SlideShare a Scribd company logo

NessPRO Italy on CAST

Ernesto Di Mauro
Ernesto Di Mauro

A brief presentation on benefits obtained by introducing automated SW quality control in a IT Company and a specific implementation through CAST framework

1 of 34
Application Intelligence with
Everyday IT management has to fight against… Sloppy Delayed Development Launch Unproductive User Teams Insatisfaction Poor resource Unpredictable allocation Disruptions
Often the battle is won… The software is delivered!
But the results are not the expected! Service often down Huge maintainance costs Bad user experience Security leaks And, till now, the measure of root causes continue to elude most IT organizations!
Analysts agree… “0rganizations will need to invest to deal with increasingly complex distributed applications […] without more holistic view of software quality, they will not be able to support the ever-increasing maintenance burden” Predicts 2010. 3 December 2009/ID Number: G00172203, by Tom Murphy “Organizations should augment existing software testing strategies with assessments of the architectural health of software to "build in" quality up front.” Redefining Software Quality, by Melinda-Carol Ballou, 2009 Functional Testing Tools Are Not Enough! The Testing Tools Landscape: 2010 - April 27, 2010, by Margo Visitacion and Mike Gualtieri
That’s why ISO published regulations 9126-3 for Software Internal Quality Software Quality Metrics Tech Criteria Health Factors Quality SQL Complexity Class complexity (Inh. depth) Complexity Performance Class complexity (Inh. width) Recursive calls Method complexity Risk SQL table use Robustness drivers Architecture Coupling Distribution File conformity Security Dead code Structuredness Programming Controled data access Practices Empty code Modularity Encapsulation conformity Naming Inheritance Conventions Package naming Class naming Interface naming Transferability Package comment Documentation Class comment Cost Method comment drivers Package size Changeability Class size (methods) Size Interface size
And Quality Measures help To Assess the status of your IT Portfolio To Govern IT To Improve Deliverables
But… How?
With NessPRO & CAST! We offer: Automated and complete software analysis An unbiased assessment on Quality and Sizing Trends e Benchmarks A drill down to the roots of the pain and a plan to uproot it Improve your software quality reducing costs of ownership!
Improve Performance To have… A better user experience An increase in users’ productivity Better resouces allocation
Improve Robustness To have… Greater SLAs Less risk of data loss Reduced ownership costs
Improve Security To have… Compliance to ww standards (OWASP, SOX) Less risk of financial & image damages ‘customer confidence’
Better Transferability Means… No Vendor Lock-in Faster Team-rotation Agility in responding to Business requests
Better Changeability Means… Reduced ownership costs Easily change/upgrade applications Increased application lifetime
Reduce Risks Some examples Robustness: we check data corruption ► Is the data access unambiguous? ► Are all exceptions managed? Performance: we check code efficiency ► Is String concatenation used in loops? ► How complex SQL query are used? Security: we check uncontrolled data access ► Is a Data Access Layer present? ► Is data accessed directly?
Control Costs Some examples Changeability: how much complex is the software? ► We check cyclomatic complexity ► We check Fan-in, Fan-out Transferability: is the code easy to understand? ► We check naming convention ► We check the relation between lines of code and lines of comment ► We build application blueprints
And… We check how much a quality pitfall propagates in your whole system through the Risk Factor We support the most used Java Frameworks out-of- the-box We cover CWE, OWASP & SANS Top 25
Take finally control of your IT… …through our simple and clear Dashboard
Increase your business performance Business Value problems vs Risks
Control trends Projects trends and evolulion
Forecast possible problems Causes of probable problems
Find pitfalls Applications Health
Monitor technologies Sizing and KPI
Control Outsourced deliverables Compliance to Objectives
Prevent quality drifts Increase in Complexity
Whatever your role… we have a view that suits you! CIO & IT Managers QA Teams Responsible for Outsourcing Technical Architect
To get to the root of the pain… High level Analysis & Alert Issue Identification and Action Items App profile App health factor view Tends and benchmarking List of non compliant items per type of problem and severity ranking …and take Action!
Analyze your whole system… Presentation Tier Business Logic Tier Data Tier …not only the single technologies on which it is built
Get questions answered « How is that table « What’s the impact on system accessed? » if we change that field? » « How those application communicate? »
A flexible Architecture… Analyze DASHBOARD Blueprints Aggregate Documentation Reports
Services offered to Technical teams Some examples On-going ► Defect Prevention Service ► Knowledge Discovery Service One-off ► Audit Service ► Transition Service
Services offered to Management Some examples On-going ► Quality Monitoring Service ► Ongoing Arbitrage Service One-off ► Transformation Service ► Due diligence Service
Adopt CAST… You will get Management Control risk Visibility Reduce ownership costs Application Increase SLAs Quality Boost your brand image Team Increase IT agility Performance Invest in innovation
Thank you!

