math Assistants

 % faces a specific issue, a gap

 % between (1) introduction of math concepts and skills and (2)

 % application of these concepts and skills, which usually are separated

 % into different units in curricula (for good reasons). For instance,

 % (1) teaching partial fraction decomposition is separated from (2)

 % application for inverse Z-transform in signal processing.

 % 

 % \par This gap is an obstacle for applying math as an fundamental

 % thinking technology in engineering: In (1) motivation is lacking

 % because the question ``What is this stuff good for?'' cannot be

 % treated sufficiently, and in (2) the ``stuff'' is not available to

 % students in higher semesters as widespread experience shows.

 % 

 % \paragraph{Motivation} taken by this didactic issue on the one hand,

 % and ongoing research and development on a novel kind of educational

 % mathematics assistant at Graz University of

 % Technology~\footnote{http://www.ist.tugraz.at/isac/} promising to

 % scope with this issue on the other hand, several institutes are

 % planning to join their expertise: the Institute for Information

 % Systems and Computer Media (IICM), the Institute for Software

 % Technology (IST), the Institutes for Mathematics, the Institute for

 % Signal Processing and Speech Communication (SPSC), the Institute for

 % Structural Analysis and the Institute of Electrical Measurement and

 % Measurement Signal Processing.

 %WN diese Information ist f"ur das Paper zu spezielle, zu aktuell 

 %WN und damit zu verg"anglich.

 % \par This thesis is the first attempt to tackle the above mentioned

 % issue, it focuses on Telematics, because these specific studies focus

 % on mathematics in \emph{STEOP}, the introductory orientation phase in

 % Austria. \emph{STEOP} is considered an opportunity to investigate the

 % impact of {\sisac}'s prototype on the issue and others.

 % 

 Traditional course material in engineering disciplines lacks an

 important component, interactive support for step-wise problem

 solving. Theorem-Proving (TP) technology can provide such support by

 specific services. An important part of such services is called

 ``next-step-guidance'', generated by a specific kind of ``TP-based

 programming language''. In the

 {\sisac}-project~\footnote{http://www.ist.tugraz.at/projects/isac/} such

 a language is prototyped in line with~\cite{plmms10} and built upon

 the theorem prover

 Isabelle~\cite{Nipkow-Paulson-Wenzel:2002}\footnote{http://isabelle.in.tum.de/}.

 The TP services are coordinated by a specific interpreter for the

 programming language, called

 Lucas-Interpreter~\cite{wn:lucas-interp-12}. The language and the

 interpreter will be briefly re-introduced in order to make the paper

 self-contained.

 \medskip The main part of the paper is an account of first experiences

 with programming in this TP-based language. The experience was gained

 in a case study by the author. The author was considered an ideal

 candidate for this study for the following reasons: as a student in

 Telematics (computer science with focus on Signal Processing) he had

 general knowledge in programming as well as specific domain knowledge

 in Signal Processing; and he was not involved in the development of

 {\sisac}'s programming language and interpeter, thus a novice to the

 language.

 The goal of the case study was (1) some TP-based programs for

 interactive course material for a specific ``Adavanced Signal

 Processing Lab'' in a higher semester, (2) respective program

 development with as little advice from the {\sisac}-team and (3) records

 and comments for the main steps of development in an Isabelle theory;

 this theory should provide guidelines for future programmers. An

 excerpt from this theory is the main part of this paper.

 \medskip The paper will use the problem in Fig.\ref{fig-interactive} as a

 running example:

 \begin{figure} [htb]

 \begin{center}

 \includegraphics[width=120mm]{fig/isac-Ztrans-math.png}

 \caption{Step-wise problem solving guided by the TP-based program}

 \label{fig-interactive}

 \end{center}

 \end{figure}

 The problem is from the domain of Signal Processing and requests to

 determine the inverse Z-transform for a given term. Fig.\ref{fig-interactive}

 also shows the beginning of the interactive construction of a solution

 for the problem. This construction is done in the right window named

 ``Worksheet''.

 User-interaction on the Worksheet is {\em checked} and {\em guided} by

 TP services:

 \begin{enumerate}

 \item Formulas input by the user are {\em checked} by TP: such a

 formula establishes a proof situation --- the prover has to derive the

 formula from the logical context. The context is built up from the

 formal specification of the problem (here hidden from the user) by the

 Lucas-Interpreter.

 \item If the user gets stuck, the program developed below in this

 paper ``knows the next step'' from behind the scenes. How the latter

 TP-service is exploited by dialogue authoring is out of scope of this

 paper and can be studied in~\cite{gdaroczy-EP-13}.

 \end{enumerate} It should be noted that the programmer using the

 TP-based language is not concerned with interaction at all; we will

 see that the program contains neither input-statements nor

 output-statements. Rather, interaction is handled by services

 generated automatically.

