A trustworthy proof checker (2002)

by Andrew W Appel, Neophytos Michael, Aaron Stump, Roberto Virga
Venue:In Iliano Cervesato, editor, Foundations of Computer Security workshop