sota.io

Blog

Deployment guides, EU hosting tips, and developer resources.

Deploy Event-B to Europe — Jean-Raymond Abrial 🇫🇷 (ETH Zurich, 2000s), the Refinement-Based Formal Method Behind European Rail Safety, on EU Infrastructure in 2026

Deploy Event-B / Rodin tooling to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Event-B by Jean-Raymond Abrial (ETH Zurich) — powers Paris Metro Line 14, Brussels rail interlocking, SIL4 railway software. Rodin Platform (EU FP6). ProB (Düsseldorf).

2026-04-21·9 min read·sota.io team

Deploy Z Notation to Europe — Jean-Raymond Abrial 🇫🇷 (Oxford PRG, 1977), the Mathematical Specification Language at the Root of Europe's Formal Methods Tradition, on EU Infrastructure in 2026

Deploy Z Notation tooling to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Z Notation by Jean-Raymond Abrial (Oxford PRG, 1977) — the set-theoretic specification language that inspired B-Method, Event-B, and a generation of EU formal methods tools. ISO/IEC 13568:2002. ProZ (Düsseldorf). IBM CICS. Praxis Tokeneer.

2026-05-05·9 min read·sota.io team

Deploy CSP to Europe — Sir Tony Hoare 🇬🇧 (Oxford PRG, 1978), the Process Algebra Behind Go's Channels and EU Concurrency Verification, on EU Infrastructure in 2026

Deploy CSP tools (FDR4, ProB, LTSA) to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Communicating Sequential Processes by Sir Tony Hoare (Oxford PRG, 1978) — the process algebra behind Go's channels, Erlang actors, and Occam/INMOS Transputer. FDR4 (Oxford). LOTOS (ISO 8807). IEC 61508 SIL 4. EU AI Act Art. 9.

2026-05-12·9 min read·sota.io team

Deploy CCS to Europe — Robin Milner 🇬🇧 (Edinburgh/Cambridge, 1980), the Process Algebra That Defines Bisimulation and EU Concurrency Verification, on EU Infrastructure in 2026

Deploy CCS tools (mCRL2, CADP, CWB) to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Calculus of Communicating Systems by Robin Milner 🇬🇧 (Edinburgh/Cambridge, 1980) — the process algebra that invented bisimulation, inspired π-calculus, and underpins mCRL2 (TU Eindhoven 🇳🇱) and CADP (INRIA Grenoble 🇫🇷). ACM Turing Award 1991.

2026-05-19·9 min read·sota.io team

Deploy TLA+ to Europe — Leslie Lamport 🇺🇸 (DEC/SRI/Microsoft Research, 1994), the Temporal Logic of Actions Behind AWS S3 and Distributed Systems Verification, on EU Infrastructure in 2026

Deploy TLA+ tools (TLC model checker, TLAPS proof system) to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. TLA+ by Leslie Lamport 🇺🇸 (DEC SRC, 1994) — the temporal logic used by Amazon AWS to verify 14 distributed protocols (S3, DynamoDB, EBS). ACM Turing Award 2013. TLAPS (INRIA Nancy 🇫🇷). EU AI Act Art. 9.

2026-05-26·9 min read·sota.io team

Deploy Promela/SPIN to Europe — Gerard Holzmann 🇳🇱 (Bell Labs/NASA JPL, 1980), the Model Checker Behind NASA Curiosity Rover and Safety-Critical Systems Verification, on EU Infrastructure in 2026

Deploy SPIN model checker (Promela) to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Promela/SPIN by Gerard Holzmann 🇳🇱 (Bell Labs 1980, NASA JPL 2003) — the model checker used to verify NASA Mars rovers, Boeing 777 TCAS, Lucent 5ESS, and IEEE 802.11 WiFi. ACM Software System Award 2001. EU AI Act Art. 9. IEC 61508 SIL 4.

2026-06-02·9 min read·sota.io team

Deploy Alloy to Europe — Daniel Jackson 🇺🇸 (MIT CSAIL, 2002), the SAT-Based Model Finder Used by Amazon AWS and EU Safety-Critical Engineering, on EU Infrastructure in 2026

Deploy Alloy Analyzer to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Alloy by Daniel Jackson 🇺🇸 (MIT CSAIL, 2002) — the SAT-based model finder used by Amazon AWS Zelkova, Airbus, and EU formal methods education. Electrum temporal extension by Nuno Macedo 🇵🇹 (INESC TEC Porto) + Alcino Cunha 🇵🇹 (Universidade do Minho). EU AI Act Art. 9. IEC 61508.

2026-06-09·9 min read·sota.io team

Deploy UPPAAL to Europe — Uppsala University & Aalborg University (1995), the Timed Automata Verifier Behind EU Automotive and Aerospace Safety, on EU Infrastructure in 2026

Deploy UPPAAL to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. UPPAAL by Uppsala University 🇸🇪 + Aalborg University 🇩🇰 (1995) — the timed automata model checker used for ISO 26262 automotive (Volvo), IEC 62304 medical devices, EN 50128 railway, and EU AI Act Art. 9 real-time verification. UPPAAL SMC (statistical model checking), Stratego (strategy synthesis), Tiga. EU FP7-funded research infrastructure.

2026-06-16·9 min read·sota.io team

Deploy CADP to Europe — Hubert Garavel 🇫🇷 (INRIA Grenoble 1989), the EU-Native Distributed Systems Verification Toolbox Behind Airbus and French Nuclear Safety, on EU Infrastructure in 2026

Deploy CADP to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. CADP by Hubert Garavel 🇫🇷 (INRIA Grenoble, 1989) — process algebra verification toolbox for distributed systems. LOTOS/LNT input, BCG labeled transition systems, EVALUATOR μ-calculus model checker, BISIMULATOR. Used by Airbus FR (A380/A350 avionics), EDF FR (nuclear reactors), Thales FR, RATP FR (Paris Metro). 100% EU institution. IEC 61508, EN 50128 SIL4, EU AI Act Art. 9.

2026-06-19·9 min read·sota.io team

Deploy E-LOTOS to Europe — Ed Brinksma 🇳🇱 (University of Twente 2001), ISO/IEC 15437 the Enhanced Process Algebra That Unified LOTOS Data and Behaviour, on EU Infrastructure in 2026

Deploy E-LOTOS to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. E-LOTOS (ISO/IEC 15437:2001) by Ed Brinksma 🇳🇱 (University of Twente) — the ISO-standardised enhanced process algebra that unified LOTOS value-passing with a clean data type system. Successor to LOTOS (ISO 8807:1989), predecessor influence on LNT (INRIA Grenoble) and mCRL2 (TU Eindhoven). ETSI telecom standardisation. IEC 61508, EN 50128 SIL4, EU AI Act Art. 9. Free tier.

