Publications
Jump to Year:
⊙ 2024
⊙ 2023
⊙ 2022
⊙ 2021
⊙ 2020
⊙ 2019
⊙ 2018
⊙ 2017
⊙ 2016
⊙ 2015
⊙ 2014
⊙ 2013
⊙ 2012
⊙ 2011
⊙ 2010
⊙ 2009
⊙ 2008
⊙ 2007
⊙ 2006
⊙ 2004
⊙
2024
- CESAR: Control envelope synthesis via angelic refinementsTACAS
- Complete game logic with sabotageLICS
- Uniform substitution for differential refinement logicIJCAR
2023
- A first complete algorithm for real quantifier elimination in Isabelle/HOLProceedings of the 12th ACM SIGPLAN international conference on certified programs and proofs
- Differential elimination and algebraic invariants of polynomial dynamical systems
- Formally verified next-generation airborne collision avoidance games in ACAS X
- Formally verifying algorithms for real quantifier eliminationPh.D. dissertation
- Refinements of hybrid dynamical systems logicRigorous state-based methods - 9th international conference, ABZ 2023, nancy, france, proceedings
- Uniform substitution for dynamic logic with communicating hybrid programsCADE
2022
- Deductive verification for ordinary differential equations: Safety, liveness, and stabilityPh.D. dissertation
- First-order game logic and modal mu-calculus
- Formal verification of the winning strategies of pursuit-evasion games
- Implicit definitions with differential equations for KeYmaera X - (system description)IJCAR
- Learning to find proofs and theorems by learning to refine search strategiesAdvances in neural information processing systems
- Pegasus: Sound continuous invariant generation
- Safe and resilient practical waypoint-following for autonomous vehicles
- Verified train controllers for the Federal Railroad Administration train kinematics model: Balancing competing brake and track forces
- Verifying switched system stability with logicHSCC ’22: 25th ACM international conference on hybrid systems: Computation and control, milan, italy, may 4 - 6, 2022
2021
- A verified decision procedure for univariate real arithmetic with the BKR algorithm12th international conference on interactive theorem proving, ITP 2021, june 29 to july 1, 2021, rome, italy
- An axiomatic approach to existence and liveness for differential equations
- Deductive stability proofs for ordinary differential equationsTools and algorithms for the construction and analysis of systems - 27th international conference, TACAS 2021, held as part of the european joint conferences on theory and practice of software, ETAPS 2021, proceedings, part II
- Formal verification of next-generation airborne collision avoidance system with adversarial intruder behavior
- Practical end-to-end verification of cyber-physical systemsPh.D. dissertation
- Runtime verification of generalized test tablesNASA formal methods - 13th international symposium, NFM 2021, virtual event, may 24-28, 2021, proceedings
- Structured proofs for adversarial cyber-physical systems
- Switched systems as hybrid programs7th IFAC conference on analysis and design of hybrid systems, ADHS 2021, brussels, belgium, july 7-9, 2021
- The 28th international conference on automated deductionSpringer. in , Springer
- Verified quadratic virtual substitution for real arithmeticFM
2020
- A retrospective on developing hybrid systems provers in the KeYmaera family - A tale of three provers
- Constructive game logicProgramming languages and systems - 29th european symposium on programming, ESOP 2020, held as part of the european joint conferences on theory and practice of software, ETAPS 2020, dublin, ireland, april 25-30, 2020, proceedings
- Constructive hybrid gamesIJCAR
- Differential equation invariance axiomatization
- Modular Regression verification for reactive systemsLeveraging applications of formal methods, verification and validation: Engineering principles - 9th international symposium on leveraging applications of formal methods, ISoLA 2020, rhodes, greece, october 20-30, 2020, proceedings, part II
- Refining constructive hybrid games5th international conference on formal structures for computation and deduction, FSCD 2020, june 29 - july 5, 2020, paris, france
- Relational test tables: A practical specification language for evolution and securityFormaliSE@ICSE 2020: 8th international conference on formal methods in software engineering, seoul, republic of korea, july 13, 2020
- Relational test tables: A practical specification language for evolution and security
- The KeY Approach on HagridVerifyThis long-term challenge: proceedings
- The VerifyThis Collaborative Long Term Challenge
- VerifyThis long-term challenge: proceedingsin , Karlsruhe
2019
- 17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019IEEE. in , IEEE
- A formal safety net for waypoint following in ground robots
- An axiomatic approach to liveness for differential equationsFM
- Differential equation invariance axiomatization
- dL_\iota: Definite descriptions in differential dynamic logicCADE
- dL_\iota: Definite descriptions in differential dynamic logic
- Dynamic doxastic differential dynamic logic for belief-aware cyber-physical systemsTABLEAUX
- Formal verification of evolutionary changes
- HyPLC: Hybrid programmable logic controller program translation for verificationICCPS
- KASTEL industry 4.0 demonstrator: Provably forgetting information in PLC software
- KeYmaera X tutorial
- On the preservation of the trust by regression verification of PLC software for cyber-physical systems of systems17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019
- Overview of logical foundations of cyber-physical systems
- Pegasus: A framework for sound continuous invariant generationFM
