摘要
可信计算是当今世界信息安全领域的重要潮流之一.根据国家有关规定,信息安全产品需要经过测评认证,但目前国内外对可信计算测试的理论与技术研究还非常不完善,也无相应测试工具或系统,这必然影响可信计算的发展.该文着眼于规范定义的信任链行为特征,以进程代数作为指称语义描述工具,以标记变迁系统作为操作语义,对规范定义的信任链行为特征进行了形式化描述,提出了一种基于标记变迁系统的信任链测试模型框架.针对信任链规范与实现之间的问题,从易测性出发对测试集进行了有效约简;并论证了信任链的规范实现与规范说明之间的关系,为测试用例构造方法提供了理论依据,从而解决了信任链测试这一难题.
At present, the trusted computing has become a major development trend in the field of information security. According to "China National Information Security Certification and Evaluation Management", the information security products must be evaluated and certified. However, attribute to the situation that the specifications are established by the enterprises, the theory about the trusted computing is behind the technology, and there aren't any testing tools, which will affect the development of trusted computing. Therefore, this paper focuses on the behavior characters of specifications of trust chain, letting process algebra as denotation semantics, and taking labeled transition system (LTS) as operation semantics for formalizing behavior characters of trust chain. The authors put forward a test framework based on LTS for trust chain. Aiming at problems between specifications and implementations of trust chain, they reduce test suite effectively for testability, and reason the relationship of them, which are theory foundation of constructing test suite and solve the hard problem of trust chain test.
出处
《计算机学报》
EI
CSCD
北大核心
2009年第4期635-645,共11页
Chinese Journal of Computers
基金
国家"八六三"高技术研究发展计划项目基金(2007AA01Z411
2008AA01Z404)
国家自然科学基金(60673071
90718005
90718006)
空天信息安全与可信计算教育部重点实验室开放基金资助~~
关键词
可信计算平台
信任链
进程代数
标记变迁系统
一致性测试
trusted computing platform
trust chain
process algebra
labeled transition system
conformance testing
