码估计立场和态度的航天器或飞机属于最安全的关键部分航班software.The基本数学复杂和丰富的设计细节使它容易出错的，可靠的实现是一个程序costly.AutoFilter合成工具自动生成状态估计代码紧凑specifications.It可以自动产生更多的安全证书，正式保证每个单独的程序满足了一套重要的安全policies.These安全政策（例如，数组越界，变量初始化）形成核心财产所必需的高保证software.Here我们描述了自动过滤系统及其证书发生器和比较我们的方法来静态分析工具PolySpace 。-Code to estimate position and attitude of a spacecraft or aircraft belongs to the most safety-critical parts of flight software.The complex underlying mathematics and abundance of design details make it error-prone and reliable implementations costly.AutoFilter is a program synthesis tool for the automatic generation of state estimation code from compact specifications.It can automatically produce additional safety certificates which formally guarantee that each generated program individually satisfies a set of important safety policies.These safety policies (eg.,array-bounds,variable initialization)form a core of properties which are essential for high-assurance software.Here we describe the auto Filter system and its certificate generator and compare　our approach to the static analysis tool PolySpace.