Many critical real-time applications are implemented as time-triggered systems. We present
a systematic way to derive such time-triggered implementations from algorithms specified as …

Distributed dependable real time systems crucially depend on fault tolerant clock
synchronization. The paper reports on the formal analysis of the clock synchronization …

This paper presents an overview of NASA Langley's research program in formal methods.
The major goals of this work are to make formal methods practical for use on life critical …

We present a formal model for fault-masking and transient-recovery among the replicated
computers of digital flight-control systems. We establish conditions under which majority …

We present a formal model of asynchronous communication between two digital hardware
devices. The model takes the form of a function in the Boyer-Moore logic. The function …

This report explores the influences of hardware on verifiable secure system design and
envisions a mutually beneficial collaboration between the hardware verification and security …

The design and formal verification of the Reliable Computing Platform (RCP), a fault tolerant
computing system for digital flight control applications is presented. The RCP uses N …

We present the formal verification of synchronizing aspects of the Reliable Computing
Platform (RCP), a fault-tolerant computing system for digital flight control applications. The …

Achieving interactive consistency among processors in the presence of faults is an important
problem in fault tolerant computing, first cleanly formulated by L. Lamport, R. Pease, and M …

We propose a design strategy that exploits the strengths of different formal approaches to
establish a reliable path from a mechanically verified high-level description to a concrete …