Conformance Mark Skall Lynne S. Rosenthal National Institute of Standards and Technology

Slides:



Advertisements
Similar presentations
Credibility and Competitive Advantage - Thoughts on OLIF Conformance Assessment - Christian Lieske SAP AG - GBU Application Integration – MultiLingual.
Advertisements

EHR-S Conformance Considerations Lynne S. Rosenthal National Institute of Standards and Technology August 2004.
International Organization
The International Security Standard
Software Quality Assurance Plan
CS 411W - Notes Product Development Documentation.
Accreditation 1. Purpose of the Module - To create knowledge and understanding on accreditation system - To build capacity of National Governments/ focal.
Writing Quality Specifications July 9, 2004 Mark Skall Acting Director, Information Technology Laboratory National Institute of Standards and Technology.
U.S. Department of the Interior U.S. Geological Survey USGS Digital Aerial Mapping Camera Status CRSS/ASPRS Specialty Conference October 2007 USGS Remote.
Topic 4 Environmental Management Systems
EMS Auditing Definitions
Documentation Testing
1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.
Purpose of the Standards
RC14001 ® Update GPCA Responsible Care Committee September 23, 2013.
ISO 9000 Certification ISO 9001 and ISO
TC176/IAF ISO 9001:2000 Auditing Practices Group.
ISO 9001:2015 Revision overview December 2013
ISO 9001:2015 Revision overview - General users
QUALITY MANAGEMENT SYSTEM ACCORDING TO ISO
ISO STANDARDS TRAINING & CONSULTING
SAML Conformance Sub-Group Report Face-to-face meeting August 29, 2001 Bob Griffin.
Approaches for forest certification System versus performance ? Presentation prepared by Pierre Hauselmann for the WWF / WB Alliance Capacity building.
S/W Project Management
Copyright Course Technology 1999
How To Apply Quality Management
Chapter 4 Interpreting the CMM. Group (3) Fahmi Alkhalifi Pam Page Pardha Mugunda.
Software Engineering 2003 Jyrki Nummenmaa 1 REQUIREMENT SPECIFICATION Today: Requirements Specification Requirements tell us what the system should.
“Integrating Standards in Practice” 10th Open Forum on Metadata Registries July 9-11, 2007 New York City, NY USA An international conference to share and.
Profiling Metadata Specifications David Massart, EUN Budapest, Hungary – Nov. 2, 2009.
TFTM Interim Trust Mark/Listing Approach Paper Analysis of Current Industry Trustmark Programs and GTRI PILOT Approach Discussion Deck TFTM Committee.
A2LA IT Program Update 2008 Assessor Conclave. A2LA IT Accreditation Scope - Any aspect of a hardware and or software environment that is under test Scope.
Conformance Lynne S. Rosenthal Mary Brady National Institute of Standards and Technology
OpenSG Conformity IPRM Overview July 20, ITCA goals under the IPRM at a high level and in outline form these include: Organize the Test and Certification.
Development Process and Testing Tools for Content Standards OASIS Symposium: The Meaning of Interoperability May 9, 2006 Simon Frechette, NIST.
ISO 9001:2008 to ISO 9001:2015 Summary of Changes
SAIF Effects on Interoperability Reviews WG Baris E. Suzek May, 11, 2010.
