SlideShare a Scribd company logo

Traceability Beyond Source Code: An Elusive Target?

Lionel Briand
Lionel Briand

This document discusses traceability beyond source code, which is an elusive target. It provides an overview and examples from industrial research projects on requirements-requirements, requirements-design, requirements-test cases traceability. The examples show challenges in capturing changes precisely and change rationales. Automated traceability approaches can reduce effort but may lack accuracy required for certification. Traceability is important for certification, change management and economic decision making.

Software
1 of 78
Download to read offline
.lusoftware verification & validation VVS Traceability Beyond Source Code: An Elusive Target? Lionel Briand Interdisciplinary Centre for Security, Reliability and Trust (SnT) University of Luxembourg SST, Florence - May 17, 2015
Acknowledgements • Shiva Nejati • Mehrdad Sabetzadeh • Fabrizio Pastore • Chetan Arora • Chunhui Wang • Ghanem Soltana • Davide Falessi 2
Outline • Introduction • Overview • Examples from industrial research projects • Reflections and conclusions 3
Motivations • Traceability research is source-code-centric • Certification (safety, privacy …) • Change management: Impact analysis, design rationale, regression testing … • Change management is a key challenge to certification • System-level activity 4
Challenges •  Establishing and maintaining traces is typically expensive •  Automation, in most cases, does not provide the level of accuracy required •  The benefits of exploiting traces are still unclear in many contexts •  Highly contextualized: A great deal of variation in development contexts entails a great deal of variation in traceability solutions •  Targeted analysis of traces drives traceability solutions 5
Requirements • Hundreds or thousands of them • Higher-level requirements (usually from customers) decomposed into lower-level ones (analysts) • Some more critical than others • Constantly changing and evolving: A stronger argument for the economic benefits of traceability 6
Modeling • In many application domains where traceability is required, system and software modeling is a rising practice • Provisions in standards lead to modeling • IEC 61508 (meta-standard), DO-178B (Avionics), EN50129 (Railways), ISO 26262 (Automotive) • UML, SysML, Simulink, … 7
Economic Decision •  Not just about trace “accuracy” … •  Economic trade-off •  Cost: Establishing and maintaining traces •  Benefit: More accurate decisions, decrease in human effort •  Decision science •  Makes it hard to study, out of context, as it determines effort and benefits 8
Overview
Traceability at a Glance 10 Archi. & Design Requirements Test Cases Regulations Source Code Bulk of Research
Requirements-Source Code •  Natural language •  Hundreds or thousands of traces •  Information Retrieval & Natural Language Processing •  Coding conventions •  Level of granularity? •  Minimum accuracy for ensuring practicality? Few human studies … 11 Requirements Source Code
Traceability at a Glance 12 Archi. & Design Requirements Test Cases Regulations Source Code Change Impact
Requirements-Requirements • Mostly natural language • Sometimes structured (template) • Hundreds of traces • Domain terminology, concepts, and their relationships are key to discovering traces among requirements • Syntactic and semantic similarity measures 13 Requirements
Traceability at a Glance 14 Archi. & Design Requirements Test Cases Regulations Source Code Compliance with laws, regulations, standards
Standards-Requirements •  Many standards, laws, and regulations •  They must be interpreted in context •  Compliance must be ensured •  Critical systems: Risks and hazards •  Requirements as mitigations •  Subjectivity, residual risks 15 Requirements Regulations
Traceability at a Glance 16 Archi. & Design Requirements Test Cases Regulations Source Code Certification, change management
Requirements-Design • Capture the rationale of design decisions • Support evolution, avoid violating essential design decisions • Useful for impact analysis based on traces • What is a rationale? Level of granularity? • Design representation? 17 Archi. & Design Requirements
Traceability at a Glance 18 Archi. & Design Requirements Test Cases Regulations Source Code Certification Regression testing
Requirements-Test Cases •  Requirements “coverage” required by standards •  Normally many test cases per requirement •  Thousands of traces •  Regression testing •  Precise impact analysis requires explicit test strategy and rationale •  How were test cases derived from requirements? •  Representation of requirements matters 19 Requirements Test Cases
Traceability at a Glance 20 Archi. & Design Requirements Test Cases Regulations Source Code Impact analysis, design conformance
Design-Source Code • Ideally, code should be generated from design models, e.g., controllers with Simulink • This would lead to “free” traceability • In practice, not always that simple … 21 Archi. & Design Source Code
Example Projects
Requirements-Requirements 23 Requirements •  160 Requirements! •  9 change scenarios! •  72 Requirements! •  5 change scenarios! [RE 2015, TSE 2015, ESEM 2014, ESEM 2013]
Example • R1: The mission operation controller shall transmit satellite status reports to the user help desk. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 24
Example • R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 25
Challenge#1 - Capture Changes Precisely • R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 26
Challenge#2 -" Capture Change Rationale • R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 27
•  R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. •  R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. •  R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 28 Challenge#2 -" Change Rationale Rationales: R1: We want to globally rename “user help desk” R2: Avoid communication between “mission operation controller” and “user help desk” R3: We no longer want to “transmit satellite status reports” to “user help desk” but instead to “user document repository”
Solution Characteristics • Accounts for the phrasal structure of requirements 29 The mission operation controller shall transmit satellite status reports to the user help desk document repository. user help desk, Deleted user document repository, Added • Account for semantically-related phrases that are not exact matches and close syntactic variations
Approach 30 Rationale: Avoid communication between mission operation controller and user help desk. Propagation condition: mission operation controller AND user help desk AND transmit
RQ1 - Which similarity measures are best suited to our approach? • Experimented with 10 syntactic, 9 semantic measures, and all their pairwise combinations (109 combinations) 31
RQ2 - How should analysts use the sorted requirements list produced by our approach? 32
RQ3 - How effective is our approach? • Extra requirements traversed • Case-A between 1%-7% • Case-B between 6%-8% except one case • Number of impacted requirements missed: " 1 out of 106 33
Requirements-Design 34 Archi. & Design Requirements [TOSEM 2014, IST 2012, FSE 2011, HASE 2011]
Context • Context: Certification of safety-critical monitoring applications (fire and gas detection and emergency and process shutdown) in oil & gas industry • Certification: Assessing and discussing software requirements, design/architecture and implementation documents • Typically, many meetings taking place over 6 to 18 months 35
Observations • Analyzed 66 distinct certification issues: •  Issues collected through observing certification meetings at different suppliers of maritime and energy systems •  Meetings focused on requirements, architecture, and design documents 36 Expensive" to fix
Research Objective • Developing a model-based traceability methodology • Generate a sound and yet minimal design slice for a given safety requirement, to support safety inspections • Slices constructed based on traceability links established between safety requirements and design 37 Design Slice
Research Approach 38 Traceability Methodology to relate safety requirements to design Slicing Algorithm to extract a design slice relevant to a given safety requirement Model Driven Engineering (MDE) is the enabler
Modeling • System Modeling Language (SysML) • A subset of UML extended with system engineering diagrams • A standard for system engineering • Preliminary support for requirement analysis and built-in traceability mechanism 39
Is SysML enough? •  Do we have proper guidelines for establishing traceability links between requirements and design? •  SysML is only a notation and needs a methodology •  Are the built-in SysML traceability links capable of addressing certification traceability issues? •  New traceability links: Source and assumptions of sys. safety reqs. •  We specialized the semantics of existing ones: Refine, decompose, derive … •  Explicit and implicit links 40
Research Approach 41 Traceability Methodology to relate safety Requirements to design Slicing Algorithm to extract a design slice relevant to a given safety requirement
Modeling Methodology 42
Traceability Information Model 43 Structural relations
