Abstract

Computers have become indispensable, largely because they automate and control most systems we interact with. Even though computing technology is constantly improving, relying on computers to this degree fosters an urgent need for high-assurance systems. Among the typical applications of high-assurance systems, high-consequence systems are the most critical. The unsafe failure of these systems can result in catastrophic loss of life, damage to property, or social chaos. The authors consider how developers must use consistent, rigorous methods throughout the development process, from requirements specification and design to implementation and assessment.