摘要： 使用完备的有限状态机生成一致性测试集虽然有效，但数量庞大。针对该问题，考虑一般系统访问控制的基本需求，提出6种探索式方法对有限状态机(FSM)进行约简，有效避免状态爆炸的现象发生，简化了生成的一致性测试集大小。对基于FSM生成树进行实验，结果表明，改进FSM对缩小基于角色的访问控制系统一致性测试集是有效的。

关键词: 有限状态机, 权限控制, 基于角色的访问控制, 一致性测试集, 试探法, 错误覆盖率

Abstract: A test suite generated using complete Finite State Machine(FSM) has excellent fault detection ability, but it is astronomically large. This paper presents six heuristic method to reduce the size of the FSM model based on the general requirements from the access control system. These methods not only avoid the state explosion, but also simplify the generation of conformance test suite size. This paper designs experiment based on spanning tree of the FSM. Experimental result shows that using improved FSM to reduce the comformance test suite of Role-based Access Control(RBAC) system is effective.

Key words: Finite State Machine(FSM), authority control, Role-based Access Control(RBAC), conformance test suite, heuristic method, fault coverage rate

中图分类号: 

• TP311