When will I have access to the lectures and assignments?

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

What will I get if I subscribe to this Specialization?

When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Is financial aid available?

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.

Design by Provable Contracts

本课程是 Rust for Data Engineering 专项课程的一部分

位教师：Noah Gift

包含在中

了解更多

5个模块

深入了解一个主题并学习基础知识。

高级设置等级

面向相关领域的从业人员而设计

4 小时完成

灵活的计划

自行安排学习进度

5个模块

深入了解一个主题并学习基础知识。

高级设置等级

面向相关领域的从业人员而设计

4 小时完成

灵活的计划

自行安排学习进度

您将获得的技能

您将学习的工具

要了解的详细信息

可分享的证书

添加到您的领英档案

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累特定领域的专业知识

本课程是 Rust for Data Engineering 专项课程专项课程的一部分

在注册此课程时，您还会同时注册此专项课程。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
获得可共享的职业证书

该课程共有5个模块

e.g. This is primarily aimed at first- and second-year undergraduates interested in engineering or science, along with high school students and professionals with an interest in programming.Design by Provable Contracts teaches you how to move from "the tests pass" to "the math says it cannot break." Across five modules, you'll climb a five-rung provability ladder — from lint and types, through property-based and bounded-model checking, to dependent-typed proofs in Lean 4 — applied to a single running example: the softmax function used in modern machine learning.

By the end, you will be able to: (1) read a peer-reviewed paper and translate its preconditions, postconditions, and invariants into a YAML contract; (2) choose the right verification rung for a given cost-vs-confidence trade-off, using lint, types, proptest, and Kani in Rust; and (3) build a complete pipeline from paper to YAML to Lean theorem, producing a machine-checked guarantee that holds for every input of every length. The course is hands-on and tool-first: Rust for the lower rungs, Lean 4 for the top rung, and YAML as the connective tissue between math and code. You will leave with a reusable mental model and a working capstone you can apply to any safety-critical numerical kernel.

单元详情

Master Hoare triples and the contract foundations of Design by Contract. Learn how {P} S {Q} formalizes preconditions, postconditions, and the caller/callee responsibility split through Eiffel's require/ensure idiom and its Rust port via Prusti and Creusot.

涵盖的内容

4个视频4篇阅读材料

4个视频总计8分钟

1.1.1 Hoare's Triples and Why2分钟
1.1.2 Meyer's Eiffel: Require, Ensure, Invariant2分钟
1.1.3 Liskov Substitution Principle2分钟
1.2.1 Rust Port: Prusti, Creusot, Requires, Ensures2分钟

4篇阅读材料总计40分钟

Reading: Key Terms — Hoare's Triples and Why10分钟
Reading: Reflection — Hoare's Triples and Why10分钟
Reading: Key Terms — Rust's Port10分钟
Reading: Reflection — Rust's Port10分钟

Shift contracts from runtime checks into the type system. Learn parse-don't-validate, the newtype pattern as a zero-cost contract, and typestate to encode state machines directly in types so invalid states cannot be represented.

涵盖的内容

4个视频4篇阅读材料

4个视频总计8分钟

Video 2.1.1: Parse, Don't Validate2分钟
Video 2.1.2: Newtype as Zero-Cost Contract2分钟
Video 2.1.3: PhantomData and Compile-Time Tags2分钟
Video 2.2.1: Typestate — State Machines in Types2分钟

4篇阅读材料总计40分钟

Reading: Key Terms — Parse, Don't Validate10分钟
Reading: Reflection — Parse, Don't Validate10分钟
Reading: Key Terms — Typestate10分钟
Reading: Reflection — Typestate10分钟

Use a YAML contract as the machine-readable, human-auditable bridge between research papers and verified Rust kernels. Learn the 19-property obligation taxonomy, Popperian falsification testing, and how pv aggregates L1 to L5 status into one audit artifact.

涵盖的内容

5个视频4篇阅读材料1个作业

5个视频总计10分钟

Video 3.1.1: Why YAML Specification as Code2分钟
Video 3.1.2: Obligation Taxonomy — 19 Property + 7 Eiffel2分钟
Video 3.1.3: Popperian Falsification — Actionable Failure2分钟
Video 3.2.1: pv Property 7-Eiffel2分钟
Video 3.2.2: From Paper to YAML — One Equation1分钟

4篇阅读材料总计40分钟

Reading: Key Terms — Why YAML10分钟
Reading: Reflection — Why YAML10分钟
Reading: Key Terms — pv: The CLI10分钟
Reading: Reflection — pv: The CLI10分钟

1个作业总计30分钟

Practice Quiz: Module 3 Knowledge Check — The YAML Bridge30分钟

Walk the proof ladder on softmax: L1 lint, L2 types, L3 proptest, L4 Kani bounded model checking, and L5 Lean theorems. Learn to pick the rung that matches the cost of being wrong.

涵盖的内容

4个视频3篇阅读材料

4个视频总计8分钟

Video 4.1.1: L1 + L2 — Lint and Types on softmax2分钟
Video 4.1.2: L3 — proptest softmax sums to one2分钟
Video 4.1.3: L4 — Kani softmax non-negativity2分钟
Video 4.2.1: Cost vs Confidence — Which Rung Fits2分钟

3篇阅读材料总计30分钟

Reading: Key Terms — L1 + L2: Lint and Types on softmax10分钟
Reading: Reflection — L1 + L2: Lint and Types on softmax10分钟
Reading: Key Terms — Cost vs Confidence: Which Rung Fits10分钟

End-to-end capstone: take softmax from a peer-reviewed paper, through a YAML contract, to a Lean 4 theorem holding for every finite vector of every length. Every cell of the Lesson 1.1 tooling map gets demonstrated.