- Provably forgetting of information in manufacturing systems: Verification of the KASTEL industry demonstrator
- Relational test tables: A practical specification language for evolution and security
- The logical path to autonomous cyber-physical systemsQEST
- Towards physical hybrid systemsCADE
- Uniform substitution at one fell swoopCADE
- Uniform substitution at one fell swoop
- Verifiably safe off-model reinforcement learningTACAS
2018
- A component-based hybrid systems verification and implementation tool in KeYmaera X (tool demonstration)Cyber physical systems. Model-based design - 8th international workshop, CyPhy 2018, and 14th international workshop, WESE 2018, turin, italy, october 4-5, 2018, revised selected papers
- A hybrid, dynamic logic for hybrid-dynamic information flowLICS
- A hybrid, dynamic logic for hybrid-dynamic information flow
- Achieving delta description of the control software for an automated production system evolution14th IEEE international conference on automation science and engineering, CASE 2018, munich, germany, august 20-24, 2018
- Adding text-based interaction to a direct-manipulation interface for program verification – lessons learned13th international workshop on user interfaces for theorem provers (UITP 2018)
- Applicability of generalized test tables: A case study using the manufacturing system demonstrator xPPU
- CoasterX: A case study in component-driven hybrid systems proof automation6th IFAC conference on analysis and design of hybrid systems, ADHS 2018, oxford, UK, july 11-13, 2018
- Debugging program verification proof scripts (tool paper)
- Differential equation axiomatization: The impressive power of differential ghostsLICS
- Logical foundations of cyber-physical systemsSpringer. in , Springer Cham
- Proceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018in ,
- Proving equivalence between imperative and MapReduce implementations using program transformationsProceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018
- Relational equivalence proofs between imperative and MapReduce algorithmsVerified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papers
- Relational equivalence proofs between imperative and MapReduce algorithms
- Safe AI for CPSIEEE international test conference, ITC 2018, phoenix, AZ, USA, october 29 - nov. 1, 2018
- Safe reinforcement learning via formal methods: Toward safe control through proof and learningProceedings of the thirty-second AAAI conference on artificial intelligence, february 2-7, 2018, new orleans, louisiana, USA.
- Tactical contract composition for hybrid system component verification
- Uniform substitution for differential game logicIJCAR
- Vector barrier certificates and comparison systemsFM
- Verifiably safe autonomy for cyber-physical systemsPh.D. dissertation
- Verification of hybrid systems
- Verified runtime validation for partially observable hybrid systems
- Verified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papersSpringer. in , Springer
- VeriPhy: Verified controller executables from verified cyber-physical system modelsPLDI
- Videos for logical foundations of cyber-physical systems
2017
- 15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017IEEE. in , IEEE
- A complete uniform substitution calculus for differential dynamic logic
- A formally verified hybrid system for safe advisories in the next-generation airborne collision avoidance system
- A hierarchy of proof rules for checking positive invariance of algebraic and semi-algebraic sets
- Bellerophon: Tactical theorem proving for hybrid systemsITP
- Change and delay contracts for hybrid system component verificationFASE
- Differential hybrid games
- Formal verification of obstacle avoidance and navigation of ground robots
- Formal verification of train control with air pressure brakesRSSRail
- Formally verified differential dynamic logicCertified programs and proofs - 6th ACM SIGPLAN conference, CPP 2017, paris, france, january 16-17, 2017
- Foundations of cyber-physical systems
- Generalised test tables: A practical specification language for reactive systemsIntegrated formal methods - 13th international conference, IFM 2017, turin, italy, september 20-22, 2017, proceedings
- Generalized test tables: A powerful and intuitive specification language for reactive systems15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017
- Generation of monitoring functions in production automation using test specifications15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017
- High-assurance SPIRAL: End-to-end guarantees for robot and car control
- How to prove ‘all’ differential equation properties
2016
- A component-based approach to hybrid systems safety verificationIFM
- A component-based approach to hybrid systems safety verification
- A logic of proofs for differential dynamic logic: Toward independently checkable proof certificates for dynamic logicsProceedings of the 2016 conference on certified programs and proofs, CPP 2016, st. Petersburg, FL, USA, january 18-19, 2016
- A method for invariant generation for polynomial continuous systemsVMCAI
- A verification-supported evolution approach to assist software application engineers in industrial factory automationIEEE international symposium on assembly and manufacturing (ISAM 2016)
- Differential refinement logicLICS
- Differential refinement logicPh.D. dissertation
- Efficient SAT-based pre-image enumeration for quantitative information flow in programsData privacy management and security assurance - 11th international workshop, DPM 2016 and 5th international workshop, QASA 2016, heraklion, crete, greece, september 26-27, 2016, proceedings