ISO 9001 – an overview Tor Stålhane IDI / NTNU. ISO 9001 and software development ISO 9001 is a general standard – equally applicable to software development.
1 PED: equivalent overall level of safety PED Annex 1, clause 7: The following provision apply as a general rule. However, where they are not applied,
Professional Certificate in Electoral Processes Understanding and Demonstrating Assessment Criteria Facilitator: Tony Cash.
UNECE – SIDA “ SOUTH EAST EUROPE REGULATORY PROJECT” FIRST MEETING OF REGULATORS FROM SOUTH EAST EUROPEAN COUNTRIES PRESENTATIONFROM THE REPUBLIC OF MACEDONIA.
QUALITY MANAGEMENT STATEMENT
COBIT®. COBIT® - Control Objectives for Information and related Technology. C OBI T was initially created by the Information Systems Audit & Control Foundation.
Interoperability Testing. Work done so far WSDL subgroup Generated Web Service Description with aim for maximum interoperability between various SOAP.
SAM-101 Standards and Evaluation. SAM-102 On security evaluations Users of secure systems need assurance that products they use are secure Users can:
Next VVSG Training Standards 101 October 15-17, 2007 Mark Skall National Institute of Standards and Technology
Manufacturing Systems Integration Division Development Process and Testing Tools for Content Standards Simon Frechette National Institute of Standards.
Project Management Strategies Hidden in the CMMI Rick Hefner, Northrop Grumman CMMI Technology Conference & User Group November.
SAIF Effects on Interoperability Reviews WG Baris E. Suzek May, 25, 2010.
Promoting Web services interoperability across platforms, applications and programming languages Overview Presentation September, 2003.
1 Testing for Medical Devices Communications Lynne Rosenthal National Institute of Standards and Technology Information Technology Laboratory
Eurostat Sharing data validation services Item 5.1 of the agenda.
TC176/IAF ISO 9001:2000 Auditing Practices Group.
Quality Management Systems Advice from ISO/TC 176 for Sector-specific applications.
What is a software? Computer Software, or just Software, is the collection of computer programs and related data that provide the instructions telling.
Technology Services – National Institute of Standards and Technology Conformity Assessment ANSI-HSSP Workshop Emergency Communications December 2, 2004.
Internal Audit Quality Assessment Guide
Model Checking Early Requirements Specifications in Tropos Presented by Chin-Yi Tsai.
ISO Certification For Laboratory Accreditation ISO Certification For Laboratory Accreditation.
A LOOK AT AMENDMENTS TO ISO/IEC (1999) Presented at NCSLI Conference Washington DC August 11, 2005 by Roxanne Robinson.
Software Engineering — Software Life Cycle Processes — Maintenance
Introducing ICA-Requirements Module 3: Functional Requirements for Records in Business Systems
SYSTEM ANALYSIS AND DESIGN
Training Course on Integrated Management System for Regulatory Body
Quality management standards
Introduction to Software Testing
METHOD VALIDATION: AN ESSENTIAL COMPONENT OF THE MEASUREMENT PROCESS
Taking the STANDARDS Seriously
The COSMO Coding Standards Some Highlights
Nonconformity Writing
Presentation transcript:

