Semiautomatic implementation of protocols using an Estelle-Ccompiler

The basic ideas underlying an Estelle-C compiler, which accepts an Estelle protocol specification and produces a protocol implementation in C, are presented. The implementation of the ISO (International Organization for Standardization) class-2 transparent protocol, using the semiautomatic approach, is discussed. A manual implementation of the protocol is performed and compared to the semiautomatic implementation. The semiautomatic approach to protocol implementation offers several advantages over the conventional manual one, including correctness and modularity in protocol implementation code, conformance to the specification, and reduction in implementation time. Finally, ongoing development of a new Estelle-C compiler is presented     

Interaction semantics with refusals,divergence, and destruction

Formal methods for testing the conformance of a software system to its specification are considered. The interaction semantics determines the testing capabilities, which are reduced to the observation of actions and refusals (absence of actions). The semantics is parameterized by the families of observable and unobservable refusals. The concept of destruction as a prohibited action that should be avoided in the course of interaction is introduced. The concept of safe testing, the implementation safety hypothesis, safe conformance, and generation of a complete test suite based on the specification are defined. Equivalences of traces, specifications, safety relations, and interaction semantics are examined. A specification completion is proposed that can be used to remove from the specification irrelevant (not included in the safely testable implementations) and nonconformal specification traces is proposed. The concept of total testing that detects all the errors in the implementation (rather than at least one error as is the case in complete testing) is introduced. On the basis of the analysis of dependences between errors, a method for the minimization of test suites is proposed. The problem of preserving the conformance under composition (the monotonicity of conformance) is investigated, and a monotone transformation of the specification solving this problem is proposed.     

Introducing ODA

The paper gives an introduction guide to the international standard ISO 8613, ‘Office Document Architecture (ODA) and Interchange Format’. The aims, general concepts and key principles of this standard are described. There is also a note on future extensions.     

基于分类树的OSEK/VDX操作系统一致性测试研究

在深入研究OSEK/VDX操作系统规范的基础上,提出了基于分类树的OSEK/VDX操作系统的一致性测试方法。该方法的核心思想首先是从OSEK规范抽取出测试目的,其次根据规范和测试目的构造分类树和划分分类树的输入域,再次为分类树添加生成规则和限制条件,最后借助CTE XL工具自动生成一致性测试用例。通过对MiniOSEK的一致性测试,验证了使用分类树方法进行OSEK/VDX操作系统一致性测试的有效性与正确性。     

iSCSI协议一致性测试研究与实现

不同iSCSI协议实现之间能否互联互通取决于协议实现是否与iSCSI协议规范相一致。针对这个问题,研究了iSCSI协议一致性测试的测试原理和测试流程,设计了适合于iSCSI协议一致性测试的测试系统以及基于XML描述的iSCSI协议一致性测试套,给出了较为完整的iSCSI协议一致性测试例。使用该测试例对某产品的iSCSI协议实现进行一致性测试,发现了被测实现存在与协议规范不一致的地方。     

Conformance analysis in networks with service level agreements

To achieve some level of Quality of Service (QoS) assurance, a network usually has Service Level Agreements (SLAs) with its users and neighboring domains, which describe the QoS level that the service provider is committed to provide, and the specification of traffic that users or neighboring domains are allowed to send. An interesting and important question arises as to whether a flow is still conformant to its original traffic specification after crossing the network since it may interact with other flows within the network. In this paper, we study analytically the extent to which a flow and an aggregate of flows become non-conformant through an analysis of the stochastic burstiness increase of flows after crossing a per-flow scheduling network and an aggregate scheduling network . The stochastic behavior of a server in aggregate scheduling networks is also studied to determine the conformance deterioration of individual flows, which provides the theoretical conformance deterioration bound and provides useful results for conformance analysis in an aggregate scheduling network with general topology. Our theoretical results are verified by extensive simulations.     

