[SystemSafety] Collected stopgap measures (Hoare)

Derek M Jones derek at knosof.co.uk
Fri Nov 16 17:02:45 CET 2018


Nick,

> Nope, this is formal proof, and nope, it is not marketing...cheeky!  Use of

Four man months to process 350,000 SLoC.

Say 20 man days per month, so 80 man days.
Which is around 4,500 SLoC per day, for 80 days.

Not believable.

Now 4-man months to run the tools over something that has already
been written and check the results.  That is believable.

How long might it have taken to write a proof?

If it took 6-man years to write a proof of 18K, then 350K is
going to require 100+ man years.


-- 
Derek M. Jones           Software analysis
tel: +44 (0)1252 520667  blog:shape-of-code.coding-guidelines.com


More information about the systemsafety mailing list