Skip to main content

Synthesis of verified architectural components for autonomy hosted on a verified microkernel

Authors

Konrad Slind, David Hardin, Johannes ├ůman Pohjola and Michael Sproul

DATA61

Rockwell Collins Advanced Technology Center

UNSW Sydney

Abstract

We describe a method and toolchain for the creation of formally verified autonomy components that run on the verified seL4 microkernel. This synthesis and verification environment provides a basis to create safe and secure autonomous systems. We illustrate our method and tools with an example that implements security-improving transformations on system architectures captured in AADL. We show how input validation filter components can be synthesized from regular expressions, and verified to meet arithmetic constraints extracted from the AADL model. Such filters comprise efficient guards on messages to/from the autonomous system. The correctness of filters are automatically lifted to proofs of the corresponding properties on the lazy streams modelling the communications of the generated seL4 threads. Finally, we guarantee that the intent of the autonomy application logic is accurately reflected in the application binary code hosted on seL4 through the use of the verified CakeML compiler.

BibTeX Entry

  @inproceedings{Slind_HAS_20,
    author           = {Slind, Konrad and Hardin, David and {\AA}man Pohjola, Johannes and Sproul, Michael},
    doi              = {https://doi.org/10.24251/HICSS.2020.779},
    month            = jan,
    date             = {2020-1-7},
    year             = {2020},
    title            = {Synthesis of Verified Architectural Components for Autonomy Hosted on a Verified Microkernel},
    address          = {Grand Wilea, Hawaii},
    pages            = {6365-6374},
    booktitle        = {Hawaii International Conference on System Sciences},
    publisher        = {ScholarSpace / AIS Electronic Library},
    isbn             = {9780998133133}
  }

Download

Served by Apache on Linux on seL4.