ANSI INCITS423.3-2009 Information technology - Conformance Testing Methodology Standard for Biometric Data Interchange Format Standards Part 3 - Conformance Testing Methodology for.pdf

1、American National StandardDeveloped byfor Information Technology Conformance Testing Methodology Part 3: Conformance Testing Methodologyfor ANSI INCITS 377-2004,Finger Pattern Data Interchange FormatINCITS 423.3-2009INCITS 423.3-2009Copyright American National Standards Institute Provided by IHS und

2、er license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-INCITS 423.3-2009American

3、 National Standardfor Information Technology Conformance Testing Methodology Part 3: Conformance Testing Methodologyfor ANSI INCITS 377-2004,Finger Pattern Data Interchange FormatSecretariatInformation Technology Industry CouncilApproved June 16, 2009 American National Standards Institute, Inc.Copyr

4、ight American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-Approval of an American National Standard requires review by ANSI that therequirements for due process, consensus, and other criteria

5、for approval havebeen met by the standards developer.Consensus is established when, in the judgement of the ANSI Board ofStandards Review, substantial agreement has been reached by directly andmaterially affected interests. Substantial agreement means much more thana simple majority, but not necessa

6、rily unanimity. Consensus requires that allviews and objections be considered, and that a concerted effort be madetowards their resolution.The use of American National Standards is completely voluntary; theirexistence does not in any respect preclude anyone, whether he has approvedthe standards or n

7、ot, from manufacturing, marketing, purchasing, or usingproducts, processes, or procedures not conforming to the standards.The American National Standards Institute does not develop standards andwill in no circumstances give an interpretation of any American NationalStandard. Moreover, no person shal

8、l have the right or authority to issue aninterpretation of an American National Standard in the name of the AmericanNational Standards Institute. Requests for interpretations should beaddressed to the secretariat or sponsor whose name appears on the titlepage of this standard.CAUTION NOTICE: This Am

9、erican National Standard may be revised orwithdrawn at any time. The procedures of the American National StandardsInstitute require that action be taken periodically to reaffirm, revise, orwithdraw this standard. Purchasers of American National Standards mayreceive current information on all standar

10、ds by calling or writing the AmericanNational Standards Institute.American National StandardPublished byAmerican National Standards Institute, Inc.25 West 43rd Street, New York, NY 10036Copyright 2009 by Information Technology Industry Council (ITI)All rights reserved.No part of this publication may

11、 be reproduced in anyform, in an electronic retrieval system or otherwise,without prior written permission of ITI, 1101 K Street NW, Suite 610, Washington, DC 20005. Printed in the United States of AmericaCAUTION: The developers of this standard have requested that holders of patents that may berequ

12、ired for the implementation of the standard disclose such patents to the publisher. However,neither the developers nor the publisher have undertaken a patent search in order to identifywhich, if any, patents may apply to this standard. As of the date of publication of this standardand following call

13、s for the identification of patents that may be required for the implementation ofthe standard, no such claims have been made. No further patent search is conducted by the de-veloper or publisher in respect to any standard it processes. No representation is made or impliedthat licenses are not requi

14、red to avoid infringement in the use of this standard.Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-Contents Forewordii 1 Scope 1 2 Conformance . 1 3 Normative References 1 4

15、Terms and Definitions 2 5 Symbols (and Abbreviated Terms) 3 6 Conformance Testing Methodology 4 6.1 General. 4 6.2 Level I and Level II Assertions. 4 Note 1: (Test #3.2) Total Bytes Expected. 6 Note 2: (Test #9) Range of X Number of Cells. 6 Note 3: (Test #10) Range of Y Number of Cells. 6 Note 4: (

16、Test #25.1) Length of Data Block Bytes Expected . 6 6.3 Test Method . 7 6.4 Test Procedures 9 6.5 Test Report 10 7 Test Assertions for Type A Conformance Testing 12 7.1 General Consideration 12 7.2 Level 1 and Level 2 Testing of the Record Header 12 7.3 Level 1 and Level 2 Testing of the Finger Patt

17、ern Record Header 20Table 1 Assertions for ANSI INCITS 377-2004 Data Records Field with Conformance Level Contraints and Operators 5 Figures 1 ANSI INCITS 377-2004 BDR File Format Level 1 and Level 2 Conformance Test Flow 8 2 INCITS 377 BDIR Data File Level 1 and 2 Conformance Testing Implementation

