基于Event-B 方法的多应用智能卡的建模与开发

J4 ›› 2014, Vol. 36 ›› Issue (10): 1943-1951.

基于Event-B 方法的多应用智能卡的建模与开发

章玥1,2，郭建1,2，朱晓冉1，王文君1，朱晶洋1，汤家华3，陈峻念3

（1.华东师范大学教育部软硬件协同设计技术与应用工程研究中心，上海 200062;
2.信息网络安全公安部重点实验室，上海 201204;3.上海市社会保障卡服务中心，上海 200233）

收稿日期:2013-04-18 修回日期:2013-06-17 出版日期:2014-10-25 发布日期:2014-10-25
基金资助:
国家自然科学基金资助项目（91118008）；国家973计划资助项目（2011CB302904）；上海市科委资助项目（12511504205）；信息网络安全公安部重点实验室开放课题资助项目（C12604）；上海高校知识服务平台可信物联网产学研联合研发中心（筹）资助项目

Modeling and development of multi-application
smart cards based on Event-B

ZHANG Yue1,2，GUO Jian1,2，ZHU Xiaoran1，WANG Wenjun1，ZHU Jingyang1，TANG Jiahua3，CHEN Junnian3

（1.Software/Hardware Codesign Engineering Research Center,East China Normal University,Shanghai 200062;
2.Key Lab of Information Network Security,Ministry of Public Security,Shanghai 201204;
3.Shanghai Social Security Card Service Center,Shanghai 200233,China）

Received:2013-04-18 Revised:2013-06-17 Online:2014-10-25 Published:2014-10-25

摘要/Abstract

摘要：

Event-B是一种基于集合论和谓词逻辑的形式化系统语言，能够采用精化策略为系统建立逐渐精化的模型。提出了如何将EventB应用到实际工业领域的方法，包括重写需求、建立抽象模型及逐层精化三个步骤。首先从环境、功能、性质三个主要方面重写需求，明确精化策略；然后利用形式化方法建立抽象模型并验证该模型；最后，在正确的抽象模型上按照精化策略添加需求、逐层精化，并对每层模型进行验证，基于满足需求的最后一层模型，可进一步利用工具完成代码自动生成。该方法学采用精化理论，以逐层递增的方式明确被开发系统的需求及性质，并进行形式化建模与验证，确保了模型的正确性。为了说明该方法学的可行性，以真正工业界的多应用智能卡为实例，基于Event-B方法及其工具平台Rodin给出了该方法在实际建模及验证过程中的应用。

关键词: 智能卡, Event-B, 精化, 定理证明

Abstract:

Event-B is a formal modeling language based on set theory and predicate logic, within which hierarchical models can be established by refinement strategy. A method for applying Event-B to practical industry is proposed, which consists of rewriting requirement, establishing abstract model, and step-by-step refining. Firstly, requirements are rewritten from three different views: environmental view, functional view, and property view. During this phase, refinement strategy reflecting model hierarchy is identified. Secondly, formal methods are adopted to establish abstract model and validate the established model. Using well-proved abstract model, requirement appending, model refining and model validating are carried out at the following levels of the model hierarchy according to the refinement strategy. Finally, based on the whole established models corresponding to requirements, implementation codes can be automatically generated by the related tools. With refinement theory adopted in this method, requirements and properties of system under development can be identified in a refinement way and incrementally. Modeling and verification using formal methods guarantees the correctness of models. To illustrate the feasibility of the method, the development of multi-application smart cards is shown as a case study. Application example of the proposed method in practical modeling and validation is given based on Event-B and Rodin platform.

Key words: smart card;EventB;refinement;theory proof

章玥1,2，郭建1,2，朱晓冉1，王文君1，朱晶洋1，汤家华3，陈峻念3. 基于Event-B 方法的多应用智能卡的建模与开发[J]. J4, 2014, 36(10): 1943-1951.

ZHANG Yue1,2，GUO Jian1,2，ZHU Xiaoran1，WANG Wenjun1，ZHU Jingyang1，TANG Jiahua. Modeling and development of multi-application
smart cards based on Event-B [J]. J4, 2014, 36(10): 1943-1951.