Recommended

What is system level analysis
What is system level analysisWhat is system level analysis
What is system level analysis
CAST
 
V-Empower Services And Solutions
V-Empower Services And SolutionsV-Empower Services And Solutions
V-Empower Services And Solutionsguest609a5ed
 
Cast Application Intelligence Platform
Cast Application Intelligence PlatformCast Application Intelligence Platform
Cast Application Intelligence PlatformJohn Fotiadis ✔️
 
Managing Software Risk with CAST
Managing Software Risk with CASTManaging Software Risk with CAST
Managing Software Risk with CAST
CAST
 
Process Improvement for better Software Technical Quality under Global Crisis...
Process Improvement for better Software Technical Quality under Global Crisis...Process Improvement for better Software Technical Quality under Global Crisis...
Process Improvement for better Software Technical Quality under Global Crisis...
Optimyth Software
 
Basics of se
Basics of seBasics of se
Basics of seRevi Shahini
 
Careers in CIS
Careers in CISCareers in CIS
Careers in CIS
Mark Frydenberg
 
CAST Architecture Checker
CAST Architecture CheckerCAST Architecture Checker
CAST Architecture Checker
CAST
 

Recommended

What is system level analysis
What is system level analysisWhat is system level analysis
What is system level analysis
CAST
 
V-Empower Services And Solutions
V-Empower Services And SolutionsV-Empower Services And Solutions
V-Empower Services And Solutionsguest609a5ed
 
Cast Application Intelligence Platform
Cast Application Intelligence PlatformCast Application Intelligence Platform
Cast Application Intelligence PlatformJohn Fotiadis ✔️
 
Managing Software Risk with CAST
Managing Software Risk with CASTManaging Software Risk with CAST
Managing Software Risk with CAST
CAST
 
Process Improvement for better Software Technical Quality under Global Crisis...
Process Improvement for better Software Technical Quality under Global Crisis...Process Improvement for better Software Technical Quality under Global Crisis...
Process Improvement for better Software Technical Quality under Global Crisis...
Optimyth Software
 
Basics of se
Basics of seBasics of se
Basics of seRevi Shahini
 
Careers in CIS
Careers in CISCareers in CIS
Careers in CIS
Mark Frydenberg
 
CAST Architecture Checker
CAST Architecture CheckerCAST Architecture Checker
CAST Architecture Checker
CAST
 
SAD Reviewer
SAD ReviewerSAD Reviewer
SAD Reviewer
ermell61
 
Accenture Customer Story_CAST
Accenture Customer Story_CASTAccenture Customer Story_CAST
Accenture Customer Story_CAST
CAST
 
Energy and engineering services leverages growth
Energy and engineering services leverages growthEnergy and engineering services leverages growth
Energy and engineering services leverages growthHazelknight Media & Entertainment Pvt Ltd
 
03 basic concepts
03 basic concepts03 basic concepts
03 basic conceptsMajong DevJfu
 
New IDC Research on Software Analysis & Measurement
New IDC Research on Software Analysis & MeasurementNew IDC Research on Software Analysis & Measurement
New IDC Research on Software Analysis & Measurement
CAST
 
software
softwaresoftware
software
mansab MIRZA
 
The business case for software analysis & measurement
The business case for software analysis & measurementThe business case for software analysis & measurement
The business case for software analysis & measurement
CAST
 
소프트웨어 아키텍처 평가(Atam)
소프트웨어 아키텍처 평가(Atam)소프트웨어 아키텍처 평가(Atam)
소프트웨어 아키텍처 평가(Atam)
영기 김
 
Software Architecture: Test Case Writing
Software Architecture: Test Case WritingSoftware Architecture: Test Case Writing
Software Architecture: Test Case WritingSitdhibong Laokok
 
Design for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and TestersDesign for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and Testers
TechWell
 
Design for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and TestersDesign for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and Testers
TechWell
 
RESUME
RESUMERESUME
RESUMESreenivasan Chendurpandian
 
V-Empower Services And Solutions
V-Empower Services And SolutionsV-Empower Services And Solutions
V-Empower Services And Solutions
Hannan Ahmed
 
