Complete formal verification is the only known way to guarantee that a system is free of
programming errors. We present our experience in performing the formal, machine-checked …

We present a hierarchical model that learns image decompositions via alternating layers of
convolutional sparse coding and max pooling. When trained on natural images, the layers of …

We present an in-depth coverage of the comprehensive machine-checked formal verification
of seL4, a general-purpose operating system microkernel. We discuss the kernel design we …

This paper gives a high-level introduction to the topic of formal, interactive, machine-
checked software verification in general, and the verification of operating systems code in …

In contrast to testing, mathematical reasoning and formal verification can show the absence
of whole classes of security vulnerabilities. We present the, to our knowledge, first complete …

Automated program verifiers are typically implemented using an intermediate verification
language (IVL), such as Boogie or Why3. A verifier front-end translates the input program …

We prove that the seL4 microkernel enforces two high-level access control properties:
integrity and authority confinement. Integrity provides an upper bound on write operations …

Formally verified software in the real world Page 1 68 COMMUNICATIONS OF THE ACM |
OCTOBER 2018 | VOL. 61 | NO. 10 contributed articles IN FEBRUARY 2017, a helicopter took …

This paper presents a framework aimed at significantly reducing the cost of proving
functional correctness for low-level operating systems components. The framework is …

Modern Just-in-Time compilers (or JITs) typically interleave several mechanisms to execute
a program. For faster startup times and to observe the initial behavior of an execution …