参考文献［10］

［1］	Abrial J R. Modeling in EventB: System and software engineering［M］. Cambridge:Cambridge University Press, 2010.
［2］	Abrial J R, Su W, Zhu H. Formalizing hybrid systems with EventB［C］∥Proc of the 3rd International Conference on Abstract State Machines, 2012:178193.
［3］	Damchoom K, Butler M, Abrial J R. Modelling and proof of a treestructured file system in EventB and Rodin［C］∥Proc of the 10th International Conference on Formal Engineering Methods, 2008:2544.
［4］	Shi J, Zhu L, Fang H, et al. xBIL——A hardware resource oriented binary intermediate language［C］∥Proc of 2012 17th International Conference on Engineering of Complex Computer Systems(ICECCS’12), 2012:211219.
［5］	Shi J, He J, Zhu H, et al. ORIENTAIS: Formal verified OSEK/VDX realtime operating system［C］∥ Proc of 2012 17th International Conference on Engineering of Complex Computer Systems(ICECCS’12), 2012:293301.
［6］	Shi J, Zhu L, Huang Y, et al. Binary code level verification for interrupt safety properties of realtime operating system［C］∥Proc of 2012 6th International Symposium on Theoretical Aspects of Software Engineering(TASE’12), 2012:223226.
［7］	Yin L, Mallet F, Liu J. Verification of MARTE/CCSL time requirements in Promela/SPIN［C］∥Proc of 2011 16th International Conference on Engineering of Complex Computer Systems(ICECCS’11), 2011:6574.
［8］	Lei Yang, Hu Xiaohui, Chen Yong, et al. Formal model of vehicle onboard controller system based on EventB［J］. Digital Technology and Application, 2012(8):13. (in Chinese)
［9］	Su W, Yang F, Wu X, et al. Formal approaches to mode conversion and positioning for vehicle system［C］∥Proc of 2011 IEEE 35th Annual Conference Workshops on Computer Software and Applications(COMPSACW’11), 2011: 416421.
［10］	Qi Yanxia, Shen Huili, Chen Zhaohui, et al. EventB interpretation for space aircraft description language model［J］. Journal of Computer Applications, 2012,32(12): 35253528.(in Chinese)
［11］	Stepney S, Cooper D, Woodcock J. An electronic purse: Specification, refinement and proof［R］. Technical monograph PRG126, Oxford :Oxford University Computing Laboratory, 2000.
［12］	EventB ［EB/OL］. ［20130420］. http:∥www.eventb.org.
［13］	ISO/IEC 78164:(2005), Identification cards—Integrated circuit cards—Part4: Organization, security and commands for interchange［S］. Switzerland：ISO/IEC,2005.
	附中文参考文献：
［8］	雷洋, 胡晓辉, 陈永, 等. 基于 EventB 的列车车载控制器系统的形式化建模［J］. 数字技术与应用, 2012 (8):13.
［10］	綦艳霞, 沈慧丽, 陈朝晖, 等. SPARDL 模型的 EventB 解释［J］. 计算机应用, 2012, 32(12): 35253528.

[1]	刘永梅, 王国辉, 关永, 张景芝, 施智平, 董璐. 格林定理的形式化及其初步应用[J]. 计算机工程与科学, 2023, 45(07): 1178-1187.
[2]	姚袭欣, 章博, 陈香兰, 乔磊, 李曦. 一种基于Event-B语言的时间触发系统建模方法[J]. 计算机工程与科学, 2023, 45(04): 613-621.
[3]	曹守启, 何鑫, 刘婉荣. 一种改进的远程用户身份认证方案[J]. 计算机工程与科学, 2021, 43(11): 1960-1965.
[4]	曹守启，孙青，曹莉凌. 动态ID多因素远程用户身份认证方案的改进[J]. 计算机工程与科学, 2019, 41(04): 633-640.
[5]	胡启敏1,2,薛锦云 1,2,游珍1,2,程着1,2. PAR平台中若干软件构件形式化验证技术研究[J]. 计算机工程与科学, 2018, 40(02): 268-274.
[6]	刘润杰，刘恒超，申金媛. 一种改进的智能卡远程用户匿名认证方案[J]. J4, 2016, 38(03): 465-470.
[7]	付青琴1,昂正全2,袁艳芳1. 一种改进的智能卡数据传输安全策略[J]. J4, 2014, 36(11): 2229-2233.
[8]	黄一平1，农丽萍2，苏检德1. 智能卡COS的快速烧写技术研究与实现[J]. J4, 2014, 36(09): 1650-1655.
[9]	黄朝阳，吴正英，罗少兰. 一种安全高效的智能卡口令认证方案[J]. J4, 2014, 36(09): 1711-1715.
[10]	付青琴1,昂正全2,徐平江1. 一种改进的智能卡认证方法的实现[J]. J4, 2014, 36(01): 94-98.
[11]	张丽娜1，阎文斌2. 网上银行安全支付问题研究[J]. J4, 2013, 35(6): 72-77.
[12]	张君华1,黄志球2,肖芳雄3. 基于抽取-精化的概率系统假设-保证验证[J]. J4, 2013, 35(3): 128-133.
[13]	陈国彬1，任〓强2,张广泉2,3. 一种基于抽象与精化技术的Web服务组合验证方法[J]. J4, 2011, 33(9): 76-80.
[14]	余鹏飞，吴俊军，王同洋，张新访. 基于智能卡技术的移动存储安全管理研究[J]. J4, 2010, 32(4): 29-32.
[15]	吴俊军,罗康,王同洋,张新访. 一种混合模式的智能卡DBMS存储模型研究[J]. J4, 2010, 32(10): 112-116.