Traceability Information Model 44 Traceability links
Traceability Information Model 45 Implicit Links
Requirement to Design Traceability 46 •  Mappings are documenting the design rationale! •  Implications relations between phrases and block states and operations
Research Approach 47 Traceability Methodology to relate safety Requirements to design Slicing Algorithm to extract a design slice relevant to a given safety requirement
Design Slicing 48
Original " Activity" Diagram 49 )
Slices 50 Fig. 11. The block and activity slices for the requirement in Fig. 8 extracted from the SysML design diagrams in Fig. 6. S. Nejati et al. / Information and Software Technology 54 (2012) 569–590
Slicing Algorithm • If a requirement holds over a design slice, it should also hold over the original design (soundness) • Proven analytically (formal proof) • If a requirement holds over the original design, then the design slice created for that requirement should conclusively satisfy that requirement (completeness) • Evaluated empirically (Case studies and experiments) 51
Tool Support 52 Customized " traceability links
Case Study: SW/HW Interfaces 53 Interface Control Modules Hardware Communicates commands and data between control modules and hardware Goal: Practical guidelines to: (1) Capture the concurrent design of interfaces (2) Reduce the number and criticality of certification issues related to interfaces
Results •  Created design models with traceability to requirements •  One context diagram (BDD), One architecture diagram (IBD), One detailed structure diagram (BDD), One activity decomposition diagram (BDD), One overall activity diagram, 19 detailed activity diagrams •  Created 65 traceability links for 30 safety-relevant requirements •  Modeling effort was approximately 40 person-hours •  Model Slicing •  Extracted 34 block slices and 31 activity slices •  Slicing reduced the number of block operations by 70% and the number of activity nodes by 50% 54
Controlled Experiment •  Question: Do safety slices help find design issues? •  Conducted in a laboratory setting with master students •  Overall design •  Seeded faults into the design •  Incorrect behavior and structure •  Divided the subjects into two groups •  One group gets the design without slices •  One group gets the design plus the relevant slices 55
Experiment Results • Slices show strong benefits in terms of: • Increasing the correctness of inspection decisions • Decreasing the proportion of uncertain decisions • Reducing the effort of inspections 56
Recent Similar Experiment •  Do developers benefit from requirements traceability when evolving and maintaining a software system? Patrick Mäder, Alexander Egyed •  Empirical Software Engineering (Springer), 2015 •  Focus on program comprehension and maintenance •  Tasks with and without traceability •  Traceability led to 24% speed improvement and 50% better correctness 57
Requirements-Test Cases 58 Requirements Test Cases BodySense [ISSTA 2015]
Context •  Context: Automotive, sensor systems •  Traceability between system requirements and test cases •  Mandatory when software must undergo a certification process (e.g. ISO 26262) •  Customers require such compliance •  Use-case-centric development 59
Automated Test Generation •  Restricted use case specifications: Structure, templates, restricted natural language (RUCM) •  Domain modeling •  Constraints •  Automation combines Natural Language Processing and constraint solving •  Automated test generation comes with traceability between use case flows and system test cases 60
5 Specify Constraints OCL constraints Errors.size() = 0 ERRORS ARE ABSENT TEMPERATURE IS LOW STATUS IS VALID Status <> null t > 0 and t < 50 Identify Constraints 4 Generate Abstract Test Cases 6 Generate Platform Specific Test Cases 7 Evaluate Completeness 3 Elicit Use Cases 1 Model the Domain 2 Domain Model Missing Entities List of Constraint descriptions Abstract Test Cases THE ACTOR SEND THE SYSTEM VALI THE SYSTEM DIS THE ACTOR SEND THE ACTOR SEND THE SYSTEM VALI THE SYSTEM DIS THE ACTOR SEND THE ACTOR SEND THE SYSTEM VALI THE SYSTEM DIS THE ACTOR SEND RUCM Use Cases Platform Test Cases Mapping Table
Case Study Results •  Rewrote 6 use case specifications of BodySense •  48 constraints to specify Effectiveness Applicability •  Automatically generated test cases for 6 use cases •  Specific test strategy (Rationale) •  Approach covers more scenarios than manual testing: 100 versus 86 •  Automated testing covers alternative flows not covered by manual testing
Discussion • Modeling effort reasonable after initial training • Main challenge is writing OCL constraints. • Test generation time took about 12 min per test cases, mostly due to constraint solving • Engineers miss important test scenarios because • Path analysis across multiple use case specifications is difficult • Regular use case specifications are less precise that RUCM
Regulations - Requirements 64 Requirements Regulations [RE 2014, MODELS 2014] •  New tax system under development •  System needs to be compliant with the law and remain so over time
Solution Overview 65 Test cases Actual software system Traces to Traces to Analyzable interpretation of the law Generates Results match? Impact of legal changes Simulates
Example 66 Art. 105bis […]The commuting expenses deduction (FD) is defined as a function over the distance between the principal town of the municipality on whose territory the taxpayer's home is located and the place of taxpayer’s work. The distance is measured in units of distance expressing the kilometric distance between [principal] towns. A ministerial regulation provides these distances. Interpretation + Traces
Example 67 The amount of the deduction is calculated as follows: If the distance exceeds 4 units but is less than 30 units, the deduction is € 99 per unit of distance. The first 4 units does not trigger any deduction and the deduction for a distance exceeding 30 units is limited to € 2,574. Interpretation + Traces
Discussion •  We addressed the gap between legal experts and IT specialists •  Models understandable by both legal experts and IT specialists •  Modeling effort was considered reasonable given the life span of such eGovernment systems •  Traceability to the law was considered a significant asset given frequent and complex changes in the law 68
Conclusions
Conclusions •  From an economic standpoint, •  the accuracy of trace recovery techniques cannot be interpreted out of context •  what traceability information to capture is a trade-off •  benefits depend on context •  More human studies are required to assess cost-benefits •  Design of such studies is not easy: baseline of comparison, comparable tasks, training, comparable skills … 70
Conclusions •  Change impact analysis among requirements was surprisingly accurate •  Change rationale needed to be captured •  But this is expected to depend on requirements writing practice, e.g., precision and consistency •  Accurate inter-requirements traces may require capturing tacit dependencies between domain concepts, e.g., domain model •  What type of domain model do we need? Ontologies? •  Can accuracy be improved through the use of NL templates? 71
Conclusions •  Requirements-design traces require a precise design methodology, including practical mechanisms to capture design rationale and link it to requirements •  Documenting design rationale cannot be automated, but can be facilitated •  Questions, in each new context: •  What is the right Modeling methodology? •  What is the right trace granularity? •  What information do traces need to carry? 72
Rationale Matters!
Traceability is an economic decision
Context Matters!
Natural Language Requirements •  [RE 2015] C. Arora et al., Change impact analysis for natural language requirements: An NLP approach •  [TSE 2015] C. Arora et al., Automated Checking of Conformance to Requirements Templates using Natural Language Processing •  [ESEM 2014] C. Arora et al., Improving requirements glossary construction via clustering •  [ESEM 2013] C. Arora et al., Automatic checking of conformance to requirements boilerplates via text chunking Requirements-Driven Testing •  [ISSTA 2015] C. Wang et al., Automatic Generation of System Test Cases from Use Case Specifications 76
SysML Traceability and Safety Analysis •  [TOSEM 2014] L. Briand et al., Traceability and SysML design slices to support safety inspections: A controlled experiment. •  [IST 2012] S. Nejati et al.A SysML-Based Approach to Traceability Management and Design Slicing in Support of Safety Certification: Framework, Tool Support, and Case Studies •  [HASE 2011] M. Sabetzadeh et al., Using SysML for Modeling of Safety--Critical Software-- Hardware Interfaces: Guidelines and Industry Experience •  [FSE 2011] D. Falessi et al., SafeSlice: a model slicing and design safety inspection tool for SysML. Legal Modeling and Analysis •  [MODELS 2014] G. Soltana et al., “ UML for Modeling Procedural Legal Rule” •  [RE 2014] M. Adedjouma et al., “Automated Detection and Resolution of Legal Cross References” 77
.lusoftware verification & validation VVS Traceability Beyond Source Code: An Elusive Target? Lionel Briand Interdisciplinary Centre for Security, Reliability and Trust (SnT) University of Luxembourg SST, Florence - May 17, 2015