- Foundations of cyber-physical systems
- Foundations of cyber-physical systems
- How to model and prove hybrid systems with KeYmaera: A tutorial on safety
- Logic & proofs for cyber-physical systemsIJCAR
- ModelPlex: Verified runtime validation of verified cyber-physical system models
- Proceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016in ,
- Sound probabilistic #SAT with projectionProceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016
- The KeYmaera X proof IDE: Concepts on usability in hybrid systems theorem proving3rd workshop on formal integrated development environment
2015
- A formally verified hybrid system for the next-generation airborne collision avoidance systemTACAS
- A hierarchy of proof rules for checking differential invariance of algebraic setsVMCAI
- A uniform substitution calculus for differential dynamic logicCADE
- Correct system design symposium in honor of ernst-rüdiger olderog on the occasion of his 60th birthday oldenburg, germany, september 8-9, 2015 proceedingsSpringer. in , Springer
- Differential game logic
- Formal verification of a controlled flight between two robots: A case study
- Formal verification of ACAS X, an industrial airborne collision avoidance systemEMSOFT
- Forward invariant cuts to simplify proofs of safetyEMSOFT
- How to prove hybrid systems and why that mattersICCSE
- KeYmaera X: An axiomatic tactical theorem prover for hybrid systemsCADE
- Logic-based modeling approaches for qualitative and hybrid reasoning in dynamic spatial systems
- Proving equivalence between control software variants for Programmable Logic Controllers: Using Regression Verification to Reduce Unneeded Variant DiversityIEEE international conference on emerging technologies and factory automation, ETFA
- Regression verification for programmable logic controller software
- Regression verification for programmable logic controller softwareFormal methods and software engineering - 17th international conference on formal engineering methods, ICFEM 2015, paris, france, november 3-5, 2015, proceedings
- Regression verification for programmable logic controller softwareThesis
- Verified traffic networks: Component-based verification of cyber-physical flow systemsITSC
2014
- A formally verified hybrid system for the next-generation airborne collision avoidance system
- Analog and hybrid computation: Dynamical systems and programming languages
- Characterizing algebraic invariants by differential radical invariantsTACAS
- Collaborative verification-driven engineering of hybrid systems
- Differential hybrid games
- dTL^2: Differential temporal dynamic logic with nested temporalities for hybrid systemsIJCAR
- Foundations of cyber-physical systems
- From safety to guilty & from liveness to niceness5th workshop on formal methods for robotics and automation
- Hybrid theorem proving of aerospace systems: Applications and challenges
- Invariance of conjunctions of polynomial equalities for algebraic differential equationsSAS
- ModelPlex: Verified runtime validation of verified cyber-physical system modelsRV
- ModelPlex: Verified runtime validation of verified cyber-physical system models
- Refactoring, refinement, and reasoning: A logical characterization for hybrid systemsFM
- Supporting heterogeneity in cyber-physical systems architectures
- Teaching cyber-physical systems with logic
2013
- A complete axiomatization for differential game logic for hybrid games
- A generalization of SAT and #SAT for policy evaluationIJCAI
- A generalization of SAT and #SAT for policy evaluation
- A projection algorithm for strictly monotone linear complementarity problems6th NIPS workshop on optimization for machine learning
- Bayesian statistical model checking with application to Simulink/Stateflow verification
- Certifying the safe design of a virtual fixture control algorithm for a surgical robotHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013
- Characterizing algebraic invariants by differential radical invariants
- Efficiency analysis of formally verified adaptive cruise controllersITSC
- Formal methods for robotic system control software
- Formal verification of distributed aircraft controllersHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013
- Foundations of cyber-physical systems
- On provably safe obstacle avoidance for autonomous robotic ground vehiclesRobotics: Science and systems
- Teaching CPS foundations with contractsCPS-ed
2012
- A complete axiomatization of quantified differential dynamic logic for distributed hybrid systems
- A differential operator approach to equational differential invariantsITP
- Algorithms for Forbidden Pattern Recognition in Transition DiagramsThesis
- Differential game logic for hybrid games
- Dynamic logics of dynamical systems
- Logical analysis of hybrid systems: A complete answer to a complexity challengeDCFS
- Logical analysis of hybrid systems: A complete answer to a complexity challenge
- Logics of dynamical systemsLICS
- Mechanized safety proofs for disc-constrained aircraft
- Playing hybrid games with KeYmaeraIJCAR
- Statistical model checking for Markov decision processesQEST
- The complete proof theory of hybrid systemsLICS
- The structure of differential invariants and differential cut elimination
- Towards formal verification of freeway traffic controlICCPS
- Using theorem provers to guarantee closed-loop system propertiesACC
2011
- Adaptive cruise control: Hybrid, distributed, and now formally verifiedFM
