Formal System Development with KIV

  • Michael Balser
  • Wolfgang Reif
  • Gerhard Schellhorn
  • Kurt Stenzel
  • Andreas Thums
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 1783)


KIV is a tool for formal systems development. It can be employed, e.g.,
  1. for the development of safety critical systems from formal requirements specifications to executable code, including the verification of safety requirements and the correctness of implementations,

  2. for semantical foundations of programming languages from a specification of the semantics to a verified compiler,

  3. for building security models and architectural models as they are needed for high level ITSEC [7] or CC [1] evaluations.



  1. 1.
    CCIB-98-026. Common Criteria for Information Technology Security Evaluation, Version 2.0. ISO/IEC JTC 1, May 1998. available at
  2. 2.
    CoFI: The Common Framework Initiative. Casl — the CoFI algebraic specification language tentative design: Language summary, 1997. Available at
  3. 3.
    M. Fröhlich and M. Werner. Demonstration of the interactive graph visualization system daVinci. In R. Tamassia and I. Tollis, editors, DIMACS Workshop on Graph Drawing’ 94. Proceedings, LNCS 894, Berlin, 1994. Princeton (USA), Springer. Scholar
  4. 4.
    G. Schellhorn. Verifikation abstrakter Zustandsmaschinen. PhD thesis, Universität Ulm, Fakultät für Informatik, 1999. (to appear, in German).Google Scholar
  5. 5.
    Y. Gurevich and J. Huggins. The semantics of the c programming language. In E. Börger, H. Kleine Büning, G. Jäger, S. Martini, and M.M. Richter, editors, Computer Science Logic. Springer LNCS 702, 1993.Google Scholar
  6. 6.
    D. Harel. First Order Dynamic Logic. LNCS 68. Springer, Berlin, 1979.zbMATHGoogle Scholar
  7. 7.
    ITSEC. Information Technology Security Evaluation Criteria, Version 1.2. Office for Official Publications of the European Communities, June 1991.Google Scholar
  8. 8.
    S. Kaplan. A compiler for conditional term rewriting systems. In 2nd Conf. on Rewriting Techniques and Applications. Proceedings. Bordeaux, France, Springer LNCS 256, 1987.Google Scholar
  9. 9.
    W. Reif. The KIV-approach to Software Verification. In M. Broy and S. Jähnichen, editors, KORSO: Methods, Languages, and Tools for the Construction of Correct Software — Final Report, LNCS 1009. Springer, Berlin, 1995.CrossRefGoogle Scholar
  10. 10.
    W. Reif, G. Schellhorn, and K. Stenzel. Interactive Correctness Proofs for Software Modules Using KIV. In COMPASS’95 — Tenth Annual Conference on Computer Assurance, Gaithersburg (MD), USA, 1995. IEEE press.Google Scholar
  11. 11.
    W. Reif, G. Schellhorn, K. Stenzel, and M. Balser. Structured specifications and interactive proofs with KIV. In W. Bibel and P. Schmitt, editors, Automated Deduction — A Basis for Applications. Kluwer Academic Publishers, Dordrecht, 1998.Google Scholar
  12. 12.
    W. Reif and K. Stenzel. Reuse of Proofs in Software Verification. In R. Shyamasundar, editor, Foundation of Software Technology and Theoretical Computer Science. Proceedings, LNCS 761, pages 284–293, Berlin, 1993. Bombay, India, Springer.Google Scholar
  13. 13.
    G. Schellhorn and W. Ahrendt. Reasoning about Abstract State Machines: The WAM Case Study. Journal of Universal Computer Science (J.UCS), 3(4):377–413, 1997. Available at Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2000

Authors and Affiliations

  • Michael Balser
    • 1
  • Wolfgang Reif
    • 1
  • Gerhard Schellhorn
    • 1
  • Kurt Stenzel
    • 1
  • Andreas Thums
    • 1
  1. 1.Abt. ProgrammiermethodikUniversität UlmUlmGermany

Personalised recommendations