Yoichi Hirai and others are working on completing proof assistant support for EVM, meaning you will be able to prove program properties using logical pre/post-conditions with machine checked proofs.

There are already useful tools for symbolic execution, and I have a hunch that this kind of verification will be important along with model checking.

The specification of EVM in HOL exists already [1] and can be used to prove correctness of EVM code already. EVM is pretty low-level, though; the same can't be done for Solidity code. Yoichi has a page that outlines his thinking about what Ethereum's formal verification needs are [2].

What I would like to see is a verified high-level smart contract language layered on top of the Ethereum stack, allowing non-logicians to put together contracts that mean what they think they mean. See [3].

[1]: https://github.com/pirapira/eth-isabelle

[2]: https://github.com/pirapira/ethereum-formal-verification-ove...

[3]: http://lambda-the-ultimate.org/node/5003#comment-94645

There's already an implicit bug bounty. Whoever found this bug got a bounty of millions. Much better than the presence that tech companies pay.

Yes, but I'm suggesting designing explicit bug bounties. The point of a bug bounty is to offer a smaller sum of money than would be lost if the vulnerability were exploited maliciously.

Cryptocurrencies are serving as bug bounties for their crypto primitives, but that only benefits other users of those primitives.

See: https://www.youtube.com/watch?v=voyespPGQZI (Directions in Smart Contract Research A Selection - Philip Daian)