- Adaptive cruise control: Hybrid, distributed, and now formally verified
- An instantiation-based theorem prover for first-order programmingProceedings of the 14th international conference on artifical intelligence and statistics (AISTATS) 2011, fort lauderdale, FL, USA
- Differential invariants and symbolic integration for distributed hybrid systems
- Distributed theorem proving for distributed hybrid systemsICFEM
- Logic and compositional verification of hybrid systems (invited tutorial)CAV
- Quantified differential invariantsHSCC
- Quantifier elimination over finite fields with Gröbner basesCAI
- Safe intersections: At the crossing of hybrid systems and verificationITSC
- Statistical model checking for distributed probabilistic-control hybrid automata with smart grid applicationsICFEM
- Stochastic differential dynamic logic for stochastic hybrid programsCADE
- Stochastic differential dynamic logic for stochastic hybrid systems
- The complete proof theory of hybrid systems
- The structure of differential invariants and differential cut elimination
- Using parameters in architectural views to support heterogeneous design and verificationCDC
2010
- Bayesian statistical model checking with application to Simulink/Stateflow verificationHSCC
- Bayesian statistical model checking with application to Simulink/Stateflow verification.
- Differential dynamic logics: Automated theorem proving for hybrid systems
- Differential-algebraic dynamic logic for differential-algebraic programs
- Logical analysis of hybrid systems: Proving theorems for complex dynamicsSpringer. in , Springer Heidelberg
- Quantified differential dynamic logic for distributed hybrid systemsCSL
- Quantified differential dynamic logic for distributed hybrid systems
2009
- A Bayesian approach to model checking biological systemsCMSB
- Computing differential invariants of hybrid systems as fixedpoints
- European Train Control System: A case study in formal verificationICFEM
- European Train Control System: A case study in formal verificationThesis
- Formal verification of curved flight collision avoidance maneuvers: A case studyFM
- Formal verification of curved flight collision avoidance maneuvers: A case study
- Real world verificationCADE
- Real world verificationThesis
- Statistical model checking for complex stochastic models in systems biology
- Verification of cyberphysical transportation systems
2008
- Analysis and verification challenges for cyber-physical transportation systemsNITRD national workshop for research on transportation cyber-physical systems: Automotive, aviation, and rail
- Computing differential invariants of hybrid systems as fixedpointsCAV
- Computing differential invariants of hybrid systems as fixedpoints
- Differential dynamic logic for hybrid systems.
- Differential dynamic logics: Automated theorem proving for hybrid systemsPh.D. dissertation
- Differential dynamic logics. Automated theorem proving for hybrid systemsProceedings des gemeinsamen workshops der graduiertenkollegs 2008, dagstuhl
- KeYmaera: A hybrid theorem prover for hybrid systems.IJCAR
- Logical verification and systematic parametric analysis in train control.HSCC
2007
- A temporal dynamic logic for verifying hybrid system invariantsLFCS
- A temporal dynamic logic for verifying hybrid system invariantsThesis
- Automating verification of cooperation, control, and design in traffic applicationsFormal methods and hybrid real-time systems
- Combining deduction and algebraic constraints for hybrid system analysis.VERIFY’07 at CADE, bremen, germany
- Differential dynamic logic for verifying parametric hybrid systems.TABLEAUX
- Differential dynamic logic for verifying parametric hybrid systems.Thesis
- Differential logic for hybrid system verification – reasoning about interacting discrete and continuous changeDagstuhl “zehn plus eins” – zehn informatik-graduiertenkollegs und ein informatik-forschungskolleg stellen sich vor
- Differential logic for reasoning about hybrid systemsHSCC
- SAT-based abstraction refinement for real-time systemsFormal aspects of component software, third international workshop, FACS 2006, prague, czech republic, proceedings
- The image computation problem in hybrid systems model checkingHSCC
- Towards a hybrid dynamic logic for hybrid dynamic systems
2006
- Dynamic logic with non-rigid functions: A basis for object-oriented program verification.IJCAR
2004
- Using a program verification calculus for constructing specifications from implementations
Jump to Category:
thesis
- Formally verifying algorithms for real quantifier eliminationPh.D. dissertation
- Deductive verification for ordinary differential equations: Safety, liveness, and stabilityPh.D. dissertation
- Practical end-to-end verification of cyber-physical systemsPh.D. dissertation
- Verifiably safe autonomy for cyber-physical systemsPh.D. dissertation
- Differential refinement logicPh.D. dissertation
- Regression verification for programmable logic controller softwareThesis
- Algorithms for Forbidden Pattern Recognition in Transition DiagramsThesis
- Differential dynamic logics: Automated theorem proving for hybrid systemsPh.D. dissertation
report
- Provably forgetting of information in manufacturing systems: Verification of the KASTEL industry demonstrator
- dL_\iota: Definite descriptions in differential dynamic logic
- A hybrid, dynamic logic for hybrid-dynamic information flow
- How to prove ‘all’ differential equation properties
- A component-based approach to hybrid systems safety verification
- Regression verification for programmable logic controller software
