Open Source Cloud Authors: Liz McMillan, Jason Bloomberg, Yeshim Deniz, Stackify Blog, Vaibhaw Pandey

Related Topics: Microservices Expo, Java IoT, Microsoft Cloud, Open Source Cloud, @CloudExpo, SDN Journal

Microservices Expo: Blog Feed Post

Emerging Trends and Software Quality Assurance

The standard software quality activities defined by IEEE are integrated into the software development cycle

The future challenges for Software Quality assurance (SQA) follow a few software trends, including:

  • Complex and large software packages
  • Integration with external components and interfaces
  • The need to deliver quickly
  • The need to deliver bug free software

The standard software quality activities defined by IEEE, such as verification and validation, are integrated into the software development cycle. We see dedicated SQA roles and resources in major organizations. Also, many multi-national companies are pushing to have a central team drive and manage the quality processes, methodologies, and tools across all their sites and teams.

CAST-software-quality-software-risk-codeThe center of excellence is an example of such a central team, which are focused on defining and driving SQA activities, process, methods, and tools within the organization. They introduce specific software metrics to measure their key process areas (KPAs) at every phase of the software development life cycle. The main idea is to reduce cost of software production and quality, and therefore improve the overall productivity.

With the emerging software system architecture which is mainly oriented around mobile, cloud or SaaS, the need to better understand, manage, and adopt the SQA activities is increasing.

Organizations have started to understand, define, and implement quality models which are specific and relevant to their line of business. There is a strong push to study and apply the appropriate quality model, which could be based on either a standard model such as McCall's factor model, or a specific quality model to address few quality requirements such as security or reliability within every organization. For example: The McCall's factor model classifies all software requirements into eleven software quality factors. These eleven factors are grouped into three categories as follows (Galin, 2004):

  • Product operation factors: Correctness, Reliability, Efficiency, Integrity, Usability.
  • Product revision factors: Maintainability, Flexibility, Testability.
  • Product transition factors: Portability, Reusability, Interoperability.

There are few challenges in terms of adoption of these processes, methodologies, and tools mainly due to the following reasons:

  • Multiple development sites - This challenge is pretty common because the processes working at one site may not work at another site due to several reasons, including lack of resources, not enough expertise on process, not sharing the same priority, etc.
  • Integration of many external components or third parties - Today many organizations promote the use of external components or open source software within their development teams, and forget to anticipate the risks around testing them and getting them the proper support.
  • Not enough standards for software requirements - Although we have seen many standards defining processes including the CMM, CMMI, and ISO, when it comes to quality requirements, we see a lack of software quality standards. There are many institutes which focus on specific areas of software like security, networking, accessibility, and performance.
    • Examples of such institutes are Mitre Corporation, which has defined the popular security vulnerabilities which must be tackled by every software system. They are referred to as Common Weakness Enumeration (CWE). You can find more information at http://cwe.mitre.org/top25/
    • The evolving CISQ standards for software systems led by Object Management Group (OMG). The first version of the CISQ standard was published last year. The CISQ requirements are mainly based on four key quality characteristics - reliability, performance and efficiency, security, and maintainability. You can find more information at http://it-cisq.org/standards-page/
  • Not enough support from management in terms of strategy for SQA processes - There are organizations which still need to mature in terms of defining and implementing the right SQA for their business. They tend to fail due to lack of focus on quality processes.For example, organizations which compromise on testing by reducing or skipping non-functional testing, system testing, or integration testing may face issues in terms of dependencies or other problems linked to environment and platform, security, and performance, which are very critical for business to run smoothly.

The advantages of overcoming the challenges described above include process improvement, optimization, and higher productivity.

The use of standard SQA processes (based on Capability Maturity Model or Testing Maturity Model) should be recommended to develop an efficient SQA function within the organization. And the requirements of test automation should be promoted and enforced.

Based on experience, I would strongly recommend introducing static and dynamic code analysis as part of the QA activities to detect major violations early in the development phase. For example: There are many SCA tools such as CAST Application Intelligent Platform, Fortify, and Coverity which can be integrated into the daily or weekly software development testing activities.

This will have a positive impact on the overall productivity and quality of the software delivered.

Be it on-premise, on-demand, on-mobile, or on-cloud the requirements will evolve. Therefore we have to align the SQA process and tools to better suit these requirements. The software development team is still in charge or responsible for ensuring the quality of the system he is delivering to the market.

No matter which process we try to adopt or follow, as humans we need time to coach ourselves and practice the new process before we can really become the process champions.

