Formal Verification, Engineering and Business Value

Ralf Huuck
(NICTA)

How to apply automated verification technology such as model checking and static program analysis to millions of lines of embedded C/C++ code? How to package this technology in a way that it can be used by software developers and engineers, who might have no background in formal verification? And how to convince business managers to actually pay for such a software? This work addresses a number of those questions. Based on our own experience on developing and distributing the Goanna source code analyzer for detecting software bugs and security vulnerabilities in C/C++ code, we explain the underlying technology of model checking, static analysis and SMT solving, steps involved in creating industrial-proof tools.

Invited Presentation in Peter Csaba Ölveczky and Cyrille Artho: Proceedings First International Workshop on Formal Techniques for Safety-Critical Systems (FTSCS 2012), Kyoto, Japan, November 12, 2012, Electronic Proceedings in Theoretical Computer Science 105, pp. 1–4.
Published: 29th December 2012.

ArXived at: http://dx.doi.org/10.4204/EPTCS.105.1 bibtex PDF
References in reconstructed bibtex, XML and HTML format (approximated).
Comments and questions to: eptcs@eptcs.org
For website issues: webmaster@eptcs.org