 \medskip So there is a clear separation of concerns: Dialogues are

 adapted by dialogue authors (in Java-based tools), using automatically

 generated TP services, while the TP-based program is written by

 mathematics experts (in Isabelle/ML). The latter is concern of this

 paper.

 \medskip The paper is structed as follows: The introduction

 \S\ref{intro} is followed by a brief re-introduction of the TP-based

 programming language in \S\ref{PL}, which extends the executable

 fragment of Isabelle's language (\S\ref{PL-isab}) by tactics which

 play a specific role in Lucas-Interpretation and in providing the TP

 services (\S\ref{PL-tacs}). The main part in \S\ref{trial} describes

 the main steps in developing the program for the running example:

 prepare domain knowledge, implement the formal specification of the

 problem, prepare the environment for the program, implement the

 program. The workflow of programming, debugging and testing is

 described in \S\ref{workflow}. The conclusion \S\ref{conclusion} will

 give directions identified for future development. 

 \section{\isac's Prototype for a Programming Language}\label{PL} 

 The prototype's language extends the executable fragment in the

 language of the theorem prover

 Isabelle~\cite{Nipkow-Paulson-Wenzel:2002}\footnote{http://isabelle.in.tum.de/}

 by tactics which have a specific role in Lucas-Interpretation.

 \subsection{The Executable Fragment of Isabelle's Language}\label{PL-isab}

 The executable fragment consists of data-type and function

 definitions.  It's usability even suggests that fragment for

 introductory courses \cite{nipkow-prog-prove}. HOL is a typed logic

 whose type system resembles that of functional programming

 languages. Thus there are

 \begin{description}

 \item[base types,] in particular \textit{bool}, the type of truth

 values, \textit{nat}, \textit{int}, \textit{complex}, and the types of

 natural, integer and complex numbers respectively in mathematics.

 \item[type constructors] allow to define arbitrary types, from

 \textit{set}, \textit{list} to advanced data-structures like

 \textit{trees}, red-black-trees etc.

 \item[function types,] denoted by $\Rightarrow$.

 \item[type variables,] denoted by $^\prime a, ^\prime b$ etc, provide

 type polymorphism. Isabelle automatically computes the type of each

 variable in a term by use of Hindley-Milner type inference

 \cite{pl:hind97,Milner-78}.

 \end{description}

 \textbf{Terms} are formed as in functional programming by applying

 functions to arguments. If $f$ is a function of type

 $\tau_1\Rightarrow \tau_2$ and $t$ is a term of type $\tau_1$ then

 $f\;t$ is a term of type~$\tau_2$. $t\;::\;\tau$ means that term $t$

 has type $\tau$. There are many predefined infix symbols like $+$ and

 $\leq$ most of which are overloaded for various types.

 HOL also supports some basic constructs from functional programming:

 {\it\label{isabelle-stmts}

 \begin{tabbing} 123\=\kill

 \>$( \; {\tt if} \; b \; {\tt then} \; t_1 \; {\tt else} \; t_2 \;)$\\

 \>$( \; {\tt let} \; x=t \; {\tt in} \; u \; )$\\

 \>$( \; {\tt case} \; t \; {\tt of} \; {\it pat}_1

   \Rightarrow t_1 \; |\dots| \; {\it pat}_n\Rightarrow t_n \; )$

 \end{tabbing} }

 \noindent \textit{The running example's program uses some of these elements

 (marked by {\tt tt-font} on p.\pageref{expl-program}): ${\tt

 let}\dots{\tt in}$ in lines $02 \dots 11$, as well as {\tt last} for

 lists and {\tt o} for functional (forward) composition in line

 $10$. In fact, the whole program is an Isabelle term with specific

 function constants like {\sc program}, {\sc Substitute} and {\sc

 Rewrite\_Set\_Inst} in lines $01$ and $10$ respectively.}

 % Terms may also contain $\lambda$-abstractions. For example, $\lambda

 % x. \; x$ is the identity function.

 \textbf{Formulae} are terms of type \textit{bool}. There are the basic

 constants \textit{True} and \textit{False} and the usual logical

 connectives (in decreasing order of precedence): $\neg, \land, \lor,

 \rightarrow$.

 \textbf{Equality} is available in the form of the infix function $=$

 of type $a \Rightarrow a \Rightarrow {\it bool}$. It also works for

 formulas, where it means ``if and only if''.

 \textbf{Quantifiers} are written $\forall x. \; P$ and $\exists x. \;

 P$.  Quantifiers lead to non-executable functions, so functions do not

 always correspond to programs, for instance, if comprising \\$(

 \;{\it if} \; \exists x.\;P \; {\it then} \; e_1 \; {\it else} \; e_2

 \;)$.

