Contract-based verification of simulink models

Static scheduling of synchronous data flow programs for digital signal processing

IEEE Transactions on Computers

Object-oriented software construction (2nd ed.)

Object-oriented software construction (2nd ed.)

Refinement Calculus: A Systematic Introduction

Refinement Calculus: A Systematic Introduction

Trace Refinement of Action Systems

CONCUR '94 Proceedings of the Concurrency Theory

Refinement Calculus, Part I: Sequential Nondeterministic Programs

Stepwise Refinement of Distributed Systems, Models, Formalisms, Correctness, REX Workshop

Logical-Time Contracts for Reactive Embedded Components

EUROMICRO '04 Proceedings of the 30th EUROMICRO Conference

An overview of JML tools and applications

International Journal on Software Tools for Technology Transfer (STTT) - Special section on formal methods for industrial critical systems

Translating discrete-time simulink to lustre

ACM Transactions on Embedded Computing Systems (TECS)

Stepwise development of simulink models using the refinement calculus framework

ICTAC'07 Proceedings of the 4th international conference on Theoretical aspects of computing

Z3: an efficient SMT solver

TACAS'08/ETAPS'08 Proceedings of the Theory and practice of software, 14th international conference on Tools and algorithms for the construction and analysis of systems

Specification and verification: the Spec# experience

Communications of the ACM

Boogie: a modular reusable verifier for object-oriented programs

FMCO'05 Proceedings of the 4th international conference on Formal Methods for Components and Objects

Control law diagrams in circus

FM'05 Proceedings of the 2005 international conference on Formal Methods