- ModelPlex: Verified runtime validation of verified cyber-physical system models
- Differential hybrid games
- A formally verified hybrid system for the next-generation airborne collision avoidance system
- Characterizing algebraic invariants by differential radical invariants
- A generalization of SAT and #SAT for policy evaluation
- A complete axiomatization for differential game logic for hybrid games
- Mechanized safety proofs for disc-constrained aircraft
- Differential game logic for hybrid games
- The structure of differential invariants and differential cut elimination
- The complete proof theory of hybrid systems
- Stochastic differential dynamic logic for stochastic hybrid systems
- Differential invariants and symbolic integration for distributed hybrid systems
- Adaptive cruise control: Hybrid, distributed, and now formally verified
- Quantified differential dynamic logic for distributed hybrid systems
- Bayesian statistical model checking with application to Simulink/Stateflow verification.
- Statistical model checking for complex stochastic models in systems biology
- Real world verificationThesis
- Formal verification of curved flight collision avoidance maneuvers: A case study
- European Train Control System: A case study in formal verificationThesis
- Computing differential invariants of hybrid systems as fixedpoints
- Differential dynamic logic for verifying parametric hybrid systems.Thesis
- A temporal dynamic logic for verifying hybrid system invariantsThesis
paper-conference
- Uniform substitution for differential refinement logicIJCAR
- Complete game logic with sabotageLICS
- CESAR: Control envelope synthesis via angelic refinementsTACAS
- Uniform substitution for dynamic logic with communicating hybrid programsCADE
- Refinements of hybrid dynamical systems logicRigorous state-based methods - 9th international conference, ABZ 2023, nancy, france, proceedings
- A first complete algorithm for real quantifier elimination in Isabelle/HOLProceedings of the 12th ACM SIGPLAN international conference on certified programs and proofs
- Verifying switched system stability with logicHSCC ’22: 25th ACM international conference on hybrid systems: Computation and control, milan, italy, may 4 - 6, 2022
- Learning to find proofs and theorems by learning to refine search strategiesAdvances in neural information processing systems
- Implicit definitions with differential equations for KeYmaera X - (system description)IJCAR
- Verified quadratic virtual substitution for real arithmeticFM
- Switched systems as hybrid programs7th IFAC conference on analysis and design of hybrid systems, ADHS 2021, brussels, belgium, july 7-9, 2021
- Runtime verification of generalized test tablesNASA formal methods - 13th international symposium, NFM 2021, virtual event, may 24-28, 2021, proceedings
- Deductive stability proofs for ordinary differential equationsTools and algorithms for the construction and analysis of systems - 27th international conference, TACAS 2021, held as part of the european joint conferences on theory and practice of software, ETAPS 2021, proceedings, part II
- A verified decision procedure for univariate real arithmetic with the BKR algorithm12th international conference on interactive theorem proving, ITP 2021, june 29 to july 1, 2021, rome, italy
- The KeY Approach on HagridVerifyThis long-term challenge: proceedings
- Relational test tables: A practical specification language for evolution and securityFormaliSE@ICSE 2020: 8th international conference on formal methods in software engineering, seoul, republic of korea, july 13, 2020
- Refining constructive hybrid games5th international conference on formal structures for computation and deduction, FSCD 2020, june 29 - july 5, 2020, paris, france
- Modular Regression verification for reactive systemsLeveraging applications of formal methods, verification and validation: Engineering principles - 9th international symposium on leveraging applications of formal methods, ISoLA 2020, rhodes, greece, october 20-30, 2020, proceedings, part II
- Constructive hybrid gamesIJCAR
- Constructive game logicProgramming languages and systems - 29th european symposium on programming, ESOP 2020, held as part of the european joint conferences on theory and practice of software, ETAPS 2020, dublin, ireland, april 25-30, 2020, proceedings
- Verifiably safe off-model reinforcement learningTACAS
- Uniform substitution at one fell swoopCADE
- Towards physical hybrid systemsCADE
- The logical path to autonomous cyber-physical systemsQEST
- Pegasus: A framework for sound continuous invariant generationFM
- On the preservation of the trust by regression verification of PLC software for cyber-physical systems of systems17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019
- HyPLC: Hybrid programmable logic controller program translation for verificationICCPS
- Dynamic doxastic differential dynamic logic for belief-aware cyber-physical systemsTABLEAUX
- dL_\iota: Definite descriptions in differential dynamic logicCADE
- An axiomatic approach to liveness for differential equationsFM
- VeriPhy: Verified controller executables from verified cyber-physical system modelsPLDI
- Vector barrier certificates and comparison systemsFM
- Uniform substitution for differential game logicIJCAR
- Safe reinforcement learning via formal methods: Toward safe control through proof and learningProceedings of the thirty-second AAAI conference on artificial intelligence, february 2-7, 2018, new orleans, louisiana, USA.