Future of Software Analysis & Measurement_CAST
Future of Software Analysis & Measurement_CASTFuture of Software Analysis & Measurement_CAST
Future of Software Analysis & Measurement_CAST
CAST
 
Standardized Risk Measurement for IT Executives 101
Standardized Risk Measurement for IT Executives 101Standardized Risk Measurement for IT Executives 101
Standardized Risk Measurement for IT Executives 101
Konstantin Berger
 
Application Lifecycle Management & VSTS
Application Lifecycle Management & VSTSApplication Lifecycle Management & VSTS
Application Lifecycle Management & VSTS
Microsoft Iceland
 
Database development and security certification and accreditation plan pitwg
Database development and security certification and accreditation plan pitwgDatabase development and security certification and accreditation plan pitwg
Database development and security certification and accreditation plan pitwg
John M. Kennedy
 
Quality & Reliability in Software Engineering
Quality & Reliability in Software EngineeringQuality & Reliability in Software Engineering
Quality & Reliability in Software EngineeringSivaRamaSundar Devasubramaniam
 
#DOAW16 - DevOps@work Roma 2016 - Testing your databases
#DOAW16 - DevOps@work Roma 2016 - Testing your databases#DOAW16 - DevOps@work Roma 2016 - Testing your databases
#DOAW16 - DevOps@work Roma 2016 - Testing your databases
Alessandro Alpi
 
Software engineering
Software engineeringSoftware engineering
Software engineeringNur Aqilah Ahmad Khairi
 
Software Testing
Software Testing Software Testing
Software Testing
Vignesh Suresh
 
Encontrando la Aguja en el Rendimiento de Aplicaciones
Encontrando la Aguja en el Rendimiento de AplicacionesEncontrando la Aguja en el Rendimiento de Aplicaciones
Encontrando la Aguja en el Rendimiento de Aplicaciones
Software Guru
 

More Related Content

What's hot

SAD Reviewer
SAD ReviewerSAD Reviewer
SAD Reviewer
ermell61
 
Accenture Customer Story_CAST
Accenture Customer Story_CASTAccenture Customer Story_CAST
Accenture Customer Story_CAST
CAST
 
New IDC Research on Software Analysis & Measurement
New IDC Research on Software Analysis & MeasurementNew IDC Research on Software Analysis & Measurement
New IDC Research on Software Analysis & Measurement
CAST
 
software
softwaresoftware
software
mansab MIRZA
 
The business case for software analysis & measurement
The business case for software analysis & measurementThe business case for software analysis & measurement
The business case for software analysis & measurement
CAST
 
소프트웨어 아키텍처 평가(Atam)
소프트웨어 아키텍처 평가(Atam)소프트웨어 아키텍처 평가(Atam)
소프트웨어 아키텍처 평가(Atam)
영기 김
 
Software Architecture: Test Case Writing
Software Architecture: Test Case WritingSoftware Architecture: Test Case Writing
Software Architecture: Test Case WritingSitdhibong Laokok
 
Design for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and TestersDesign for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and Testers
TechWell
 
Design for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and TestersDesign for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and Testers
TechWell
 

What's hot (12)

SAD Reviewer
SAD ReviewerSAD Reviewer
SAD Reviewer
 
Accenture Customer Story_CAST
Accenture Customer Story_CASTAccenture Customer Story_CAST
Accenture Customer Story_CAST
 
Energy and engineering services leverages growth
Energy and engineering services leverages growthEnergy and engineering services leverages growth
Energy and engineering services leverages growth
 
03 basic concepts
03 basic concepts03 basic concepts
03 basic concepts
 
New IDC Research on Software Analysis & Measurement
New IDC Research on Software Analysis & MeasurementNew IDC Research on Software Analysis & Measurement
New IDC Research on Software Analysis & Measurement
 
software
softwaresoftware
software
 
The business case for software analysis & measurement
The business case for software analysis & measurementThe business case for software analysis & measurement
The business case for software analysis & measurement
 
소프트웨어 아키텍처 평가(Atam)
소프트웨어 아키텍처 평가(Atam)소프트웨어 아키텍처 평가(Atam)
소프트웨어 아키텍처 평가(Atam)
 
Software Architecture: Test Case Writing
Software Architecture: Test Case WritingSoftware Architecture: Test Case Writing
Software Architecture: Test Case Writing
 
