Two automated methods in implementation proofs

  • Leo Marcus
  • Timothy Redmond
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 310)


We sketch the theory of mapping between levels and composition of state transitions, two important components in proofs of implementation. We show how they are automated in the State Delta Verification System and give examples of their use.

Key words and phrases

Program correctness program verification microcode verification implementation 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. [1]
    Barbacci, M. R., Barnes, G.E., Cattell, R. G., and Sieiworek, D.P., “The ISPS Computer Description Language”, Tech. report CMU-CS-79-137, Carnegie-Mellon University, Computer Science Department, August 1979Google Scholar
  2. [2]
    Birman, A. and Joyner, W. H., “A Problem-Reduction Approach to Proving Simulation Between Programs”, IEEE Transactions on Software Engineering, 2 (1976) 87–96Google Scholar
  3. [3]
    Cook, J. V., “Final Report for the C/30 Microcode Verification Project”, Tech Report ATR-86(6771)-3, The Aerospace Corporation, 1986Google Scholar
  4. [4]
    Cook, J. V., “C/30 Proof”, Tech. report ATR-86(6771)-4, The Aerospace Corporation, 1986.Google Scholar
  5. [5]
    Crocker, S. D., “State Deltas: A Formalism for Representing Segments of Computation, PhD Thesis, University of California, Los Angeles, 1977.Google Scholar
  6. [6]
    Damm, W., Doehmen, G., Merkel, K., and Sichelschmidt, M., “The AADL/S* Approach to Firmware Design Verification”, IEEE Software, 3 (1986) 27–37Google Scholar
  7. [7]
    Dasgupta, S., Wilsey, P., and Heinanen, J., “Axiomatic Specifications in Firmware Development Systems”, IEEE Software, 3 (1986) 49–58Google Scholar
  8. [8]
    Good, D., Akers, R., Smith, L. “Report on Gypsy 2.05”, Tech Report ICSCACMP-48, Institute for Computing Science, University of Texas, Austin, February, 1986Google Scholar
  9. [9]
    Marcus, L., “SDVS 6 Users' Manual”, Tech Report ATR-86A(2778)-4, The Aerospace Corporation, 1987Google Scholar
  10. [10]
    Marcus, L., Redmond, T., and Shelah, S.“Completeness of State Deltas”, Tech Report ATR-85(8354)-5, The Aerospace Corporation, 1985Google Scholar
  11. [11]
    Redmond, T., “Composition of State Changes and Program Verification”, Tech Report ATR-86A(2778)-3, The Aerospace Corporation, 1987Google Scholar
  12. [12]
    Redmond, T. and Marcus, L, “Mapping between Levels and Proofs of Implementation”, Tech Report ATR-86A(8554)-5, The Aerospace Corporation, 1987Google Scholar
  13. [13]
    Scheid, J., Martin, R., Anderson, S., and Holtsberg, S., “INA-JO Specification Language Reference Manual, Release 1” TM 6021/001/02, System Development Corporation, January 1986Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 1988

Authors and Affiliations

  • Leo Marcus
    • 1
  • Timothy Redmond
    • 1
  1. 1.Computer Science LaboratoryThe Aerospace CorporationLos Angeles

Personalised recommendations