论文信息 - Teaching Deductive Verification Through Frama-C and SPARK for Non Computer Scientists

Teaching Deductive Verification Through Frama-C and SPARK for Non Computer Scientists

Deductive verification of software is a formal method that is usually taught in Computer Science curriculum. But how can students with no strong background in Computer Science be exposed to such a technique? We present in this paper two experiments made at ISAE-SUPAERO, an engineering program focusing on aerospace industry. The first one is a classic lecture introducing deductive methods through the Frama-C platform or the SPARK programming language. The second one is the production by two undergraduate students of a complete guide on how to prove complex algorithms with SPARK. Both experiments showed that students with no previous knowledge of formal methods nor theoretical Computer Science may learn deductive methods efficiently with bottom-up approaches in which they are quickly confronted to tools and practical sessions.

[1] Nikolai Kosmatov,et al. Frama-C: A software analysis perspective , 2015, Formal Aspects of Computing.

[2] Jean-Christophe Filliâtre,et al. Why3 - Where Programs Meet Provers , 2013, ESOP.

[3] Alexander A. Stepanov,et al. C++ Standard Template Library , 2000 .

[4] J. Filliâtre,et al. ACSL: ANSI/ISO C Specification Language , 2008 .

[5] Robert W. Floyd,et al. Assigning Meanings to Programs , 1993 .

[6] Leslie Lamport,et al. Specifying Systems: The TLA+ Language and Tools for Hardware and Software Engineers [Book Review] , 2002, Computer.

[7] Yannick Moy,et al. Auto-Active Proof of Red-Black Trees in SPARK , 2017, NFM.

[8] C. A. R. Hoare,et al. An axiomatic basis for computer programming , 1969, CACM.

[9] Edsger W. Dijkstra,et al. Guarded commands, nondeterminacy and formal derivation of programs , 1975, Commun. ACM.