Recommended

Change Impact Analysis for Natural Language Requirements
Change Impact Analysis for Natural Language RequirementsChange Impact Analysis for Natural Language Requirements
Change Impact Analysis for Natural Language Requirements
Lionel Briand
 
Automated Change Impact Analysis between SysML Models of Requirements and Design
Automated Change Impact Analysis between SysML Models of Requirements and DesignAutomated Change Impact Analysis between SysML Models of Requirements and Design
Automated Change Impact Analysis between SysML Models of Requirements and Design
Lionel Briand
 
Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...
Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...
Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...
Lionel Briand
 
DevSecOps: Security and Compliance at the Speed of Continuous Delivery
DevSecOps: Security and Compliance at the Speed of Continuous DeliveryDevSecOps: Security and Compliance at the Speed of Continuous Delivery
DevSecOps: Security and Compliance at the Speed of Continuous Delivery
Dag Rowe
 
Documented Requirements are not Useless After All!
Documented Requirements are not Useless After All!Documented Requirements are not Useless After All!
Documented Requirements are not Useless After All!
Lionel Briand
 
Dealing with the Three Horrible Problems in Verification
Dealing with the Three Horrible Problems in VerificationDealing with the Three Horrible Problems in Verification
Dealing with the Three Horrible Problems in VerificationDVClub
 
Layne David Orr Rev 17
Layne David Orr Rev 17Layne David Orr Rev 17
Layne David Orr Rev 17Layne Orr
 
A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017
A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017
A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017
Ilissa Miller
 

Recommended

Change Impact Analysis for Natural Language Requirements
Change Impact Analysis for Natural Language RequirementsChange Impact Analysis for Natural Language Requirements
Change Impact Analysis for Natural Language Requirements
Lionel Briand
 
Automated Change Impact Analysis between SysML Models of Requirements and Design
Automated Change Impact Analysis between SysML Models of Requirements and DesignAutomated Change Impact Analysis between SysML Models of Requirements and Design
Automated Change Impact Analysis between SysML Models of Requirements and Design
Lionel Briand
 
Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...
Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...
Analyzing Natural-Language Requirements: The Not-too-sexy and Yet Curiously D...
Lionel Briand
 
DevSecOps: Security and Compliance at the Speed of Continuous Delivery
DevSecOps: Security and Compliance at the Speed of Continuous DeliveryDevSecOps: Security and Compliance at the Speed of Continuous Delivery
DevSecOps: Security and Compliance at the Speed of Continuous Delivery
Dag Rowe
 
Documented Requirements are not Useless After All!
Documented Requirements are not Useless After All!Documented Requirements are not Useless After All!
Documented Requirements are not Useless After All!
Lionel Briand
 
Dealing with the Three Horrible Problems in Verification
Dealing with the Three Horrible Problems in VerificationDealing with the Three Horrible Problems in Verification
Dealing with the Three Horrible Problems in VerificationDVClub
 
Layne David Orr Rev 17
Layne David Orr Rev 17Layne David Orr Rev 17
Layne David Orr Rev 17Layne Orr
 
A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017
A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017
A recap of the PCTEL webinar hosted by NEDAS on December 7, 2017
Ilissa Miller
 
Ch 9 traceability and verification
Ch 9 traceability and verificationCh 9 traceability and verification
Ch 9 traceability and verificationKittitouch Suteeca
 
Ceres wp2015 07-0007
Ceres wp2015 07-0007Ceres wp2015 07-0007
Ceres wp2015 07-0007
PhD.Mohamed El Masry Badran
 
Ch 10 cost of software quality
Ch 10 cost of software qualityCh 10 cost of software quality
Ch 10 cost of software qualityKittitouch Suteeca
 
System Testing of Timing Requirements based on Use Cases and Timed Automata
System Testing of Timing Requirements based on Use Cases and Timed AutomataSystem Testing of Timing Requirements based on Use Cases and Timed Automata
System Testing of Timing Requirements based on Use Cases and Timed Automata
Lionel Briand
 
Ch 7 integrating quality activities in the projectlife cycle
Ch 7 integrating quality activities in the projectlife cycleCh 7 integrating quality activities in the projectlife cycle
Ch 7 integrating quality activities in the projectlife cycleKittitouch Suteeca
 
PLM and ERP: Separated by a common Bill of Materials (BOM)
PLM and ERP: Separated by a common Bill of Materials (BOM)PLM and ERP: Separated by a common Bill of Materials (BOM)
PLM and ERP: Separated by a common Bill of Materials (BOM)
Oleg Shilovitsky
 
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Lionel Briand
 
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Lionel Briand
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive Goal
Lionel Briand
 
Agile Development – Why requirements matter
Agile Development – Why requirements matterAgile Development – Why requirements matter
Agile Development – Why requirements matter
Agile Austria Conference
 
Incremental Queries and Transformations for Engineering Critical Systems
Incremental Queries and Transformations for Engineering Critical SystemsIncremental Queries and Transformations for Engineering Critical Systems
Incremental Queries and Transformations for Engineering Critical Systems
Ákos Horváth
 
Software Requirements engineering
Software Requirements engineeringSoftware Requirements engineering
Software Requirements engineering
Md. Shafiuzzaman Hira
 
PhD Proposal talk
PhD Proposal talkPhD Proposal talk
PhD Proposal talkRay Buse
 
Agile Development – Why requirements matter by Fariz Saracevic
Agile Development – Why requirements matter by Fariz SaracevicAgile Development – Why requirements matter by Fariz Saracevic
Agile Development – Why requirements matter by Fariz Saracevic
Agile ME
 
Scalable and Cost-Effective Model-Based Software Verification and Testing
Scalable and Cost-Effective Model-Based Software Verification and TestingScalable and Cost-Effective Model-Based Software Verification and Testing
Scalable and Cost-Effective Model-Based Software Verification and Testing
Lionel Briand
 
Scope of software engineering
Scope of software engineeringScope of software engineering
Scope of software engineeringMuhammad Naveed Zafar
 
requirement engineering
requirement engineeringrequirement engineering
requirement engineering
anam singla
 
Presentation of se
Presentation of sePresentation of se
Presentation of se
Usman Bin Saad
 
SRE vs DevOps
SRE vs DevOpsSRE vs DevOps
SRE vs DevOps
Levon Avakyan
 
Automated Discovery of Performance Regressions in Enterprise Applications
Automated Discovery of Performance Regressions in Enterprise ApplicationsAutomated Discovery of Performance Regressions in Enterprise Applications
Automated Discovery of Performance Regressions in Enterprise Applications
SAIL_QU
 