2026-06-20·9 min read·sota.io team

Deploy SMV to Europe — Edmund Clarke 🇺🇸 (Carnegie Mellon 1993), the Original Symbolic Model Verifier That Won the ACM Turing Award and Proved Hardware Correctness at Scale, on EU Infrastructure in 2026

Deploy SMV to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. SMV (Symbolic Model Verifier) by Edmund Clarke 🇺🇸 (Carnegie Mellon University, 1993) — the original BDD-based symbolic model checker, ACM Turing Award 2007. Found bugs in the IEEE Futurebus+ standard, proved IBM ES/9000 cache coherence (10^120 states). Direct progenitor of NuSMV (FBK Trento 🇮🇹) and nuXmv. CTL and LTL temporal logic. EU industrial use: Siemens DE, STMicro IT, Infineon DE, Bosch DE. IEC 61508 SIL4, EN 50128, EU AI Act Art. 9. Free tier.

2026-06-21·9 min read·sota.io team

Deploy NuSMV to Europe — Alessandro Cimatti 🇮🇹 (FBK Trento 2002), the EU-Native Symbolic Model Checker Behind Industrial Safety Verification, on EU Infrastructure in 2026

Deploy NuSMV and nuXmv to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. NuSMV by Alessandro Cimatti 🇮🇹 (FBK Trento, 2002) — open-source symbolic model checker based on Edmund Clarke's SMV (ACM Turing Award 2007). BDD + SAT-based verification, nuXmv adds IC3/PDR + MathSAT5 (also FBK Trento). Used by Siemens DE, STMicroelectronics IT, Bosch DE, Alstom FR. IEC 61508 SIL4, EN 50128 SIL4, EU AI Act Art. 9.

2026-06-18·9 min read·sota.io team

Deploy Dafny to Europe — K. Rustan M. Leino 🇺🇸 (Microsoft Research 2009), the Verification-Aware Language That Proves Correctness at Compile Time, on EU Infrastructure in 2026

Deploy Dafny to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Dafny by K. Rustan M. Leino 🇺🇸 (Microsoft Research, 2009; now AWS) — verification-aware language used at Amazon S3, AWS Cedar (Verified Permissions), and MSR Firecracker. Compiles to C#, Go, Python, Java, JavaScript. Proves memory safety, functional correctness, and termination before execution. EU AI Act Art. 9 systematic verification.

2026-06-17·9 min read·sota.io team

Deploy Frama-C to Europe — CEA LIST 🇫🇷 + INRIA 🇫🇷 (2008), the EU-Native C Code Formal Verifier Behind Airbus Avionics and French Nuclear Safety, on EU Infrastructure in 2026

Deploy Frama-C to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Frama-C by CEA LIST 🇫🇷 (Commissariat à l'Énergie Atomique) + INRIA 🇫🇷 (2008) — plugin-based formal verification platform for C code. WP plugin: Weakest Preconditions + ACSL contracts + Why3 + Alt-Ergo (EU SMT solver). Eva plugin: abstract interpretation, runtime error detection. Used by Airbus 🇫🇷 (DO-178C DAL A), EDF 🇫🇷 (nuclear IEC 61508 SIL4), Thales 🇫🇷 (EN 50128 SIL4). 100% EU public institution. EU AI Act Art. 9.

2026-06-22·9 min read·sota.io team

Deploy Why3 to Europe — Jean-Christophe Filliâtre 🇫🇷 + INRIA Saclay (2010), the EU-Native Multi-Prover Deductive Verification Platform Behind Frama-C and SPARK Ada, on EU Infrastructure in 2026

Deploy Why3 to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Why3 by Jean-Christophe Filliâtre 🇫🇷 + Claude Marché 🇫🇷 (LRI Paris-Sud / INRIA Saclay, 2010) — multi-prover deductive verification platform. WhyML: functional + imperative language with contracts (requires/ensures/invariant/decreases), ghost code, algebraic types. EU-native deductive stack: Frama-C WP (CEA LIST 🇫🇷) → Why3 (LRI/INRIA Saclay 🇫🇷) → Alt-Ergo (OCamlPro 🇫🇷). SPARK Ada GNATprove (AdaCore 🇫🇷) uses Why3 as IVL. Code extraction to OCaml/Python/C/Java. EU AI Act Art. 9.

2026-06-23·9 min read·sota.io team

Deploy KeY to Europe — Reiner Hähnle 🇩🇪🇸🇪 + KIT 🇩🇪 + TU Darmstadt 🇩🇪 (2001), the EU-Native Java Formal Verifier for JavaCard Payment Systems and Design by Contract, on EU Infrastructure in 2026

Deploy KeY to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. KeY by Reiner Hähnle 🇩🇪🇸🇪 (Chalmers 🇸🇪 + TU Darmstadt 🇩🇪), Bernhard Beckert 🇩🇪 (KIT Karlsruhe), Peter Schmitt 🇩🇪 (Uni Karlsruhe, 2001) — deductive Java verifier using Java Dynamic Logic (JavaDL). JML specification language: requires/ensures/invariant/assignable. Symbolic execution + sequent calculus for Java semantics. JavaCard formal verification: EU payment cards (Infineon 🇩🇪, G+D 🇩🇪, Idemia 🇫🇷, NXP 🇳🇱, Bundesdruckerei 🇩🇪). Common Criteria EAL 5+. EU AI Act Art. 9. Free tier.

2026-06-24·9 min read·sota.io team

Deploy Alt-Ergo to Europe — Sylvain Conchon 🇫🇷 + Evelyne Contejean 🇫🇷 + OCamlPro 🇫🇷 (LRI Paris-Sud, 2006), the EU-Native SMT Solver Powering Frama-C, Why3, and GNATprove, on EU Infrastructure in 2026

Deploy Alt-Ergo to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Alt-Ergo by Sylvain Conchon 🇫🇷 + Evelyne Contejean 🇫🇷 (LRI Paris-Sud / CNRS, 2006), maintained by OCamlPro 🇫🇷 (Paris) — EU-native SMT solver. Default prover for Why3 (INRIA Saclay 🇫🇷), Frama-C WP (CEA LIST + INRIA 🇫🇷), GNATprove SPARK Ada (AdaCore 🇫🇷). DPLL(T): linear arithmetic + uninterpreted functions + arrays + bitvectors + algebraic data types. Shostak theory combination + E-matching quantifier instantiation. Closes the EU formal verification stack: Frama-C (CEA LIST) → Why3 (INRIA Saclay) → Alt-Ergo (OCamlPro) — 100% French institutions, no US Cloud Act. Industrial EU: Airbus 🇫🇷 (DO-178C DAL A), EDF 🇫🇷 (IEC 61508 SIL4 nuclear), Thales 🇫🇷 (EN 50128 SIL4 railway). EU AI Act Art. 9 formal proof evidence. CeCILL-C + commercial (Alt-Ergo Pro). Free tier.

