“seL4: Formal Verification of an OS Kernel”
E850681
“seL4: Formal Verification of an OS Kernel” is a landmark research paper that presents the first formally verified, general-purpose microkernel, demonstrating end-to-end mathematical proofs of its functional correctness and security properties.
Observed surface forms (1)
| Surface form | Occurrences |
|---|---|
| seL4: Formal Verification of an OS Kernel | 0 |
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf | research paper ⓘ |
| contribution |
demonstration of feasibility of large-scale formal verification in systems software
ⓘ
end-to-end functional correctness proof of an OS kernel ⓘ first formally verified general-purpose microkernel ⓘ linking of high-level specification to C implementation ⓘ machine-checked security properties of an OS kernel ⓘ |
| describes | seL4 microkernel NERFINISHED ⓘ |
| field |
computer security
ⓘ
formal methods ⓘ operating systems ⓘ software verification ⓘ |
| focusesOn |
C implementation verification
ⓘ
formal specification ⓘ functional correctness proofs ⓘ microkernel design ⓘ performance evaluation of verified kernels ⓘ proof automation ⓘ security properties ⓘ |
| goal |
eliminate entire classes of low-level implementation bugs in the kernel
ⓘ
provide mathematically proved guarantees about kernel behavior ⓘ |
| impact |
demonstrated practicality of large-scale machine-checked proofs for real-world code
ⓘ
influenced research on verified operating systems ⓘ inspired industrial interest in high-assurance microkernels ⓘ landmark in formal verification of systems software ⓘ |
| kernelProperty |
capability-based access control
ⓘ
performance comparable to unverified microkernels ⓘ small trusted computing base ⓘ |
| kernelType | general-purpose microkernel ⓘ |
| method |
Isabelle/HOL theorem prover
NERFINISHED
ⓘ
interactive theorem proving ⓘ |
| propertyVerified |
control-flow integrity at the kernel level
ⓘ
functional correctness ⓘ information-flow related security properties (in later extensions building on the paper) ⓘ memory safety ⓘ |
| relatedTo |
L4 microkernel family
NERFINISHED
ⓘ
capability systems ⓘ high-assurance systems ⓘ safety-critical systems ⓘ |
| shortTitle | seL4 NERFINISHED ⓘ |
| shows |
absence of certain classes of bugs such as null-pointer dereferences and buffer overflows in the verified kernel code
ⓘ
functional correctness of seL4 kernel implementation ⓘ refinement from abstract specification to executable C code ⓘ that high assurance and high performance can be combined in an OS kernel ⓘ |
| title | seL4: Formal Verification of an OS Kernel NERFINISHED ⓘ |
| verificationTarget |
C implementation of the seL4 kernel
ⓘ
abstract specification of kernel behavior ⓘ refinement chain from specification to implementation ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.