Abstract

Kernel Implements Processes The relationship between the abstract kernel and an individual task is pictured in Figure 4, and is formalized by the theorem AK-IMPLEMENTS-PARALLEL-TASKS. Intuitively, this theorem says that for a given good abstract kernel state AK and abstract kernel oracle ORACLE, the final state reached by task I can equivalently be achieved by running TASK-PROCESSOR on the initial task state, with an oracle constructed by the function CONTROL-ORACLE. The oracle constructed for TASK-PROCESSOR accounts for the precise sequence of delays to task I in the abstract kernel. Task project AK Figure 4: AK Implements Parallel Tasks THEOREM AK-IMPLEMENTS-PARALLEL-TASKS (IMPLIES (AND (GOOD-AK AK) (FINITE-NUMBERP I (LENGTH (AK-PSTATES AK)))) (EQUAL (PROJECT I (AK-PROCESSOR AK ORACLE)) (TASK-PROCESSOR (PROJECT I AK) I (CONTROL-ORACLE I AK ORACLE)))) 6. The Target Machine The target machine TM is a simple von Neumann computer. It is not based on an existing physical machine becaus...

Citations

611	Systematic Software Development Using VDM - Jones - 1990
515	Secure computer system: unified exposition and MULTICS interpretation - Bell, LaPadula - 1976
381	A Computational Logic Handbook - Boyer, Moore - 1988
377	Proof of correctness of Data representations - Hoare - 1972
196	HOL: A Proof Generating System for Higher-Order Logic - Gordon - 1988
187	Introducing Z: a Specification Language and its Formal Semantics - Spivey - 1988
167	An algebraic definition of simulation between programs - Milner - 1971
65	FM8501: A Verified Microprocessor - Hunt - 1985
64	An approach to systems verification - Bevier, Hunt, et al. - 1989
58	Computer structures: Reading and examples - Bell, Newell - 1996
46	A mechanically verified language implementation - Moore - 1989
39	KSOS - The Design of a Secure Operating System - McCauley, Drongowski - 1979
32	Proving Multilevel Security of a System Design - Feiertag, Levitt, et al. - 1977
30	A Verified Operating System Kernel - Bevier - 1987
30	The foundations of a provably secure operating system (PSOS - Feiertag, Neumann - 1979
29	SCOMP: A solution to the multilevel security problem - Fraim - 1983
27	The Structure of the "THE"-Multiprogramming System - Dijkstra - 1968
24	A Provably Secure Operating System - Neumann
22	Proof of separability: A verification technique for a class of security kernels - Rushby - 1982
22	A verified code generator for a subset of Gypsy - Young - 1988
19	Proof techniques for hierarchically structured programs - Robinson, Levitt - 1977
17	A security retrofit of VM/370 - Gold - 1979
17	The Best Available Technologies for Computer Security - Landwehr - 1983
14	KSOS - Development Methodology for a Secure Operating System - Berson, Barksdale - 1979
14	A Model for Verification of Data Security in Operating Systems - Popek, Farber - 1978
13	Secure Ada Target: Issues, System, Design, and Verification - Boebert, Young, et al. - 1985
9	An Overview on AFFIRM: a Specification and Verification System - Gerhart - 1980
8	A Verified Specification of a Hierarchical Operating System - Saxena - 1976
5	Formal Verification of an Operating System Security Kernel - Kemmerer - 1982
5	A Formal Methodology for the Design of Operating System Software - Robinson, Levitt, et al. - 1977
3	Hierarchical Specification of the SIFT Fault-Tolerant Flight Control System - Melliar-Smith, Schwartz - 1981
3	Checking the proof of Godel’s incompleteness theorem - Shankar - 1986
2	On the Design and Verification of Operating Systems - Flon - 1977
2	Report on the Language GYPSY Version 2.0 - al - 1978
2	Proving Operating Systems Correct - Karp - 1983
2	Specification and Design of Secure Systems - Rushby - 1981