2026-06-25·9 min read·sota.io team

Deploy Creusot to Europe — Xavier Denis 🇫🇷 + INRIA Saclay (2021), the EU-Native Deductive Verifier for Rust that Exploits Ownership to Eliminate Aliasing from Proofs, on EU Infrastructure in 2026

Deploy Creusot to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Creusot by Xavier Denis 🇫🇷 + Claude Marché 🇫🇷 + Jacques-Henri Jourdan 🇫🇷 (INRIA Saclay / Université Paris-Saclay, 2021) — deductive verifier for safe Rust. Translates Rust to WhyML (Why3), dispatches to Alt-Ergo 🇫🇷 (EU-native SMT). Pearlite specification language: #[requires]/#[ensures]/#[invariant] as Rust proc_macro attributes. Ownership = no aliasing = clean heap model. Prophecy variables for mutable references. Extends EU formal verification stack to Rust: Creusot (INRIA Saclay 🇫🇷) → Why3 (INRIA Saclay 🇫🇷) → Alt-Ergo (OCamlPro 🇫🇷) — 100% French. EU AI Act Art. 9. Cyber Resilience Act. MIT licence. Free tier.

2026-06-26·10 min read·sota.io team

Deploy Prusti to Europe — Peter Müller 🇨🇭 + ETH Zurich (2016), the Viper-Based Deductive Verifier for Rust that Proves Memory Safety and Functional Correctness via Permission Logic, on EU Infrastructure in 2026

Deploy Prusti to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Prusti by Peter Müller 🇨🇭 + Alexander Summers 🇨🇭 + Vytautas Astrauskas + Fabian Wolff (ETH Zurich, 2016) — static verifier for safe and unsafe Rust. Translates Rust MIR to Viper (ETH Zurich) via Silicon (symbolic execution, Z3) and Carbon (VCGen + Boogie). Specification language: #[requires]/#[ensures]/#[invariant]/#[assert_on_expiry] proc_macro attributes. Permission logic (Implicit Dynamic Frames): heap reasoning without explicit separation logic. Viper ecosystem: Prusti (Rust) + Gobra (Go) + Nagini (Python) — all ETH Zurich 🇨🇭. Viper Silicon: symbolic execution over permission heaps. Prusti vs Creusot: IDF permissions vs prophecy variables. EU AI Act Art. 9. Cyber Resilience Act. Apache 2.0 licence. Free tier.

2026-06-28·10 min read·sota.io team

Deploy Nagini to Europe — Marco Eilers 🇩🇪 + ETH Zurich (2018), the Viper-Based Static Verifier for Python 3 Programs Used in AI Pipelines, Web Backends, and Data Processing, on EU Infrastructure in 2026

Deploy Nagini to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Nagini by Marco Eilers 🇩🇪 + Peter Müller 🇨🇭 (ETH Zurich, VMCAI 2018) — static verifier for Python 3 programs. Translates Python AST to Viper (ETH Zurich) via Silicon (symbolic execution, Z3). Specification language: Requires(), Ensures(), Invariant(), Acc() function calls from nagini_contracts. Permission logic (Implicit Dynamic Frames): heap reasoning without explicit separation logic. Thread safety verification via Lock/Thread annotations. Viper ecosystem: Nagini (Python) + Prusti (Rust) + Gobra (Go) — all ETH Zurich 🇨🇭. Python AI/ML: FastAPI, Django, NumPy pipelines, healthcare IT. EU AI Act Art. 9 high-risk systems. GDPR Art. 25. MPL 2.0 licence. Free tier.

2026-07-02·10 min read·sota.io team

Deploy Gobra to Europe — Felix Wolf 🇩🇪 + ETH Zurich (2021), the Viper-Based Formal Verifier for Go Programs Used in Kubernetes, Docker, and Cloud-Native Infrastructure, on EU Infrastructure in 2026

Deploy Gobra to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Gobra by Felix Wolf 🇩🇪 + Malte Schwerhoff 🇩🇪 + Peter Müller 🇨🇭 (ETH Zurich, 2021) — formal verifier for Go programs. Translates Go to Viper (ETH Zurich) via Silicon (symbolic execution, Z3). Specification language: //@ requires, //@ ensures, //@ invariant as Go comments. Permission logic (Implicit Dynamic Frames). Goroutine and channel verification via fractional permissions. Viper ecosystem: Gobra (Go) + Prusti (Rust) + Nagini (Python) — all ETH Zurich 🇨🇭. Cloud-native Go: Kubernetes, Docker, Prometheus, etcd. EU AI Act Art. 9. GDPR Art. 25. Apache 2.0 licence. Free tier.

2026-06-30·10 min read·sota.io team

Deploy Viper to Europe — Peter Müller 🇨🇭 + ETH Zurich (2016), the Permission-Based Intermediate Verification Language that Powers Prusti, Gobra, and Nagini, on EU Infrastructure in 2026

Deploy Viper to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Viper by Peter Müller 🇨🇭 + Malte Schwerhoff 🇩🇪 + Alexander Summers 🇨🇭 (ETH Zurich, VMCAI 2016) — permission-based intermediate verification language. Silver IL: method/function/predicate/domain constructs with fractional permission heap. Two backends: Silicon (symbolic execution, Z3) and Carbon (VCGen, Boogie, Z3). Implicit Dynamic Frames (IDF): acc(x.f, p) heap access permissions — separating conjunction without separation logic syntax. Front-ends: Prusti (Rust), Gobra (Go), Nagini (Python), VeriFast (C/Java, KU Leuven 🇧🇪), Voila (concurrent objects). inhale/exhale permission manipulation. fold/unfold predicate packing. Quantifiers with SMT triggers. Domain axioms: uninterpreted types + background theories. ETH Zurich ERA associate, SNSF + EU Horizon funded, no US Cloud Act. EU AI Act Art. 9. CRA 2027. MPL 2.0 licence. Free tier.