An approach to concurrent TTCN test generation

The basis of distributed system conformance testing is to test the conformance of each entity with its standard.This paper addresses the approach to entity conformance testing based on concurrent TTCN.First a preliminary framework for entity conformance testing is introduced and a specification model CEBE is presented.Then a test generation method,which could directly derive concurrent TTCN test suite from CEBE,is proposed.     

Safe simulation testing of systems with refusals and destructions

This paper deals with conformance testing based on formal specifications. The concept of safe testing was earlier proposed by the authors for trace based conformance. This concept is propagated for the case of (weak) simulation based on a relation between the specification and implementation states. The theory of the safe simulation of systems with refusals and destructions is proposed. The problems of complete testing and sufficient conditions for the existence of a complete test suite are discussed. A practical algorithm of complete testing for restricted classes of specifications and implementations is described.     

Test generation for radiotherapy accelerators

System specification with Lotos (Language Of Temporal Ordering Specification) is briefly introduced. To make test generation practicable, specifications are annotated with event constraints using PCL (Parameter Constraint Language) as a means of stating test purposes. Automated test generation can then use the principle of input-output conformance to check whether an implementation agrees with its specification. Test suites are generated by a transition tour that either visits every transition at least once (for infinite behaviour) or follows every path (for finite behaviour). The approach is applied to a case study in which tests are generated for radiotherapy accelerators used in cancer treatment. A typical specification and set of test purposes yields 256 test cases that can be executed manually or automatically. The goal is to determine situations in which an accelerator does not behave in conformity with its specification.     

OSEK操作系统一致性测试用例的生成

研究OSEK操作系统的一致性测试需求,提出一种基于分类树的一致性测试用例生成方法。对测试对象进行分类划分,分析分类子集之间的相互关系和制约条件,借助图形化工具精简测试用例的数目。以AutoOSEK的资源管理模块为例进行一致性测试,测试结果验证了该分类树方法的有效性。     

Formalization of test experiments

Formal methods for testing conformance of the system under examination to its specification are examined. The operational interaction semantics is specified by a special testing machine that formally determines the testing capabilities. A set of theoretically powerful and practically important capabilities is distinguished that can be reduced to the observation of external actions and refusals (the absence of external actions). The novelties are as follows. (1) Parameterization of the semantics by the families of observable and not observable refusals, which makes it possible to take into account various constraints on the (correct) interactions. (2) Destruction as a forbidden action, which is possible but should not be performed in the case of a correct interaction. (3) Modeling of the divergence by the Δ-action, which also should be avoided in the case of a correct interaction. On the basis of this semantics, the concept of safe testing, the implementation safety hypothesis, and the safe conformance relation are proposed. The safe conformance relation corresponds to the principle of independent observations: a behavior of an implementation is correct or incorrect independently of its other possible behaviors. For a more narrow class of interactions, another version of the semantics based on the ready traces may be used along with the corresponding conformance relation. Some propositions concerning the relationships between the conformance relations under various semantics are formulated. The completion transformation that solves the problem of the conformance relation reflexivity and a monotone transformation that solves the monotonicity problem (preservation of the conformance under composition) are defined.     

基于TTCN-3的SIP一致性测试

应用层控制协议SIP（Session Initiation Protocol）已被用于在IP网络中建立、修改和终止多个参与者参加的多媒体会话.为了保证SIP的不同实现之间能够可靠地进行通信,需要对其进行严格的一致性测试并检验SIP实现是否与标准一致.ETSI（European Telecom munications Standards Institute）开发的下一代测试描述语言TTCN-3（Testing and Test Control Notation version 3）在SIP一致性测试中起着重要的作用.本文描述了通用TTCN-3测试系统的设计和实现以及使用TTCN-3对SIP进行测试的情况.     

A framework for the specification of test cases for real-time distributed systems

The OSI conformance testing methodology and framework (CTMF) is a well established standard which defines and regulates the conformance testing procedure for protocol implementations. Conformance testing is meant to be functional black-box testing. Besides concepts and terminology, the CTMF standardizes testing architectures and the Tree and Tabular Combined Notation (TTCN) test specification language. As more and more distributed systems such as multimedia, safety-critical and real-time systems rely on the timely availability of information, testing of real-time requirements becomes a serious issue, too. Unfortunately, testing real-time and other non-functional requirements (performance and reliability) are outside the scope of CTMF. In this paper we present an extension of CTMF which allows us to specify test cases for testing real-time requirements. The extension includes a generic testing architecture and a notation for test specification, which is called real-time TTCN.     

