Model checking programs
W Visser, K Havelund, G Brat, SJ Park… - Automated software …, 2003 - Springer
The majority of work carried out in the formal methods community throughout the last three
decades has (for good reasons) been devoted to special languages designed to make it …
decades has (for good reasons) been devoted to special languages designed to make it …
An industrial strength theorem prover for a logic based on Common Lisp
M Kaufmann, JS Moore - IEEE Transactions on Software …, 1997 - ieeexplore.ieee.org
ACL2 is a reimplemented extended version of RS Boyer and JS Moore's (1979; 1988)
Nqthm and M. Kaufmann's (1988) Pc-Nqthm, intended for large scale verification projects …
Nqthm and M. Kaufmann's (1988) Pc-Nqthm, intended for large scale verification projects …
Experiments in theorem proving and model checking for protocol verification
K Havelund, N Shankar - International Symposium of Formal Methods …, 1996 - Springer
Communication protocols pose interesting and difficult challenges for verification
technologies. The state spaces of interesting protocols are either infinite or too large for finite …
technologies. The state spaces of interesting protocols are either infinite or too large for finite …
[HTML][HTML] Innovations in computational type theory using Nuprl
SF Allen, M Bickford, RL Constable, R Eaton… - Journal of Applied …, 2006 - Elsevier
For twenty years the Nuprl (“new pearl”) system has been used to develop software systems
and formal theories of computational mathematics. It has also been used to explore and …
and formal theories of computational mathematics. It has also been used to explore and …
A platform for combining deductive with algorithmic verification
A Pnueli, E Shahar - … Aided Verification: 8th International Conference, CAV' …, 1996 - Springer
We describe a computer-aided verification system which combines deductive with
algorithmic (model-checking) verification methods. The system, called tlv (for temporal …
algorithmic (model-checking) verification methods. The system, called tlv (for temporal …
Reasoning about the Reliability of Diverse Two-Channel Systems in Which One Channel Is" Possibly Perfect"
B Littlewood, J Rushby - IEEE Transactions on Software …, 2011 - ieeexplore.ieee.org
This paper refines and extends an earlier one by the first author [1]. It considers the problem
of reasoning about the reliability of fault-tolerant systems with two “channels”(ie …
of reasoning about the reliability of fault-tolerant systems with two “channels”(ie …
Focus points and convergent process operators: a proof strategy for protocol verification
JF Groote, J Springintveld - The Journal of Logic and Algebraic …, 2001 - Elsevier
We present a method for efficiently providing algebraic correctness proofs for
communication systems. It is described in the setting of μCRL [JF Groote, A. Ponse, The …
communication systems. It is described in the setting of μCRL [JF Groote, A. Ponse, The …
Coq and hardware verification: A case study
S Coupet-Grimal, L Jakubiec - … Conference on Theorem Proving in Higher …, 1996 - Springer
We present several approaches to verifying a class of circuits with the Coq proof-assistant,
using the example of a left-to-right comparator. The large capacity of expression of the …
using the example of a left-to-right comparator. The large capacity of expression of the …
A natural language explanation for formal proofs
Y Coscoy - Logical Aspects of Computational Linguistics: First …, 1997 - Springer
We study formal proofs conceived to be checked automatically. These proofs are rarely
used. We think that it is partly due to the fact that it is very difficult for a human to understand …
used. We think that it is partly due to the fact that it is very difficult for a human to understand …
[PDF][PDF] Writing PVS proof strategies
PVS (Prototype Verification System) is a comprehensive framework for writing formal logical
specifications and constructing proofs. An interactive proof checker is a key component of …
specifications and constructing proofs. An interactive proof checker is a key component of …