Verifying a Hotel Key Card System

Tobias Nipkow

Two models of an electronic hotel key card system are contrasted: a state based and a trace based one. Both are defined, verified, and proved equivalent in the theorem prover Isabelle/HOL. It is shown that if a guest follows a certain safety policy regarding her key cards, she can be sure that nobody but her can enter her room.

pdf SpringerLink

BibTeX:

@inproceedings{Nipkow-ICTAC06,author={Tobias Nipkow},
title={Verifying a Hotel Key Card System},
booktitle={Theoretical Aspects of Computing (ICTAC 2006)},
editor={K. Barkaoui and A. Cavalcanti and A. Cerone},
publisher=Springer,series=LNCS,volume=4281,year=2006,
note={Invited paper}}