Using Model-Based Testing to Assess Smart Card Interoperability Conformance
نویسندگان
چکیده
Smart cards are being used to provide security for many types of applications, and with an estimated market of 3.3 billion in 2005, their usefulness is based on their intrinsic portability and security. The National Institute of Standards and Technology (NIST) initiated the Smart Card Interoperability Program to provide standards (Government Smart Card Interoperability Specification –GSC-IS) and tests to accelerate the use of this technology. The GSC-IS provides specifications for interoperability for Smart Card-Based Applications at two layers – the first one called the Basic Service Interface (BSI) layer and the second one called the Virtual Card-Edge (VCEI) layer. The BSI layer is the interface between a client application and the smart card middleware while the VCEI layer is the interface between the Smart Card Middleware and on-card application. This paper describes the approach and results of a model-based test generation effort that tests a smart card middleware implementation for conformance to the BSI layer of GSC-IS specifications. Our approach consists of using the function signatures in the BSI layer of GSC-IS as requirements to develop a verification model and then generating test vectors and executable test code based on the model to facilitate testing of a smart card middleware implementation. The tests are generated for Java language binding of the BSI specification.
منابع مشابه
Improving Test Conformance of Smart Cards versus EMV-Specification by Using on the Fly Temporal Property Verification
Electronic payment transactions using smart card are based on the Europay Mastercard Visa (EMV) specifications. This standard appeared in 1995 in order to ensure security and global interoperability between EMV-compliant smart cards and EMV-compliant payment terminals throughout the world. Another purpose of EMV specifications is to permit a secure control of offline credit card transaction app...
متن کاملSpecification-driven Testing of Smart Card Interface Using a Formal Model
Model-Driven Engineering (MDE) is emerging as a promising approach that uses models to support various phases of system development lifecycle such as Code Generation and Verification/Validation (V &V). In this paper, we describe the application of a model-driven process in the V &V phase for developing automated tests for testing the conformance of a smart card implementation to an interface sp...
متن کاملUsing test hypotheses to build a UML model of object-oriented smart card applications
Using test to validate conformance of Java Card applications needs to take into account objectoriented specificity of the model and the implementation. In this article, we propose a method which integrates test hypotheses in order to build a UML model of Java Card applications. For each hypothesis, we describe how we can use it in order to obtain a model which is test oriented, and as most as p...
متن کاملA quality score honoring approach to semantic conformance assessment of minutiae-based feature extractors
The use of biometric systems is steadily increasing, which leads to heterogeneity and, thus, possibly interoperability issues. In order to address such issues, standards are developed by ISO/IEC Joint Technical Committee 1. In the case of minutiae-based fingerprint recognition, for instance, ISO/IEC 19794-2 defines biometric data interchange records that vendors should adhere to. To validate ad...
متن کاملAutomated Conformance Testing of C2IS
Command, Control, and Information Systems (C2ISs) are complex software products that must conform to agreed standards in order to be interoperable in joint and combined operations. Due to the complexity of information exchange between heterogeneous C2ISs, thorough testing is indispensable to gain confidence that these standards are implemented correctly and semantic interoperability is indeed a...
متن کامل