- Safe AI for CPSIEEE international test conference, ITC 2018, phoenix, AZ, USA, october 29 - nov. 1, 2018
- Relational equivalence proofs between imperative and MapReduce algorithmsVerified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papers
- Proving equivalence between imperative and MapReduce implementations using program transformationsProceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018
- Differential equation axiomatization: The impressive power of differential ghostsLICS
- CoasterX: A case study in component-driven hybrid systems proof automation6th IFAC conference on analysis and design of hybrid systems, ADHS 2018, oxford, UK, july 11-13, 2018
- Adding text-based interaction to a direct-manipulation interface for program verification – lessons learned13th international workshop on user interfaces for theorem provers (UITP 2018)
- Achieving delta description of the control software for an automated production system evolution14th IEEE international conference on automation science and engineering, CASE 2018, munich, germany, august 20-24, 2018
- A hybrid, dynamic logic for hybrid-dynamic information flowLICS
- A component-based hybrid systems verification and implementation tool in KeYmaera X (tool demonstration)Cyber physical systems. Model-based design - 8th international workshop, CyPhy 2018, and 14th international workshop, WESE 2018, turin, italy, october 4-5, 2018, revised selected papers
- Generation of monitoring functions in production automation using test specifications15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017
- Generalized test tables: A powerful and intuitive specification language for reactive systems15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017
- Generalised test tables: A practical specification language for reactive systemsIntegrated formal methods - 13th international conference, IFM 2017, turin, italy, september 20-22, 2017, proceedings
- Formally verified differential dynamic logicCertified programs and proofs - 6th ACM SIGPLAN conference, CPP 2017, paris, france, january 16-17, 2017
- Formal verification of train control with air pressure brakesRSSRail
- Change and delay contracts for hybrid system component verificationFASE
- Bellerophon: Tactical theorem proving for hybrid systemsITP
- The KeYmaera X proof IDE: Concepts on usability in hybrid systems theorem proving3rd workshop on formal integrated development environment
- Sound probabilistic #SAT with projectionProceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016
- Logic & proofs for cyber-physical systemsIJCAR
- Efficient SAT-based pre-image enumeration for quantitative information flow in programsData privacy management and security assurance - 11th international workshop, DPM 2016 and 5th international workshop, QASA 2016, heraklion, crete, greece, september 26-27, 2016, proceedings
- Differential refinement logicLICS
- A verification-supported evolution approach to assist software application engineers in industrial factory automationIEEE international symposium on assembly and manufacturing (ISAM 2016)
- A method for invariant generation for polynomial continuous systemsVMCAI
- A logic of proofs for differential dynamic logic: Toward independently checkable proof certificates for dynamic logicsProceedings of the 2016 conference on certified programs and proofs, CPP 2016, st. Petersburg, FL, USA, january 18-19, 2016
- A component-based approach to hybrid systems safety verificationIFM
- Verified traffic networks: Component-based verification of cyber-physical flow systemsITSC
- Regression verification for programmable logic controller softwareFormal methods and software engineering - 17th international conference on formal engineering methods, ICFEM 2015, paris, france, november 3-5, 2015, proceedings
- Proving equivalence between control software variants for Programmable Logic Controllers: Using Regression Verification to Reduce Unneeded Variant DiversityIEEE international conference on emerging technologies and factory automation, ETFA
- KeYmaera X: An axiomatic tactical theorem prover for hybrid systemsCADE
- How to prove hybrid systems and why that mattersICCSE
- Forward invariant cuts to simplify proofs of safetyEMSOFT
- Formal verification of ACAS X, an industrial airborne collision avoidance systemEMSOFT
- A uniform substitution calculus for differential dynamic logicCADE
- A hierarchy of proof rules for checking differential invariance of algebraic setsVMCAI
- A formally verified hybrid system for the next-generation airborne collision avoidance systemTACAS
- Refactoring, refinement, and reasoning: A logical characterization for hybrid systemsFM
- ModelPlex: Verified runtime validation of verified cyber-physical system modelsRV
- Invariance of conjunctions of polynomial equalities for algebraic differential equationsSAS
- From safety to guilty & from liveness to niceness5th workshop on formal methods for robotics and automation
