论文信息 - Industrial strength exception freedom

Industrial strength exception freedom

Ada is unique amongst modern high-level languages in the degree to which it allows programming errors to be trapped at the compilation stage. Using a tool like the SPARK Examiner amplifies this effect and can provide a high degree of confidence that a program is well formed before we try and verify that its behaviour is correct. Despite this progress a less tractable class of errors remain: run-time exceptions. For safety-related systems a run-time error may be just as hazardous as any other logical error. For secure systems, guarding against the deliberate generation of such errors-through buffer overflow attacks for example-is vital. The paper explains how automated techniques based on formal verification or proof techniques have now matured and provide an industrial strength solution.

Roderick Chapman | Peter Amey

[1] Bernard Carré,et al. Information-flow and data-flow analysis of while-programs , 1985, TOPL.

[2] Alan Burns,et al. Combining static worst-case timing analysis and program proof , 1996, Real-Time Systems.

[3] G. B. Finelli,et al. The Infeasibility of Quantifying the Reliability of Life-Critical Real-Time Software , 1993, IEEE Trans. Software Eng..

[4] John Barnes,et al. High Integrity Ada: The Spark Approach , 1997 .

[5] Steve King,et al. Using the SPARK Toolset for Showing the Absence of Run-Time Errors in Safety-Critical Software , 2001, Ada-Europe.

[6] S. Tucker Taft,et al. Consolidated Ada Reference Manual Language and Standard Libraries , 2002, Lecture Notes in Computer Science.

[7] Hoyt Lougee,et al. SOFTWARE CONSIDERATIONS IN AIRBORNE SYSTEMS AND EQUIPMENT CERTIFICATION , 2001 .

[8] Mike Hill,et al. Safety analysis of Hawk In Flight monitor , 1999, PASTE '99.

[9] Bev Littlewood,et al. Validation of ultrahigh dependability for software-based systems , 1993, CACM.

[10] K. Beck,et al. Extreme Programming Explained , 2002 .

[11] Steve King,et al. Is Proof More Cost-Effective Than Testing? , 2000, IEEE Trans. Software Eng..

[12] Robert Dewar,et al. Exposing Uninitialized Variables: Strengthening and Extending Run-Time Checks in Ada , 2002, Ada-Europe.