We present an in-depth coverage of the comprehensive machine-checked formal verification
of seL4, a general-purpose operating system microkernel. We discuss the kernel design we …

We prove that the seL4 microkernel enforces two high-level access control properties:
integrity and authority confinement. Integrity provides an upper bound on write operations …

Enclaves have emerged as a particularly compelling primitive to implement trusted
execution environments: strongly isolated sensitive user-mode processes in a largely …

Users are increasingly turning to online services, but are concerned for the safety of their
personal data and critical business tasks. While secure communication protocols like TLS …

The time for truly trustworthy systems, backed by machine checked formal proof and
analysis, has arrived. Over the past few decades, advances in formal verification and …

In this talk, I will give an overview of the various formal verification projects around the
evolving seL4 microkernel, and discuss our experience in large scale proof engineering and …

It is a great verification challenge to prove properties of complete computer systems on the
source code level. The L4. verified project achieved a major step towards this goal by …

With the rise of formally verified micro kernels, we finally have a trusted platform for secure
IPC and rigorous enforcement of our mandatory access control policy. But, not every …

The L4. verified project has produced a formal, machine-checked Isabelle/HOL proof that the
C code of the seL4 OS microkernel correctly implements its abstract implementation. This …

Computer systems are routinely deployed in life-and mission-critical situations, yet their
security, safety or dependability can in most cases not be assured to the degree warranted …