Web Performance Bootcamp 2014
Web Performance Bootcamp 2014Web Performance Bootcamp 2014
Web Performance Bootcamp 2014
Daniel Austin
 
Se lect11 btech
Se lect11 btechSe lect11 btech
Se lect11 btechIIITA
 

More Related Content

Viewers also liked

Ch 9 traceability and verification
Ch 9 traceability and verificationCh 9 traceability and verification
Ch 9 traceability and verificationKittitouch Suteeca
 
Ceres wp2015 07-0007
Ceres wp2015 07-0007Ceres wp2015 07-0007
Ceres wp2015 07-0007
PhD.Mohamed El Masry Badran
 
Ch 10 cost of software quality
Ch 10 cost of software qualityCh 10 cost of software quality
Ch 10 cost of software qualityKittitouch Suteeca
 
System Testing of Timing Requirements based on Use Cases and Timed Automata
System Testing of Timing Requirements based on Use Cases and Timed AutomataSystem Testing of Timing Requirements based on Use Cases and Timed Automata
System Testing of Timing Requirements based on Use Cases and Timed Automata
Lionel Briand
 
Ch 7 integrating quality activities in the projectlife cycle
Ch 7 integrating quality activities in the projectlife cycleCh 7 integrating quality activities in the projectlife cycle
Ch 7 integrating quality activities in the projectlife cycleKittitouch Suteeca
 
PLM and ERP: Separated by a common Bill of Materials (BOM)
PLM and ERP: Separated by a common Bill of Materials (BOM)PLM and ERP: Separated by a common Bill of Materials (BOM)
PLM and ERP: Separated by a common Bill of Materials (BOM)
Oleg Shilovitsky
 

Viewers also liked (6)

Ch 9 traceability and verification
Ch 9 traceability and verificationCh 9 traceability and verification
Ch 9 traceability and verification
 
Ceres wp2015 07-0007
Ceres wp2015 07-0007Ceres wp2015 07-0007
Ceres wp2015 07-0007
 
Ch 10 cost of software quality
Ch 10 cost of software qualityCh 10 cost of software quality
Ch 10 cost of software quality
 
System Testing of Timing Requirements based on Use Cases and Timed Automata
System Testing of Timing Requirements based on Use Cases and Timed AutomataSystem Testing of Timing Requirements based on Use Cases and Timed Automata
System Testing of Timing Requirements based on Use Cases and Timed Automata
 
Ch 7 integrating quality activities in the projectlife cycle
Ch 7 integrating quality activities in the projectlife cycleCh 7 integrating quality activities in the projectlife cycle
Ch 7 integrating quality activities in the projectlife cycle
 
PLM and ERP: Separated by a common Bill of Materials (BOM)
PLM and ERP: Separated by a common Bill of Materials (BOM)PLM and ERP: Separated by a common Bill of Materials (BOM)
PLM and ERP: Separated by a common Bill of Materials (BOM)
 

Similar to Traceability Beyond Source Code: An Elusive Target?

Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Lionel Briand
 
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Lionel Briand
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive Goal
Lionel Briand
 
Agile Development – Why requirements matter
Agile Development – Why requirements matterAgile Development – Why requirements matter
Agile Development – Why requirements matter
Agile Austria Conference
 
Incremental Queries and Transformations for Engineering Critical Systems
Incremental Queries and Transformations for Engineering Critical SystemsIncremental Queries and Transformations for Engineering Critical Systems
Incremental Queries and Transformations for Engineering Critical Systems
Ákos Horváth
 
Software Requirements engineering
Software Requirements engineeringSoftware Requirements engineering
Software Requirements engineering
Md. Shafiuzzaman Hira
 
PhD Proposal talk
PhD Proposal talkPhD Proposal talk
PhD Proposal talkRay Buse
 
Agile Development – Why requirements matter by Fariz Saracevic
Agile Development – Why requirements matter by Fariz SaracevicAgile Development – Why requirements matter by Fariz Saracevic
Agile Development – Why requirements matter by Fariz Saracevic
Agile ME
 
Scalable and Cost-Effective Model-Based Software Verification and Testing
Scalable and Cost-Effective Model-Based Software Verification and TestingScalable and Cost-Effective Model-Based Software Verification and Testing
Scalable and Cost-Effective Model-Based Software Verification and Testing
Lionel Briand
 
requirement engineering
requirement engineeringrequirement engineering
requirement engineering
anam singla
 
Presentation of se
Presentation of sePresentation of se
Presentation of se
Usman Bin Saad
 
SRE vs DevOps
SRE vs DevOpsSRE vs DevOps
SRE vs DevOps
Levon Avakyan
 
Automated Discovery of Performance Regressions in Enterprise Applications
Automated Discovery of Performance Regressions in Enterprise ApplicationsAutomated Discovery of Performance Regressions in Enterprise Applications
Automated Discovery of Performance Regressions in Enterprise Applications
SAIL_QU
 
Web Performance Bootcamp 2014
Web Performance Bootcamp 2014Web Performance Bootcamp 2014
Web Performance Bootcamp 2014
Daniel Austin
 
Se lect11 btech
Se lect11 btechSe lect11 btech
Se lect11 btechIIITA
 
Agile methodology in cloud computing
Agile methodology in cloud computingAgile methodology in cloud computing
Agile methodology in cloud computingAhmed M. Abed
 
SRS.pdf
SRS.pdfSRS.pdf
SRS.pdf
Lucifer272025
 
Analyst360 2
Analyst360 2Analyst360 2
Analyst360 2
Analyst Murex training
 
Business analyst| Murex training at Analyst360
Business analyst| Murex training at Analyst360Business analyst| Murex training at Analyst360
Business analyst| Murex training at Analyst360
Analyst Murex training
 

Similar to Traceability Beyond Source Code: An Elusive Target? (20)

Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
Automated Analysis of Natural-Language Requirements: Industrial Needs and Opp...
 
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...Making Model-Driven Verification Practical and Scalable: Experiences and Less...
Making Model-Driven Verification Practical and Scalable: Experiences and Less...
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive Goal
 
Agile Development – Why requirements matter
Agile Development – Why requirements matterAgile Development – Why requirements matter
Agile Development – Why requirements matter
 
Incremental Queries and Transformations for Engineering Critical Systems
Incremental Queries and Transformations for Engineering Critical SystemsIncremental Queries and Transformations for Engineering Critical Systems
Incremental Queries and Transformations for Engineering Critical Systems
 
Software Requirements engineering
Software Requirements engineeringSoftware Requirements engineering
Software Requirements engineering
 
PhD Proposal talk
PhD Proposal talkPhD Proposal talk
PhD Proposal talk
 
Agile Development – Why requirements matter by Fariz Saracevic
Agile Development – Why requirements matter by Fariz SaracevicAgile Development – Why requirements matter by Fariz Saracevic
Agile Development – Why requirements matter by Fariz Saracevic
 
Scalable and Cost-Effective Model-Based Software Verification and Testing
Scalable and Cost-Effective Model-Based Software Verification and TestingScalable and Cost-Effective Model-Based Software Verification and Testing
Scalable and Cost-Effective Model-Based Software Verification and Testing
 
Scope of software engineering
Scope of software engineeringScope of software engineering
Scope of software engineering
 
requirement engineering
requirement engineeringrequirement engineering
requirement engineering
 
