Reply to Message

"I think modularity is a better base principle then formal verification." I agree in principle. However, one of the major lessons from this project was that verification is a lot easier if you keep it in mind from the start. Verifiable code is... tricky to write.