Mastodon Feed
Boosted by cstanhope@social.coop ("Your friendly 'net denizen"):
carapace ("Simon Forman") wrote:
"System design from provably correct constructs", it's written by James Martin but it's presenting the work of Margaret Hamilton. She developed the ideas while working on Apollo 11
https://archive.org/details/systemdesignfrom00mart
In modern terms it works by allowing the user to edit a kind of abstract syntax tree (without the syntax) using only operations that preserve correctness (essentially type checking) so you literally can't make a bug. (You can still make a program that does the wrong thing correctly.)