Presentation of se
Presentation of sePresentation of se
Presentation of se
 
SRE vs DevOps
SRE vs DevOpsSRE vs DevOps
SRE vs DevOps
 
Automated Discovery of Performance Regressions in Enterprise Applications
Automated Discovery of Performance Regressions in Enterprise ApplicationsAutomated Discovery of Performance Regressions in Enterprise Applications
Automated Discovery of Performance Regressions in Enterprise Applications
 
Web Performance Bootcamp 2014
Web Performance Bootcamp 2014Web Performance Bootcamp 2014
Web Performance Bootcamp 2014
 
Se lect11 btech
Se lect11 btechSe lect11 btech
Se lect11 btech
 
Agile methodology in cloud computing
Agile methodology in cloud computingAgile methodology in cloud computing
Agile methodology in cloud computing
 
SRS.pdf
SRS.pdfSRS.pdf
SRS.pdf
 
Analyst360 2
Analyst360 2Analyst360 2
Analyst360 2
 
Business analyst| Murex training at Analyst360
Business analyst| Murex training at Analyst360Business analyst| Murex training at Analyst360
Business analyst| Murex training at Analyst360
 

More from Lionel Briand

Large Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and RepairLarge Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and Repair
Lionel Briand
 
Metamorphic Testing for Web System Security
Metamorphic Testing for Web System SecurityMetamorphic Testing for Web System Security
Metamorphic Testing for Web System Security
Lionel Briand
 
Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...
Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...
Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...
Lionel Briand
 
Fuzzing for CPS Mutation Testing
Fuzzing for CPS Mutation TestingFuzzing for CPS Mutation Testing
Fuzzing for CPS Mutation Testing
Lionel Briand
 
Data-driven Mutation Analysis for Cyber-Physical Systems
Data-driven Mutation Analysis for Cyber-Physical SystemsData-driven Mutation Analysis for Cyber-Physical Systems
Data-driven Mutation Analysis for Cyber-Physical Systems
Lionel Briand
 
Many-Objective Reinforcement Learning for Online Testing of DNN-Enabled Systems
Many-Objective Reinforcement Learning for Online Testing of DNN-Enabled SystemsMany-Objective Reinforcement Learning for Online Testing of DNN-Enabled Systems
Many-Objective Reinforcement Learning for Online Testing of DNN-Enabled Systems
Lionel Briand
 
ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...
ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...
ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...
Lionel Briand
 
Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...
Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...
Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...
Lionel Briand
 
PRINS: Scalable Model Inference for Component-based System Logs
PRINS: Scalable Model Inference for Component-based System LogsPRINS: Scalable Model Inference for Component-based System Logs
PRINS: Scalable Model Inference for Component-based System Logs
Lionel Briand
 
Revisiting the Notion of Diversity in Software Testing
Revisiting the Notion of Diversity in Software TestingRevisiting the Notion of Diversity in Software Testing
Revisiting the Notion of Diversity in Software Testing
Lionel Briand
 
Applications of Search-based Software Testing to Trustworthy Artificial Intel...
Applications of Search-based Software Testing to Trustworthy Artificial Intel...Applications of Search-based Software Testing to Trustworthy Artificial Intel...
Applications of Search-based Software Testing to Trustworthy Artificial Intel...
Lionel Briand
 
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyAutonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
Lionel Briand
 
Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...
Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...
Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...
Lionel Briand
 
Reinforcement Learning for Test Case Prioritization
Reinforcement Learning for Test Case PrioritizationReinforcement Learning for Test Case Prioritization
Reinforcement Learning for Test Case Prioritization
Lionel Briand
 
Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...
Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...
Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...
Lionel Briand
 
On Systematically Building a Controlled Natural Language for Functional Requi...
On Systematically Building a Controlled Natural Language for Functional Requi...On Systematically Building a Controlled Natural Language for Functional Requi...
On Systematically Building a Controlled Natural Language for Functional Requi...
Lionel Briand
 
Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...
Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...
Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...
Lionel Briand
 
Guidelines for Assessing the Accuracy of Log Message Template Identification ...
Guidelines for Assessing the Accuracy of Log Message Template Identification ...Guidelines for Assessing the Accuracy of Log Message Template Identification ...
Guidelines for Assessing the Accuracy of Log Message Template Identification ...
Lionel Briand
 
A Theoretical Framework for Understanding the Relationship between Log Parsin...
A Theoretical Framework for Understanding the Relationship between Log Parsin...A Theoretical Framework for Understanding the Relationship between Log Parsin...
A Theoretical Framework for Understanding the Relationship between Log Parsin...
Lionel Briand
 
Requirements in Cyber-Physical Systems: Specifications and Applications
Requirements in Cyber-Physical Systems: Specifications and ApplicationsRequirements in Cyber-Physical Systems: Specifications and Applications
Requirements in Cyber-Physical Systems: Specifications and Applications
Lionel Briand
 

More from Lionel Briand (20)

Large Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and RepairLarge Language Models for Test Case Evolution and Repair
Large Language Models for Test Case Evolution and Repair
 
Metamorphic Testing for Web System Security
Metamorphic Testing for Web System SecurityMetamorphic Testing for Web System Security
Metamorphic Testing for Web System Security
 
Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...
Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...
Simulator-based Explanation and Debugging of Hazard-triggering Events in DNN-...
 
Fuzzing for CPS Mutation Testing
Fuzzing for CPS Mutation TestingFuzzing for CPS Mutation Testing
Fuzzing for CPS Mutation Testing
 
Data-driven Mutation Analysis for Cyber-Physical Systems
Data-driven Mutation Analysis for Cyber-Physical SystemsData-driven Mutation Analysis for Cyber-Physical Systems
Data-driven Mutation Analysis for Cyber-Physical Systems
 
Many-Objective Reinforcement Learning for Online Testing of DNN-Enabled Systems
Many-Objective Reinforcement Learning for Online Testing of DNN-Enabled SystemsMany-Objective Reinforcement Learning for Online Testing of DNN-Enabled Systems
Many-Objective Reinforcement Learning for Online Testing of DNN-Enabled Systems
 
ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...
ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...
ATM: Black-box Test Case Minimization based on Test Code Similarity and Evolu...
 
Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...
Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...
Black-box Safety Analysis and Retraining of DNNs based on Feature Extraction ...
 
PRINS: Scalable Model Inference for Component-based System Logs
PRINS: Scalable Model Inference for Component-based System LogsPRINS: Scalable Model Inference for Component-based System Logs
PRINS: Scalable Model Inference for Component-based System Logs
 
Revisiting the Notion of Diversity in Software Testing
Revisiting the Notion of Diversity in Software TestingRevisiting the Notion of Diversity in Software Testing
Revisiting the Notion of Diversity in Software Testing
 
Applications of Search-based Software Testing to Trustworthy Artificial Intel...
Applications of Search-based Software Testing to Trustworthy Artificial Intel...Applications of Search-based Software Testing to Trustworthy Artificial Intel...
Applications of Search-based Software Testing to Trustworthy Artificial Intel...
 
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and SafetyAutonomous Systems: How to Address the Dilemma between Autonomy and Safety
Autonomous Systems: How to Address the Dilemma between Autonomy and Safety
 
Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...
Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...
Mathematicians, Social Scientists, or Engineers? The Split Minds of Software ...
 
Reinforcement Learning for Test Case Prioritization
Reinforcement Learning for Test Case PrioritizationReinforcement Learning for Test Case Prioritization
Reinforcement Learning for Test Case Prioritization
 
Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...
Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...
Mutation Analysis for Cyber-Physical Systems: Scalable Solutions and Results ...
 
