Refinement types: A tutorial
Refinement types enrich a language's type system with logical predicates that circumscribe
the set of values described by the type. These refinement predicates provide software …
the set of values described by the type. These refinement predicates provide software …
Separation logic: A logic for shared mutable data structures
JC Reynolds - Proceedings 17th Annual IEEE Symposium on …, 2002 - ieeexplore.ieee.org
In joint work with Peter O'Hearn and others, based on early ideas of Burstall, we have
developed an extension of Hoare logic that permits reasoning about low-level imperative …
developed an extension of Hoare logic that permits reasoning about low-level imperative …
RefinedC: automating the foundational verification of C code with refined ownership types
Given the central role that C continues to play in systems software, and the difficulty of
writing safe and correct C code, it remains a grand challenge to develop effective formal …
writing safe and correct C code, it remains a grand challenge to develop effective formal …
BI as an assertion language for mutable data structures
SS Ishtiaq, PW O'hearn - Proceedings of the 28th ACM SIGPLAN …, 2001 - dl.acm.org
Reynolds has developed a logic for reasoning about mutable data structures in which the
pre-and postconditions are written in an intuitionistic logic enriched with a spatial form of …
pre-and postconditions are written in an intuitionistic logic enriched with a spatial form of …
Pointer analysis: Haven't we solved this problem yet?
M Hind - Proceedings of the 2001 ACM SIGPLAN-SIGSOFT …, 2001 - dl.acm.org
During the past twenty-one years, over seventy-five papers and nine Ph. D. theses have
been published on pointer analysis. Given the tomes of work on this topic one may …
been published on pointer analysis. Given the tomes of work on this topic one may …
Checking interference with fractional permissions
J Boyland - International Static Analysis Symposium, 2003 - Springer
We describe a type system for checking interference using the concept of linear capabilities
(which we call “permissions”). Our innovations include the concept of “fractional” …
(which we call “permissions”). Our innovations include the concept of “fractional” …
Smallfoot: Modular automatic assertion checking with separation logic
J Berdine, C Calcagno, PW O'hearn - … 1-4, 2005, Revised Lectures 4, 2006 - Springer
Separation logic is a program logic for reasoning about programs that manipulate pointer
data structures. We describe Smallfoot, a tool for checking certain lightweight separation …
data structures. We describe Smallfoot, a tool for checking certain lightweight separation …
Symbolic execution with separation logic
J Berdine, C Calcagno, PW O'hearn - … November 2-5, 2005. Proceedings 3, 2005 - Springer
We describe a sound method for automatically proving Hoare triples for loop-free code in
Separation Logic, for certain preconditions and postconditions (symbolic heaps). The …
Separation Logic, for certain preconditions and postconditions (symbolic heaps). The …
Observational determinism for concurrent program security
S Zdancewic, AC Myers - 16th IEEE Computer Security …, 2003 - ieeexplore.ieee.org
Noninterference is a property of sequential programs that is useful for expressing security
policies for data confidentiality and integrity. However, extending noninterference to …
policies for data confidentiality and integrity. However, extending noninterference to …
Flow-sensitive type qualifiers
We present a system for extending standard type systems with flow-sensitive type qualifiers.
Users annotate their programs with type qualifiers, and inference checks that the …
Users annotate their programs with type qualifiers, and inference checks that the …