维哈柯文字库标准符合性检测研究

在调查和分析维哈柯文字库存在问题的基础上,依据国家制定的维哈柯文字符集标准与字形标准,明确了维哈柯文字库标准符合性检测的含义与内容,结合对TrueType字形技术,TrueType字库文件基本构成的详细研究,提出了完整的维哈柯文字库标准符合性检测的方案与算法,并实现了维哈柯文字库标准符合性检测工具的开发.实验结果表明检测方案完整、可行,能较好地解决维哈柯文字库标准符合性检测问题,对其它文字的字库标准符合性检测也具有一定的借鉴意义.     

Proposing a test model for the computer graphics metafile

The Computer Graphics Metafile (CGM) is an international standard (CGM-ISO 8632) concerned with the storage and transfer of graphical data. It is specified in four parts, which describe the abstract specification and three encodings. The conformance testing of standards, in particular language standards and osi, is a rapidly growing area with many projects being undertaken worldwide. This paper proposes a strategy for testing implementations of the cgm. The first area considered is testing for conformance to the standard. The conclusion is soon reached that, due to the conformance statements within the cgm standard, only analysis (syntax and consistency checking) of the format of the metafile can be achieved. In order to provide more useful and practical information on cgm implementations, further testing is required. Hence, evaluation testing is introduced, and a model is described that could be used to give information on the capability of cgm generators and interpreters.     

A formal and visual modeling approach to choreography based web services composition and conformance verification

Web services have emerged as the building blocks of a service-oriented architecture that supports not only enterprise application integration (EAI) and business process management (BPM) within an organization but also B2B collaboration based on business process integration. The web services choreography approach to B2B process integration allows business partners to orchestrate their own web services privately, while conforming with an agreed specification of the common ordering conditions and constraints under which messages are exchanged among partners’ web services. In this approach, choreography conformance is an essential requirement for the successful implementation of collaborative processes. A formal approach to web services composition and conformance verification based on WS-CDL and WS-BPEL is presented. This approach involves model checking as an automated means of verifying choreography conformance. The main contributions include a precise notion of choreography conformance on which verification is based as well as support for the complementary use of visual modeling (e.g. UML) and standard WS-¹ notations in composition.     

基于一致性测试理论的Statechart描述的测试用例自动生成

本文研究Statechart描述的测试语义和测试用例的自动生成.基于Tretmans的从标记转换系统描述自动生成测试用例的方法,我们研究如何从Statechart描述自动生成测试用例.本文的主要贡献在于建立了基于Statechart描述的一致性测试和测试用例生成的形式化基础.为Statechart描述建立了形式化测试语...     

一种类ODA的多媒体文档结构模型

ＩＳＯ的办公文档结构ＯＤＡ较好地解决了传统的文档结构定义问题，但是多媒体文档还必须增加一项新需求。文中给出一种描述多媒体文档结构的类ＯＤＡ模型，并着理讨论逻辑结构和样式结构的表示方法。     

Exposing bugs in JavaScript engines through test transplantation and differential testing

Software Quality Journal - JavaScript is a popular programming language today with several implementations competing for market dominance. Although a specification document and a conformance test...     

ODA and SGML: An assessment of co-existence possibilities

Given the existence of two standards for text processing systems that accomplish similar goals, with similar means, but dissimilar results, the authors seek to reconcile the two. Office Document Architecture (ODA) and Standard Generalized Markup Language (SGML) are found to have no fundamental incompatibilities, opening the way to either formally melding them into a single internationally recognized standard or through practical implementations forming a de facto standard that encompasses both. The conclusion is that the latter is most likely to occur, but in any case either is preferable to the current situation.