Skip to Content.
Sympa Menu

coq-club - Re: [Coq-Club] Verification of GUIs in Coq

coq-club AT inria.fr

Subject: The Coq mailing list

List archive

Re: [Coq-Club] Verification of GUIs in Coq


Chronological Thread 
  • From: Abhishek Anand <abhishek.anand.iitg AT gmail.com>
  • To: coq-club <coq-club AT inria.fr>
  • Subject: Re: [Coq-Club] Verification of GUIs in Coq
  • Date: Tue, 10 Oct 2017 13:36:23 -0400
  • Authentication-results: mail2-smtp-roc.national.inria.fr; spf=None smtp.pra=abhishek.anand.iitg AT gmail.com; spf=Pass smtp.mailfrom=abhishek.anand.iitg AT gmail.com; spf=None smtp.helo=postmaster AT mail-qt0-f177.google.com
  • Ironport-phdr: 9a23:CknnARNkJX6IrmkgAkwl6mtUPXoX/o7sNwtQ0KIMzox0K/vzrarrMEGX3/hxlliBBdydsK0UzbeO+4nbGkU+or+5+EgYd5JNUxJXwe43pCcHRPC/NEvgMfTxZDY7FskRHHVs/nW8LFQHUJ2mPw6a8TWO6msZHQy6Pg5oLKyhEYnLys+zyuqa+pvJYgwOiiDrMp1oKxDjhA/Rt9IWjIgqA6A4zBeB9nJCe+VNxW5rY1uVlhDwoMax4JFL/CFZuvZn/MlFB/apN58kRKBVWWx1e1s+49fm4EHO
I am curious what you want to prove about GUIs. 

In the healthcare domain, I guess privacy is the biggest concern. 
I think that a pragmatic approach is to push these concerns to the backend, whose semantics seem much easier to define than the frontends (GUIs) that interact with humans who are too complex creatures to formally reason about.
For example, it may be possible to just argue that the backend, when communicating with the frontend, never reveals sensitive information. Thus, the frontend, in whatever ways it renders the graphics, cannot reveal sensitive information.
I guess the following work is an example:



On Mon, Oct 9, 2017 at 8:30 PM, stvienna wiener <stvienna AT gmail.com> wrote:
Hello everyone,


We are verifying GUI applications from the healthcare domain (e.g.,
healthcare processes) in Agda. Is there any related work in Coq? My
searches mostly return papers on how to write GUI front-ends to
theorem provers/Coq but not how to verify GUIs.


Thanks & best regards,
Stephan


Archive powered by MHonArc 2.6.18.

Top of Page