On Systematically Building a Controlled Natural Language for Functional Requi...
On Systematically Building a Controlled Natural Language for Functional Requi...On Systematically Building a Controlled Natural Language for Functional Requi...
On Systematically Building a Controlled Natural Language for Functional Requi...
 
Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...
Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...
Efficient Online Testing for DNN-Enabled Systems using Surrogate-Assisted and...
 
Guidelines for Assessing the Accuracy of Log Message Template Identification ...
Guidelines for Assessing the Accuracy of Log Message Template Identification ...Guidelines for Assessing the Accuracy of Log Message Template Identification ...
Guidelines for Assessing the Accuracy of Log Message Template Identification ...
 
A Theoretical Framework for Understanding the Relationship between Log Parsin...
A Theoretical Framework for Understanding the Relationship between Log Parsin...A Theoretical Framework for Understanding the Relationship between Log Parsin...
A Theoretical Framework for Understanding the Relationship between Log Parsin...
 
Requirements in Cyber-Physical Systems: Specifications and Applications
Requirements in Cyber-Physical Systems: Specifications and ApplicationsRequirements in Cyber-Physical Systems: Specifications and Applications
Requirements in Cyber-Physical Systems: Specifications and Applications
 

Recently uploaded

Large Language Models and the End of Programming
Large Language Models and the End of ProgrammingLarge Language Models and the End of Programming
Large Language Models and the End of Programming
Matt Welsh
 
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of CodeA Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
Aftab Hussain
 
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
Globus
 
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Globus
 
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptxTop Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
rickgrimesss22
 
Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"
Donna Lenk
 
openEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain SecurityopenEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain Security
Shane Coughlan
 
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdfVitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke
 
Quarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden ExtensionsQuarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden Extensions
Max Andersen
 
Mobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona InfotechMobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona Infotech
Drona Infotech
 
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
Providing Globus Services to Users of JASMIN for Environmental Data AnalysisProviding Globus Services to Users of JASMIN for Environmental Data Analysis
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
Globus
 
Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)
abdulrafaychaudhry
 
Webinar: Salesforce Document Management 2.0 - Smarter, Faster, Better
Webinar: Salesforce Document Management 2.0 - Smarter, Faster, BetterWebinar: Salesforce Document Management 2.0 - Smarter, Faster, Better
Webinar: Salesforce Document Management 2.0 - Smarter, Faster, Better
XfilesPro
 
Text-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptx
Text-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptxText-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptx
Text-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptx
ShamsuddeenMuhammadA
 
Pro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp BookPro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp Book
abdulrafaychaudhry
 
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
Juraj Vysvader
 
Lecture 1 Introduction to games development
Lecture 1 Introduction to games developmentLecture 1 Introduction to games development
Lecture 1 Introduction to games development
abdulrafaychaudhry
 
Orion Context Broker introduction 20240604
Orion Context Broker introduction 20240604Orion Context Broker introduction 20240604
Orion Context Broker introduction 20240604
Fermin Galan
 
GraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph TechnologyGraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph Technology
Neo4j
 
Graspan: A Big Data System for Big Code Analysis
Graspan: A Big Data System for Big Code AnalysisGraspan: A Big Data System for Big Code Analysis
Graspan: A Big Data System for Big Code Analysis
Aftab Hussain
 

Recently uploaded (20)

Large Language Models and the End of Programming
Large Language Models and the End of ProgrammingLarge Language Models and the End of Programming
Large Language Models and the End of Programming
 
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of CodeA Study of Variable-Role-based Feature Enrichment in Neural Models of Code
A Study of Variable-Role-based Feature Enrichment in Neural Models of Code
 
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
Innovating Inference - Remote Triggering of Large Language Models on HPC Clus...
 
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...
 
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptxTop Features to Include in Your Winzo Clone App for Business Growth (4).pptx
Top Features to Include in Your Winzo Clone App for Business Growth (4).pptx
 
Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"Navigating the Metaverse: A Journey into Virtual Evolution"
Navigating the Metaverse: A Journey into Virtual Evolution"
 
openEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain SecurityopenEuler Case Study - The Journey to Supply Chain Security
openEuler Case Study - The Journey to Supply Chain Security
 
Vitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdfVitthal Shirke Java Microservices Resume.pdf
Vitthal Shirke Java Microservices Resume.pdf
 
Quarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden ExtensionsQuarkus Hidden and Forbidden Extensions
Quarkus Hidden and Forbidden Extensions
 
Mobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona InfotechMobile App Development Company In Noida | Drona Infotech
Mobile App Development Company In Noida | Drona Infotech
 
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
Providing Globus Services to Users of JASMIN for Environmental Data AnalysisProviding Globus Services to Users of JASMIN for Environmental Data Analysis
Providing Globus Services to Users of JASMIN for Environmental Data Analysis
 
Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)Game Development with Unity3D (Game Development lecture 3)
Game Development with Unity3D (Game Development lecture 3)
 
Webinar: Salesforce Document Management 2.0 - Smarter, Faster, Better
Webinar: Salesforce Document Management 2.0 - Smarter, Faster, BetterWebinar: Salesforce Document Management 2.0 - Smarter, Faster, Better
Webinar: Salesforce Document Management 2.0 - Smarter, Faster, Better
 
Text-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptx
Text-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptxText-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptx
Text-Summarization-of-Breaking-News-Using-Fine-tuning-BART-Model.pptx
 
Pro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp BookPro Unity Game Development with C-sharp Book
Pro Unity Game Development with C-sharp Book
 
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
In 2015, I used to write extensions for Joomla, WordPress, phpBB3, etc and I ...
 
Lecture 1 Introduction to games development
Lecture 1 Introduction to games developmentLecture 1 Introduction to games development
Lecture 1 Introduction to games development
 
Orion Context Broker introduction 20240604
Orion Context Broker introduction 20240604Orion Context Broker introduction 20240604
Orion Context Broker introduction 20240604
 
GraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph TechnologyGraphSummit Paris - The art of the possible with Graph Technology
GraphSummit Paris - The art of the possible with Graph Technology
 
Graspan: A Big Data System for Big Code Analysis
Graspan: A Big Data System for Big Code AnalysisGraspan: A Big Data System for Big Code Analysis
Graspan: A Big Data System for Big Code Analysis
 

Traceability Beyond Source Code: An Elusive Target?