 \subsection{\isac's Tactics for Lucas-Interpretation}\label{PL-tacs}

 The prototype extends Isabelle's language by specific statements

 called tactics~\footnote{{\sisac}'s tactics are different from

 Isabelle's tactics: the former concern steps in a calculation, the

 latter concern proof steps.}  and tacticals. For the programmer these

 statements are functions with the following signatures:

 \begin{description}

 \item[Rewrite:] ${\it theorem}\Rightarrow{\it term}\Rightarrow{\it

 term} * {\it term}\;{\it list}$:

 this tactic appplies {\it theorem} to a {\it term} yielding a {\it

 term} and a {\it term list}, the list are assumptions generated by

 conditional rewriting. For instance, the {\it theorem}

 $b\not=0\land c\not=0\Rightarrow\frac{a\cdot c}{b\cdot c}=\frac{a}{b}$

 applied to the {\it term} $\frac{2\cdot x}{3\cdot x}$ yields

 $(\frac{2}{3}, [x\not=0])$.

 \item[Rewrite\_Set:] ${\it ruleset}\Rightarrow{\it

 term}\Rightarrow{\it term} * {\it term}\;{\it list}$:

 this tactic appplies {\it ruleset} to a {\it term}; {\it ruleset} is

 a confluent and terminating term rewrite system, in general. If

 none of the rules ({\it theorem}s) is applicable on interpretation

 of this tactic, an exception is thrown.

 % \item[Rewrite\_Inst:] ${\it substitution}\Rightarrow{\it

 % theorem}\Rightarrow{\it term}\Rightarrow{\it term} * {\it term}\;{\it

 % list}$:

 % 

 % \item[Rewrite\_Set\_Inst:] ${\it substitution}\Rightarrow{\it

 % ruleset}\Rightarrow{\it term}\Rightarrow{\it term} * {\it term}\;{\it

 % list}$:

 \item[Substitute:] ${\it substitution}\Rightarrow{\it

 term}\Rightarrow{\it term}$:

 \item[Take:] ${\it term}\Rightarrow{\it term}$:

 this tactic has no effect in the program; but it creates a side-effect

 by Lucas-Interpretation (see below) and writes {\it term} to the

 Worksheet.

 \item[Subproblem:] ${\it theory} * {\it specification} * {\it

 method}\Rightarrow{\it argument}\;{\it list}\Rightarrow{\it term}$:

 this tactic allows to enter a phase of interactive specification

 of a theory ($\Re$, $\cal C$, etc), a formal specification (for instance,

 a specific type of equation) and a method (for instance, solving an

 equation symbolically or numerically).

 \end{description}

 The tactics play a specific role in

 Lucas-Interpretation~\cite{wn:lucas-interp-12}: they are treated as

 break-points and control is handed over to the user. The user is free

 to investigate underlying knowledge, applicable theorems, etc.  And

 the user can proceed constructing a solution by input of a tactic to

 be applied or by input of a formula; in the latter case the

 Lucas-Interpreter has built up a logical context (initialised with the

 precondition of the formal specification) such that Isabelle can

 derive the formula from this context --- or give feedback, that no

 derivation can be found.

 \subsection{Tacticals for Control of Interpretation}

 The flow of control in a program can be determined by {\tt if then else}

 and {\tt case of} as mentioned on p.\pageref{isabelle-stmts} and also

 by additional tacticals:

 \begin{description}

 \item[Repeat:] ${\it tactic}\Rightarrow{\it term}\Rightarrow{\it

 term}$: iterates over tactics which take a {\it term} as argument as

 long as a tactic is applicable (for instance, {\it Rewrite\_Set} might

 not be applicable).

 \item[Try:] ${\it tactic}\Rightarrow{\it term}\Rightarrow{\it term}$:

 if {\it tactic} is applicable, then it is applied to {\it term},

 otherwise {\it term} is passed on unchanged.

 \item[Or:] ${\it tactic}\Rightarrow{\it tactic}\Rightarrow{\it

 term}\Rightarrow{\it term}$:

 \item[@@:] ${\it tactic}\Rightarrow{\it tactic}\Rightarrow{\it

 term}\Rightarrow{\it term}$:

 \item[While:] ${\it term::bool}\Rightarrow{\it tactic}\Rightarrow{\it

 term}\Rightarrow{\it term}$:

 \end{description}

 no input / output --- Lucas-Interpretation

 .\\.\\.\\TODO\\.\\.\\

 \section{Development of a Program on Trial}\label{trial} 

 As mentioned above, {\sisac} is an experimental system for a proof of

 concept for Lucas-Interpretation~\cite{wn:lucas-interp-12}.  The

 latter interprets a specific kind of TP-based programming language,

 which is as experimental as the whole prototype --- so programming in

 this language can be only ``on trial'', presently.  However, as a

 prototype, the language addresses essentials described below.

 \subsection{Mechanization of Math --- Domain Engineering}\label{isabisac}

 %WN was Fachleute unter obigem Titel interessiert findet

 %WN unterhalb des auskommentierten Textes.

