Abstract: High-assurance software has become a key goal in modern software development, especially in the design of embedded kernel systems and other fields where high reliability and security are ...