可信平台模块自动化测试研究

可信平台模块(trusted platform module,TPM)是信息安全领域新发展趋势可信计算的关键部件,对其进行规范符合性测试非常有必要.由于传统测试方法与经验无法满足精确、易被机器处理的测试要求,状态机理论可为符合性测试的正确性提供理论基础,但易于产生状态爆炸问题.因此,基于TPM规范进行了一致性测试建模,提出相应策略提高测试效率,建立了TPM自动化测试工具.该工具能基于数据库自动生成测试用例,根据状态图进行一致性测试或自定义测试,达到过程可视化的效果.针对待测试产品得出了较为全面一致性结论和基本安全分析,为今后的可信产品安全性测试打下基础.     

C代码API一致性检验中的等值分析

在实际中对C代码进行API一致性检验的过程中发现,API(application programming interface)规范大都涉及以数值为论域的时序性质,与在静态分析过程中所能获取的以变量符号为占位符的独立语义之间存在分析上的缺口.在仔细考察C代码变量符号间等值关系的基础上,给出基于值等价类空间的等值分析方法.这种流相关的分析方法不仅可以在API一致性检验的过程中维护变量符号域和数值域之间的对应关系,而且由于能够屏蔽等值关系以外的其他信息,还可以为后继分析的优化提供有力的支持.     

基于TTCN的ICMPv6的一致性测试

基于TTCN的协议的一致性测试是保证协议实现正确的重要方法.在介绍ICMPv6协议和TTCN标准的基础上,构建了一种基于TTCN标准的一致性测试系统.介绍了该测试系统的架构与工作原理,同时给出了ICMPv6一致性测试的方法和步骤,并在测试平台上执行了测试套.     

网管接口实现一致性声明文稿的定义方法

通过对部分现有网络管理接口实现一致性声明文稿共性的分析,总结出了实现一致性声明文稿的分类和所应涉及的范围,提出了通用的一致性声明文稿的基本组成,并给出了其一般的定义原则。此外,还指出了现有的一致性声明文稿模板中存在的某些不足之处,并提供了相应的改善方法。     

Real-Time Reflexion Modelling in architecture reconciliation: A multi case study

ContextReflexion Modelling is considered one of the more successful approaches to architecture reconciliation. Empirical studies strongly suggest that professional developers involved in real-life industrial projects find the information provided by variants of this approach useful and insightful, but the degree to which it resolves architecture conformance issues is still unclear.ObjectiveThis paper aims to assess the level of architecture conformance achieved by professional architects using Reflexion Modelling, and to determine how the approach could be extended to improve its suitability for this task.MethodAn in vivo, multi-case-study protocol was adopted across five software systems, from four different financial services organizations. Think-aloud, video-tape and interview data from professional architects involved in Reflexion Modelling sessions were analysed qualitatively.ResultsThis study showed that (at least) four months after the Reflexion Modelling sessions less than 50% of the architectural violations identified were removed. The majority of participants who did remove violations favoured changes to the architectural model rather than to the code. Participants seemed to work off two specific architectural templates, and interactively explored their architectural model to focus in on the causes of violations, and to assess the ramifications of potential code changes. They expressed a desire for dependency analysis beyond static-source-code analysis and scalable visualizations.ConclusionThe findings support several interesting usage-in-practice traits, previously hinted at in the literature. These include (1) the iterative analysis of systems through Reflexion models, as a precursor to possible code change or as a focusing mechanism to identify the location of architecture conformance issues, (2) the extension of the approach with respect to dependency analysis of software systems and architectural modelling templates, (3) improved visualization support and (4) the insight that identification of architectural violations in itself does not lead to their removal in the majority of instances.     

The Advantages of Continuous Measurements over Pass/Fail Data

This article provides a justification for continuous measurements being more informative than pass/fail data. Namely, more information is provided for the same sample size or a smaller sample size is required for the same information. In the article, inference of the conformance probability, the probability of measurements meeting specifications, is considered. It is shown that continuous measurements provide dramatic advantages, especially when the conformance probability is high.     

Design and Performance Analysis of Emulator for Standard Conformance Test of Active RFID

An active radio frequency identification (RFID) system has the advantages of a long identification distance and a good identification rate, overcoming passive RFID drawbacks. Therefore, interest in the development of active RFID systems has been gradually increasing in areas of harbor logistics and national defense. However, some identification failures between active RFID systems developed under the same standards have been reported, presumably due to a lack of development of accurate evaluation methods and test equipment. We present a realization of the hardware and software of an emulator to evaluate the standard conformance of an active RFID system in a fully anechoic chamber. The performance levels of the designed emulator are analyzed using Matlab/Simulink simulations, and the applicability of the emulator is verified by evaluating the standard conformance of a real active RFID tag. Finally, we propose a new evaluation method by incorporating a self‐running test mode environment into the RFID tags to reduce testing time and increase testing accuracy. The application of the suggested method to actual tags improves measurement uncertainty by 0.56 dB over that obtained using existing methods.     

ITRI‐WiMAXT: A WiMAX conformance testing tool

The WiMAX Forum certifies and promotes the compatibility and interoperability of broadband wireless products where many testcases need to be developed for WiMAX procedures. In this paper, we develop a conformance test tool called ITRI‐WiMAXT based on the TTCN‐3 specifications. Then we show how WiMAX procedures are tested in ITRI‐WiMAXT. Based on ITRI‐WiMAXT, we have proposed several test procedures accepted by the WiMAX Forum. Copyright © 2009 John Wiley & Sons, Ltd.     

An ontology-based approach for formalisation and semantic organisation of conformance requirements in construction

This paper presents an ontology-based method for the formalisation and application of construction conformance requirements for effective code checking. This research continues our work on the development of a generic model automating the conformance checking of construction projects against building codes. We start from the analysis of the related research on the formalisation and organisation of building codes that allows us to formulate our approach for semantic annotation and scheduling of conformance requirements for conformance checking task. Our approach comprises 5 main steps: formalisation, semantic annotation, classification, context-based scheduling and semantic search of conformance requirements. They are implemented as corresponding key components of the C3R (Conformance Checking in Construction — Reasoning) prototype that we have developed to model the conformance checking process in construction. Finally, we discuss the ongoing work and perspectives of our research: the validation of our model by construction practices and the enrichment of our approach by usage-based knowledge.     

EPA协议一致性测试方法

EPA是我国第一个拥有自主知识产权并被国际电工委员会（IEC）认可的工业自动化领域国际标准。本文在研究EPA协议一致性测试原理、静态测试与动态测试方法与实现技术的基础上，参照TFCN的结构框架对EPA抽象测试集进行形式化描述，提出了一种EPA协议一致性测试的方法，阐述了EPA协议实现一致性说明和协议实施附加信息的生成方法，并以变量写服务的测试为例，说明了EPA协议一致性测试流程。国家863／CIMS验收专家组委托的专家测试表明这种测试方法能够准确测试出被测协议实现与标准的一致程度。