18、 Procedure 11 i Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-iiForeword (This foreword is not part of American National Standard INCITS 423.3-2009.)The Finger Pattern Data In

19、terchange Format, ANSI INCITS 377-2004, provides anindustry standard to allow for fingerprint pattern data extracted with one vendors al-gorithm to be useful to another vendors matching algorithm. Currently, there are no standardized methods for conducting conformance tests ofcommercial products tha

20、t claim to support the Finger Pattern Data Interchange For-mat, ANSI INCITS 377-2004. Application and Biometric Service Provider (BSP) de-velopers may interpret ANSI INCITS 377-2004 differently from one another;therefore, their implementations of ANSI INCITS 377-2004 may differ and not inter-operate

21、. There is a need for a standardized, generally accepted, Finger Pattern DataInterchange Format conformance testing methodology that would allow implementa-tion of a set of test tools realizing this methodology. A particular fingerprint pattern template can be considered to be in conformance withANS

22、I INCITS 377-2004. In this case, a template can be parsed and examined to as-sure that the data layout is consistent with ANSI INCITS 377-2004. A process thattransforms fingerprint images into fingerprint pattern templates can conform to ANSIINCITS 377-2004 by producing conformant templates. A proce

23、ss that assesses thesimilarity of fingerprints can conform to ANSI INCITS 377-2004 by accepting a con-formant pattern template as input.ANSI INCITS 423.3 defines a testing methodology to assure conformance of a ven-dors application or service to the Finger Pattern Data Record requirements as setfort

24、h in ANSI INCITS 377-2004. It intends to:a) Establish elements of the Conformance Testing Methodology framework that arespecific to the Finger Pattern Data Record requirements of ANSI INCITS 377-2004.b) Define requirements and guidelines for specifying conformance test suites and re-lated test metho

25、ds for measuring conformity of products and services to the Fin-ger Pattern Data Record requirements of ANSI INCITS 377-2004, andc) Define test procedures to be followed before, during, and after conformancetesting.This part of the ANSI INCITS 423 series of standards is applicable to the develop-men

26、t and use of conformity test method specifications, conformity test suites for Fin-ger Pattern Data Record requirements as specified in ANSI INCITS 377-2004, andconformance testing programs for ANSI INCITS 377-2004-conformant products. It isintended primarily for use by testing organizations, but ma

27、y be applied by developersand users of test method specifications and test method implementations.Requests for interpretation, suggestions for improvement or addenda, or defect re-ports are welcome. They should be sent to InterNational Committee for InformationTechnology Standards (INCITS), ITI, 110

28、1 K Street, NW, Suite 610, Washington, DC20005.This standard was processed and approved for submittal to ANSI by INCITS. Com-mittee approval of this standard does not necessarily imply that all committee mem-bers voted for its approval. At the time it approved this standard, INCITS had thefollowing

29、members:Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without license from IHS-,-,-iiiDon Wright, ChairJennifer Garner, SecretaryOrganization Represented Name of RepresentativeAdobe Systems, Inc. .Scott F

30、osheeSteve Zilles (Alt.)AIM Global, Inc. Dan MullenCharles Biss (Alt.)Apple Computer, Inc. Kwok LauHelene Workman (Alt.)David Singer (Alt.)Distributed Managment Task ForceTony DiCenzoJeff Hilland (Alt.)Winston Bumpus (Alt.)Electronic Industries Alliance Edward Mikoski, Jr.EMC Corporation Gary Robins

31、onFarance, Inc. .Frank FaranceTimothy Schoechle (Alt.)Google Zaheda BhoratRobert Tai (Alt.)GS1 US.Ray DelnickiFrank Sharkey (Alt.)James Chronowski (Alt.)Mary Wilson (Alt.)Hewlett-Packard Company .Paul JeranKaren Higginbottom (Alt.)Scott Jameson (Alt.)IBM CorporationRonald F. SillettiRobert Weir (Alt

