A brief presentation on benefits obtained by introducing automated SW quality control in a IT Company and a specific implementation through CAST framework
2. Everyday IT management has to fight
against…
Sloppy Delayed
Development Launch
Unproductive User
Teams Insatisfaction
Poor resource Unpredictable
allocation Disruptions
4. But the results are not the expected!
Service often down
Huge maintainance costs
Bad user experience
Security leaks
And, till now, the measure of root causes
continue to elude most IT organizations!
5. Analysts agree…
“0rganizations will need to invest to deal with increasingly complex distributed applications […] without more
holistic view of software quality, they will not be able to support the ever-increasing maintenance burden”
Predicts 2010. 3 December 2009/ID Number: G00172203, by Tom Murphy
“Organizations should augment existing software testing strategies with assessments of the architectural
health of software to "build in" quality up front.”
Redefining Software Quality, by Melinda-Carol Ballou, 2009
Functional Testing Tools Are Not Enough!
The Testing Tools Landscape: 2010 - April 27, 2010, by Margo Visitacion and Mike Gualtieri
6. That’s why ISO published regulations
9126-3 for Software Internal Quality
Software
Quality Metrics Tech Criteria Health Factors
Quality
SQL Complexity
Class complexity (Inh. depth)
Complexity Performance
Class complexity (Inh. width)
Recursive calls
Method complexity Risk
SQL table use Robustness drivers
Architecture
Coupling Distribution
File conformity Security
Dead code
Structuredness Programming
Controled data access Practices
Empty code
Modularity
Encapsulation conformity Naming
Inheritance Conventions
Package naming
Class naming
Interface naming
Transferability
Package comment Documentation
Class comment Cost
Method comment drivers
Package size Changeability
Class size (methods) Size
Interface size
7. And Quality Measures help
To Assess the status of your IT Portfolio
To Govern IT
To Improve Deliverables
9. With NessPRO & CAST!
We offer:
Automated and complete software analysis
An unbiased assessment on Quality and Sizing
Trends e Benchmarks
A drill down to the roots of the pain and
a plan to uproot it
Improve your software quality
reducing costs of ownership!
10. Improve Performance
To have…
A better user experience
An increase in users’ productivity
Better resouces allocation
15. Reduce Risks
Some examples
Robustness: we check data corruption
► Is the data access unambiguous?
► Are all exceptions managed?
Performance: we check code efficiency
► Is String concatenation used in loops?
► How complex SQL query are used?
Security: we check uncontrolled data access
► Is a Data Access Layer present?
► Is data accessed directly?
16. Control Costs
Some examples
Changeability: how much complex is the software?
► We check cyclomatic complexity
► We check Fan-in, Fan-out
Transferability: is the code easy to understand?
► We check naming convention
► We check the relation between lines of code and lines of
comment
► We build application blueprints
17. And…
We check how much a quality pitfall propagates in
your whole system through the Risk Factor
We support the most used Java Frameworks out-of-
the-box
We cover CWE, OWASP & SANS
Top 25
26. Whatever your role…
we have a view that suits you!
CIO & IT Managers QA Teams
Responsible for Outsourcing Technical Architect
27. To get to the root of the pain…
High level Analysis & Alert
Issue Identification
and Action Items
App profile
App health factor view
Tends and benchmarking
List of non compliant items
per type of problem
and severity ranking
…and take Action!
28. Analyze your whole system…
Presentation
Tier
Business
Logic Tier
Data Tier
…not only the single technologies on which it is built
29. Get questions answered
« How is that table « What’s the impact on system
accessed? » if we change that field? »
« How those application communicate? »
31. Services offered to Technical teams
Some examples
On-going
► Defect Prevention Service
► Knowledge Discovery Service
One-off
► Audit Service
► Transition Service
32. Services offered to Management
Some examples
On-going
► Quality Monitoring Service
► Ongoing Arbitrage Service
One-off
► Transformation Service
► Due diligence Service
33. Adopt CAST…
You will get
Management Control risk
Visibility Reduce ownership costs
Application Increase SLAs
Quality Boost your brand image
Team Increase IT agility
Performance Invest in innovation