Read the original blog entry...

More Stories By Lev Lesokhin

Lev Lesokhin is responsible for CAST's market development, strategy, thought leadership and product marketing worldwide. He has a passion for making customers successful, building the ecosystem, and advancing the state of the art in business technology. Lev comes to CAST from SAP, where he was Director, Global SME Marketing. Prior to SAP, Lev was at the Corporate Executive Board as one of the leaders of the Applications Executive Council, where he worked with the heads of applications organizations at Fortune 1000 companies to identify best management practices.

@ThingsExpo Stories
DXWordEXPO New York 2018, colocated with CloudEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
DXWorldEXPO LLC announced today that ICOHOLDER named "Media Sponsor" of Miami Blockchain Event by FinTechEXPO. ICOHOLDER give you detailed information and help the community to invest in the trusty projects. Miami Blockchain Event by FinTechEXPO has opened its Call for Papers. The two-day event will present 20 top Blockchain experts. All speaking inquiries which covers the following information can be submitted by email to [email protected] Miami Blockchain Event by FinTechEXPO also offers s...
DXWorldEXPO | CloudEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.
Dion Hinchcliffe is an internationally recognized digital expert, bestselling book author, frequent keynote speaker, analyst, futurist, and transformation expert based in Washington, DC. He is currently Chief Strategy Officer at the industry-leading digital strategy and online community solutions firm, 7Summits.
Widespread fragmentation is stalling the growth of the IIoT and making it difficult for partners to work together. The number of software platforms, apps, hardware and connectivity standards is creating paralysis among businesses that are afraid of being locked into a solution. EdgeX Foundry is unifying the community around a common IoT edge framework and an ecosystem of interoperable components.
Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
Cloud-enabled transformation has evolved from cost saving measure to business innovation strategy -- one that combines the cloud with cognitive capabilities to drive market disruption. Learn how you can achieve the insight and agility you need to gain a competitive advantage. Industry-acclaimed CTO and cloud expert, Shankar Kalyana presents. Only the most exceptional IBMers are appointed with the rare distinction of IBM Fellow, the highest technical honor in the company. Shankar has also receive...
Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities - ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups.
The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
Predicting the future has never been more challenging - not because of the lack of data but because of the flood of ungoverned and risk laden information. Microsoft states that 2.5 exabytes of data are created every day. Expectations and reliance on data are being pushed to the limits, as demands around hybrid options continue to grow.
Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
Business professionals no longer wonder if they'll migrate to the cloud; it's now a matter of when. The cloud environment has proved to be a major force in transitioning to an agile business model that enables quick decisions and fast implementation that solidify customer relationships. And when the cloud is combined with the power of cognitive computing, it drives innovation and transformation that achieves astounding competitive advantage.
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
As IoT continues to increase momentum, so does the associated risk. Secure Device Lifecycle Management (DLM) is ranked as one of the most important technology areas of IoT. Driving this trend is the realization that secure support for IoT devices provides companies the ability to deliver high-quality, reliable, secure offerings faster, create new revenue streams, and reduce support costs, all while building a competitive advantage in their markets. In this session, we will use customer use cases...
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
DevOpsSummit New York 2018, colocated with CloudEXPO | DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City. Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of bus...
With 10 simultaneous tracks, keynotes, general sessions and targeted breakout classes, @CloudEXPO and DXWorldEXPO are two of the most important technology events of the year. Since its launch over eight years ago, @CloudEXPO and DXWorldEXPO have presented a rock star faculty as well as showcased hundreds of sponsors and exhibitors! In this blog post, we provide 7 tips on how, as part of our world-class faculty, you can deliver one of the most popular sessions at our events. But before reading...
DXWorldEXPO LLC announced today that "Miami Blockchain Event by FinTechEXPO" has announced that its Call for Papers is now open. The two-day event will present 20 top Blockchain experts. All speaking inquiries which covers the following information can be submitted by email to [email protected] Financial enterprises in New York City, London, Singapore, and other world financial capitals are embracing a new generation of smart, automated FinTech that eliminates many cumbersome, slow, and expe...
With tough new regulations coming to Europe on data privacy in May 2018, Calligo will explain why in reality the effect is global and transforms how you consider critical data. EU GDPR fundamentally rewrites the rules for cloud, Big Data and IoT. In his session at 21st Cloud Expo, Adam Ryan, Vice President and General Manager EMEA at Calligo, examined the regulations and provided insight on how it affects technology, challenges the established rules and will usher in new levels of diligence arou...