• Top
    • Documentation
      • Xdoc
      • ACL2-doc
      • Recursion-and-induction
      • Loop$-primer
      • Operational-semantics
        • Operational-semantics-3__annotated-bibliography
          • Bib::bhmy89
          • Bib::liu06
          • Bib::bm96
          • Bib::plotkin04b
          • Bib::bgm90
          • Bib::hkms17
          • Bib::bkm96
          • Bib::moore15
          • Bib::bh99
            • Bib::wilding93
            • Bib::plotkin04a
            • Bib::moore03b
            • Bib::mp02
            • Bib::moore19
            • Bib::manolios00
            • Bib::flatau92
            • Bib::hb92
            • Bib::bm05
            • Bib::goel16
            • Bib::bm73
            • Bib::ghk17
            • Bib::wilding92
            • Bib::moore17
            • Bib::moore96
            • Bib::ghkg14
            • Bib::yu92
            • Bib::hunt85
            • Bib::boh03
            • Bib::mmrv06
            • Bib::bm80
            • Bib::bh97
            • Bib::moore99b
            • Bib::moore14
            • Bib::rm04
            • Bib::by96
            • Bib::sawada00
            • Bib::mccarthy62
            • Bib::bm79
            • Bib::moore99a
            • Bib::sh98
            • Bib::rhmm07
            • Bib::kmm00a
            • Bib::ghk13
            • Bib::moore03a
            • Bib::hk12
            • Bib::mp67
            • Bib::young88
            • Bib::bm97
            • Bib::moore73
            • Bib::kmm00b
            • Bib::bevier87
          • Operational-semantics-1__simple-example
          • Operational-semantics-2__other-examples
          • Operational-semantics-5__history-etc
          • Operational-semantics-4__how-to-find-things
        • Pointers
        • Doc
        • Documentation-copyright
        • Course-materials
        • Args
        • ACL2-doc-summary
        • Finding-documentation
        • Broken-link
        • Doc-terminal-test-2
        • Doc-terminal-test-1
      • Books
      • Boolean-reasoning
      • Projects
      • Debugging
      • Std
      • Proof-automation
      • Macro-libraries
      • ACL2
      • Interfacing-tools
      • Hardware-verification
      • Software-verification
      • Math
      • Testing-utilities
    • Operational-semantics-3__annotated-bibliography

    Bib::bh99

    B. Brock and W. A. Hunt, Jr., “Formal Analysis of the Motorola CAP DSP”, in M. Hinchey and J. Bowen, editors, Industrial-Strength Formal Methods, Springer-Verlag, pp. 81-115, 1999.



    Relevance: first industrial application of operational semantics with ACL2 and the first complete formal specification of a commercially designed microprocessor



    ———

    Abstract

    We describe our formal specification of Motorola's Complex Arithmetic Processor (CAP) Digital Signal Processor (DSP) and our subsequent use of this specification in formal analyses of the CAP hardware and software. The CAP was designed by Motorola Government Systems and Technology Group (Scottsdale, Arizona), which, as a part of their business, builds and sells purpose-built products. The CAP is an ASIC that was designed to efficiently implement a number of signal processing algorithms required in digital communications. Motorola's CAP is a super-scalar, pipelined DSP with seven memories and more than 20 functional units. Motorola's specification for the CAP was captured using the Cadence Signal Processing (SPW) (Cadence, 1994) toolsuite; the design is represented as a series of drawings that specify register files, data manipulation units, and interconnecting busses. We have completely specified the CAP (Gilfeather et al, 1994) using the formal logic ACL2 (Kaufmann and Moore, 1996). Our specification is executable and can be used as a simulator as well as a basis for proving the correctness of the CAP hardware design and CAP programs. We believe our specification is bit-for-bit exact with respect to the SPW specification produced by Motorola, and was created by hand translating Motorola's SPW drawings for the CAP. We have used our CAP specification to analyse the CAP instruction pipeline and various CAP algorithms. We believe that the specification developed is the largest of its kind, as this is the only formal specification of which we are aware for a complete commercial design. We believe that the use of mathematical logic for modeling and reasoning about hardware designs such as we have demonstrated here can provide assurance of circuit design correctness well beyond what is available from current CAD techniques.



    ———

    See the discussion of the CAP DSP project in operational-semantics-2__other-examples.