 %WN der Text unten spricht Benutzer-Aspekte anund ist nicht speziell

 %WN auf Computer-Mathematiker fokussiert.

 % \paragraph{As mentioned in the introduction,} a prototype of an

 % educational math assistant called

 % {{\sisac}}\footnote{{{\sisac}}=\textbf{Isa}belle for

 % \textbf{C}alculations, see http://www.ist.tugraz.at/isac/.} bridges

 % the gap between (1) introducation and (2) application of mathematics:

 % {{\sisac}} is based on Computer Theorem Proving (TP), a technology which

 % requires each fact and each action justified by formal logic, so

 % {{{\sisac}{}}} makes justifications transparent to students in

 % interactive step-wise problem solving. By that way {{\sisac}} already

 % can serve both:

 % \begin{enumerate}

 %   \item Introduction of math stuff (in e.g. partial fraction

 % decomposition) by stepwise explaining and exercising respective

 % symbolic calculations with ``next step guidance (NSG)'' and rigorously

 % checking steps freely input by students --- this also in context with

 % advanced applications (where the stuff to be taught in higher

 % semesters can be skimmed through by NSG), and

 %   \item Application of math stuff in advanced engineering courses

 % (e.g. problems to be solved by inverse Z-transform in a Signal

 % Processing Lab) and now without much ado about basic math techniques

 % (like partial fraction decomposition): ``next step guidance'' supports

 % students in independently (re-)adopting such techniques.

 % \end{enumerate} 

 % Before the question is answers, how {{\sisac}}

 % accomplishes this task from a technical point of view, some remarks on

 % the state-of-the-art is given, therefor follow up Section~\ref{emas}.

 % 

 % \subsection{Educational Mathematics Assistants (EMAs)}\label{emas}

 % 

 % \paragraph{Educational software in mathematics} is, if at all, based

 % on Computer Algebra Systems (CAS, for instance), Dynamic Geometry

 % Systems (DGS, for instance \footnote{GeoGebra http://www.geogebra.org}

 % \footnote{Cinderella http://www.cinderella.de/}\footnote{GCLC

 % http://poincare.matf.bg.ac.rs/~janicic/gclc/}) or spread-sheets. These

 % base technologies are used to program math lessons and sometimes even

 % exercises. The latter are cumbersome: the steps towards a solution of

 % such an interactive exercise need to be provided with feedback, where

 % at each step a wide variety of possible input has to be foreseen by

 % the programmer - so such interactive exercises either require high

 % development efforts or the exercises constrain possible inputs.

 % 

 % \subparagraph{A new generation} of educational math assistants (EMAs)

 % is emerging presently, which is based on Theorem Proving (TP). TP, for

 % instance Isabelle and Coq, is a technology which requires each fact

 % and each action justified by formal logic. Pushed by demands for

 % \textit{proven} correctness of safety-critical software TP advances

 % into software engineering; from these advancements computer

 % mathematics benefits in general, and math education in particular. Two

 % features of TP are immediately beneficial for learning:

 % 

 % \paragraph{TP have knowledge in human readable format,} that is in

 % standard predicate calculus. TP following the LCF-tradition have that

 % knowledge down to the basic definitions of set, equality,

 % etc~\footnote{http://isabelle.in.tum.de/dist/library/HOL/HOL.html};

 % following the typical deductive development of math, natural numbers

 % are defined and their properties

 % proven~\footnote{http://isabelle.in.tum.de/dist/library/HOL/Number\_Theory/Primes.html},

 % etc. Present knowledge mechanized in TP exceeds high-school

 % mathematics by far, however by knowledge required in software

 % technology, and not in other engineering sciences.

 % 

 % \paragraph{TP can model the whole problem solving process} in

 % mathematical problem solving {\em within} a coherent logical

 % framework. This is already being done by three projects, by

 % Ralph-Johan Back, by ActiveMath and by Carnegie Mellon Tutor.

 % \par

 % Having the whole problem solving process within a logical coherent

 % system, such a design guarantees correctness of intermediate steps and

 % of the result (which seems essential for math software); and the

 % second advantage is that TP provides a wealth of theories which can be

 % exploited for mechanizing other features essential for educational

 % software.

 % 

 % \subsubsection{Generation of User Guidance in EMAs}\label{user-guid}

 % 

 % One essential feature for educational software is feedback to user

 % input and assistance in coming to a solution.

 % 

 % \paragraph{Checking user input} by ATP during stepwise problem solving

 % is being accomplished by the three projects mentioned above

 % exclusively. They model the whole problem solving process as mentioned

 % above, so all what happens between formalized assumptions (or formal

 % specification) and goal (or fulfilled postcondition) can be

 % mechanized. Such mechanization promises to greatly extend the scope of

 % educational software in stepwise problem solving.