2026-07-04·10 min read·sota.io team

Deploy VeriFast to Europe — Bart Jacobs 🇧🇪 + KU Leuven (2008), the Separation Logic Verifier for C and Java with Symbolic Execution and Fractional Permissions, on EU Infrastructure in 2026

Deploy VeriFast to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. VeriFast by Bart Jacobs 🇧🇪 + Frank Piessens 🇧🇪 (KU Leuven, iFM 2008) — deductive verifier for C and Java programs using separation logic with symbolic execution. Specification language: //@ requires P; ensures Q; contract comments. Heap predicates: integer(p, v), chars(p, n, cs), malloc_block(ptr, n). Fractional permissions: [1/2]integer(p, v) for shared read access. open/close for abstract predicate folding. Lemma functions for ghost code reasoning. Inductive datatypes: fixpoint functions over recursive heap structures. KU Leuven 🇧🇪 (Katholieke Universiteit Leuven, founded 1425, EU's oldest Catholic university). EU AI Act Art. 9. IEC 62304 medical devices. AUTOSAR ISO 26262. CRA 2027. BSD 2-Clause licence. Free tier.

2026-07-06·10 min read·sota.io team

Deploy VerCors to Europe — Marieke Huisman 🇳🇱 + University of Twente (2011), the Viper-Based Concurrent Program Verifier for Java, C, and OpenCL, on EU Infrastructure in 2026

Deploy VerCors to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. VerCors by Marieke Huisman 🇳🇱 + Wytse Oortwijn 🇳🇱 (University of Twente, ICFEM 2017) — deductive verifier for concurrent and distributed Java, C, and OpenCL programs. Translates annotated source to Viper (ETH Zurich 🇨🇭) via Silicon/Z3. Specification language: //@ requires P; ensures Q; in Java/C comments. Permission model: Perm(x.f, 1) heap ownership (Viper IDF). Concurrent: thread annotations, lock invariants, atomic operations, OpenCL kernel contracts. Prototypal Verification Language (PVL) for teaching/research. University of Twente 🇳🇱 (Enschede, NWO + Horizon 2020 funded). Industrial: ASML 🇳🇱 (EUV lithography), NXP Semiconductors 🇳🇱, Philips Healthcare 🇳🇱. EU AI Act Art. 9. IEC 61508. GDPR Art. 25. Apache 2.0 licence. Free tier.

2026-07-07·10 min read·sota.io team

Deploy Chalice to Europe — K. Rustan M. Leino 🇺🇸 + Peter Müller 🇨🇭 + ETH Zurich (2009), the Object-Oriented Research Language that First Implemented Implicit Dynamic Frames and Magic Wands, the Foundations of Viper, on EU Infrastructure in 2026

Deploy Chalice to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Chalice by K. Rustan M. Leino 🇺🇸 + Peter Müller 🇨🇭 (Microsoft Research + ETH Zurich, 2009) — the object-oriented research language that first implemented Implicit Dynamic Frames (IDF) and magic wands (A --* B), the two permission-reasoning innovations that became the theoretical foundation of Viper, Prusti, Gobra, Nagini, and VerCors. acc(x.f)/rd(x.f) fractional permissions. Predicate instances with fold/unfold. Monitor invariants. Channels with permission transfer. Fork/join thread annotations. Magic wand --* for iterator reasoning. Boogie + Z3 backend. Direct Viper predecessor: Chalice (2009) → Viper Silver IL (2016) → Prusti/Gobra/Nagini front-ends. Peter Müller 🇨🇭: ETH Zurich ERA associate, SNSF funded, no US Cloud Act. EU AI Act Art. 9. CRA 2027. Apache 2.0 licence. Free tier.

2026-07-08·10 min read·sota.io team

Deploy Boogie to Europe — K. Rustan M. Leino 🇺🇸 + Microsoft Research (2005), the Intermediate Verification Language that Powers Dafny, Chalice, and Viper Carbon — the Backend of the EU Formal Verification Stack, on EU Infrastructure in 2026

Deploy Boogie to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Boogie by K. Rustan M. Leino 🇺🇸 + Mike Barnett + Bart Jacobs 🇧🇪 (Microsoft Research Redmond, FMCO 2005) — the intermediate verification language and VC generator that is the shared backend of Dafny, Chalice, and Viper Carbon (ETH Zurich 🇨🇭). BoogiePL: procedure/requires/ensures/modifies + polymorphic heap [Ref, Field alpha]alpha + loop invariants + two-state old() + havoc/assume + SMT triggers. WP calculus → verification conditions → Z3. Modular: each tool generates Boogie, Boogie generates SMT, Z3 discharges. EU connection: Viper Carbon (ETH Zurich 🇨🇭, Peter Müller) uses Boogie as its VC generator — Prusti (Rust), Gobra (Go), Nagini (Python) all run via Carbon → Boogie → Z3. Bart Jacobs 🇧🇪 (KU Leuven) co-authored Boogie and went on to create VeriFast. Industrial: Amazon AWS (Dafny-verified S3/Glacier), EU AI Act Art. 9. CRA 2027. Apache 2.0 licence. Free tier.

2026-07-10·10 min read·sota.io team

Deploy CompCert to Europe — Xavier Leroy 🇫🇷 + INRIA (2006), the Only Formally Verified C Compiler with a Machine-Checked Proof of Correctness, on EU Infrastructure in 2026

Deploy CompCert to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. CompCert by Xavier Leroy 🇫🇷 (INRIA Paris → Collège de France, 2006) — the only widely used C compiler with a machine-checked semantics-preservation proof in Coq/Rocq (~100,000 lines). Compiles Clight (subset of C) to x86-64, ARM, RISC-V, PowerPC via 8 formally verified passes. Industrial: AbsInt 🇩🇪 (Saarbrücken, DO-178C Level A tool qualification), Airbus 🇫🇷, Thales 🇫🇷, Alstom 🇫🇷, Safran 🇫🇷. The French verified-software stack: OCaml + Coq + Why3 + Alt-Ergo + Frama-C + CompCert — 100% INRIA/EU, no US Cloud Act. EU AI Act Art. 9. CRA 2027. INRIA non-commercial licence. Free tier.

