Formal Verification, Engineering and Business Value

Ralf Huuck

How to apply automated verification technology such as model checking and static program analysis to millions of lines of embedded C/C++ code? How to package this technology in a way that it can be used by software developers and engineers, who might have no background in formal verification? And how to convince business managers to actually pay for such a software? This work addresses a number of those questions. Based on our own experience on developing and distributing the Goanna source code analyzer for detecting software bugs and security vulnerabilities in C/C++ code, we explain the underlying technology of model checking, static analysis and SMT solving, steps involved in creating industrial-proof tools.

Invited Presentation in Peter Csaba Ölveczky and Cyrille Artho: Proceedings First International Workshop on Formal Techniques for Safety-Critical Systems (FTSCS 2012), Kyoto, Japan, November 12, 2012, Electronic Proceedings in Theoretical Computer Science 105, pp. 1–4.
Published: 29th December 2012.

ArXived at: bibtex PDF
References in reconstructed bibtex, XML and HTML format (approximated).
Comments and questions to:
For website issues: