Temporal-Safety Proofs for Systems Code

Temporal-Safety Proofs for Systems Code (2002)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Thomas A. Henzinger , Ranjit Jhala , Rupak Majumdar , George C. Necula , Grégoire Sutre , Westley Weimer

Citations:

66 - 9 self

BibTeX

@MISC{Henzinger02temporal-safetyproofs,
    author = {Thomas A. Henzinger and Ranjit Jhala and Rupak Majumdar and George C. Necula and Grégoire Sutre and Westley Weimer},
    title = {Temporal-Safety Proofs for Systems Code},
    year = {2002}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

We present a methodology and tool for verifying and certifying systems code. The veri cation is based on the lazy-abstraction paradigm for intertwining the following three logical steps: construct a predicate abstraction from the code, model check the abstraction, and automatically re ne the abstraction based on counterexample analysis. The certi cation is based on the proof-carrying code paradigm. Lazy abstraction enables the automatic construction of small proof certi cates. The methodology is implemented in Blast, the Berkeley Lazy Abstraction Software veri cation Tool. We describe our experience applying Blast to Linux and Windows device drivers. Given the C code for a driver and for a temporal-safety monitor, Blast automatically generates an easily checkable correctness certi cate if the driver satis es the speci cation, and an error trace otherwise.

Citations

1310	A Discipline of Programming - Dijkstra - 1976
1016	Proof-carrying code - Necula - 1997
634	A framework for defining logics - Harper, Honsell, et al. - 1999
520	H.: Construction of abstract state graphs with PVS - Graf, Saïdi - 1997
514	Bandera: Extracting finite-state models from Java source code - Corbett, Dwyer, et al. - 2000
482	Counterexample-Guided Abstraction Refinement for Symbolic Model Checking - Clarke, Grumberg, et al. - 2003
388	Model checking programs - Visser, Havelund, et al.
378	G.: Lazy abstraction - Henzinger, Jhala, et al. - 2002
348	S.K.: Automatic predicate abstraction of C programs 36(5 - Ball, Majumdar, et al. - 2001
330	CIL: Intermediate language and tools for analysis and transformation of C programs - Necula, McPeak, et al. - 2002
322	Flow-sensitive type qualifiers - Foster, Terauchi, et al. - 2002
317	The SLAM project: Debugging system software via static analysis - Ball, Rajamani - 2002
126	Experience with predicate abstraction - Das, Dill, et al.
77	Dynamically Discovering Likely Program Invariants - Ernst - 2000
57	A framework for de logics - Harper, Honsell, et al. - 1993
53	S.P.: Oracle-based checking of untrusted software - Necula, Rahul
53	P.: Efficient representation and validation of proofs - Necula, Lee - 1998
53	CUDD: Colorado University Decision Diagram Package. ftp://vlsi.colorado.edu/pub - Somenzi - 1996
36	Logic verification of ansi-c code with spin - Holzmann - 2000
27	Certifying Model Checkers - Namjoshi - 2001
27	Computation and deduction - Pfenning - 2003
24	Bandera: Extracting models from java source code - Corbett, Dwyer, et al. - 2000
20	Counterexample-guided abstraction re - Clarke, Grumberg, et al.
16	Flow-sensitive type quali - Foster, Terauchi, et al. - 2002
11	From model checking to a temporal proof - Peled, Zuck - 2001
8	Simplify theorem prover. http://research.compaq.com/SRC/esc/Simplify.html. [16] E.W. Dijkstra. A Discipline of Programming - Detlefs, Nelson, et al. - 1976
7	Logic veri of ANSI-C code with Spin - Holzmann - 2000
5	Vampyre: A Proof Generating Theorem Prover. http://www.cs.ucla.edu/˜rupak/Vampyre - Blei, Harrelson, et al.
3	Bandera: extracting finite-state models from Java source code. Int - Das, Dill, et al. - 1999
2	An empirical study of operating system bugs - Chou, Yang, et al. - 2001
1	Programming Languages Design and Implementation (to appear - Graf, Saidi - 1997
1	Efficient representation and validation of proofs. Symp - Necula, Lee