 % 

 % \paragraph{NSG (Next step guidance)} comprises the system's ability to

 % propose a next step; this is a challenge for TP: either a radical

 % restriction of the search space by restriction to very specific

 % problem classes is required, or much care and effort is required in

 % designing possible variants in the process of problem solving

 % \cite{proof-strategies-11}.

 % \par

 % Another approach is restricted to problem solving in engineering

 % domains, where a problem is specified by input, precondition, output

 % and postcondition, and where the postcondition is proven by ATP behind

 % the scenes: Here the possible variants in the process of problem

 % solving are provided with feedback {\em automatically}, if the problem

 % is described in a TP-based programing language: \cite{plmms10} the

 % programmer only describes the math algorithm without caring about

 % interaction (the respective program is functional and even has no

 % input or output statements!); interaction is generated as a

 % side-effect by the interpreter --- an efficient separation of concern

 % between math programmers and dialog designers promising application

 % all over engineering disciplines.

 % 

 % 

 % \subsubsection{Math Authoring in Isabelle/ISAC\label{math-auth}}

 % Authoring new mathematics knowledge in {{\sisac}} can be compared with

 % ``application programing'' of engineering problems; most of such

 % programing uses CAS-based programing languages (CAS = Computer Algebra

 % Systems; e.g. Mathematica's or Maple's programing language).

 % 

 % \paragraph{A novel type of TP-based language} is used by {{\sisac}{}}

 % \cite{plmms10} for describing how to construct a solution to an

 % engineering problem and for calling equation solvers, integration,

 % etc~\footnote{Implementation of CAS-like functionality in TP is not

 % primarily concerned with efficiency, but with a didactic question:

 % What to decide for: for high-brow algorithms at the state-of-the-art

 % or for elementary algorithms comprehensible for students?} within TP;

 % TP can ensure ``systems that never make a mistake'' \cite{casproto} -

 % are impossible for CAS which have no logics underlying.

 % 

 % \subparagraph{Authoring is perfect} by writing such TP based programs;

 % the application programmer is not concerned with interaction or with

 % user guidance: this is concern of a novel kind of program interpreter

 % called Lucas-Interpreter. This interpreter hands over control to a

 % dialog component at each step of calculation (like a debugger at

 % breakpoints) and calls automated TP to check user input following

 % personalized strategies according to a feedback module.

 % \par

 % However ``application programing with TP'' is not done with writing a

 % program: according to the principles of TP, each step must be

 % justified. Such justifications are given by theorems. So all steps

 % must be related to some theorem, if there is no such theorem it must

 % be added to the existing knowledge, which is organized in so-called

 % \textbf{theories} in Isabelle. A theorem must be proven; fortunately

 % Isabelle comprises a mechanism (called ``axiomatization''), which

 % allows to omit proofs. Such a theorem is shown in

 % Example~\ref{eg:neuper1}.

 The running example, introduced by Fig.\ref{fig-interactive} on

 p.\pageref{fig-interactive}, requires to determine the inverse $\cal

 Z$-transform for a class of functions. The domain of Signal Processing

 is accustomed to specific notation for the resulting functions, which

 are absolutely summable and are called TODO: $u[n]$, where $u$ is the

 function, $n$ is the argument and the brackets indicate that the

 arguments are TODO. Surprisingly, Isabelle accepts the rules for

 ${\cal Z}^{-1}$ in this traditional notation~\footnote{Isabelle

 experts might be particularly surprised, that the brackets do not

 cause errors in typing (as lists).}:

 %\vbox{

 % \begin{example}

   \label{eg:neuper1}

   {\small\begin{tabbing}

   123\=123\=123\=123\=\kill

   \hfill \\

   \>axiomatization where \\

   \>\>  rule1: ``${\cal Z}^{-1}\;1 = \delta [n]$'' and\\

   \>\>  rule2: ``$\vert\vert z \vert\vert > 1 \Rightarrow {\cal Z}^{-1}\;z / (z - 1) = u [n]$'' and\\

   \>\>  rule3: ``$\vert\vert$ z $\vert\vert$ < 1 ==> z / (z - 1) = -u [-n - 1]'' and \\

 %TODO

   \>\>  rule4: ``$\vert\vert$ z $\vert\vert$ > $\vert\vert$ $\alpha$ $\vert\vert$ ==> z / (z - $\alpha$) = $\alpha^n$ $\cdot$ u [n]'' and\\

 %TODO

   \>\>  rule5: ``$\vert\vert$ z $\vert\vert$ < $\vert\vert$ $\alpha$ $\vert\vert$ ==> z / (z - $\alpha$) = -($\alpha^n$) $\cdot$ u [-n - 1]'' and\\

 %TODO

   \>\>  rule6: ``$\vert\vert$ z $\vert\vert$ > 1 ==> z/(z - 1)$^2$ = n $\cdot$ u [n]''\\

 %TODO

   \end{tabbing}

   }

 % \end{example}

 %}

 These 6 rules can be used as conditional rewrite rules, depending on

 the respective convergence radius. Satisfaction from notation

 contrasts with the word {\em axiomatization}: As TP-based, the

 programming language expects these rules as {\em proved} theorems, and

 not as axioms implemented in the above brute force manner; otherwise

 all the verification efforts envisaged (like proof of the

 post-condition, see below) would be meaningless.

