Results 1 
7 of
7
Hierarchical Verification Using an MDGHOL Hybrid Tool
"... We describe a hybrid formal hardware verification tool that links the HOL interactive proof system and the MDG automated hardware verification tool. It supports a hierarchical verification approach that mirrors the hierarchical structure of designs. We obtain advantages of both verification paradi ..."
Abstract

Cited by 8 (2 self)
 Add to MetaCart
We describe a hybrid formal hardware verification tool that links the HOL interactive proof system and the MDG automated hardware verification tool. It supports a hierarchical verification approach that mirrors the hierarchical structure of designs. We obtain advantages of both verification paradigms. We illustrate its use by considering a component of a communications chip. Verification with the hybrid tool is significantly faster and more tractable than using either tool alone.
Experiences formally verifying a network component
 In Proceedings of the 9th Annual IEEE Conference on Computer Assurance
, 1994
"... Errors in network components can have disastrous e ects so it is important that all aspects of the design are correct. We describe our experiences formally verifying an implementation of an Asynchronous Transfer Mode (ATM) network switching fabric using the HOL90 theorem proving system. The design h ..."
Abstract

Cited by 8 (4 self)
 Add to MetaCart
Errors in network components can have disastrous e ects so it is important that all aspects of the design are correct. We describe our experiences formally verifying an implementation of an Asynchronous Transfer Mode (ATM) network switching fabric using the HOL90 theorem proving system. The design has been fabricated and is in use in the Cambridge Fairisle Network. It was designed and implemented with no consideration for formal speci cation or veri cation. This case study gives an indication of the di culties in formally verifying real designs. We discuss the time spent on the veri cation. This was comparable to the time spent designing and testing the fabric. We also describe the problems encountered and the errors discovered. 1
Verification of the MDG Components Library in HOL
, 1998
"... The MDG system is a decision diagram based verification tool, primarily designed for hardware verification. It is based on Multiway decision diagramsan extension of the traditional ROBDD approach. In this paper we describe the formal verification of the component library of the MDG system, using ..."
Abstract

Cited by 7 (6 self)
 Add to MetaCart
The MDG system is a decision diagram based verification tool, primarily designed for hardware verification. It is based on Multiway decision diagramsan extension of the traditional ROBDD approach. In this paper we describe the formal verification of the component library of the MDG system, using HOL. The hardware component library, whilst relatively simple, has been a source of errors in an earlier developmental version of the MDG system. Thus verifying these aspects is of real utility towards the verification of a decision digram based verification system. This work demonstrates how machine assisted proof can be of practical utility when applied to a small focused problem.
Importing the Results of Automatic Hardware Verification into HOL
, 1999
"... Formal hardware verification systems can be split into two categories: theorem proving systems and automatic nite state machine based systems. Each approach has its own complementary advantages and disadvantages. In this paper, we consider the combination of two such systems: HOL (a theorem provin ..."
Abstract
 Add to MetaCart
Formal hardware verification systems can be split into two categories: theorem proving systems and automatic nite state machine based systems. Each approach has its own complementary advantages and disadvantages. In this paper, we consider the combination of two such systems: HOL (a theorem proving system) and MDG (an automatic system). As HOL hardware verification proofs are based on the hierarchical structure of the design, submodules can be verified using other systems such as MDG. However, the results of MDG are not in the appropriate form for this. We have proved a set of theorems that express how results proved using MDG can be converted into the form used in traditional HOL hardware verification.
The Formal Veri cation of an ATM Network 1
"... Communication networks are rapidly becoming all pervasive. As this occurs, the consequences of errors in the design or implementation of network components becomes increasingly important. This is especially so if, as is increasingly probable, networks are used in safetycritical applications where c ..."
Abstract
 Add to MetaCart
Communication networks are rapidly becoming all pervasive. As this occurs, the consequences of errors in the design or implementation of network components becomes increasingly important. This is especially so if, as is increasingly probable, networks are used in safetycritical applications where communication problems could cause loss of life. Asynchronous Transfer Mode (ATM) is a relatively new technology that is being adopted by both the computer and telecommunication industries. It is likely to be the most important transfer mode of the foreseeable future. It is being touted as a technology that can be used \everywhere": in widearea, metropolitan area, local area and even desk area networks [4]. ATM systems could become highvolume products for which high dependability is paramount. It is an important application for formal veri cation research. The ATM Veri cation Project at Cambridge is investigating the use of formal methods, and in particular the HOL system [2], to validate an implementation of an ATM Network. The network under consideration is Fairisle [3]. It is a working network, carrying real user data. It was designed and implemented with no thought for formal veri cation. It provides a realistic case study for the investigation of the formal veri cation of an ATM network. Initially, we are verifying the switch hardware using conventional machinechecked formal
The Formal Veri cation of the Fairisle Switch: The 4x4 Switching Fabric
, 1994
"... We describe work in progress to formally verify the Fairisle switch. To date we have formally veri ed the Fairisle 4x4 switching fabric using the HOL90 theorem prover [2, 1]. We formalised both the implementation and its behaviour. We then used formal logic to rigorously prove that the behaviour sug ..."
Abstract
 Add to MetaCart
We describe work in progress to formally verify the Fairisle switch. To date we have formally veri ed the Fairisle 4x4 switching fabric using the HOL90 theorem prover [2, 1]. We formalised both the implementation and its behaviour. We then used formal logic to rigorously prove that the behaviour suggested by the description of the implementation satis es the speci ed behaviour.