Conformance Mark Skall Lynne S. Rosenthal National Institute of Standards and Technology

Introduction NIST works with industry to develop standards and tests to improve the quality of software and achieve interoperable solutions Many years experience with –Formal standards organizations and Consortia –Developing conformance test suites, tools, reference implementations –Developing validation and certification testing programs

Today’s Objectives Present basic information about conformance and conformance related topics Achieve a common understanding Lead a discussion about how conformance applies to ebXML Present overview of TA Spec. Conformance Clause Offer our assistance to WG in discussing and developing conformance for their Spec.

Outline Background Terminology Conformance Testing –Testing Methodology –Testing Ingredients ebXML Issues TA Conformance Guidance Conformance clause Conformance Testing Test suitesTest tools Validation Procedures, reporting Certification CertificatesBranding

Background Standards not enough to ensure interoperability –Standards only meaningful if implemented in a consistent way Need to ensure that implementations adhere to the standard –What is expected of implementations in order to claim conformance – i.e., what are the requirements? –How will we know if an implementation conforms? test suites, test tools Different ideas of what conformance is –Past experience may have affected view of conformance

Terminology Conformance Specification Conformance Clause Conformance Testing test suite, test tools Validation process, reporting Certification certificate, brand

Terminology - Conformance CONFORMANCE - the fulfillment of a product, process or service of specified requirements (ISO Guide 2) –These requirements are specified in a standard or specification as part of a conformance clause or in the body of the specification CONFORMANCE CLAUSE - a section of a specification that states all the requirements or criteria that must be satisfied to claim conformance

Terminology - Conformance Testing CONFORMANCE TESTING – a way to verify implementations of a specification to determine whether or not deviations from the specifications exist (through the use of test suites). –tests capture the technical requirements within the specification –testing is bound in scope by the specification –internal structure of product-under-test not accessible (black box testing) Necessary, but not sufficient, for interoperability Note: referred to as conformity assessment in ISO Guide 2

Testing Methodology Falsification Testing –find errors by means of experimentation –show presence of errors not their absence –prove non-conformance; can never prove conformance Tests built to check for: –required functionality has been implemented (basic tests) –logical errors by misunderstanding requirements –errors from boundary conditions and divergence –common programming errors

Conformance Tests Requirements 100% non conforming ???? conforming Test programs Specification Implementation

Terminology - Testing Process VALIDATION - process necessary to perform conformance testing in accordance with a prescribed procedure and official test suite –ensures that testing can be repeatable and reproducible –ensures that conclusions are consistent with facts presented in the evaluation CERTIFICATION - acknowledgement that a validation was completed and the criteria established by CIO for issuing certificates (brands) was met.

Testing Ingredients Standard Conformance clause Conformance Testing Test assertions Test suite (test software, test scripts, test criteria) Validation Process - policy and procedures for testing Certification qualified bodies to do the testing and certification control board - advisory and arbiter

ebXML Conformance Issues Conformance Clause should address? 1. What Needs to Conform? 2. Profiles and Levels 3. Extensions 4. Implementation Defined Features 5. Alternate approaches Scope –what should be addressed? a. Assertions b. Test Suite c. Testing Service d. Certification

ebXML Issues - Conformance Clause address: 1. What needs to conform –identify the ‘class of products’ that will be developed –what are the conditions that need to be met in order to claim conformance –Examples: registry, messaging service, business service interface, ebXML message, testing partner agreements

ebXML Issues - Conformance Clause address: 2. Profiles and Levels –Are profiles and/or levels needed? –Should a profile have its own levels? –minimal requirements (core) Profile is a subset of the overall specifications that includes all of the functionality necessary to satisfy the requirements of a particular community of users. Levels are nested subsets of the specifications. Level 1 = core that all must implement; subsequent levels include lower level + added functionality

ebXML Issues - Conformance Clause address: 3. Extensions –If allowed: shall not re-define semantics of existing functions shall not cause standard-conforming functions to execute incorrectly –Standardized method for extensions? Define the mechanism for extending the specification, so extended in a standard manner –Register of extensions document parallel to but distinct from specification list of recognized, published extensions may eventually migrate into future versions

ebXML Issues - Conformance Clause address: 4. Implementation Defined Features –may want to address implementation dependent ranges, min/max allowed values 5. Alternative Approaches –specification may describe several different ways to accomplish an operation (e.g., choice of bindings) –specify whether or not all approaches need to be implemented

ebXML Issues - Scope Should ebXML include or address: a. Assertions (test requirements) - Should assertions be part of the standard? b. Test Suite - Prescribe a test methodology? - How test suite will be delivered/used (e.g., web based, downloadable)? c. Testing Service - Guidelines for establishing a test service d. Certification - Guidelines for issuing certificates

Testing Program - Testing Program - Considerations How formal should testing be? –Self testing, 3rd party testing –Branding/certificates Testing program –Who will ‘own’ the testing program –Policy and procedures –Testing laboratory –Issue Certificates –Control board –Test suite maintenance

TA Conformance Guidance General conformance guidelines for ebXML All ebXML specs shall contain a conformance clause –Can have levels of ebXML conformance - hierarchical –Explains how conformance requirements can be expressed (mandatory, conditional, optional) Encourage use of publicly available test suites

Discussion

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.