Is Deductive Program Verification Mature Enough to be Taught to Software Engineers?

Schoolderman, Marc; Smetsers, Sjaak; Eekelen, M.C.J.D. van

doi:10.1145/3375258.3375265

Cited by 2 publications

(4 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Like [31], only general purpose, well-understood verification methods were used. Why3 in particular has an easy learning curve [30]. Our method for translating C and assembly code into WhyML is straight-forward, and the AVR model of Section 4.1 can be validated, so trust in our results mainly resides with trusting the verification condition generation of Why3, the soundness of the automated provers, and the compilation-toolchain (C compiler, assembler and linker) used for producing AVR binaries.…”

Section: Discussionmentioning

confidence: 90%

See 1 more Smart Citation

Efficient Verification of Optimized Code: Correct High-speed X25519

Schoolderman,

Moerman,

Smetsers

et al. 2020

Preprint

Self Cite

View full text Add to dashboard Cite

Code that is highly optimized poses a problem for programlevel verification. Programmers can employ various clever tricks that are non-trivial to reason about. For cryptography on low-power devices, it is nonetheless crucial that implementations be functionally correct, secure, and efficient. These are usually crafted in hand-optimized machine code that eschew conventional control flow as much as possible. We have formally verified such code: a library which implements elliptic curve cryptography on 8-bit AVR microcontrollers. The chosen implementation is the most efficient currently known for this microarchitecture. It consists of over 3000 lines of assembly instructions. Building on earlier work, we use the Why3 platform to model the code and generate verification conditions, which are proven using automated provers. The approach is re-usable and adaptable, and allows for validation. Furthermore, an error in the original implementation was found and corrected, at the same time reducing its memory footprint. This shows that practical verification of cutting-edge code is not only possible, but can in fact add to its efficiency-and is clearly necessary.

show abstract

Section: Discussionmentioning

confidence: 90%

“…We describe our approach in using Why3 for this verification task; this is an extension of earlier work [29], and has been demonstrated to be have low barrier to understanding [30]. This approach would work similarly well for other architectures such as ARM or RISC-V.…”

Section: Contributionsmentioning

confidence: 89%

Efficient Verification of Optimized Code: Correct High-speed X25519

Schoolderman,

Moerman,

Smetsers

et al. 2020

Preprint

Self Cite

View full text Add to dashboard Cite

show abstract

“…Like [32], only general purpose, well-understood verification methods were used. Why3 in particular has an easy learning curve [31]. Our method for translating C and assembly code into WhyML is straight-forward, and the AVR model of Sect.…”

Section: Discussionmentioning

confidence: 99%

“…We describe our approach in using Why3 for this verification task; this is an extension of earlier work [30], and has been demonstrated to have a low barrier to understanding [31]. This approach should work similarly well for other architectures such as ARM or RISC-V.…”

Section: Contributionsmentioning

confidence: 92%

Efficient Verification of Optimized Code

Schoolderman

Moerman

Smetsers

et al. 2021

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Code that is highly optimized poses a problem for programlevel verification: programmers can employ various clever tricks that are non-trivial to reason about. For cryptography on low-power devices, it is nonetheless crucial that implementations be functionally correct, secure, and efficient. These are usually crafted in hand-optimized machine code that eschew conventional control flow as much as possible.We have formally verified such code: a library which implements elliptic curve cryptography on 8-bit AVR microcontrollers. The chosen implementation is the most efficient currently known for this microarchitecture. It consists of over 3000 lines of assembly instructions.Building on earlier work, we use the Why3 platform to model the code and prove verification conditions, using automated provers.We expect the approach to be re-usable and adaptable, and it allows for validation. Furthermore, an error in the original implementation was found and corrected, at the same time reducing its memory footprint.This shows that practical verification of cutting-edge code is not only possible, but can in fact add to its efficiency-and is clearly necessary.

show abstract

Is Deductive Program Verification Mature Enough to be Taught to Software Engineers?

Cited by 2 publications

References 22 publications

Efficient Verification of Optimized Code: Correct High-speed X25519

Efficient Verification of Optimized Code: Correct High-speed X25519

Efficient Verification of Optimized Code

Contact Info

Product

Resources

About