We introduce Flux, which shows how logical refinements can work hand in glove with Rust's
ownership mechanisms to yield ergonomic type-based verification of low-level pointer …

Graph-based intermediate representations (IRs) are widely used for powerful compiler
optimizations, either interprocedurally in pure functional languages, or intraprocedurally in …

Dubbed a safer C, Rust is a modern programming language that combines memory safety
and low-level control. This interesting combination has made Rust very popular among …

Fueled by the success of Rust, many programming languages are adding substructural
features to their type systems. The promise of tracking properties such as lifetimes and …

Programmers learning Rust struggle to understand ownership types, Rust's core mechanism
for ensuring memory safety without garbage collection. This paper describes our attempt to …

Ownership type systems, based on the idea of enforcing unique access paths, have been
primarily focused on objects and top-level classes. However, existing models do not as …

In scenarios such as web programming, where code is linked together from multiple
sources, object capability patterns (OCPs) provide an essential safeguard, enabling …

We present a Separation Logic with space credits for reasoning about heap space in a
sequential call-by-value lambda-calculus equipped with garbage collection and mutable …

Abstract The Move Prover (MVP) is a formal verifier for smart contracts written in the Move
programming language. MVP has an expressive specification language, and is fast and …

We tackle the problem of checking non-proof-carrying code, ie automatically proving type-
safety (implying in our type system spatial memory safety) of low-level C code or of machine …