 Isabelle provides a large body of knowledge, rigorously proven from

 the basic axioms of mathematics~\footnote{This way of rigorously

 deriving all knowledge from first principles is called the

 LCF-paradigm in TP.}. In the case of the Z-Transform the most advanced

 knowledge can be found in the theoris on Multivariate

 Analysis~\footnote{http://isabelle.in.tum.de/dist/library/HOL/HOL-Multivariate\_Analysis}. However,

 building up knowledge such that a proof for the above rules would be

 reasonably short and easily comprehensible, still requires lots of

 work (and is definitely out of scope of our case study).

 \medskip At the state-of-the-art in mechanization of knowledge in

 engineering, the process does not stop with the mechanization of

 mathematics. Rather, ``Formal Methods''~\cite{TODO-formal-methods}

 proceed to formal description of physical items.  Signal Processing,

 for instance is concerned with physical devices for signal acquisition

 and reconstruction, which involve measuring a physical signal, storing

 it, and possibly later rebuilding the original signal or an

 approximation thereof. For digital systems, this typically includes

 sampling and quantization; devices for signal compression, including

 audio compression, image compression, and video compression, etc.

 ``Domain engineering''\cite{db-domain-engineering} is concerned with

 {\em specification} of these devices' components and features; this

 part in the process of mechanization is only at the beginning.

 \medskip TP-based programming, concern of this paper, adds a third

 part of mechanisation, providing a third axis of ``algorithmic

 knowledge'' in Fig.\ref{fig:mathuni} on p.\pageref{fig:mathuni}.

   \begin{figure}

     \hfill \\

     \begin{center}

       \includegraphics{fig/universe}

       \caption{Didactic ``Math-Universe''\label{fig:mathuni}}

     \end{center}

   \end{figure}

 %WN Deine aktuelle Benennung oben wird Dir kein Fachmann abnehmen;

 %WN bitte folgende Bezeichnungen nehmen:

 %WN 

 %WN axis 1: Algorithmic Knowledge (Programs)

 %WN axis 2: Application-oriented Knowledge (Specifications)

 %WN axis 3: Deductive Knowledge (Axioms, Definitions, Theorems)

 \subsection{Specification of the Problem}\label{spec}

 %WN <--> \chapter 7 der Thesis

 %WN die Argumentation unten sollte sich NUR auf Verifikation beziehen..

 In order to provide TP with logical facts for checking user input, the

 Lucas-Interpreter requires a \textbf{specification}. Such a

 specification is shown in Example~\ref{eg:neuper2}.

 -------------------------------------------------------------------

 Hier brauchen wir die Spezifikation des 'running example' ...

 \vbox{

   \begin{example}

   \label{eg:neuper2}

   {\small\begin{tabbing}

   123,\=postcond \=: \= $\forall \,A^\prime\, u^\prime \,v^\prime.\,$\=\kill

   \hfill \\

   Specification no.1:\\

   %\>input\>: $\{\;r={\it arbitraryFix}\;\}$  \\

   \>input    \>: $\{\;r\;\}$  \\

   \>precond  \>: $0 < r$   \\

   \>output   \>: $\{\;A,\; u,v\;\}$ \\

   \>postcond \>:{\small  $\;A=2uv-u^2 \;\land\; (\frac{u}{2})^2+(\frac{v}{2})^2=r^2 \;\land$}\\

   \>     \>\>{\small $\;\forall \;A^\prime\; u^\prime \;v^\prime.\;(A^\prime=2u^\prime v^\prime-(u^\prime)^2 \land

   (\frac{u^\prime}{2})^2+(\frac{v^\prime}{2})^2=r^2) \Longrightarrow A^\prime \leq A$} \\

   \>props\>: $\{\;A=2uv-u^2,\;(\frac{u}{2})^2+(\frac{v}{2})^2=r^2\;\}$

   \end{tabbing}

   }

   \end{example}

 }

 ... und die Implementation in Isac (mit Kommentaren aus dem datatype)

 %WN das w"urde ich in \sec\label{}

 Such a specification is checked before the execution of a program is

 started, the same applies for sub-programs. In the following example

 (Example~\ref{eg:subprob}) shows the call of such a subproblem:

 \vbox{

   \begin{example}

   \label{eg:subprob}

   \hfill \\

   {\ttfamily \begin{tabbing}

   ``(L\_L::bool list) = (\=SubProblem (\=Test','' \\

   ``\>\>[linear,univariate,equation,test],'' \\

   ``\>\>[Test,solve\_linear])'' \\

   ``\>[BOOL equ, REAL z])'' \\

   \end{tabbing}

   }

   {\small\textit{

     \noindent If a program requires a result which has to be

 calculated first we can use a subproblem to do so. In our specific

 case we wanted to calculate the zeros of a fraction and used a

 subproblem to calculate the zeros of the denominator polynom.

