Abstract. In the context of the Verisoft XT project functional correctness of the microkernel of PikeOS from SYSGO AG is shown at the source code level using the VCC verification tool, developed by Microsoft Research. In this paper we outline a simulation theorem between a top-level abstract model and the system consisting of the kernel and user programs running in alternation on the real machine. Based on an example of a typical code trace through the kernel, we identify the correctness properties of all components in the trace that are needed for the overall correctness proof of the microkernel.
Errors caused by the interaction of computer systems with the physical world are hard to mitigate bu...
Formal methods is an alternative way to develop software, which applies math- ematical techniques to...
Software verification tools have become a lot more powerful in recent years. Even verification of la...
Abstract. In this paper, we are giving an overview of the ongoing VerisoftXT Avionics project report...
AbstractPrimitives are basic means provided by a microkernel to implementors of operating system ser...
Abstract—Often, an integrated mixed-criticality system is built in an environment which provides sep...
Abstract. Primitives are basic means provided by a microkernel to im-plementors of operating system ...
completed and in this article I’m showing what we have proved and what that means for security. The ...
There is increasing pressure on providing a high degree of assurance of operation system’s security ...
Abstract. We report on the first formal pervasive verification of an op-erating system microkernel f...
A formal proof of a system correctness typically holds under a number of assumptions. Leaving them i...
This paper reviews the concepts and mechanisms used to improve security in general purpose operating...
Complete formal verification is the only known way to guar-antee that a system is free of programmin...
We present the VFiasco project, in which we apply source-code verification to a complete operating-s...
A formal proof of a system correctness typically holds under a number of assumptions. Leaving them i...
Errors caused by the interaction of computer systems with the physical world are hard to mitigate bu...
Formal methods is an alternative way to develop software, which applies math- ematical techniques to...
Software verification tools have become a lot more powerful in recent years. Even verification of la...
Abstract. In this paper, we are giving an overview of the ongoing VerisoftXT Avionics project report...
AbstractPrimitives are basic means provided by a microkernel to implementors of operating system ser...
Abstract—Often, an integrated mixed-criticality system is built in an environment which provides sep...
Abstract. Primitives are basic means provided by a microkernel to im-plementors of operating system ...
completed and in this article I’m showing what we have proved and what that means for security. The ...
There is increasing pressure on providing a high degree of assurance of operation system’s security ...
Abstract. We report on the first formal pervasive verification of an op-erating system microkernel f...
A formal proof of a system correctness typically holds under a number of assumptions. Leaving them i...
This paper reviews the concepts and mechanisms used to improve security in general purpose operating...
Complete formal verification is the only known way to guar-antee that a system is free of programmin...
We present the VFiasco project, in which we apply source-code verification to a complete operating-s...
A formal proof of a system correctness typically holds under a number of assumptions. Leaving them i...
Errors caused by the interaction of computer systems with the physical world are hard to mitigate bu...
Formal methods is an alternative way to develop software, which applies math- ematical techniques to...
Software verification tools have become a lot more powerful in recent years. Even verification of la...