2026-07-12·10 min read·sota.io team

Deploy seL4 to Europe — Gerwin Klein 🇩🇪 + June Andronick 🇫🇷 + NICTA (2009), the World's First Formally Verified OS Microkernel, on EU Infrastructure in 2026

Deploy seL4-based systems to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. seL4 by Gerwin Klein 🇩🇪 + June Andronick 🇫🇷 (NICTA Australia, SOSP 2009) — the world's first OS kernel with a machine-checked proof of correctness in Isabelle/HOL (~500,000 lines). Proves: functional correctness, integrity (spatial isolation), confidentiality (information-flow). Industrial EU: Hensoldt Cyber 🇩🇪 (TRENTOS secure OS for defence), Airbus Defence & Space 🇩🇪🇫🇷. EU AI Act Art. 9. CRA 2027. seL4 Foundation (Linux Foundation). GPL-2 + BSD. Free tier.

2026-07-13·10 min read·sota.io team

Deploy HOL4 to Europe — Mike Gordon 🇬🇧 (Cambridge 1988) + Magnus Myreen 🇸🇪 (Chalmers), the Higher-Order Logic Theorem Prover Behind ARM ISA Verification and the CakeML Verified Compiler, on EU Infrastructure in 2026

Deploy HOL4-based verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. HOL4 by Mike Gordon 🇬🇧 (Cambridge Computer Lab, 1988) — the production successor to LCF (Robin Milner, Edinburgh 1979). Tactic-based theorem proving in SML. Formal specification of the ARM ISA (Anthony Fox 🇬🇧, Cambridge) — the chip inside 230 billion EU devices. CakeML: the verified ML compiler (Magnus Myreen 🇸🇪, Chalmers University Gothenburg), proved correct from source semantics to x86/ARM machine code in HOL4. HOL Light (John Harrison 🇬🇧, Cambridge → Intel): proved IEEE 754 floating-point correct. EU AI Act Art. 9. CRA 2027. Free tier.

2026-07-14·10 min read·sota.io team

Deploy HOL Light to Europe — John Harrison 🇬🇧 (Cambridge → Intel), the Minimalist HOL Theorem Prover that Proved IEEE 754 Floating-Point Correct and Formalised the Kepler Conjecture, on EU Infrastructure in 2026

Deploy HOL Light verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. HOL Light by John Harrison 🇬🇧 (Cambridge PhD 1996, supervisor: Lawrence Paulson) — a minimalist HOL system in ~400 lines of OCaml (INRIA 🇫🇷). Used at Intel to formally verify IEEE 754 floating-point transcendental functions (sin, cos, exp, atan, ln). The Flyspeck project (2014): Hales' Kepler conjecture formally proved in HOL Light + Isabelle. EU AI Act Art. 9. CRA 2027. Free tier.

2026-07-15·10 min read·sota.io team

Deploy CBMC to Europe — Daniel Kroening 🇩🇪 (Oxford), the C Bounded Model Checker that Finds Bugs Amazon and Toyota Cannot, on EU Infrastructure in 2026

Deploy CBMC verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. CBMC by Daniel Kroening 🇩🇪 (University of Oxford 🇬🇧, 2004) — the C bounded model checker used by Amazon AWS, Toyota, and NASA. SAT/SMT encoding finds buffer overflows, pointer errors, integer overflows. SV-COMP champion. EU AI Act Art. 9. ISO 26262 ASIL D. IEC 61508. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy CPAchecker to Europe — Dirk Beyer 🇩🇪 (LMU Munich), the Configurable Program Analysis Framework that Wins SV-COMP, on EU Infrastructure in 2026

Deploy CPAchecker verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. CPAchecker by Dirk Beyer 🇩🇪 (LMU Munich 🇩🇪, TACAS 2007) — the configurable software verification framework that wins SV-COMP. Pluggable CPAs: predicate abstraction + CEGAR, k-induction, BDD-based analysis, symbolic execution. Correctness witnesses. BenchExec. EU AI Act Art. 9. ISO 26262 ASIL D. IEC 61508 SIL 3/4. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy UltimateAutomizer to Europe — Matthias Heizmann 🇩🇪 (University of Freiburg), the Automata-Based Software Verifier that Wins SV-COMP, on EU Infrastructure in 2026

Deploy UltimateAutomizer verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. UltimateAutomizer by Matthias Heizmann 🇩🇪 + Andreas Podelski 🇩🇪 (University of Freiburg 🇩🇪, TACAS 2013) — automata-based software verification via trace abstraction and Büchi automata. SV-COMP finalist. EU AI Act Art. 9. ISO 26262. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy 2LS to Europe — Daniel Kroening 🇩🇪 (University of Oxford), the Two-Level Lattice Solver for Automated Invariant Synthesis, on EU Infrastructure in 2026

Deploy 2LS verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. 2LS by Saurabh Joshi 🇮🇳 + Daniel Kroening 🇩🇪 (University of Oxford 🇬🇧, CAV 2014) — two-level lattice: template polyhedra abstract interpretation + BMC. Automated loop invariant synthesis. k-Induction. EU AI Act Art. 9. ISO 26262 ASIL D. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy Astrée to Europe — Patrick Cousot 🇫🇷 (INRIA Paris / ENS), the Abstract Interpreter that Proved Airbus A380 Has Zero Runtime Errors, on EU Infrastructure in 2026

Deploy Astrée static analysis workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Astrée by Patrick Cousot 🇫🇷 + Radhia Cousot 🇫🇷 (INRIA Paris / ENS, PLDI 2003) — sound abstract interpreter for C. Proved Airbus A380 primary flight control software (132k lines) has zero runtime errors. AbsInt 🇩🇪 (Saarbrücken) commercial. DO-178C Level A qualified. EU AI Act Art. 9. IEC 61508. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy ProVerif to Europe — Bruno Blanchet 🇫🇷 (INRIA Paris), the Cryptographic Protocol Verifier that Formally Proved TLS 1.3, on EU Infrastructure in 2026

Deploy ProVerif verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. ProVerif by Bruno Blanchet 🇫🇷 (INRIA Paris 🇫🇷, CSFW 2001) — automated cryptographic protocol verifier based on applied pi-calculus. Formally verified TLS 1.3 (RFC 8446), Signal Protocol, and 5G authentication. NIS2. DORA. eIDAS 2.0. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy DIVINE to Europe — Jiří Barnat 🇨🇿 (Masaryk University Brno), the Concurrent C/C++ Model Checker from the Czech Republic, on EU Infrastructure in 2026

Deploy DIVINE verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. DIVINE by Jiří Barnat 🇨🇿 + Luboš Brim 🇨🇿 (Masaryk University Brno 🇨🇿) — explicit-state model checker for concurrent C/C++ programs using LLVM. Finds deadlocks, data races, memory errors, assertion violations. SV-COMP ConcurrencySafety. ISO 26262 ASIL D. IEC 62443. EU AI Act Art. 9.

