Mondex, an electronic purse: specification and refinement checks with the Alloy model-finding method

Alloy as a Refactoring Checker?

Electronic Notes in Theoretical Computer Science (ENTCS)

Verification of Mondex Electronic Purses with KIV: From a Security Protocol to Verified Code

FM '08 Proceedings of the 15th international symposium on Formal Methods

Automating Algebraic Specifications of Non-freely Generated Data Types

ATVA '08 Proceedings of the 6th International Symposium on Automated Technology for Verification and Analysis

Formal methods: Practice and experience

ACM Computing Surveys (CSUR)

Bounded relational analysis of free data types

TAP'08 Proceedings of the 2nd international conference on Tests and proofs

Analyzing a formal specification of Mondex using model checking

ICTAC'10 Proceedings of the 7th International colloquium conference on Theoretical aspects of computing

Dynamite 2.0: new features based on UnSAT-core extraction to improve verification of software requirements

ICTAC'10 Proceedings of the 7th International colloquium conference on Theoretical aspects of computing

Automated Flaw Detection in Algebraic Specifications

Journal of Automated Reasoning

Relational analysis of (Co)inductive predicates, (Co)algebraic datatypes, and (Co)recursive functions

TAP'10 Proceedings of the 4th international conference on Tests and proofs

Translating z to alloy

ABZ'10 Proceedings of the Second international conference on Abstract State Machines, Alloy, B and Z

A systematic verification approach for mondex electronic purses using ASMs

Rigorous Methods for Software Construction and Analysis

Relational analysis of (co)inductive predicates, (co)algebraic datatypes, and (co)recursive functions

Software Quality Control

Dynamite: A tool for the verification of alloy models based on PVS

ACM Transactions on Software Engineering and Methodology (TOSEM)