     }}

   \end{example}

 }

 \subsection{Implementation of the Method}\label{meth}

 %WN <--> \chapter 7 der Thesis

 TODO

 \subsection{Preparation of ML-Functions for the Program}\label{funs}

 %WN <--> Thesis 6.1 -- 6.3: jene ausw"ahlen, die Du f"ur \label{progr}

 %WN brauchst

 TODO

 \subsection{Implementation of the TP-based Program}\label{progr}

 %WN <--> \chapter 8 der Thesis

 TODO

 \section{Workflow of Programming in the Prototype}\label{workflow}

 -------------------------------------------------------------------

 ``workflow'' heisst: das mache ich zuerst, dann das ...

 \subsection{Preparations and Trials}\label{flow-prep}

 TODO ... Build\_Inverse\_Z\_Transform.thy !!!

 \subsection{Implementation in Isabelle/{\isac}}\label{flow-impl}

 TODO Build\_Inverse\_Z\_Transform.thy ... ``imports Isac''

 \subsection{Transfer into the Isabelle/{\isac} Knowledge}\label{flow-trans}

 TODO http://www.ist.tugraz.at/isac/index.php/Extend\_ISAC\_Knowledge\#Add\_an\_example ?

 -------------------------------------------------------------------

 Das unterhalb hab' ich noch nicht durchgearbeitet; einiges w\"are 

 vermutlich auf andere sections aufzuteilen.

 -------------------------------------------------------------------

 \subsection{Formalization of missing knowledge in Isabelle}

 \paragraph{A problem} behind is the mechanization of mathematic

 theories in TP-bases languages. There is still a huge gap between

 these algorithms and this what we want as a solution - in Example

 Signal Processing. 

 \vbox{

   \begin{example}

     \label{eg:gap}

     \[

       X\cdot(a+b)+Y\cdot(c+d)=aX+bX+cY+dY

     \]

     {\small\textit{

       \noindent A very simple example on this what we call gap is the

 simplification above. It is needles to say that it is correct and also

 Isabelle for fills it correct - \emph{always}. But sometimes we don't

 want expand such terms, sometimes we want another structure of

 them. Think of a problem were we now would need only the coefficients

 of $X$ and $Y$. This is what we call the gap between mechanical

 simplification and the solution.

     }}

   \end{example}

 }

 \paragraph{We are not able to fill this gap,} until we have to live

 with it but first have a look on the meaning of this statement:

 Mechanized math starts from mathematical models and \emph{hopefully}

 proceeds to match physics. Academic engineering starts from physics

 (experimentation, measurement) and then proceeds to mathematical

 modeling and formalization. The process from a physical observance to

 a mathematical theory is unavoidable bound of setting up a big

 collection of standards, rules, definition but also exceptions. These

 are the things making mechanization that difficult.

 \vbox{

   \begin{example}

     \label{eg:units}

     \[

       m,\ kg,\ s,\ldots

     \]

     {\small\textit{

       \noindent Think about some units like that one's above. Behind

 each unit there is a discerning and very accurate definition: One

 Meter is the distance the light travels, in a vacuum, through the time

 of 1 / 299.792.458 second; one kilogram is the weight of a

 platinum-iridium cylinder in paris; and so on. But are these

 definitions usable in a computer mechanized world?!

     }}

   \end{example}

 }

 \paragraph{A computer} or a TP-System builds on programs with

 predefined logical rules and does not know any mathematical trick

 (follow up example \ref{eg:trick}) or recipe to walk around difficult

 expressions. 

 \vbox{

   \begin{example}

     \label{eg:trick}

   \[ \frac{1}{j\omega}\cdot\left(e^{-j\omega}-e^{j3\omega}\right)= \]

   \[ \frac{1}{j\omega}\cdot e^{-j2\omega}\cdot\left(e^{j\omega}-e^{-j\omega}\right)=

      \frac{1}{\omega}\, e^{-j2\omega}\cdot\colorbox{lgray}{$\frac{1}{j}\,\left(e^{j\omega}-e^{-j\omega}\right)$}= \]

   \[ \frac{1}{\omega}\, e^{-j2\omega}\cdot\colorbox{lgray}{$2\, sin(\omega)$} \]

     {\small\textit{

       \noindent Sometimes it is also useful to be able to apply some

 \emph{tricks} to get a beautiful and particularly meaningful result,

 which we are able to interpret. But as seen in this example it can be

 hard to find out what operations have to be done to transform a result

 into a meaningful one.