2026-04-05·10 min read·sota.io team

Deploy ESBMC to Europe — Lucas Cordeiro 🇵🇹 (University of Manchester), the Efficient SMT-Based Bounded Model Checker for C/C++, on EU Infrastructure in 2026

Deploy ESBMC verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. ESBMC by Lucas Cordeiro 🇵🇹 + Daniel Kroening 🇩🇪 (University of Manchester GB / Oxford GB, TACAS 2009) — efficient SMT-based bounded model checker for C/C++/Java. k-Induction proofs. MathSAT5 (FBK Trento 🇮🇹). Bitwuzla (JKU Linz 🇦🇹). ISO 26262 ASIL D. IEC 61508. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy BLAST to Europe — Thomas Henzinger 🇦🇹 (IST Austria), the Lazy Abstraction Pioneer that Fathered CPAchecker and Modern CEGAR-Based Verification, on EU Infrastructure in 2026

Deploy BLAST verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. BLAST by Thomas Henzinger 🇦🇹 (now IST Austria 🇦🇹) + Rupak Majumdar (now MPI-SWS 🇩🇪) + Grégoire Sutre (now Université de Bordeaux 🇫🇷) — POPL 2002 Lazy Abstraction. Predicate abstraction + CEGAR + abstract reachability tree (ART). Direct ancestor of CPAchecker (LMU Munich 🇩🇪). ISO 26262. EU AI Act Art. 9. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy Storm to Europe — Joost-Pieter Katoen 🇩🇪 (RWTH Aachen), the Probabilistic Model Checker for AI Safety and Reliability, on EU Infrastructure in 2026

Deploy Storm verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Storm by Joost-Pieter Katoen 🇩🇪 (RWTH Aachen 🇩🇪) + Arnd Hartmanns (University of Twente 🇳🇱) — CAV 2017. Probabilistic model checking: Markov chains, MDPs, CTMCs. AI safety via MDP verification. EU AI Act Art. 9. ISO 26262 ASIL D. IEC 61508. DORA 2025. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy Java PathFinder to Europe — Klaus Havelund 🇩🇰 (Aalborg / DLR Oberpfaffenhofen 🇩🇪), the NASA JVM Model Checker, on EU Infrastructure in 2026

Deploy Java PathFinder verification workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Java PathFinder by Klaus Havelund 🇩🇰 (Aalborg University DK → DLR Oberpfaffenhofen 🇩🇪 → NASA Ames) + Peter Mehlitz 🇩🇪 (DLR → NASA Ames). Explicit-state JVM model checker: deadlock detection, race conditions, assertion violations, on-the-fly LTL. NASA Deep Space 1. EU AI Act Art. 9. ISO 26262. IEC 61508. CRA 2027.

2026-04-05·10 min read·sota.io team

Deploy Tamarin Prover to Europe — David Basin 🇨🇭 (ETH Zurich) + Cas Cremers 🇳🇱 (CISPA 🇩🇪), the Cryptographic Protocol Verifier Behind TLS 1.3 and 5G, on EU Infrastructure in 2026

Deploy Tamarin Prover to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Tamarin Prover by David Basin 🇨🇭 (ETH Zurich 🇨🇭) + Cas Cremers 🇳🇱 (CISPA 🇩🇪). Formally verified TLS 1.3 (RFC 8446), 5G AKA authentication (3GPP TS 33.501), Signal protocol, WireGuard VPN. eIDAS 2.0 EUDI Wallet protocol verification. CRA 2027. NIS2. GDPR Art. 32.

2026-04-05·10 min read·sota.io team

Deploy KeYmaera X to Europe — André Platzer 🇩🇪 (TU Munich) + Philipp Rümmer 🇩🇪 (Uppsala 🇸🇪), the Hybrid Systems Theorem Prover Behind ETCS Railway and Autonomous Vehicle Verification, on EU Infrastructure in 2026

Deploy KeYmaera X to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. KeYmaera X by André Platzer 🇩🇪 (TU Munich 🇩🇪, Leibniz Prize 2020) + Philipp Rümmer 🇩🇪 (Uppsala 🇸🇪). Differential Dynamic Logic: ETCS railway safety (EN 50128 SIL4), Adaptive Cruise Control (ISO 26262 ASIL D), ACAS X aircraft collision avoidance (DO-178C). EU AI Act Art. 9. CRA 2027. NIS2.

2026-04-05·11 min read·sota.io team

Deploy LTSmin to Europe — Jaco van de Pol 🇳🇱 (University of Twente → Aarhus 🇩🇰), the Language-Independent Multi-Core Symbolic Model Checker with PINS Architecture, on EU Infrastructure in 2026

Deploy LTSmin to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. LTSmin by Jaco van de Pol 🇳🇱 (University of Twente 🇳🇱 → Aarhus University 🇩🇰) + Stefan Blom 🇳🇱 (CWI NL). PINS architecture: language-agnostic model checking for mCRL2, Promela/SPIN, DVE, UPPAAL. Multi-core explicit, Sylvan BDD symbolic, MPI distributed state space. LTL + CTL*. CAV 2010. NIS2, EU AI Act Art. 9, IEC 61508 SIL 4, EN 50128 SIL 4.

2026-04-05·11 min read·sota.io team

Deploy Rebeca to Europe — Marjan Sirjani 🇸🇪 (Mälardalen University → Reykjavik University 🇮🇸), the Actor-Based Reactive Objects Language for Formally Verified Concurrent Systems, on EU Infrastructure in 2026

Deploy Rebeca to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Rebeca (Reactive Objects Language) by Marjan Sirjani 🇸🇪 (Mälardalen University SE → Reykjavik University IS). Actor model + finite mailboxes + run-to-completion semantics = decidable formal verification. Timed Rebeca for real-time systems. Afra IDE: mCRL2 backend, LTL model checking, symmetry reduction. ISO 26262 ASIL D, IEC 62304 Class C, NIS2 Art. 21, EU AI Act Art. 9.

