Conformance relation, associated equivalence, and minimum canonical tester in LOTOS
نویسنده
چکیده
We first study the conf relation proposed by E. Brinksma and G. Scollo to formalize testing conformance. It is well-known from their work that, in order to test whether an implementation I is a valid implementation of a specification S (i.e. I conf S), it suffices to build, from S, a canonical tester T (S) such that, when T (S) is synchronized with an implementation I, it always reaches a correct final state if, and only if, I conf S. For instance, if I is not a valid implementation of S, the canonical tester T (S) may deadlock with I before reaching a correct final state. We put into evidence the role of the equivalence relation, conf-eq, associated naturally with conf. An important result states that if S1 conf-eq S2, their canonical testers T1 and T2 must also satisfy T1 conf-eq T2, and reversely. Therefore, the best approach is to define the canonical tester modulo confeq, whereas it is currently defined modulo the testing equivalence te. Taking into account that conf-eq is weaker than te, we were able to propose a minimum canonical tester which is simpler than T (S): unlike T (S), it may have fewer traces than the specification S. The term minimum means that no trace from this tester can be deleted without losing the exhaustive test property or, stated otherwise, without taking the risk of accepting an invalid implementation (in the conf sense).
منابع مشابه
Failure-based congruences, unfair divergences and new testing theory
The testing equivalence te that is used as a reference in verification and testing theory in LOTOS is not a congruence, and no explicit definition of the least congruence stronger than te has been found. The critical LOTOS context in which congruence is lost is the hiding context that creates divergence. In this paper we first survey this problem and present three known variants of te that are ...
متن کاملConformance Relations and Test Derivation
It seems that finite state machines (FSM's) and (finite) labeled transition systems (LTS's) are competing descriptive models for system specifications in various areas, including communication protocols. Much work on the derivation of tests from a given system specification has been done separately for these two models. In this paper, we attempt to make a comparative study of existing approache...
متن کاملPassive Testing with Proxy-testers
Passive testing is an alternative testing approach whose purpose is to passively analyze an implementation behaviour without disturbing it. Usually, passive testing methods extract traces by means of sniffer-based tools, running in the same environment as the implementation. Nevertheless, many implementation environments prevent from setting a sniffer-based tool for security or technical reason...
متن کاملSystematic Testing of Radiotherapy Accelerators
The nature of radiotherapy accelerators is briefly explained. It is argued that these complex safety-critical systems need a systematic basis for testing their software. The paper describes a novel application of protocol specification and testing methods to radiotherapy accelerators. It is explained that the accelerator control system is specified using LOTOS (Language Of Temporal Ordering Spe...
متن کاملModeling basic LOTOS by FSMs for conformance testing
A challenging issue is the derivation of a nite test suite from a given LOTOS speci cation modeled by a labeled transition system (LTS) such that complete fault coverage is guaranteed for a certain class of implementations with respect to a particular conformance relation. It is shown in this paper that this problem can be solved by translating an LTS into an input/output nite state machine (FS...
متن کامل