- dTL^2: Differential temporal dynamic logic with nested temporalities for hybrid systemsIJCAR
- Characterizing algebraic invariants by differential radical invariantsTACAS
- Teaching CPS foundations with contractsCPS-ed
- On provably safe obstacle avoidance for autonomous robotic ground vehiclesRobotics: Science and systems
- Formal verification of distributed aircraft controllersHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013
- Efficiency analysis of formally verified adaptive cruise controllersITSC
- Certifying the safe design of a virtual fixture control algorithm for a surgical robotHybrid systems: Computation and control (part of CPS week 2013), HSCC’13, philadelphia, PA, USA, april 8-13, 2013
- A projection algorithm for strictly monotone linear complementarity problems6th NIPS workshop on optimization for machine learning
- A generalization of SAT and #SAT for policy evaluationIJCAI
- Using theorem provers to guarantee closed-loop system propertiesACC
- Towards formal verification of freeway traffic controlICCPS
- The complete proof theory of hybrid systemsLICS
- Statistical model checking for Markov decision processesQEST
- Playing hybrid games with KeYmaeraIJCAR
- Logics of dynamical systemsLICS
- Logical analysis of hybrid systems: A complete answer to a complexity challengeDCFS
- A differential operator approach to equational differential invariantsITP
- Using parameters in architectural views to support heterogeneous design and verificationCDC
- Stochastic differential dynamic logic for stochastic hybrid programsCADE
- Statistical model checking for distributed probabilistic-control hybrid automata with smart grid applicationsICFEM
- Safe intersections: At the crossing of hybrid systems and verificationITSC
- Quantifier elimination over finite fields with Gröbner basesCAI
- Quantified differential invariantsHSCC
- Logic and compositional verification of hybrid systems (invited tutorial)CAV
- Distributed theorem proving for distributed hybrid systemsICFEM
- An instantiation-based theorem prover for first-order programmingProceedings of the 14th international conference on artifical intelligence and statistics (AISTATS) 2011, fort lauderdale, FL, USA
- Adaptive cruise control: Hybrid, distributed, and now formally verifiedFM
- Quantified differential dynamic logic for distributed hybrid systemsCSL
- Bayesian statistical model checking with application to Simulink/Stateflow verificationHSCC
- Real world verificationCADE
- Formal verification of curved flight collision avoidance maneuvers: A case studyFM
- European Train Control System: A case study in formal verificationICFEM
- A Bayesian approach to model checking biological systemsCMSB
- Logical verification and systematic parametric analysis in train control.HSCC
- KeYmaera: A hybrid theorem prover for hybrid systems.IJCAR
- Differential dynamic logics. Automated theorem proving for hybrid systemsProceedings des gemeinsamen workshops der graduiertenkollegs 2008, dagstuhl
- Computing differential invariants of hybrid systems as fixedpointsCAV
- Analysis and verification challenges for cyber-physical transportation systemsNITRD national workshop for research on transportation cyber-physical systems: Automotive, aviation, and rail
- The image computation problem in hybrid systems model checkingHSCC
- SAT-based abstraction refinement for real-time systemsFormal aspects of component software, third international workshop, FACS 2006, prague, czech republic, proceedings
- Differential logic for reasoning about hybrid systemsHSCC
- Differential logic for hybrid system verification – reasoning about interacting discrete and continuous changeDagstuhl “zehn plus eins” – zehn informatik-graduiertenkollegs und ein informatik-forschungskolleg stellen sich vor
- Differential dynamic logic for verifying parametric hybrid systems.TABLEAUX
- Combining deduction and algebraic constraints for hybrid system analysis.VERIFY’07 at CADE, bremen, germany
- Automating verification of cooperation, control, and design in traffic applicationsFormal methods and hybrid real-time systems
- A temporal dynamic logic for verifying hybrid system invariantsLFCS
- Dynamic logic with non-rigid functions: A basis for object-oriented program verification.IJCAR
manuscript
- Relational test tables: A practical specification language for evolution and security
- Teaching cyber-physical systems with logic
chapter
- The VerifyThis Collaborative Long Term Challenge
- A retrospective on developing hybrid systems provers in the KeYmaera family - A tale of three provers
- Formal verification of evolutionary changes
- Verification of hybrid systems
book
- The 28th international conference on automated deductionSpringer. in , Springer
- VerifyThis long-term challenge: proceedingsin , Karlsruhe
- 17th IEEE international conference on industrial informatics, INDIN 2019, helsinki, finland, july 22-25, 2019IEEE. in , IEEE