  • 1. .lusoftware verification & validation VVS Traceability Beyond Source Code: An Elusive Target? Lionel Briand Interdisciplinary Centre for Security, Reliability and Trust (SnT) University of Luxembourg SST, Florence - May 17, 2015
  • 2. Acknowledgements • Shiva Nejati • Mehrdad Sabetzadeh • Fabrizio Pastore • Chetan Arora • Chunhui Wang • Ghanem Soltana • Davide Falessi 2
  • 3. Outline • Introduction • Overview • Examples from industrial research projects • Reflections and conclusions 3
  • 4. Motivations • Traceability research is source-code-centric • Certification (safety, privacy …) • Change management: Impact analysis, design rationale, regression testing … • Change management is a key challenge to certification • System-level activity 4
  • 5. Challenges •  Establishing and maintaining traces is typically expensive •  Automation, in most cases, does not provide the level of accuracy required •  The benefits of exploiting traces are still unclear in many contexts •  Highly contextualized: A great deal of variation in development contexts entails a great deal of variation in traceability solutions •  Targeted analysis of traces drives traceability solutions 5
  • 6. Requirements • Hundreds or thousands of them • Higher-level requirements (usually from customers) decomposed into lower-level ones (analysts) • Some more critical than others • Constantly changing and evolving: A stronger argument for the economic benefits of traceability 6
  • 7. Modeling • In many application domains where traceability is required, system and software modeling is a rising practice • Provisions in standards lead to modeling • IEC 61508 (meta-standard), DO-178B (Avionics), EN50129 (Railways), ISO 26262 (Automotive) • UML, SysML, Simulink, … 7
  • 8. Economic Decision •  Not just about trace “accuracy” … •  Economic trade-off •  Cost: Establishing and maintaining traces •  Benefit: More accurate decisions, decrease in human effort •  Decision science •  Makes it hard to study, out of context, as it determines effort and benefits 8
  • 10. Traceability at a Glance 10 Archi. & Design Requirements Test Cases Regulations Source Code Bulk of Research
  • 11. Requirements-Source Code •  Natural language •  Hundreds or thousands of traces •  Information Retrieval & Natural Language Processing •  Coding conventions •  Level of granularity? •  Minimum accuracy for ensuring practicality? Few human studies … 11 Requirements Source Code
  • 12. Traceability at a Glance 12 Archi. & Design Requirements Test Cases Regulations Source Code Change Impact
  • 13. Requirements-Requirements • Mostly natural language • Sometimes structured (template) • Hundreds of traces • Domain terminology, concepts, and their relationships are key to discovering traces among requirements • Syntactic and semantic similarity measures 13 Requirements
  • 14. Traceability at a Glance 14 Archi. & Design Requirements Test Cases Regulations Source Code Compliance with laws, regulations, standards
  • 15. Standards-Requirements •  Many standards, laws, and regulations •  They must be interpreted in context •  Compliance must be ensured •  Critical systems: Risks and hazards •  Requirements as mitigations •  Subjectivity, residual risks 15 Requirements Regulations
  • 16. Traceability at a Glance 16 Archi. & Design Requirements Test Cases Regulations Source Code Certification, change management
  • 17. Requirements-Design • Capture the rationale of design decisions • Support evolution, avoid violating essential design decisions • Useful for impact analysis based on traces • What is a rationale? Level of granularity? • Design representation? 17 Archi. & Design Requirements
  • 18. Traceability at a Glance 18 Archi. & Design Requirements Test Cases Regulations Source Code Certification Regression testing
  • 19. Requirements-Test Cases •  Requirements “coverage” required by standards •  Normally many test cases per requirement •  Thousands of traces •  Regression testing •  Precise impact analysis requires explicit test strategy and rationale •  How were test cases derived from requirements? •  Representation of requirements matters 19 Requirements Test Cases
  • 20. Traceability at a Glance 20 Archi. & Design Requirements Test Cases Regulations Source Code Impact analysis, design conformance
  • 21. Design-Source Code • Ideally, code should be generated from design models, e.g., controllers with Simulink • This would lead to “free” traceability • In practice, not always that simple … 21 Archi. & Design Source Code
  • 23. Requirements-Requirements 23 Requirements •  160 Requirements! •  9 change scenarios! •  72 Requirements! •  5 change scenarios! [RE 2015, TSE 2015, ESEM 2014, ESEM 2013]
  • 24. Example • R1: The mission operation controller shall transmit satellite status reports to the user help desk. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 24
  • 25. Example • R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 25
  • 26. Challenge#1 - Capture Changes Precisely • R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 26
  • 27. Challenge#2 -" Capture Change Rationale • R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. • R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. • R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 27
  • 28. •  R1: The mission operation controller shall transmit satellite status reports to the user help desk document repository. •  R2: The satellite management system shall provide users with the ability to transfer maintenance and service plans to the user help desk. •  R3: The mission operation controller shall transmit any detected anomalies with the user help desk. 28 Challenge#2 -" Change Rationale Rationales: R1: We want to globally rename “user help desk” R2: Avoid communication between “mission operation controller” and “user help desk” R3: We no longer want to “transmit satellite status reports” to “user help desk” but instead to “user document repository”
  • 29. Solution Characteristics • Accounts for the phrasal structure of requirements 29 The mission operation controller shall transmit satellite status reports to the user help desk document repository. user help desk, Deleted user document repository, Added • Account for semantically-related phrases that are not exact matches and close syntactic variations
  • 30. Approach 30 Rationale: Avoid communication between mission operation controller and user help desk. Propagation condition: mission operation controller AND user help desk AND transmit
  • 31. RQ1 - Which similarity measures are best suited to our approach? • Experimented with 10 syntactic, 9 semantic measures, and all their pairwise combinations (109 combinations) 31
  • 32. RQ2 - How should analysts use the sorted requirements list produced by our approach? 32
  • 33. RQ3 - How effective is our approach? • Extra requirements traversed • Case-A between 1%-7% • Case-B between 6%-8% except one case • Number of impacted requirements missed: " 1 out of 106 33
  • 34. Requirements-Design 34 Archi. & Design Requirements [TOSEM 2014, IST 2012, FSE 2011, HASE 2011]
  • 35. Context • Context: Certification of safety-critical monitoring applications (fire and gas detection and emergency and process shutdown) in oil & gas industry • Certification: Assessing and discussing software requirements, design/architecture and implementation documents • Typically, many meetings taking place over 6 to 18 months 35
  • 36. Observations • Analyzed 66 distinct certification issues: •  Issues collected through observing certification meetings at different suppliers of maritime and energy systems •  Meetings focused on requirements, architecture, and design documents 36 Expensive" to fix
  • 37. Research Objective • Developing a model-based traceability methodology • Generate a sound and yet minimal design slice for a given safety requirement, to support safety inspections • Slices constructed based on traceability links established between safety requirements and design 37 Design Slice
  • 38. Research Approach 38 Traceability Methodology to relate safety requirements to design Slicing Algorithm to extract a design slice relevant to a given safety requirement Model Driven Engineering (MDE) is the enabler
  • 39. Modeling • System Modeling Language (SysML) • A subset of UML extended with system engineering diagrams • A standard for system engineering • Preliminary support for requirement analysis and built-in traceability mechanism 39
  • 40. Is SysML enough? •  Do we have proper guidelines for establishing traceability links between requirements and design? •  SysML is only a notation and needs a methodology •  Are the built-in SysML traceability links capable of addressing certification traceability issues? •  New traceability links: Source and assumptions of sys. safety reqs. •  We specialized the semantics of existing ones: Refine, decompose, derive … •  Explicit and implicit links 40
  • 41. Research Approach 41 Traceability Methodology to relate safety Requirements to design Slicing Algorithm to extract a design slice relevant to a given safety requirement
