Schaffer, K.
and Voas, J.
(2016),
Whatever Happened to Formal Methods for Security?, Computer (IEEE Computer), [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=920593
(Accessed October 13, 2025)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Whatever Happened to Formal Methods for Security?
Published
Author(s)
,
Abstract
We asked 7 experts 7 questions to find out what has occurred recently in terms of applying formal methods (FM) to security-centric, cyber problems. We were curious as to whether this successful methodology in "safety-critical" has succeeded as well for today's "build it, hack it, patch it" mindset. Our experts were John McLean (Naval Research Labs), Paul Black (National Institute of Standards and Technology), Karl Levitt (University of California at Davis), Joseph Williams (CloudEconomist.Com), Connie Heitmeyer (Naval Research Labs), Eugene Spafford (Purdue University), and Joseph Kiniry (Galois, Inc.).Citation
Computer (IEEE Computer)
Volume
49
Issue
8
Pub Type
Journals
Download Paper
Keywords
formal methods, cyber-security, tools, techniques, conferences, proof of correctness
Citation
Issues
If you have any questions about this publication or are having problems accessing it, please contact [email protected].
Created August 23, 2016, Updated February 19, 2017