Design for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and TestersDesign for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and Testers
 
Design for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and TestersDesign for Testability: A Tutorial for Devs and Testers
Design for Testability: A Tutorial for Devs and Testers
 
RESUME
RESUMERESUME
RESUME
 

Similar to NessPRO Italy on CAST

V-Empower Services And Solutions
V-Empower Services And SolutionsV-Empower Services And Solutions
V-Empower Services And Solutions
Hannan Ahmed
 
Future of Software Analysis & Measurement_CAST
Future of Software Analysis & Measurement_CASTFuture of Software Analysis & Measurement_CAST
Future of Software Analysis & Measurement_CAST
CAST
 
Standardized Risk Measurement for IT Executives 101
Standardized Risk Measurement for IT Executives 101Standardized Risk Measurement for IT Executives 101
Standardized Risk Measurement for IT Executives 101
Konstantin Berger
 
Application Lifecycle Management & VSTS
Application Lifecycle Management & VSTSApplication Lifecycle Management & VSTS
Application Lifecycle Management & VSTS
Microsoft Iceland
 
Database development and security certification and accreditation plan pitwg
Database development and security certification and accreditation plan pitwgDatabase development and security certification and accreditation plan pitwg
Database development and security certification and accreditation plan pitwg
John M. Kennedy
 
#DOAW16 - DevOps@work Roma 2016 - Testing your databases
#DOAW16 - DevOps@work Roma 2016 - Testing your databases#DOAW16 - DevOps@work Roma 2016 - Testing your databases
#DOAW16 - DevOps@work Roma 2016 - Testing your databases
Alessandro Alpi
 
Software Testing
Software Testing Software Testing
Software Testing
Vignesh Suresh
 
Encontrando la Aguja en el Rendimiento de Aplicaciones
Encontrando la Aguja en el Rendimiento de AplicacionesEncontrando la Aguja en el Rendimiento de Aplicaciones
Encontrando la Aguja en el Rendimiento de Aplicaciones
Software Guru
 
Modern Apps and App Lifecycle
Modern Apps and App LifecycleModern Apps and App Lifecycle
Modern Apps and App Lifecycle
Marc Hoppers
 
A Roadmap to Enterprise Quality
A Roadmap to Enterprise QualityA Roadmap to Enterprise Quality
A Roadmap to Enterprise Quality
Jeff Bramwell
 
Agile Software Architecture
Agile Software ArchitectureAgile Software Architecture
Agile Software Architecture
Chris F Carroll
 
The Magic Of Application Lifecycle Management In Vs Public
The Magic Of Application Lifecycle Management In Vs PublicThe Magic Of Application Lifecycle Management In Vs Public
The Magic Of Application Lifecycle Management In Vs Public
David Solivan
 
Quality software management
Quality software managementQuality software management
Quality software managementArun Kumar
 
Software Security Testing
Software Security TestingSoftware Security Testing
Software Security Testingankitmehta21
 
How to Get Started with DevSecOps
How to Get Started with DevSecOpsHow to Get Started with DevSecOps
How to Get Started with DevSecOps
CYBRIC
 
Introduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptxIntroduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptx
EverestMedinilla2
 
Software Security in the Real World
Software Security in the Real WorldSoftware Security in the Real World
Software Security in the Real WorldMark Curphey
 
Software Quality Architecture And Code Audit
Software Quality Architecture And Code AuditSoftware Quality Architecture And Code Audit
Software Quality Architecture And Code Audit
Xebia IT Architects
 

Similar to NessPRO Italy on CAST (20)

V-Empower Services And Solutions
V-Empower Services And SolutionsV-Empower Services And Solutions
V-Empower Services And Solutions
 
Future of Software Analysis & Measurement_CAST
Future of Software Analysis & Measurement_CASTFuture of Software Analysis & Measurement_CAST
Future of Software Analysis & Measurement_CAST
 
Standardized Risk Measurement for IT Executives 101
Standardized Risk Measurement for IT Executives 101Standardized Risk Measurement for IT Executives 101
Standardized Risk Measurement for IT Executives 101
 
Application Lifecycle Management & VSTS
Application Lifecycle Management & VSTSApplication Lifecycle Management & VSTS
Application Lifecycle Management & VSTS
 
Database development and security certification and accreditation plan pitwg
Database development and security certification and accreditation plan pitwgDatabase development and security certification and accreditation plan pitwg
Database development and security certification and accreditation plan pitwg
 
