|
19
|
Running the manual: An approach to high-assurance microkernel development
– Philip Derrin, Kevin Elphinstone, Gerwin Klein, David Cock, Manuel M. T. Chakravarty
- 2006
|
|
7
|
A unified memory model for pointers
– Harvey Tuch, Gerwin Klein
- 2005
|
|
7
|
Towards Verified Virtual Memory in L4
– Gerwin Klein, Harvey Tuch
- 2004
|
|
13
|
Verifying the L4 virtual memory subsystem
– Harvey Tuch, Gerwin Klein
- 2004
|
|
17
|
Secure microkernels, state monads and scalable refinement
– David Cock, Gerwin Klein, Thomas Sewell
- 2008
|
|
4
|
Achieving information flow security through monadic control of effects. Invited submission to
– William L. Harrison, James Hook
|
|
|
A Formal Model of the L4 µ-Kernel API Using . . .
– Rafal Kolanski
- 2004
|
|
|
Formalising the L4 microkernel API
– Rafal Kolanski Gerwin, Gerwin Klein
- 2006
|
|
3
|
Formalising the L4 microkernel API
– Rafal Kolanski , Gerwin Klein
- 2006
|
|
25
|
OS verification — now
– Harvey Tuch, Gerwin Klein, Gernot Heiser
- 2005
|
|
|
L4Cars
– Kevin Elphinstone, Gernot Heiser, Ralf Huuck, Stefan M. Petters, Sergio Ruocco
- 2005
|
|
|
Kernel Development for High Assurance
– Kevin Elphinstone, Gerwin Klein, Philip Derrin, Timothy Roscoe, Gernot Heiser
|
|
19
|
Towards a practical, verified kernel
– Kevin Elphinstone, Gerwin Klein, Philip Derrin, Timothy Roscoe
- 2007
|
|
3
|
Domain separation by construction
– William Harrison, Mark Tullsen, James Hook
- 2003
|
|
8
|
Using model checking to debug device firmware
– Sanjeev Kumar
- 2002
|
|
6
|
A.: The Verisoft approach to systems verification
– Eyad Alkassar, Mark A. Hillebr, Norbert W. Schirmer, Artem Starostin
- 2008
|
|
14
|
Certifying low-level programs with hardware interrupts and preemptive threads
– Xinyu Feng, Zhong Shao, Yuan Dong, Yu Guo
- 2008
|
|
|
Towards Semantics-directed System Design and Synthesis
– William L. Harrison, Benjamin Schulz, Adam Procter, Andrew Lukefahr, Gerard Allwein
|
|
6
|
Bitfields and Tagged Unions in C – Verification through Automatic Generation
– David Cock
|
