International audienceIn critical embedded software, proving functional properties of programs is a major area where formal methods are applied with an increasing success. Anyway, the more a property is complex, the more a high-level formal model of the software and its environment is required. However, in an industrial setting, such a model is not always available, or cannot be used for independent verification. We propose here a new route, where a high-level Lustre model is extracted from a C source program. Thus, high-level functional properties can be specified in Lustre and proved on this extracted model, hence on the real code, without requiring any additional formal documentation
This work deals with the structural testing of the synchronous reactive programs written in Lustre a...
Software practitioners have not widely adopted formal verification techniques in spite of the abilit...
International audienceStatic analyzers usually return partial results. They can assert that some pro...
International audienceIn critical embedded software, proving functional properties of programs is a ...
Lustre is a synchronous data‐flow language for developing reactive systems. Developed and maintained...
This thesis is set into the domain of formal methods applied to reactive systems. These systems, cha...
Three approaches to the problem of testing synchronous data-flow programs written in LUSTRE are pres...
We present a general approach for verifying safety properties of Lus-tre programs automatically. Key...
We present a new methodology for automatic verification of C programs against finite state machine s...
This paper describes the language LUSTRE which is a data flow synchronous language, designed for pro...
Model-driven and component-based software engineering have been widely recognized as promising parad...
In this thesis the design of an environment for the formal verification of functional properties of ...
Systems code is almost universally written in the C programming language or a variant. C has a very ...
Specification and verification of highlevel requirements (such as security properties like data inte...
We present a new methodology for automatic verification of C programs against finite state machine s...
This work deals with the structural testing of the synchronous reactive programs written in Lustre a...
Software practitioners have not widely adopted formal verification techniques in spite of the abilit...
International audienceStatic analyzers usually return partial results. They can assert that some pro...
International audienceIn critical embedded software, proving functional properties of programs is a ...
Lustre is a synchronous data‐flow language for developing reactive systems. Developed and maintained...
This thesis is set into the domain of formal methods applied to reactive systems. These systems, cha...
Three approaches to the problem of testing synchronous data-flow programs written in LUSTRE are pres...
We present a general approach for verifying safety properties of Lus-tre programs automatically. Key...
We present a new methodology for automatic verification of C programs against finite state machine s...
This paper describes the language LUSTRE which is a data flow synchronous language, designed for pro...
Model-driven and component-based software engineering have been widely recognized as promising parad...
In this thesis the design of an environment for the formal verification of functional properties of ...
Systems code is almost universally written in the C programming language or a variant. C has a very ...
Specification and verification of highlevel requirements (such as security properties like data inte...
We present a new methodology for automatic verification of C programs against finite state machine s...
This work deals with the structural testing of the synchronous reactive programs written in Lustre a...
Software practitioners have not widely adopted formal verification techniques in spite of the abilit...
International audienceStatic analyzers usually return partial results. They can assert that some pro...