     }}

   \end{example}

 }

 \paragraph{The only possibility,} for such a system, is to work

 through its known definitions and stops if none of these

 fits. Specified on Signal Processing or any other application it is

 often possible to walk through by doing simple creases. This creases

 are in general based on simple math operational but the challenge is

 to teach the machine \emph{all}\footnote{Its pride to call it

 \emph{all}.} of them. Unfortunately the goal of TP Isabelle is to

 reach a high level of \emph{all} but it in real it will still be a

 survey of knowledge which links to other knowledge and {{\sisac}{}} a

 trainer and helper but no human compensating calculator. 

 \par

 {{{\sisac}{}}} itself aims to adds an \emph{application} axis (formal

 specifications of problems out of topics from Signal Processing, etc.)

 and an \emph{algorithmic} axis to the \emph{deductive} axis of

 physical knowledge. The result is a three-dimensional universe of

 mathematics seen in Figure~\ref{fig:mathuni}.

   \begin{figure}

     \hfill \\

     \begin{center}

       \includegraphics{fig/universe}

       \caption{Didactic ``Math-Universe''\label{fig:mathuni}}

     \end{center}

   \end{figure}

 \subsection{Notes on Problems with Traditional Notation}

 \paragraph{During research} on these topic severely problems on

 traditional notations have been discovered. Some of them have been

 known in computer science for many years now and are still unsolved,

 one of them aggregates with the so called \emph{Lambda Calculus},

 Example~\ref{eg:lamda} provides a look on the problem that embarrassed

 us.

 \vbox{

   \begin{example}

     \label{eg:lamda}

   \[ f(x)=\ldots\;  \quad R \rightarrow \quad R \]

   \[ f(p)=\ldots\;  p \in \quad R \]

     {\small\textit{

       \noindent Above we see two equations. The first equation aims to

 be a mapping of an function from the reel range to the reel one, but

 when we change only one letter we get the second equation which

 usually aims to insert a reel point $p$ into the reel function. In

 computer science now we have the problem to tell the machine (TP) the

 difference between this two notations. This Problem is called

 \emph{Lambda Calculus}.

     }}

   \end{example}

 }

 \paragraph{An other problem} is that terms are not full simplified in

 traditional notations, in {{\sisac}} we have to simplify them complete

 to check weather results are compatible or not. in e.g. the solutions

 of an second order linear equation is an rational in {{\sisac}} but in

 tradition we keep fractions as long as possible and as long as they

 aim to be \textit{beautiful} (1/8, 5/16,...).

 \subparagraph{The math} which should be mechanized in Computer Theorem

 Provers (\emph{TP}) has (almost) a problem with traditional notations

 (predicate calculus) for axioms, definitions, lemmas, theorems as a

 computer program or script is not able to interpret every Greek or

 Latin letter and every Greek, Latin or whatever calculations

 symbol. Also if we would be able to handle these symbols we still have

 a problem to interpret them at all. (Follow up \hbox{Example

 \ref{eg:symbint1}})

 \vbox{

   \begin{example}

     \label{eg:symbint1}

     \[

       u\left[n\right] \ \ldots \ unitstep

     \]

     {\small\textit{

       \noindent The unitstep is something we need to solve Signal

 Processing problem classes. But in {{{\sisac}{}}} the rectangular

 brackets have a different meaning. So we abuse them for our

 requirements. We get something which is not defined, but usable. The

 Result is syntax only without semantic.

     }}

   \end{example}

 }

 In different problems, symbols and letters have different meanings and

 ask for different ways to get through. (Follow up \hbox{Example

 \ref{eg:symbint2}}) 

 \vbox{

   \begin{example}

     \label{eg:symbint2}

     \[

       \widehat{\ }\ \widehat{\ }\ \widehat{\ } \  \ldots \  exponent

     \]

     {\small\textit{

     \noindent For using exponents the three \texttt{widehat} symbols

 are required. The reason for that is due the development of

 {{{\sisac}{}}} the single \texttt{widehat} and also the double were

 already in use for different operations.

     }}

   \end{example}

 }

 \paragraph{Also the output} can be a problem. We are familiar with a

 specified notations and style taught in university but a computer

 program has no knowledge of the form proved by a professor and the

 machines themselves also have not yet the possibilities to print every

 symbol (correct) Recent developments provide proofs in a human

 readable format but according to the fact that there is no money for

 good working formal editors yet, the style is one thing we have to

 live with.

 \section{Problems rising out of the Development Environment}

 fehlermeldungen! TODO

 \section{Conclusion}\label{conclusion}

 TODO

 \bibliographystyle{alpha}

 \bibliography{references}

 \end{document}