Skip to main content


The L4.verified project - next steps


Gerwin Klein

NICTA, Sydney, Australia
UNSW, Australia


Last year, the NICTA L4.verified project produced a formal machine-checked Isabelle/HOL proof that the C code of the seL4 OS microkernel correctly implements its abstract implementation. This papers gives a brief overview of the proof together with its main implications and assumptions, and paints a vision on how this verified kernel can be used for gaining assurance of overall system security on the code level for systems of a million lines of code or more.

BibTeX Entry

    publisher        = {Springer},
    series           = {Lecture Notes in Computer Science},
    author           = {Gerwin Klein},
    year             = {2010},
    month            = {aug},
    volume           = {6217},
    editor           = {Gary Leavens and Peter O'Hearn and Sriram Rajamani},
    title            = {The {L4.verified} Project - Next Steps},
    booktitle        = {Proceedings of Verified Software: Theories, Tools and Experiments 2010},
    pages            = {86--96},
    address          = {Edinburgh, UK}