32、.)IEEEJudith GormanTerry DeCourcelle (Alt.)Bill Ash (Alt.)Jodie Haasz (Alt.)Bob Labelle (Alt.)Susan Tatiner (Alt.)Intel .Philip WennblomDave Thewlis (Alt.)Grace Wei (Alt.)Lexmark International .Don WrightDwight Lewis (Alt.)Paul Menard (Alt.)Microsoft CorporationJim HughesDave Welsh (Alt.)Mark Ryland

33、 (Alt.)National Institute of Standards this flow shall be repeated for every finger pattern record in the data file. Start Open/parse the data file containing fingerprint pattern in accordance with ANSI INCITS 377-2004 Level 1 testing: Verify value of each field and the ranges of the values in those

34、 fields Level 2 testing: Verify values of those specified fields are internally consistent. Output test report Figure 1 ANSI INCITS 377-2004 BDR File Format Level 1 and Level 2 Conformance Test Flow This testing methodology can only demonstrate nonconformity (i.e., if errors are found, nonconformanc

35、e of the IUT shall be proven), but the absence of errors does not necessarily imply the converse. This test method is intended to provide a reasonable level of confidence and practical assurance that the IUT conforms to the base standard. To guarantee such conformity, a very exhaustive testing would

36、 be required, which is impractical for both technical and economic reasons. 6.3.2 Test Method Implementation Requirements A test method implementation shall document that it conforms to this standard by including the following: a) A CTS conformant to ANSI INCITS 377-2004 that includes documentation

37、of the test suite, describing test categories, test objectives for each individual test, instructions on how to execute the test suite, and the expected results of executing the individual tests. The CTS shall be capable of executing the test script sets, capturing the returned results, evaluating t

38、he results, and reporting them in a human-readable form. b) Documented test cases that shall sufficiently assure conformity to the requirements as specified in the base standard. The test cases shall be formally represented in the form of test assertions, preferably using a test assertion language,

39、which can be submitted to the CTS for subsequent execution. c) A Conformance Testing Procedure, which shall identify and define all the activities necessary to prepare for conformance testing, perform the conformance testing and report the test results. The procedure shall be detailed enough so that

40、 testing of a given IUT can be repeated with no significant changes in test results. The procedure shall also identify necessary administrative processes that may include record keeping, personnel, security, and other requirements. A test method implementation shall use the required assertion defini

41、tions, types, syntax, and constructs specified in this standard as applicable. Also, it shall use test result codes specified in this standard. Copyright American National Standards Institute Provided by IHS under license with ANSI Not for ResaleNo reproduction or networking permitted without licens

42、e from IHS-,-,-INCITS 423.3-2009 9 6.3.3 Conformance Testing Process The conformance testing process is the complete process of accomplishing of all conformance testing activities necessary to assess the conformity of an IUT to the requirements as specified in ANSI INCITS 377-2004. The conformance t

43、esting process involves three phases: 1) Preparation for testing, which includes the collection of the necessary information that is related to the submitted finger pattern records that needs to be included in the test report. 2) Test execution, which includes execution of the CTS and recording the

44、observed test results in conformity test log(s). The results of conformance testing shall apply only to the IUT and the test environment for which the tests are run. 3) Test report production, which includes the recording of all events that occur during the execution of each test case, including all

45、 test outcomes and test verdicts. To achieve the objective of credible conformance testing, the result of executing a test case on an IUT should be the same whenever it is performed. It may be necessary to review the observed test outcomes in order to make sure that all procedures have been correctl

46、y followed. It is essential that all inputs, outputs, and other test events be logged for each test case being executed with sufficient information to produce a conformity log for each test execution for future reference. 6.4 Test Procedures 6.4.1 General A software product can claim conformance to

47、requirements as specified in ANSI INCITS 377-2004 and document this claim in the FCS as described in 6.1.3. Conformance of a software product with respect to the ability to produce finger pattern data records shall be verified by testing the conformance of a reasonable number of data records created

48、 by the product. Please refer to 6.1 of ANSI INCITS 423.1-2008. The product shall be determined to be conformant to the requirements as specified in ANSI INCITS 377-2004 if and only if all those data records (tested using the test assertions specified in Clause 7) have passed the tests. Most software products that process finger pattern data records will emit some form of error message when they detect an invalid input (for example, an error message may be directed to a user through the user interface or may be written to a log file). Conformance testing of software products that