Quality & Reliability in Software Engineering
Quality & Reliability in Software EngineeringQuality & Reliability in Software Engineering
Quality & Reliability in Software Engineering
 
#DOAW16 - DevOps@work Roma 2016 - Testing your databases
#DOAW16 - DevOps@work Roma 2016 - Testing your databases#DOAW16 - DevOps@work Roma 2016 - Testing your databases
#DOAW16 - DevOps@work Roma 2016 - Testing your databases
 
Software engineering
Software engineeringSoftware engineering
Software engineering
 
Software Testing
Software Testing Software Testing
Software Testing
 
Encontrando la Aguja en el Rendimiento de Aplicaciones
Encontrando la Aguja en el Rendimiento de AplicacionesEncontrando la Aguja en el Rendimiento de Aplicaciones
Encontrando la Aguja en el Rendimiento de Aplicaciones
 
Modern Apps and App Lifecycle
Modern Apps and App LifecycleModern Apps and App Lifecycle
Modern Apps and App Lifecycle
 
A Roadmap to Enterprise Quality
A Roadmap to Enterprise QualityA Roadmap to Enterprise Quality
A Roadmap to Enterprise Quality
 
Agile Software Architecture
Agile Software ArchitectureAgile Software Architecture
Agile Software Architecture
 
The Magic Of Application Lifecycle Management In Vs Public
The Magic Of Application Lifecycle Management In Vs PublicThe Magic Of Application Lifecycle Management In Vs Public
The Magic Of Application Lifecycle Management In Vs Public
 
Quality software management
Quality software managementQuality software management
Quality software management
 
Software Security Testing
Software Security TestingSoftware Security Testing
Software Security Testing
 
How to Get Started with DevSecOps
How to Get Started with DevSecOpsHow to Get Started with DevSecOps
How to Get Started with DevSecOps
 
Introduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptxIntroduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptx
 
Software Security in the Real World
Software Security in the Real WorldSoftware Security in the Real World
Software Security in the Real World
 
Software Quality Architecture And Code Audit
Software Quality Architecture And Code AuditSoftware Quality Architecture And Code Audit
Software Quality Architecture And Code Audit
 

Recently uploaded

State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
Prayukth K V
 
To Graph or Not to Graph Knowledge Graph Architectures and LLMs
To Graph or Not to Graph Knowledge Graph Architectures and LLMsTo Graph or Not to Graph Knowledge Graph Architectures and LLMs
To Graph or Not to Graph Knowledge Graph Architectures and LLMs
Paul Groth
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
DanBrown980551
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
KatiaHIMEUR1
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
RTTS
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
Jemma Hussein Allen
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
Alan Dix
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
Alison B. Lowndes
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
ControlCase
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
BookNet Canada
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
Thijs Feryn
 
Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...
Product School
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Product School
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Product School
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Ramesh Iyer
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Jeffrey Haguewood
 
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdfFIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance
 

Recently uploaded (20)

State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
 
To Graph or Not to Graph Knowledge Graph Architectures and LLMs
To Graph or Not to Graph Knowledge Graph Architectures and LLMsTo Graph or Not to Graph Knowledge Graph Architectures and LLMs
To Graph or Not to Graph Knowledge Graph Architectures and LLMs
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
 
Epistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI supportEpistemic Interaction - tuning interfaces to provide information for AI support
Epistemic Interaction - tuning interfaces to provide information for AI support
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
 
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...Transcript: Selling digital books in 2024: Insights from industry leaders - T...
Transcript: Selling digital books in 2024: Insights from industry leaders - T...
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...Designing Great Products: The Power of Design and Leadership by Chief Designe...
Designing Great Products: The Power of Design and Leadership by Chief Designe...
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
 
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdfFIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
FIDO Alliance Osaka Seminar: FIDO Security Aspects.pdf
 

