Implementing mathematics with the Nuprl proof development system
Implementing mathematics with the Nuprl proof development system
Information and Computation - Semantics of Data Types
AUTO STAR—a software development system
ACM SIGPLAN Notices
A provably correct operating system: &dgr;-core
ACM SIGOPS Operating Systems Review
The minimal model of operating systems
ACM SIGOPS Operating Systems Review
Formal specifications of debuggers
ACM SIGPLAN Notices
Tessellation: refactoring the OS around explicit resource containers with continuous adaptation
Proceedings of the 50th Annual Design Automation Conference
| Hi-index | 0.00 |
Automated aircraft control has traditionally been divided into distinct functions that are implemented separately (e.g., autopilot, auto-throttle, flight management); each function has its own fault-tolerant computer system, and dependencies among different functions are generally limited to the exchange of sensor and control data. A by-product of this federated architecture is that faults are strongly contained within the computer system of the function where they occur and cannot readily propagate to affect the operation of other functions.More modern avionics architectures contemplate supporting multiple functions on a single, shared, fanlt-tolerant computer system where natural fault containment boundaries are less sharply defined. Partitioning uses appropriate hardware and software mechanisms to restore strong fault containment to such integrated architectures.This paper examines the formal specification of partitioning and the mathematical properties in providing assurance for partitioning.