Bytecode verification is a crucial security component for Java applets, on the Web and on
embedded devices such as smart cards. This paper reviews the various bytecode …

We review the existing literature on Java safety, emphasizing formal approaches, and the
impact of Java safety on small footprint devices such as smartcards. The conclusion is that …

We present the first verification of full functional correctness for a range of linked data
structure implementations, including mutable lists, trees, graphs, and hash tables …

Producing specifications by dynamic (runtime) analysis of program executions is potentially
unsound, because the analyzed executions may not fully characterize all possible …

This paper describes the architecture of the loop tool, which is used for reasoning about
sequential Java. The loop tool translates Java and JML (a specification language tailored to …

One of the appeals of pure functional programming is that it is so amenable to equational
reasoning. One of the problems of pure functional programming is that it rules out …

This paper describes a specialised logic for proving specifications in the Java Modeling
Language (JML). JML is an interface specification language for Java. It allows assertions …

Bytecode verification is a crucial security component for Java applets, on the Web and on
embedded devices such as smart cards. This paper describes the main bytecode verification …

The Alloy Annotation Language (AAL) is a language (under development) for annotating
Java code based on the Alloy modeling language. It offers a syntax similar to the Java …

This paper proposes an extension of the Java Modeling Language (JML) with temporal
specifications. The extension is inspired by the patterns and specification language used …