Abstract
This paper reports on an experiment to verify UML models of a firewall server using Object-Oriented model verification tool ObjectLogic. ObjectLogic enables the verification of method pre- and post-conditions and invariants in the HOL theorem prover. In the experiment, we defined the method which performs packet filtering by sequence diagrams and verified that they satisfy the requirements defined by OCL constraints in HOL. In this paper, we discuss the effectiveness of applying theorem proving to practical systems.
