From: Marin David Condic <nobody@noplace.com>
Subject: Re: Other Ada Standards (was Re: SIGada Conference)
Date: Sat, 27 Dec 2003 14:09:25 GMT
Date: 2003-12-27T14:09:25+00:00 [thread overview]
Message-ID: <3FED9286.5050800@noplace.com> (raw)
In-Reply-To: bsiutu$1nt$1@a1-hrz.uni-duisburg.de
Not many developers have experience with formal verification. They tend
to see only the code change and not all the effort that needs to go into
testing and verification the instant you flip a single bit in an image.
I once had a customer ask me "Can you guarantee me that if you change a
single word in memory that it won't blow up my billion dollar payload?"
On reflection, I wasn't willing to bet a billion of his dollars on my
*guess* that there wasn't some corner-case or unusual condition that
might make a simple change of a constant blow up the rocket. That's why
we test and that gets expensive.
A compiler is probably not so dangerous as a rocket engine control, but
failure to pass validation because some "trivial" change had some subtle
problem that the original programmer didn't understand is a) expensive
and b) embarrassing to a company's reputation. That's why on important
software there is no such thing as a "trivial" change.
MDC
Georg Bauhaus wrote:
>
> (And You seem to have access to a fast machine when it translates
> a compiler and runs all tests within 10 minutes, in all required
> configurations. Provided the tests have been written within the
> 30 minutes allocated for the implementation of the language change. :-)
>
--
======================================================================
Marin David Condic
I work for: http://www.belcan.com/
My project is: http://www.jsf.mil/NSFrames.htm
Send Replies To: m o d c @ a m o g
c n i c . r
"Face it ladies, its not the dress that makes you look fat.
Its the FAT that makes you look fat."
-- Al Bundy
======================================================================
next prev parent reply other threads:[~2003-12-27 14:09 UTC|newest]
Thread overview: 80+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <468D78E4EE5C6A4093A4C00F29DF513D04B82B08@VS2.hdi.tvcabo>
2003-12-17 1:01 ` SIGada Conference Stephen Leake
2003-12-17 3:19 ` Robert I. Eachus
2003-12-18 6:55 ` Robert C. Leif
2003-12-18 15:23 ` Other Ada Standards (was Re: SIGada Conference) Robert I. Eachus
2003-12-18 18:27 ` Robert A Duff
2003-12-19 7:38 ` Robert I. Eachus
2003-12-19 23:10 ` Robert A Duff
2003-12-19 8:51 ` Russ
2003-12-19 17:03 ` tmoran
2003-12-20 0:43 ` Russ
2003-12-19 23:18 ` Robert A Duff
2003-12-20 7:05 ` Russ
2003-12-20 9:06 ` Nick Roberts
2003-12-20 17:43 ` Robert I. Eachus
2003-12-22 0:07 ` Russ
[not found] ` <bfcib1-r43.ln1@beastie.ix.netcom.com>
2003-12-22 17:10 ` Robert I. Eachus
2003-12-22 18:25 ` Larry Hazel
2003-12-23 16:55 ` Chad R. Meiners
2003-12-24 13:17 ` Marin David Condic
2003-12-24 14:57 ` Robert A Duff
2003-12-25 3:26 ` Marin David Condic
2004-01-03 19:03 ` Pascal Obry
2003-12-24 20:16 ` Russ
2003-12-24 21:41 ` Robert A Duff
2003-12-25 2:51 ` Robert I. Eachus
2003-12-25 3:42 ` Marin David Condic
2003-12-25 6:35 ` Russ
2003-12-25 12:34 ` Georg Bauhaus
2003-12-25 15:38 ` Marin David Condic
2003-12-26 20:09 ` Russ
2003-12-27 3:39 ` Georg Bauhaus
2003-12-27 7:40 ` Russ
2003-12-27 11:18 ` Georg Bauhaus
2003-12-28 5:56 ` Russ
2003-12-27 11:24 ` Dmitry A. Kazakov
2003-12-27 12:21 ` Georg Bauhaus
2003-12-28 11:44 ` Dmitry A. Kazakov
2003-12-28 13:59 ` Georg Bauhaus
2003-12-28 19:43 ` Robert A Duff
2003-12-28 20:47 ` Dmitry A. Kazakov
2003-12-28 19:54 ` Dmitry A. Kazakov
2003-12-29 6:07 ` Georg Bauhaus
2003-12-29 11:28 ` Dmitry A. Kazakov
2003-12-29 13:36 ` Chad R. Meiners
2003-12-29 6:25 ` Georg Bauhaus
2003-12-27 18:43 ` Robert A Duff
2003-12-28 11:45 ` Dmitry A. Kazakov
2003-12-28 19:59 ` Robert A Duff
2003-12-30 18:03 ` Peter Richtmyer
2003-12-30 23:02 ` Alexandre E. Kopilovitch
2003-12-27 21:56 ` Russ
2003-12-27 22:52 ` Robert I. Eachus
2003-12-28 11:44 ` Dmitry A. Kazakov
2003-12-28 18:14 ` Robert I. Eachus
2003-12-28 19:55 ` Dmitry A. Kazakov
2003-12-29 2:08 ` Robert I. Eachus
2003-12-29 11:29 ` Dmitry A. Kazakov
2003-12-29 13:44 ` Chad R. Meiners
2003-12-29 17:07 ` Robert I. Eachus
2003-12-28 23:17 ` Russ
2003-12-28 23:45 ` Wes Groleau
2003-12-27 14:09 ` Marin David Condic [this message]
2003-12-27 19:25 ` Robert I. Eachus
2003-12-28 1:47 ` Russ
2003-12-23 10:49 ` come from joke (was " Peter Hermann
2003-12-23 12:19 ` come from joke Samuel Tardieu
2003-12-23 17:00 ` Arthur Evans Jr
2003-12-23 22:03 ` Wes Groleau
2003-12-25 0:37 ` Stephane Richard
2003-12-27 1:00 ` John Woodruff
2003-12-24 18:48 ` Simon Wright
2003-12-23 12:39 ` come from joke (was Re: Other Ada Standards (was Re: SIGada Conference) Vinzent 'Gadget' Hoefler
2003-12-23 15:50 ` Georg Bauhaus
2003-12-23 16:03 ` Vinzent 'Gadget' Hoefler
2003-12-23 16:12 ` Peter Hermann
2003-12-22 18:29 ` Warren W. Gay VE3WWG
2003-12-20 19:44 ` tmoran
2003-12-22 18:22 ` Warren W. Gay VE3WWG
2003-12-20 0:39 ` Russ
2003-12-20 1:44 ` unknown
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox