Standards concerned with the development of safety-critical systems, and the software in
such systems in particular, abound today as the software crisis increasingly affects the world …

PVS is the most recent in a series of verification systems developed at SRI. Its design was
strongly influenced, and later refined, by our experiences in developing formal specifications …

This paper describes the experiences of Collins Commercial Avionics and SRI International
informally specifying and verifying the microcode for the AAMP5 microprocessor with the …

This paper presents an overview of NASA Langley's research program in formal methods.
The major goals of this work are to make formal methods practical for use on life critical …

We present a formal model for fault-masking and transient-recovery among the replicated
computers of digital flight-control systems. We establish conditions under which majority …

A critical function in a fault-tolerant computer architecture is the synchronization of the
redundant computing elements. The synchronization algorithm must include safeguards to …

The design and formal verification of the Reliable Computing Platform (RCP), a fault tolerant
computing system for digital flight control applications is presented. The RCP uses N …

We present the formal verification of synchronizing aspects of the Reliable Computing
Platform (RCP), a fault-tolerant computing system for digital flight control applications. The …

Formal speci cation and veri cation use mathematical techniques to help document, specify,
design, analyze, or certify computer software and hardware. Mathematically-based notation …

We propose a design strategy that exploits the strengths of different formal approaches to
establish a reliable path from a mechanically verified high-level description to a concrete …