Request Pricing

Tools

Compilation Toolchain

GNAT Pro for Ada

GNAT Pro for C/C++

GNAT Pro for Rust

Formal Proof

Static Analysis

GNAT Static Analysis for Ada

CodeSonar for C/C++

Dynamic Analysis

GNAT Dynamic Analysis Suite

Services

Training & Services

Enterprise Training

Public Training

Get an Overview

Explore All Offerings

Ready To Go?

Contact a Technical Expert

Languages

Ready To Go?

Contact a Technical Expert

Industries

Learn how NVIDIA Adopted SPARK for Security-Critical Software Development

View Case Study

Company

Careers

View Opportunities

Explore Resources

Publications

More Resources

AdaCore's GitHub

The AdaCore Blog

Explore

Learn Ada & SPARK

Explore

Community

Get Started with Ada

Learn More

Support

GNAT Tracker Login

Cybersecurity Center

Development Logs

Product Roadmap

Learn More

I Stock 1302189748

Papers

Managing the Proof Context in SPARK

SPARK performs verification of Ada programs in an autoactive style: the verification is done by automated solvers, but users need to write annotations in the source code - in general contracts - for the proof to succeed. For auto-active verification of programs to scale, managing the size of the proof context given to automated solvers is key. This paper will describe the various mechanisms and heuristics used in SPARK to reduce the size of the proof context. They range from completely automated to manual, taking full advantage of the auto-active verification style.

Screenshot 2026 05 27 at 15 14 50

Download (2.1 MB PDF)

Papers_

Latest Papers

Screenshot 2026 03 16 at 16 44 21

Secure by Design Principles - Fuzzing in a Memory Safe Verification Environment

Screenshot 2026 02 11 at 11 14 55

Quicksort Verified by SPARK

1website banner

Containers for specification in SPARK