Results 1 - 10 of 505

seL4: Formal Verification of an OS Kernel

by Gerwin Klein, Kevin Elphinstone, Gernot Heiser, June Andronick, David Cock, Philip Derrin, Dhammika Elkaduwe, Kai Engelhardt, Rafal Kolanski, Michael Norrish, Thomas Sewell, Harvey Tuch, Simon Winwood - ACM SYMPOSIUM ON OPERATING SYSTEMS PRINCIPLES , 2009
"... Complete formal verification is the only known way to guarantee that a system is free of programming errors. We present our experience in performing the formal, machine-checked verification of the seL4 microkernel from an abstract specification down to its C implementation. We assume correctness of ..."
Abstract - Cited by 297 (47 self) - Add to MetaCart
Complete formal verification is the only known way to guarantee that a system is free of programming errors. We present our experience in performing the formal, machine-checked verification of the seL4 microkernel from an abstract specification down to its C implementation. We assume correctness

Comprehensive Formal Verification of an OS Microkernel

by Gerwin Klein, June Andronick, Kevin Elphinstone, Toby Murray, THOMAS SEWELL, RAFAL KOLANSKI, GERNOT HEISER , 2014
"... We present an in-depth coverage of the comprehensive machine-checked formal verification of seL4, a general-purpose operating system microkernel. We discuss the kernel design we used to make its verification tractable. We then describe the functional correctness proof of the kernel’s C implementatio ..."
Abstract - Cited by 17 (7 self) - Add to MetaCart
We present an in-depth coverage of the comprehensive machine-checked formal verification of seL4, a general-purpose operating system microkernel. We discuss the kernel design we used to make its verification tractable. We then describe the functional correctness proof of the kernel’s C

Above and Beyond: seL4 Noninterference and Binary Verification

by Toby Murray, Thomas Sewell, Joint Work Matthew Brassil, Timothy Bourke, Peter Gammie, Xin Gao, Gerwin Klein, Corey Lewis, Daniel Matichuk, Magnus O. Myreen
"... In 2009, the L4.verified project completed the world’s first verification of functional correctness for a general-purpose OS kernel [2], seL4. Functional correctness here was embodied by a formal theorem of refinement, which stated that the behaviour of the C code that implemented the kernel accorde ..."
Abstract - Add to MetaCart
In 2009, the L4.verified project completed the world’s first verification of functional correctness for a general-purpose OS kernel [2], seL4. Functional correctness here was embodied by a formal theorem of refinement, which stated that the behaviour of the C code that implemented the kernel

The Clustered Multikernel: An Approach to Formal Verification of Multiprocessor OS Kernels

by Michael Von Tessin
"... Operating-system kernels are critical software components in computer systems. Building secure, safe and reliable computer systems is facilitated by having strong kernel correctness guarantees. Such guarantees can be obtained by formally verifying a kernel down to the implementation level. Kernel ve ..."
Abstract - Cited by 8 (2 self) - Add to MetaCart
verification has attracted much research interest. For example, the L4.verified project has proved that the implementation of the seL4 microkernel adheres to its formal specification. Nonetheless, due to verification complexity, past research focussed on uniprocessor kernels only. However, with multiprocessor

The Clustered Multikernel: An Approach to Formal Verification of Multiprocessor OS Kernels

by Michael Von , Tessin Nicta
"... ABSTRACT Operating-system kernels are critical software components in computer systems. Building secure, safe and reliable computer systems is facilitated by having strong kernel correctness guarantees. Such guarantees can be obtained by formally verifying a kernel down to the implementation level. ..."
Abstract - Add to MetaCart
. Kernel verification has attracted much research interest. For example, the L4.verified project has proved that the implementation of the seL4 microkernel adheres to its formal specification. Nonetheless, due to verification complexity, past research focussed on uniprocessor kernels only. However

sel4: formal verification of an operating-system kernel

by Gerwin Klein , June Andronick , Kevin Elphinstone , Gernot Heiser , David Cock , Philip Derrin , Dhammika Elkaduwe , Kai Engelhardt , Rafal Kolanski , Michael Norrish , Thomas Sewell , Harvey Tuch , Simon Winwood , Nicta , Unsw - Commun. ACM , 2010
"... ABSTRACT We report on the formal, machine-checked verification of the seL4 microkernel from an abstract specification down to its C implementation. We assume correctness of compiler, assembly code, hardware, and boot code. seL4 is a third-generation microkernel of L4 provenance, comprising 8,700 li ..."
Abstract - Cited by 37 (0 self) - Add to MetaCart
ABSTRACT We report on the formal, machine-checked verification of the seL4 microkernel from an abstract specification down to its C implementation. We assume correctness of compiler, assembly code, hardware, and boot code. seL4 is a third-generation microkernel of L4 provenance, comprising 8

A Formally Verified OS Kernel. Now What?

by Gerwin Klein
"... Abstract. Last year, the L4.verified project produced a formal, machinechecked Isabelle/HOL proof that the C code of the seL4 OS microkernel correctly implements its abstract implementation. In my presentation I will summarise the proof together with its main implications and assumptions, I will des ..."
Abstract - Add to MetaCart
verification of the seL4 microkernel from a high-level model down to very low-level C code [5]. To build a truly trustworthy system, one needs to start at the operating system (OS) and the most critical part of the OS is its kernel. The kernel is defined as the software that executes in the privileged mode

The Study on Formal Verification of OS Kernel

by Zhang Yua, Dong Yunweib, Zhang Zhongqiuc, Huo Hongd, Zhang Fane
"... There is increasing pressure on providing a high degree of assurance of operation system’s security and functionality. Formal verification is the only known way to guarantee that a system is free of programming errors. We study on formal verification of operation system kernel in system implementati ..."
Abstract - Add to MetaCart
in the end. Index Terms: OS kernel; formal verification; theorem proving; model checking © 2011 Published by MECS Publisher. Selection and/or peer review under responsibility of the Research

Translation validation for a verified OS kernel

by Thomas Sewell, Magnus Myreen, Gerwin Klein - In PLDI 2013. ACM , 2013
"... We extend the existing formal verification of the seL4 operating system microkernel from 9 500 lines of C source code to the binary level. We handle all functions that were part of the previous verification. Like the original verification, we currently omit the assembly routines and volatile accesse ..."
Abstract - Cited by 18 (7 self) - Add to MetaCart
We extend the existing formal verification of the seL4 operating system microkernel from 9 500 lines of C source code to the binary level. We handle all functions that were part of the previous verification. Like the original verification, we currently omit the assembly routines and volatile

Correct OS kernel? proof? done

by Gerwin Klein , Nicta - USENIX ;login , 2009
"... Two years ago Gernot Heiser demanded in this venue The seL4 microkernel: Correct! The basic idea goes back to the 1970s: since then people have been trying to formally verify operating systems It was clear early on that this is possible in principle, but enthusiasm ebbed off after an initial flurr ..."
Abstract - Cited by 3 (3 self) - Add to MetaCart
formal program verification was like controlled fusion power: about 30 years of research in the future. In contrast to controlled fusion, 30 years later things have changed. With the formal verification of the seL4 microkernel we have reached an important milestone: the first commercially viable
Results 1 - 10 of 505