NessPRO Italy on CAST

  • 2. Everyday IT management has to fight against… Sloppy Delayed Development Launch Unproductive User Teams Insatisfaction Poor resource Unpredictable allocation Disruptions
  • 3. Often the battle is won… The software is delivered!
  • 4. But the results are not the expected! Service often down Huge maintainance costs Bad user experience Security leaks And, till now, the measure of root causes continue to elude most IT organizations!
  • 5. Analysts agree… “0rganizations will need to invest to deal with increasingly complex distributed applications […] without more holistic view of software quality, they will not be able to support the ever-increasing maintenance burden” Predicts 2010. 3 December 2009/ID Number: G00172203, by Tom Murphy “Organizations should augment existing software testing strategies with assessments of the architectural health of software to "build in" quality up front.” Redefining Software Quality, by Melinda-Carol Ballou, 2009 Functional Testing Tools Are Not Enough! The Testing Tools Landscape: 2010 - April 27, 2010, by Margo Visitacion and Mike Gualtieri
  • 6. That’s why ISO published regulations 9126-3 for Software Internal Quality Software Quality Metrics Tech Criteria Health Factors Quality SQL Complexity Class complexity (Inh. depth) Complexity Performance Class complexity (Inh. width) Recursive calls Method complexity Risk SQL table use Robustness drivers Architecture Coupling Distribution File conformity Security Dead code Structuredness Programming Controled data access Practices Empty code Modularity Encapsulation conformity Naming Inheritance Conventions Package naming Class naming Interface naming Transferability Package comment Documentation Class comment Cost Method comment drivers Package size Changeability Class size (methods) Size Interface size
  • 7. And Quality Measures help To Assess the status of your IT Portfolio To Govern IT To Improve Deliverables
  • 8. But… How?
  • 9. With NessPRO & CAST! We offer: Automated and complete software analysis An unbiased assessment on Quality and Sizing Trends e Benchmarks A drill down to the roots of the pain and a plan to uproot it Improve your software quality reducing costs of ownership!
  • 10. Improve Performance To have… A better user experience An increase in users’ productivity Better resouces allocation
  • 11. Improve Robustness To have… Greater SLAs Less risk of data loss Reduced ownership costs
  • 12. Improve Security To have… Compliance to ww standards (OWASP, SOX) Less risk of financial & image damages ‘customer confidence’
  • 13. Better Transferability Means… No Vendor Lock-in Faster Team-rotation Agility in responding to Business requests
  • 14. Better Changeability Means… Reduced ownership costs Easily change/upgrade applications Increased application lifetime
  • 15. Reduce Risks Some examples Robustness: we check data corruption ► Is the data access unambiguous? ► Are all exceptions managed? Performance: we check code efficiency ► Is String concatenation used in loops? ► How complex SQL query are used? Security: we check uncontrolled data access ► Is a Data Access Layer present? ► Is data accessed directly?
  • 16. Control Costs Some examples Changeability: how much complex is the software? ► We check cyclomatic complexity ► We check Fan-in, Fan-out Transferability: is the code easy to understand? ► We check naming convention ► We check the relation between lines of code and lines of comment ► We build application blueprints
  • 17. And… We check how much a quality pitfall propagates in your whole system through the Risk Factor We support the most used Java Frameworks out-of- the-box We cover CWE, OWASP & SANS Top 25
  • 18. Take finally control of your IT… …through our simple and clear Dashboard
  • 19. Increase your business performance Business Value problems vs Risks
  • 20. Control trends Projects trends and evolulion
  • 21. Forecast possible problems Causes of probable problems
  • 22. Find pitfalls Applications Health
  • 23. Monitor technologies Sizing and KPI
  • 24. Control Outsourced deliverables Compliance to Objectives
  • 25. Prevent quality drifts Increase in Complexity
  • 26. Whatever your role… we have a view that suits you! CIO & IT Managers QA Teams Responsible for Outsourcing Technical Architect
  • 27. To get to the root of the pain… High level Analysis & Alert Issue Identification and Action Items App profile App health factor view Tends and benchmarking List of non compliant items per type of problem and severity ranking …and take Action!
  • 28. Analyze your whole system… Presentation Tier Business Logic Tier Data Tier …not only the single technologies on which it is built
  • 29. Get questions answered « How is that table « What’s the impact on system accessed? » if we change that field? » « How those application communicate? »
  • 30. A flexible Architecture… Analyze DASHBOARD Blueprints Aggregate Documentation Reports
  • 31. Services offered to Technical teams Some examples On-going ► Defect Prevention Service ► Knowledge Discovery Service One-off ► Audit Service ► Transition Service
  • 32. Services offered to Management Some examples On-going ► Quality Monitoring Service ► Ongoing Arbitrage Service One-off ► Transformation Service ► Due diligence Service
  • 33. Adopt CAST… You will get Management Control risk Visibility Reduce ownership costs Application Increase SLAs Quality Boost your brand image Team Increase IT agility Performance Invest in innovation