Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 3 Software process Structure Chapter 3 Software process Structure Moonzoo Kim KAIST 1.

Published byBertina Wade Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 3 Software process Structure Chapter 3 Software process Structure Moonzoo Kim KAIST 1."— Presentation transcript:

1 Chapter 3 Software process Structure Chapter 3 Software process Structure Moonzoo Kim KAIST 1

2 The CMMI (Ch. 37) (1/3) 2 CMMI stands for “Capability Maturity Model Integrated” CMMI stands for “Capability Maturity Model Integrated” Remember that the process repeatability and predictability are called “capability maturity” Remember that the process repeatability and predictability are called “capability maturity” By the mid-1990’s, the five-level world view of Capability Maturity Model for Software became dominant and there appeared too many CMMs for [*] By the mid-1990’s, the five-level world view of Capability Maturity Model for Software became dominant and there appeared too many CMMs for [*] Therefore, U.S. Defense Department and Software Engineering Institute @ CMU developed a common and extensible framework, which is CMMI, a second generation of CMMs Therefore, U.S. Defense Department and Software Engineering Institute @ CMU developed a common and extensible framework, which is CMMI, a second generation of CMMs Excerpted from “CMMI Survival Guide” by S.Garcia and R.Turner

3 The CMMI (2/3) 3 Process improvement is to incorporate individual wisdom/guidance into the way the organization works Process improvement is to incorporate individual wisdom/guidance into the way the organization works 1. Individual learning: Knowledge resides within individuals and may be informally shared 2. Group learning: Knowledge is explicitly collected and shared within groups such as teams or projects, supporting better performance within the group 3. Organizational learning: Group-based knowledge is collected and standardized, and mechanisms exist that encourage its use across related groups 4. Quantitative learning: The organizational knowledge tranfer and use are measured, and decisions are made based on empirical information 5. Strategic learning: Knowledge collection, transfer, and use are rapid across the organization

4 The CMMI (3/3) The CMMI defines each process area in terms of “specific goals” and the “specific practices” required to achieve these goals. The CMMI defines each process area in terms of “specific goals” and the “specific practices” required to achieve these goals. Level 0: Incomplete Level 0: Incomplete Level 1: Performed Level 1: Performed Level 2: Managed Level 2: Managed Level 3: Defined Level 3: Defined Level 4: Quantitatively managed Level 4: Quantitatively managed Level 5: Optimized Level 5: Optimized Specific goals establish the characteristics that must exist if the activities implied by a process area are to be effective. Specific goals establish the characteristics that must exist if the activities implied by a process area are to be effective. Specific practices refine a goal into a set of process-related activities. Specific practices refine a goal into a set of process-related activities. 4

5 Process Assessment The process should be assessed to ensure that it meets a set of basic process criteria that have been shown to be essential for a successful software engineering The process should be assessed to ensure that it meets a set of basic process criteria that have been shown to be essential for a successful software engineering. Many different assessment options are available: Many different assessment options are available: SCAMPI (Standard CMMI Assessment Method for Process Improvement) SCAMPI (Standard CMMI Assessment Method for Process Improvement) CBA IPI (CMM-Based Appraisal for Internal Process Improvement) CBA IPI (CMM-Based Appraisal for Internal Process Improvement) SPICE (ISO/IEC15504) SPICE (ISO/IEC15504) ISO 9001:2000 ISO 9001:2000 5

6 Assessment and Improvement 6

7 Personal Software Process (PSP) Recommends five framework activities: Recommends five framework activities: Planning Planning High-level design High-level design High-level design review High-level design review Development Development Postmortem Postmortem stresses the need for each software engineer to identify errors early and as important, to understand the types of errors stresses the need for each software engineer to identify errors early and as important, to understand the types of errors 7

8 Team Software Process (TSP) Each project is “launched” using a “script” that defines the tasks to be accomplished Each project is “launched” using a “script” that defines the tasks to be accomplished Teams are self-directed Teams are self-directed Measurement is encouraged Measurement is encouraged Measures are analyzed with the intent of improving the team process Measures are analyzed with the intent of improving the team process 8

9 Similar International Standards Evaluation Assurance Level (EAL) Evaluation Assurance Level (EAL) The Evaluation Assurance Level (EAL1 through EAL7) of an IT product or system is a numerical grade assigned following the completion of a Common Criteria (CC) security evaluation The Evaluation Assurance Level (EAL1 through EAL7) of an IT product or system is a numerical grade assigned following the completion of a Common Criteria (CC) security evaluation The intent of the higher levels is to provide higher confidence that the system's principal security features are reliably implemented. The intent of the higher levels is to provide higher confidence that the system's principal security features are reliably implemented. The EAL level does not measure the security of the system itself, it simply states at what level the system was tested to see if it meets all the requirements of its protection profile The EAL level does not measure the security of the system itself, it simply states at what level the system was tested to see if it meets all the requirements of its protection profile To achieve a particular EAL, the computer system must meet specific assurance requirements, involving design documentation, design analysis, functional testing, or penetration testing. To achieve a particular EAL, the computer system must meet specific assurance requirements, involving design documentation, design analysis, functional testing, or penetration testing. 9 Quoted from Wikepedia