2026-04-05·11 min read·sota.io team

Deploy Verificatum to Europe — Douglas Wikström 🇸🇪 (KTH Royal Institute of Technology), the Verifiable Mix-Net System for Cryptographically Secure E-Voting, on EU Infrastructure in 2026

Deploy Verificatum to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Verificatum by Douglas Wikström 🇸🇪 (KTH Royal Institute of Technology, Stockholm SE). Re-encryption mix-nets: ElGamal ciphertexts shuffled + re-encrypted + Wikström–Groth ZK proof of correct shuffling. Universally composable (UC framework, TCC 2004). Norwegian, Swedish, Swiss e-voting deployments. eIDAS 2.0, Council of Europe CM/Rec(2017)5, GDPR Art. 9/25, NIS2 Art. 21.

2026-04-05·11 min read·sota.io team

Deploy EasyCrypt to Europe — Gilles Barthe 🇫🇷 (IMDEA Madrid 🇪🇸 / Max Planck 🇩🇪), the Proof Assistant for Machine-Checked Cryptographic Security Proofs, on EU Infrastructure in 2026

Deploy EasyCrypt to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. EasyCrypt by Gilles Barthe 🇫🇷 (IMDEA Software Madrid 🇪🇸 / Max Planck Institute Bochum 🇩🇪) + Benjamin Grégoire 🇫🇷 (INRIA Sophia Antipolis 🇫🇷) — probabilistic relational Hoare logic for game-based cryptographic security proofs. Verified: CRYSTALS-Kyber (NIST PQC winner), HACL* (Firefox, Linux kernel), AWS s2n-tls. BSI/ANSSI PQC transition evidence. Free tier.

2026-04-05·11 min read·sota.io team

Deploy Jasmin to Europe — José Bacelar Almeida 🇵🇹 (Universidade do Minho) + Gilles Barthe 🇫🇷 (IMDEA Madrid 🇪🇸 / Max Planck 🇩🇪), the Language for High-Assurance High-Speed Cryptography, on EU Infrastructure in 2026

Deploy Jasmin to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Jasmin by José Bacelar Almeida 🇵🇹 (Universidade do Minho) + Manuel Barbosa 🇵🇹 (Universidade do Porto) + Gilles Barthe 🇫🇷 (IMDEA Madrid / Max Planck) + Benjamin Grégoire 🇫🇷 (INRIA) — CCS 2017. Assembly-level language for formally verified cryptographic implementations. Constant-time proofs. HACL* (Firefox, Linux kernel, Signal). Free tier.

2026-04-06·11 min read·sota.io team

Deploy HACL* to Europe — Karthikeyan Bhargavan 🇫🇷 (INRIA Paris), the Formally Verified Cryptographic Library Running in Firefox, Linux, and Signal, on EU Infrastructure in 2026

Deploy HACL* to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. HACL* by Karthikeyan Bhargavan 🇫🇷 + Jean-Karim Zinzindohoué 🇫🇷 (INRIA Paris 🇫🇷) — CCS 2017. Formally verified: ChaCha20-Poly1305, Curve25519, Ed25519, SHA-3, ML-KEM. Deployed in Mozilla Firefox, Linux kernel 5.10+, Signal Protocol. EasyCrypt security proofs + Jasmin constant-time assembly. BSI/ANSSI/CRA 2027. Free tier.

2026-04-06·11 min read·sota.io team

Deploy Alive2 to Europe — Nuno Lopes 🇵🇹 (Universidade de Lisboa), the LLVM Optimization Verifier That Found 47 Compiler Bugs, on EU Infrastructure in 2026

Deploy Alive2 to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Alive2 by Nuno Lopes 🇵🇹 (Universidade de Lisboa 🇵🇹 / MSR Cambridge 🇬🇧) — PLDI 2021. Translation validation for LLVM: verifies each optimization pass preserves program semantics via SMT refinement. Found 47+ previously unknown LLVM bugs. The pragmatic complement to CompCert. CRA 2027. Free tier.

2026-04-06·11 min read·sota.io team

Deploy Coccinelle to Europe — Julia Lawall 🇫🇷 (INRIA Paris), the Semantic Patch Engine Behind 6000+ Linux Kernel Security Fixes, on EU Infrastructure in 2026

Deploy Coccinelle to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Coccinelle by Julia Lawall 🇫🇷 (INRIA Paris 🇫🇷) — EMSE 2009. Semantic Patch Language (SmPL): automated bug-finding and code transformation for C at Linux kernel scale. 6000+ kernel commits. Eliminates CWE-908, CWE-476, CWE-401. NIS2/CRA 2027. Free tier.

2026-04-06·10 min read·sota.io team

Deploy CryptoVerif to Europe — Bruno Blanchet 🇫🇷 (INRIA Paris), the Computationally Sound Protocol Verifier for Machine-Checked Cryptographic Security, on EU Infrastructure in 2026

Deploy CryptoVerif to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. CryptoVerif by Bruno Blanchet 🇫🇷 (INRIA Paris 🇫🇷 / ENS) — ESOP 2006. Computationally sound: proves protocol security in the cryptographic model with probability bounds. Verified: TLS 1.3 key schedule (IEEE SP 2017), WireGuard, Signal Protocol Double Ratchet. Reduces to: IND-CCA2, PRF, CDH. BSI/ANSSI/CRA 2027. Free tier.

2026-04-06·11 min read·sota.io team

Deploy SeaHorn to Europe — Jorge A. Navas 🇪🇸 (SRI International), the LLVM-Based Horn Clause Verification Framework Used by NASA JPL and AWS, on EU Infrastructure in 2026

Deploy SeaHorn to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. SeaHorn by Jorge A. Navas 🇪🇸 (SRI International / formerly NASA JPL) + Arie Gurfinkel (University of Waterloo 🇨🇦). LLVM IR → Constrained Horn Clauses → Z3 Spacer. Unbounded C/C++ safety verification. NASA flight software + AWS Lambda verified. SV-COMP participant. DO-178C, ISO 26262, NIS2, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy Infer to Europe — Peter O'Hearn 🇬🇧 (Queen Mary London, ACM Turing Award 2023) + Cristiano Calcagno 🇮🇹 (Imperial College London), the Separation Logic Analyzer Behind Facebook's Safety Record, on EU Infrastructure in 2026

Deploy Infer to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Infer by Peter O'Hearn 🇬🇧 (Queen Mary University of London → Meta, ACM Turing Award 2023) + Cristiano Calcagno 🇮🇹 (Imperial College London). Bi-abduction separation logic: null dereference, memory leaks, resource leaks, data races. Runs on every Facebook diff. 500M+ lines analyzed. CRA 2027, NIS2, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy AFL++ to Europe — Andrea Fioraldi 🇮🇹 (EURECOM → CISPA) + Dominik Maier 🇩🇪 (TU Berlin → CISPA Helmholtz Center Saarbrücken), the Dominant Coverage-Guided Fuzzer Behind Thousands of CVEs, on EU Infrastructure in 2026