- Verified software. Theories, tools, and experiments - 10th international conference, VSTTE 2018, oxford, UK, july 18-19, 2018, revised selected papersSpringer. in , Springer
- Proceedings third workshop on models for formal analysis of real systems and sixth international workshop on verification and program transformation, MARS/VPT@ETAPS 2018, thessaloniki, greece, 20th april 2018in ,
- Logical foundations of cyber-physical systemsSpringer. in , Springer Cham
- 15th IEEE international conference on industrial informatics, INDIN 2017, emden, germany, july 24-26, 2017IEEE. in , IEEE
- Proceedings 14th international workshop quantitative aspects of programming languages and systems, QAPL 2016, eindhoven, the netherlands, april 2-3, 2016in ,
- Correct system design symposium in honor of ernst-rüdiger olderog on the occasion of his 60th birthday oldenburg, germany, september 8-9, 2015 proceedingsSpringer. in , Springer
- Logical analysis of hybrid systems: Proving theorems for complex dynamicsSpringer. in , Springer Heidelberg
article-journal
- Formally verified next-generation airborne collision avoidance games in ACAS X
- Differential elimination and algebraic invariants of polynomial dynamical systems
- Verified train controllers for the Federal Railroad Administration train kinematics model: Balancing competing brake and track forces
- Safe and resilient practical waypoint-following for autonomous vehicles
- Pegasus: Sound continuous invariant generation
- First-order game logic and modal mu-calculus
- Structured proofs for adversarial cyber-physical systems
- An axiomatic approach to existence and liveness for differential equations
- Differential equation invariance axiomatization
- Uniform substitution at one fell swoop
- Relational test tables: A practical specification language for evolution and security
- Overview of logical foundations of cyber-physical systems
- Differential equation invariance axiomatization
- A formal safety net for waypoint following in ground robots
- Verified runtime validation for partially observable hybrid systems
- Tactical contract composition for hybrid system component verification
- Relational equivalence proofs between imperative and MapReduce algorithms
- Debugging program verification proof scripts (tool paper)
- Applicability of generalized test tables: A case study using the manufacturing system demonstrator xPPU
- High-assurance SPIRAL: End-to-end guarantees for robot and car control
- Formal verification of obstacle avoidance and navigation of ground robots
- Differential hybrid games
- A hierarchy of proof rules for checking positive invariance of algebraic and semi-algebraic sets
- A formally verified hybrid system for safe advisories in the next-generation airborne collision avoidance system
- A complete uniform substitution calculus for differential dynamic logic
- ModelPlex: Verified runtime validation of verified cyber-physical system models
- How to model and prove hybrid systems with KeYmaera: A tutorial on safety
- Logic-based modeling approaches for qualitative and hybrid reasoning in dynamic spatial systems
- Differential game logic
- Supporting heterogeneity in cyber-physical systems architectures
- Hybrid theorem proving of aerospace systems: Applications and challenges
- Collaborative verification-driven engineering of hybrid systems
- Analog and hybrid computation: Dynamical systems and programming languages
- Formal methods for robotic system control software
- Bayesian statistical model checking with application to Simulink/Stateflow verification
- The structure of differential invariants and differential cut elimination
- Logical analysis of hybrid systems: A complete answer to a complexity challenge
- Dynamic logics of dynamical systems
- A complete axiomatization of quantified differential dynamic logic for distributed hybrid systems
- Differential-algebraic dynamic logic for differential-algebraic programs
- Differential dynamic logics: Automated theorem proving for hybrid systems
- Verification of cyberphysical transportation systems
- Computing differential invariants of hybrid systems as fixedpoints
- Differential dynamic logic for hybrid systems.
- Towards a hybrid dynamic logic for hybrid dynamic systems
- Formal verification of the winning strategies of pursuit-evasion games
- Formal verification of next-generation airborne collision avoidance system with adversarial intruder behavior
- KeYmaera X tutorial
- KASTEL industry 4.0 demonstrator: Provably forgetting information in PLC software
- Videos for logical foundations of cyber-physical systems
- Foundations of cyber-physical systems
- Foundations of cyber-physical systems
- Foundations of cyber-physical systems
- Formal verification of a controlled flight between two robots: A case study
- Foundations of cyber-physical systems
- Foundations of cyber-physical systems
- Using a program verification calculus for constructing specifications from implementations