Abstract
The Viper microprocessor designed at the Royal Signals and Radar Establishment (RSRE) is one of the first commercially produced computers to have been developed using modern formal methods. Viper is specified in a sequence of decreasingly abstract levels. In this paper a mechanical proof of the equivalence of the first two of these levels is described. The proof was generated using a version of Robin Milner’s LCF system.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
A. Church, “A Formulation of the Simple Theory of Types”, Journal of Symbolic Logic 5, 1940
A. Cohn and M. Gordon, “A Mechanized Proof of Correctness of a Simple Counter”, University of Cambridge, Computer Laboratory, Tech. Report No. 94, 1986
W. J. Cullyer and C. H. Pygott, “Hardware Proofs using LCF_LSM and ELLA”, RSRE Memo. 3832, Sept. 1985
W. J. Cullyer, “Viper Microprocessor: Formal Specification”, RSRE Report 85013, Oct. 1985
W. J. Cullyer, “Viper — Correspondence between the Specification and the ‘Major State Machine’ ”, RSRE report No. 86004, Jan. 1986
W. J. Cullyer, “Implementing Safety-Critical Systems: The Viper Microprocessor”, In: VLSI Specification, Verification and Synthesis, Edited by G. Birtwistle and P. A. Subrahmanyam, (this volume)
M. Gordon, R. Milner and C. P. Wadsworth, “Edinburgh LCF, Lecture Notes in Computer Science”, Springer-Verlag, 1979
M. Gordon, “Proving a Computer Correct”, University of Cambridge, Computer Laboratory, Tech. Report No. 42, 1983
M. Gordon, “HOL: A Machine Oriented Formulation of Higher-Order Logic”, University of Cambridge, Computer Laboratory, Tech. Report No. 68, 1985
M. Gordon, “HOL: A Proof Generating System for Higher-Order Logic”, In: VLSI Specification, Verification and Synthesis, Edited by G. Birtwistle and P. A. Subrahmanyam (this volume), Also: University of Cambridge, Computer Laboratory, Tech. Report No. 103, 1987
W. A. Hunt Jr., “FM8501: A Verified Microprocessor”, University of Texas, Austin, Tech. Report 47, 1985
J. J. Joyce, “Verification and Implementation of a Microprocessor”, In: VLSI Specification, Verification and Synthesis, Edited by G. Birtwistle and P. A. Subrahmanyam, (this volume)
J. Kershaw, “Viper: A Microprocessor for Safety-Critical Applications”, RSRE Memo. No. 3754, Dec. 1985
L. Paulson, “A Higher-Order Implementation of Rewriting”, Science of Computer Programming 3, 119–149, 1983
L. Paulson, “Interactive Theorem Proving with Cambridge LCF”, Cambridge University Press, To Appear 1987
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1988 Kluwer Academic Publishers, Boston
About this chapter
Cite this chapter
Cohn, A. (1988). A Proof of Correctness of the Viper Microprocessor: The First Level. In: Birtwistle, G., Subrahmanyam, P.A. (eds) VLSI Specification, Verification and Synthesis. The Kluwer International Series in Engineering and Computer Science, vol 35. Springer, Boston, MA. https://doi.org/10.1007/978-1-4613-2007-4_2
Download citation
DOI: https://doi.org/10.1007/978-1-4613-2007-4_2
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4612-9197-8
Online ISBN: 978-1-4613-2007-4
eBook Packages: Springer Book Archive