An Open Framework for Certified System Software

An Open Framework for Certified System Software (2008)

Cached

Download Links

[flint.cs.yale.edu]

by Xinyu Feng

Citations:

2 - 1 self

BibTeX

@MISC{Feng08anopen,
    author = {Xinyu Feng},
    title = { An Open Framework for Certified System Software},
    year = {2008}
}

Bookmark

OpenURL

Abstract

Certified software consists of a machine executable program plus a machine checkable proof showing that the software is free of bugs with respect to a particular specification. Constructing certified system software is an important step toward building a reliable and secure computing platform for future critical applications. In addition to the benefits from provably safe components, architectures of certified systems may also be simplified to achieve better efficiency. However, because system software consists of program modules that use many different computation features and span different abstraction levels, it is difficult to design a single type system or program logic to certify the whole system. As a result, significant amount of kernel code of today’s operating systems has to be implemented in unsafe languages, despite recent progress on type-safe languages. In this thesis, I develop a new methodology to solve this problem, which applies different verification systems to certify different program modules, and then links the certified modules in an open framework to compose the whole certified software package. Specifically, this thesis makes contributions in the following two aspects. First, I develop new Hoare-style program logics to certify low-level programs with

Citations

3116	Communicating sequential processes - Hoare - 1978
1224	A calculus of communicating systems - Milner - 1980
1219	An axiomatic basis for computer programming - HOARE - 1969
765	The temporal logic of actions - Lamport
611	Systematic Software Development Using VDM - Jones - 1990
595	Compiling with Continuations - Appel - 1992
579	Separation logic: A logic for shared mutable data structures - Reynolds - 2002
557	From system F to typed assembly language - MORRISETT, WALKER, et al. - 1998
514	Conjoining specifications - Abadi, Lamport - 1995
488	A syntactic approach to type soundness - Wright, Felleisen - 1994
417	The calculus of constructions - COQUAND, HUET - 1988
395	The formulae-as-types notion of constructions - HOWARD - 1980
276	T.: Model checking Java programs using Java PATHFINDER - Havelund, Pressburger - 2000
245	The design and implementation of a certifying compiler - Necula, Lee - 1998
213	Foundational proof-carrying code - APPEL - 2001
188	A type and effect system for atomicity - Flanagan, Qadeer - 2003
181	Modular verification of software components - Chaki, Clarke, et al. - 2003
181	The C Programming Language, Second Edition - Kernighan, Ritchie - 1988
151	K.M.: Proofs of networks of processes - Misra, Chandy - 1981
147	as an assertion language for mutable data structures - BI - 2001
140	Separation and information hiding - O’Hearn, Yang, et al. - 2004
137	The Java virtual machine specification, second edition - Lindholm, Yellin - 1999
136	Stack-based typed assembly language - Morrisett, Crary, et al. - 2002
129	Verifying properties of parallel programs: an axiomatic approach - Owicki, Gries - 1976
128	Compiling with Proofs - Necula - 1998
126	Tentative steps toward a development method for interfering programs - Jones - 1983
122	A semantic model of types and machine instructions for proof-carrying code - Appel, Felty - 2000
122	Resources, concurrency and local reasoning - O’Hearn - 2007
120	A Certifying Compiler for Java - Colby, Lee, et al. - 2000
119	Rabbit: A compiler for Scheme - Steele - 1978
118	M.J.: Permission accounting in separation logic - Bornat, Calcagno, et al. - 2005
104	Types for safe locking - Flanagan, Abadi - 1999
98	Towards a theory of parallel programming - Hoare - 1972
90	Type-safe multithreading in cyclone - Grossman - 2003
84	A syntactic approach to foundational proof-carrying code - HAMID, SHAO, et al. - 2002
75	Toward a foundational typed assembly language - Crary - 2003
74	Assumption generation for software component verification - Giannakopoulou, Pasareanu, et al. - 2002
72	Verifying safety properties of concurrent Java programs using 3-valued logic - Yahav - 2001
72	Automated proofs of object code for a widely used microprocessor - Boyer, Yu - 1996
69	Context-bounded model checking of concurrent software - Qadeer, Rehof - 2005
66	A semantics for concurrent separation logic - Brookes - 2007
65	Ten years of Hoare's logic, a survey, part I - Apt - 1981
63	Design of a separable transition-diagram compiler - Conway - 1963
62	R.: Race checking by context inference - Henzinger, Jhala, et al. - 2004
58	Thread-modular model checking - Flanagan, Qadeer - 2003
56	An overview of the Singularity project - Hunt, Larus, et al. - 2005
53	Proper tail recursion and space efficiency - Clinger - 1998
51	A proof technique for rely/guarantee properties - Stark - 1985
49	A marriage of rely/guarantee and Separation Logic - Vafeiadis, Parkinson
45	A single intermediate language that supports multiple implementations of exceptions (abstract - RAMSEY, JONES