10 EAL 7 Levels 7 Levels 7 Levels EAL1: Functionally Tested EAL1: Functionally Tested EAL2: Structurally Tested EAL2: Structurally Tested EAL3: Methodically Tested and Checked EAL3: Methodically Tested and Checked EAL4: Methodically Designed, Tested, and Reviewed EAL4: Methodically Designed, Tested, and Reviewed Commercial operating systems that provide conventional, user- based security features are typically evaluated at EAL4 Commercial operating systems that provide conventional, user- based security features are typically evaluated at EAL4 AIX, HP-UX, FreeBSD, Solaris, Novell NetWare, SUSE Linux Enterprise Server 9, SUSE Linux Enterprise Server 10, Windows 2000 Service Pack 3, and Red Hat Enterprise Linux 5 AIX, HP-UX, FreeBSD, Solaris, Novell NetWare, SUSE Linux Enterprise Server 9, SUSE Linux Enterprise Server 10, Windows 2000 Service Pack 3, and Red Hat Enterprise Linux 5 10

11 EAL 7 Levels (cont.) 7 Levels 7 Levels EAL5: Semiformally Designed and Tested EAL5: Semiformally Designed and Tested Numerous smart card devices have been evaluated at EAL5 Numerous smart card devices have been evaluated at EAL5 XTS-400 (STOP 6) is a general-purpose operating system at EAL5 augmented. XTS-400 (STOP 6) is a general-purpose operating system at EAL5 augmented. LPAR on IBM System z is EAL5 Certified. LPAR on IBM System z is EAL5 Certified. EAL6: Semiformally Verified Design and Tested EAL6: Semiformally Verified Design and Tested Ex> Green Hills Software INTEGRITY-178B OS Ex> Green Hills Software INTEGRITY-178B OS EAL7: Formally Verified Design and Tested EAL7: Formally Verified Design and Tested Ex> Tenix Interactive Link Data Diode Device Ex> Tenix Interactive Link Data Diode Device 11

12 CC Evaluation Costs 12

Download ppt "Chapter 3 Software process Structure Chapter 3 Software process Structure Moonzoo Kim KAIST 1."

Similar presentations

©2006 OLC 1 Process Management: The Foundation for Achieving Organizational Excellence Process Management Implementation Worldwide.

©2006 OLC 1 Process Management: The Foundation for Achieving Organizational Excellence Process Management Implementation Worldwide.
Chapter 2 Process Models

Chapter 2 Process Models
May 14, 2015 1 May 14, 2015May 14, 2015May 14, 2015 Azusa, CA Sheldon X. Liang Ph. D. Software Engineering in CS at APU Azusa Pacific University, Azusa,

May 14, May 14, 2015May 14, 2015May 14, 2015 Azusa, CA Sheldon X. Liang Ph. D. Software Engineering in CS at APU Azusa Pacific University, Azusa,
These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.

These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.
CS487 Software Engineering Omar Aldawud

CS487 Software Engineering Omar Aldawud
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 28 Slide 1 Process Improvement.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 28 Slide 1 Process Improvement.
Chapter 3 The Structure of the CMM

Chapter 3 The Structure of the CMM
Software Engineering: A Practitioner’s Approach, 6/e Chapter 2 Process: A Generic View copyright © 1996, 2001, 2005 R.S. Pressman & Associates, Inc.

Software Engineering: A Practitioner’s Approach, 6/e Chapter 2 Process: A Generic View copyright © 1996, 2001, 2005 R.S. Pressman & Associates, Inc.
These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.

These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.
Organizational Project Management Maturity: Roadmap to Success

Organizational Project Management Maturity: Roadmap to Success
These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.

These courseware materials are to be used in conjunction with Software Engineering: A Practitioner’s Approach, 6/e and are provided with permission by.
Fraud Prevention and Risk Management

Fraud Prevention and Risk Management
Chapter : Software Process

Chapter : Software Process
Process: A Generic View

Process: A Generic View
Process: A Generic View n A software process  is a roadmap to building high quality software products.  provides a framework for managing activities.

Process: A Generic View n A software process  is a roadmap to building high quality software products.  provides a framework for managing activities.
1 Software Engineering Muhammad Fahad Khan Software Engineering Muhammad Fahad Khan University Of Engineering.

1 Software Engineering Muhammad Fahad Khan Software Engineering Muhammad Fahad Khan University Of Engineering.
Chapter 10.

Chapter 10.
Capability Maturity Model. Reflection Have you ever been a part of, or observed, a “difficult” software development effort? How did the difficulty surface?

Capability Maturity Model. Reflection Have you ever been a part of, or observed, a “difficult” software development effort? How did the difficulty surface?
Chapter 2 Software Process: A Generic View

Chapter 2 Software Process: A Generic View
Chapter 2 Process: A Generic View

Chapter 2 Process: A Generic View

Similar presentations

Ads by Google