About This Report iii

Summary v

Tables xi

CHAPTER 1

Introduction 1

The Security Problem 1

Why Formal Verification 1

Strategic Context 2

CHAPTER 2

Methodology 5

CHAPTER 3

Findings 7

The Risk Landscape 7

What Verification Can and Cannot Address 8

Component Priorities: Where to Start 9

Barriers to Development and Adoption 10

Stakeholder Landscape 12

The Specification Challenge 12

AI-Assisted Formal Methods 13

CHAPTER 4

Toward a Community Technical Roadmap 17

Verified Foundations 17

Verified Control Plane 17

Distributed Systems and Crosscutting Challenges 18

Open Questions 18

A Minimal Verified Inference Stack 18

CHAPTER 5

Preliminary Recommendations 19

For Frontier AI Labs and Hyperscalers 19

For the Formal Methods Community 19

For Hardware Vendors 20

For Government Agencies 20

For the Broader Community 20

CHAPTER 6

Conclusion 21