Lecture Note seL4: Formal Verification of an OS Kernel
نویسنده
چکیده
Complete formal verification is the only known way to guarantee that a system is free of programming errors. They present their experience in performing the formal, machine-checked verification of the seL4 microkernel from an abstract specification down to its C implementation. According to this paper, this is the first formal proof of functional correctness of a complete, general-purpose operating-system kernel.
منابع مشابه
The Clustered Multikernel: An Approach to Formal Verification of Multiprocessor OS Kernels
Operating-system kernels are critical software components in computer systems. Building secure, safe and reliable computer systems is facilitated by having strong kernel correctness guarantees. Such guarantees can be obtained by formally verifying a kernel down to the implementation level. Kernel verification has attracted much research interest. For example, the L4.verified project has proved ...
متن کاملProof Engineering Challenges for Large-Scale Verification
In this extended abstract I summarise challenges for proof engineering that we encountered in the formal verification of the seL4 microkernel [7], and its subsequent proofs of integrity [12], non-interference [10], and binary correctness [11]. I focus on problems where there is scope for automation using AI and machine-learning techniques. For more background on the seL4 verification, and an an...
متن کاملMicrokernel Verification Down To Assembly Extending the seL4 verification
When constructing systems with high assurance requirements, it is desirable to build on a formally verified trusted computing base, such as the seL4 microkernel [4]. The verification of seL4 guarantees correctness down to the kernel’s C implementation and relies on the correctness of the C compiler used. CompCert, a verified C compiler [2, 5], has the potential to extend these guarantees to the...
متن کاملFrom a Verified Kernel towards Verified Systems
The L4.verified project has produced a formal, machinechecked Isabelle/HOL proof that the C code of the seL4 OS microkernel correctly implements its abstract implementation. This paper briefly summarises the proof, its main implications and assumptions, reports on the experience in conducting such a large-scale verification, and finally lays out a vision how this formally verified kernel may be...
متن کاملSCHOOL OF ELECTRICAL ENGINEERING AND TELECOMMUNICATION Usermode OS Components On seL4 With Rump Kernels
seL4 is a formally-verified high-assurance microkernel that provides isolation to properly designed applications that it executes. Real-world cyber-physical systems can use seL4 for increased security. Many applications rely on the operating system to provide system services, such as device drivers, file systems and networking capabilities, however seL4 only provides these in a limited capacity...
متن کامل