Deploy AFL++ to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. AFL++ by Andrea Fioraldi 🇮🇹 (EURECOM → CISPA Helmholtz Center 🇩🇪) + Dominik Maier 🇩🇪 (TU Berlin → CISPA). CmpLog, LAF-Intel, MOpt, custom mutators, LLVM/QEMU modes. Dominant fuzzer in OSS-Fuzz, Linux kernel, OpenSSL, curl. CRA 2027, NIS2 Art. 21, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy KLEE to Europe — Cristian Cadar 🇷🇴 (Imperial College London 🇬🇧), the LLVM Symbolic Execution Engine That Found 84 Bugs in GNU Coreutils, on EU Infrastructure in 2026

Deploy KLEE to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. KLEE by Cristian Cadar 🇷🇴 (Imperial College London 🇬🇧) + Dunbar + Engler — OSDI 2008. LLVM symbolic execution: fork-on-branch, STP/Z3 SMT solving, COW state sharing. 84 GNU Coreutils bugs found. CWE-131/190/476. CRA 2027, NIS2 Art. 21, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy QuickCheck to Europe — Koen Claessen 🇸🇪 + John Hughes 🏴󠁧󠁢󠁳󠁣󠁷󠁦󠁿 (Chalmers University of Technology 🇸🇪, ICFP 2000), Property-Based Testing, on EU Infrastructure in 2026

Deploy QuickCheck to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. QuickCheck by Koen Claessen 🇸🇪 + John Hughes 🏴󠁧󠁢󠁳󠁣󠁷󠁦󠁿 (Chalmers University of Technology 🇸🇪) — ICFP 2000. Property-based testing: forAll generator, Arbitrary typeclass, shrinking to minimal counterexample. Ericsson telecom (Quviq 🇸🇪), Riak 14 bugs. Hypothesis/Python, fast-check/TS 🇫🇷, ScalaCheck/Scala 🇸🇪. CWE-119/131/190. CRA 2027, NIS2 Art. 21, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy Valgrind to Europe — Julian Seward 🇬🇧 (2002), the Dynamic Binary Instrumentation Framework Behind Millions of Memory Error Discoveries, on EU Infrastructure in 2026

Deploy Valgrind to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Valgrind by Julian Seward 🇬🇧 (2002). memcheck (memory errors), callgrind (profiling), helgrind (race conditions), massif (heap), DHAT. Phil Waroquiers 🇧🇪 + Mark Wielaard 🇳🇱 (EU maintainers). CWE-119/401/416. CRA 2027, NIS2 Art. 21, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy nuXmv to Europe — FBK Trento 🇮🇹 (CAV 2014), the IC3/PDR Infinite-State Model Checker with MathSAT5, on EU Infrastructure in 2026

Deploy nuXmv to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. nuXmv by FBK Trento 🇮🇹 (CAV 2014) — IC3/PDR property-directed reachability, MathSAT5 SMT (also FBK Trento), infinite-state verification over LIA/LRA/bitvectors. Extends NuSMV with unbounded model checking. Toyota Prius brake-by-wire, Siemens PLC SIL4. IEC 61508, ISO 26262 ASIL D, EU AI Act Art. 9. Free tier.

2026-04-06·11 min read·sota.io team

Deploy Gazer-Theta to Europe — BME Budapest 🇭🇺 (TACAS 2019), the LLVM-Based C/C++ Model Checker from Central EU Formal Methods, on EU Infrastructure in 2026

Deploy Gazer-Theta to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Gazer-Theta by ftsrg / BME Budapest 🇭🇺 (Ákos Hajdu + Zoltán Micskei, TACAS 2019) — LLVM IR → CFA → Theta CEGAR, predicate abstraction, Craig interpolation, Abstract Reachability Graph. SV-COMP ReachSafety medals. Railway EN 50128 SIL 4, automotive ISO 26262 ASIL D, EU AI Act Art. 9. Free tier.

2026-04-06·10 min read·sota.io team

Deploy Clingo/ASP to Europe — University of Potsdam 🇩🇪 (LPNMR 2007), the Answer Set Programming Solver Behind EU Industrial Scheduling and Explainable AI, on EU Infrastructure in 2026

Deploy Clingo workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. Clingo by Torsten Schaub 🇩🇪 + Roland Kaminski 🇩🇪 + Benjamin Kaufmann 🇩🇪 (University of Potsdam 🇩🇪, LPNMR 2007) — Gringo grounder + clasp CDNL solver. Answer Set Programming (ASP): stable model semantics, non-monotonic reasoning, combinatorial optimisation. Siemens AG scheduling, Deutsche Bahn timetabling, Airbus maintenance. EU AI Act Art. 9 explainable AI. DFG-funded. Free tier.

2026-04-06·10 min read·sota.io team

Deploy ECLiPSe CLP to Europe — ECRC Munich 🇩🇪 (ESPRIT 1988), the EU Constraint Logic Programming System Behind Airline Crew Rostering and Rail Scheduling, on EU Infrastructure in 2026

Deploy ECLiPSe CLP workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. ECLiPSe by Joachim Schimpf 🇩🇪 + Kees Shen 🇳🇱 (ECRC Munich, EU ESPRIT 1988 — Bull 🇫🇷 + ICL 🇬🇧 + Siemens 🇩🇪 + Philips 🇳🇱 + Nixdorf 🇩🇪). CLP(FD) + ic interval constraints + CHR. Arc consistency, bounds propagation. Airline crew rostering, rail scheduling. EU AI Act Art. 13 explainability. Free tier.

2026-04-06·10 min read·sota.io team

Deploy SICStus Prolog to Europe — RISE Research Institutes of Sweden 🇸🇪 (SICS Stockholm, 1988), High-Performance ISO Prolog with CLP(FD/R/B) and CHR, on EU Infrastructure in 2026

Deploy SICStus Prolog workloads to EU servers in minutes. sota.io is the EU-native PaaS — GDPR-compliant, managed PostgreSQL, zero DevOps. SICStus by Mats Carlsson 🇸🇪 + SICS Stockholm 🇸🇪 (1988, RISE Research Institutes). WAM with full ISO 13211-1 compliance + CLP(FD) + CLP(R) + CLP(B) + CHR. Crew scheduling, timetabling, configuration. Ericsson telecom. EU AI Act Art. 13 explainability. Free tier.

2026-04-08·10 min read·sota.io team