  • 46. Requirement to Design Traceability 46 •  Mappings are documenting the design rationale! •  Implications relations between phrases and block states and operations
  • 47. Research Approach 47 Traceability Methodology to relate safety Requirements to design Slicing Algorithm to extract a design slice relevant to a given safety requirement
  • 50. Slices 50 Fig. 11. The block and activity slices for the requirement in Fig. 8 extracted from the SysML design diagrams in Fig. 6. S. Nejati et al. / Information and Software Technology 54 (2012) 569–590
  • 51. Slicing Algorithm • If a requirement holds over a design slice, it should also hold over the original design (soundness) • Proven analytically (formal proof) • If a requirement holds over the original design, then the design slice created for that requirement should conclusively satisfy that requirement (completeness) • Evaluated empirically (Case studies and experiments) 51
  • 53. Case Study: SW/HW Interfaces 53 Interface Control Modules Hardware Communicates commands and data between control modules and hardware Goal: Practical guidelines to: (1) Capture the concurrent design of interfaces (2) Reduce the number and criticality of certification issues related to interfaces
  • 54. Results •  Created design models with traceability to requirements •  One context diagram (BDD), One architecture diagram (IBD), One detailed structure diagram (BDD), One activity decomposition diagram (BDD), One overall activity diagram, 19 detailed activity diagrams •  Created 65 traceability links for 30 safety-relevant requirements •  Modeling effort was approximately 40 person-hours •  Model Slicing •  Extracted 34 block slices and 31 activity slices •  Slicing reduced the number of block operations by 70% and the number of activity nodes by 50% 54
  • 55. Controlled Experiment •  Question: Do safety slices help find design issues? •  Conducted in a laboratory setting with master students •  Overall design •  Seeded faults into the design •  Incorrect behavior and structure •  Divided the subjects into two groups •  One group gets the design without slices •  One group gets the design plus the relevant slices 55
  • 56. Experiment Results • Slices show strong benefits in terms of: • Increasing the correctness of inspection decisions • Decreasing the proportion of uncertain decisions • Reducing the effort of inspections 56
  • 57. Recent Similar Experiment •  Do developers benefit from requirements traceability when evolving and maintaining a software system? Patrick Mäder, Alexander Egyed •  Empirical Software Engineering (Springer), 2015 •  Focus on program comprehension and maintenance •  Tasks with and without traceability •  Traceability led to 24% speed improvement and 50% better correctness 57
  • 59. Context •  Context: Automotive, sensor systems •  Traceability between system requirements and test cases •  Mandatory when software must undergo a certification process (e.g. ISO 26262) •  Customers require such compliance •  Use-case-centric development 59
  • 60. Automated Test Generation •  Restricted use case specifications: Structure, templates, restricted natural language (RUCM) •  Domain modeling •  Constraints •  Automation combines Natural Language Processing and constraint solving •  Automated test generation comes with traceability between use case flows and system test cases 60
  • 61. 5 Specify Constraints OCL constraints Errors.size() = 0 ERRORS ARE ABSENT TEMPERATURE IS LOW STATUS IS VALID Status <> null t > 0 and t < 50 Identify Constraints 4 Generate Abstract Test Cases 6 Generate Platform Specific Test Cases 7 Evaluate Completeness 3 Elicit Use Cases 1 Model the Domain 2 Domain Model Missing Entities List of Constraint descriptions Abstract Test Cases THE ACTOR SEND THE SYSTEM VALI THE SYSTEM DIS THE ACTOR SEND THE ACTOR SEND THE SYSTEM VALI THE SYSTEM DIS THE ACTOR SEND THE ACTOR SEND THE SYSTEM VALI THE SYSTEM DIS THE ACTOR SEND RUCM Use Cases Platform Test Cases Mapping Table
  • 62. Case Study Results •  Rewrote 6 use case specifications of BodySense •  48 constraints to specify Effectiveness Applicability •  Automatically generated test cases for 6 use cases •  Specific test strategy (Rationale) •  Approach covers more scenarios than manual testing: 100 versus 86 •  Automated testing covers alternative flows not covered by manual testing
  • 63. Discussion • Modeling effort reasonable after initial training • Main challenge is writing OCL constraints. • Test generation time took about 12 min per test cases, mostly due to constraint solving • Engineers miss important test scenarios because • Path analysis across multiple use case specifications is difficult • Regular use case specifications are less precise that RUCM
  • 64. Regulations - Requirements 64 Requirements Regulations [RE 2014, MODELS 2014] •  New tax system under development •  System needs to be compliant with the law and remain so over time
  • 65. Solution Overview 65 Test cases Actual software system Traces to Traces to Analyzable interpretation of the law Generates Results match? Impact of legal changes Simulates
  • 66. Example 66 Art. 105bis […]The commuting expenses deduction (FD) is defined as a function over the distance between the principal town of the municipality on whose territory the taxpayer's home is located and the place of taxpayer’s work. The distance is measured in units of distance expressing the kilometric distance between [principal] towns. A ministerial regulation provides these distances. Interpretation + Traces
  • 67. Example 67 The amount of the deduction is calculated as follows: If the distance exceeds 4 units but is less than 30 units, the deduction is € 99 per unit of distance. The first 4 units does not trigger any deduction and the deduction for a distance exceeding 30 units is limited to € 2,574. Interpretation + Traces
  • 68. Discussion •  We addressed the gap between legal experts and IT specialists •  Models understandable by both legal experts and IT specialists •  Modeling effort was considered reasonable given the life span of such eGovernment systems •  Traceability to the law was considered a significant asset given frequent and complex changes in the law 68
  • 70. Conclusions •  From an economic standpoint, •  the accuracy of trace recovery techniques cannot be interpreted out of context •  what traceability information to capture is a trade-off •  benefits depend on context •  More human studies are required to assess cost-benefits •  Design of such studies is not easy: baseline of comparison, comparable tasks, training, comparable skills … 70
  • 71. Conclusions •  Change impact analysis among requirements was surprisingly accurate •  Change rationale needed to be captured •  But this is expected to depend on requirements writing practice, e.g., precision and consistency •  Accurate inter-requirements traces may require capturing tacit dependencies between domain concepts, e.g., domain model •  What type of domain model do we need? Ontologies? •  Can accuracy be improved through the use of NL templates? 71
  • 72. Conclusions •  Requirements-design traces require a precise design methodology, including practical mechanisms to capture design rationale and link it to requirements •  Documenting design rationale cannot be automated, but can be facilitated •  Questions, in each new context: •  What is the right Modeling methodology? •  What is the right trace granularity? •  What information do traces need to carry? 72
  • 74. Traceability is an economic decision
  • 76. Natural Language Requirements •  [RE 2015] C. Arora et al., Change impact analysis for natural language requirements: An NLP approach •  [TSE 2015] C. Arora et al., Automated Checking of Conformance to Requirements Templates using Natural Language Processing •  [ESEM 2014] C. Arora et al., Improving requirements glossary construction via clustering •  [ESEM 2013] C. Arora et al., Automatic checking of conformance to requirements boilerplates via text chunking Requirements-Driven Testing •  [ISSTA 2015] C. Wang et al., Automatic Generation of System Test Cases from Use Case Specifications 76
  • 77. SysML Traceability and Safety Analysis •  [TOSEM 2014] L. Briand et al., Traceability and SysML design slices to support safety inspections: A controlled experiment. •  [IST 2012] S. Nejati et al.A SysML-Based Approach to Traceability Management and Design Slicing in Support of Safety Certification: Framework, Tool Support, and Case Studies •  [HASE 2011] M. Sabetzadeh et al., Using SysML for Modeling of Safety--Critical Software-- Hardware Interfaces: Guidelines and Industry Experience •  [FSE 2011] D. Falessi et al., SafeSlice: a model slicing and design safety inspection tool for SysML. Legal Modeling and Analysis •  [MODELS 2014] G. Soltana et al., “ UML for Modeling Procedural Legal Rule” •  [RE 2014] M. Adedjouma et al., “Automated Detection and Resolution of Legal Cross References” 77
  • 78. .lusoftware verification & validation VVS Traceability Beyond Source Code: An Elusive Target? Lionel Briand Interdisciplinary Centre for Security, Reliability and Trust (SnT) University of Luxembourg SST, Florence - May 17, 2015