Abstract. One way to reduce the cost of formally verifying a large program is to perform proofs over a specification of its behaviour, which its implementation refines. However, interesting programs must often satisfy multiple properties. Ideally, each property should be proved against the most abstract specification for which it holds. This simplifies reasoning and increases the property’s robustness against later tweaks to the program’s implementation. We introduce extensible specifications, a lightweight technique for constructing a specification that can be instantiated and reasoned about at multiple levels of abstraction. This avoids having to write and maintain a different specification for each property being proved whilst still allo...
Developing a verifying compiler---a compiler that proves that components are correct with respect to...
The basic premise of this thesis is that extensible languages afford the user considerable power and...
Abstract predicates are the primary abstraction mechanism for program logics based on access permiss...
International audienceModular deductive verification is a powerful technique capable to show that ea...
Abstract. We describe a package to reason efficiently about executable specifications in Coq. The pa...
We present a method using an extended logical system for obtaining "correct" programs from specifica...
Abstract. In this talk, I will give an overview of the various formal verification projects around t...
Modular deductive verification is a powerful technique capable to show that each function in a progr...
International audienceGood programming languages provide helpful abstractions for writing secure cod...
ManuscriptWe present a novel program logic, Lf , which is designed on top of a Hoare logic, but is s...
We present recent work on building and scaling trustworthy systems with formal, machine-checkable pr...
Deductive program verification is an intricate and time-consuming task, in spite of significant adva...
The amount of user interaction is the prime cause of costs in interactive program verification. This...
AbstractConsistency enforcement provides an alternative to common program verification within formal...
A number of programming languages use rich type systems to ver-ify security properties of code. Some...
Developing a verifying compiler---a compiler that proves that components are correct with respect to...
The basic premise of this thesis is that extensible languages afford the user considerable power and...
Abstract predicates are the primary abstraction mechanism for program logics based on access permiss...
International audienceModular deductive verification is a powerful technique capable to show that ea...
Abstract. We describe a package to reason efficiently about executable specifications in Coq. The pa...
We present a method using an extended logical system for obtaining "correct" programs from specifica...
Abstract. In this talk, I will give an overview of the various formal verification projects around t...
Modular deductive verification is a powerful technique capable to show that each function in a progr...
International audienceGood programming languages provide helpful abstractions for writing secure cod...
ManuscriptWe present a novel program logic, Lf , which is designed on top of a Hoare logic, but is s...
We present recent work on building and scaling trustworthy systems with formal, machine-checkable pr...
Deductive program verification is an intricate and time-consuming task, in spite of significant adva...
The amount of user interaction is the prime cause of costs in interactive program verification. This...
AbstractConsistency enforcement provides an alternative to common program verification within formal...
A number of programming languages use rich type systems to ver-ify security properties of code. Some...
Developing a verifying compiler---a compiler that proves that components are correct with respect to...
The basic premise of this thesis is that extensible languages afford the user considerable power and...
Abstract predicates are the primary abstraction mechanism for program logics based on access permiss...