Abstract image of a woman sitting on books and studying on a laptop

Software quality assurance

Download as PPTX, PDF
Aman Adhikari, profile picture
Aman Adhikari

The document discusses software quality assurance (SQA) and defines key terms related to quality. It describes SQA as encompassing quality management, software engineering processes, formal reviews, testing strategies, documentation control, and compliance with standards. Specific SQA activities mentioned include developing an SQA plan, participating in process development, auditing work products, and ensuring deviations are addressed. The document also discusses software reviews, inspections, reliability, and the reliability specification process.

Education
Related topics:
Software Quality Assurance
1 of 30
Downloaded 2,002 times
1
2
3
Most read
4
5
6
Most read
7
8
9
10
11
Most read
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
Software Quality Assurance 1
Introduction Software EngineeringSoftware Engineering a “quality” focus process model methods tools 2
Introduction • Quality is defined as a characteristics or attributes of something where as attributes refer to measurable characteristics-things that we are able to compare to known standards. • There are two kinds of quality: – Quality of design refers to the characteristics that designers specify for an item. The grade of materials, tolerances and performance specifications all contribute to the quality of design. – Quality of conformance is the degree to which the design specifications are followed during manufacturing. Greater the degree of conformance, the higher is the level of quality of conformance 3
Continue… • Software quality is defined as conformance to explicitly stated functional and performance requirements, explicitly documented development standards, and implicit characteristics that are expected of all professionally developed software. 4
Continue… • In software development, quality of design encompasses requirements, specifications, and the design of the system where as quality of conformance is an issue focused primarily on implementation. • If the implementation follows the design and the resulting system meets its requirements and performance goals, conformance quality is high. 5
Software Quality Assurance(SQA) • Software quality assurance (SQA) is an umbrella activity that is applied throughout the software process. • SQA encompasses: – A quality management approach – Effective software engineering technology – Formal technical reviews – Multi-tier testing strategy – Control of software documentation and the changes made to it – A procedure to ensure compliance with software development standards – Measurement and reporting mechanism 6
SQA Activities • SQA is composed of a variety of tasks associated with two different constituencies- the software engineer who do technical work and an SQA group that has responsibility for quality assurance planning, oversight , record keeping analysis and reporting. • The charter of the SQA group is to assist software team in achieving a high quality end product. • The SEI recommends a set of SQA activities that address quality assurance. 7
Activities… • Prepare an SQA plan for a project – The plan is developed during project planning and is reviewed by all interested parties. SQA activities performed by the software engineering team and the SQA team group are governed by the plan. The plan identifies: – Evaluations to be performed – Audits and reviews to be performed – Standards that are applicable to the project – Procedures for error reporting and tracking – Documents to be produced by the SQA team – Amount of feedback provided to the software project team 8
Continue… • Participates in the development of the project’s software process description – The software team selects a process for the work to be performed – The SQA reviews the process description for compliance with organization policy, internal software standards, externally imposed standards and other parts of software project plan. • Reviews software engineering activities to verify compliances with defined software process – The SQA group identifies, documents and track deviations from the process and verifies that corrections have been made. 9
Continue… • Audits designated software work products to verify compliance with those defined as part of the software process – The SQA reviews selected work products, identifies, documents and track deviations; verifies that correction have been made; and periodically reports the results of its works to the project manager • Ensures that deviations in software work and work products are documented and handled according to a documented procedures • Records any noncompliance and reports to senior management 10
Quality Concepts • Concerned with ensuring that the required level of quality is achieved in a software product. • Three principal concerns: – At the organizational level, quality management is concerned with establishing a framework of organizational processes and standards that will lead to high-quality software. – At the project level, quality management involves the application of specific quality processes and checking that these planned processes have been followed. – At the project level, quality management is also concerned with establishing a quality plan for a project. The quality plan should set out the quality goals for the project and define what processes and standards are to be used. 11
Continue… • Examples: – No two products are similar – All engineered and manufactured parts exhibit variation. – Variation control is the heart of quality control. 12
Software Reviews • Software reviews are a filter for the software engineering process. • Reviews are applied at various points during software development and serve to uncover errors and defects that can then be removed. • Software reviews purify the software engineering activities that we have called analysis , design and coding. 13
Continue… • A review is a way of using the diversity of a group of people to: – Point out needed improvements in the product of a single person or team; – Confirm those parts of a product in which improvement is either not desired or not needed; – Achieve technical work of more uniform, or at least more predictable, quality than can be achieved without reviews, in order to make technical work more manageable. 14
Software Reviews • A group examines part or all of a process or system and its documentation to find potential problems. • Software or documents may be 'signed off' at a review which signifies that progress to the next development stage has been approved by management. • There are different types of review with different objectives – Inspections for defect removal (product); – Reviews for progress assessment (product and process); – Quality reviews (product and standards). 15
Quality Reviews • A group of people carefully examine part or all of a software system and its associated documentation. • Code, designs, specifications, test plans, standards, etc. can all be reviewed. • Software or documents may be 'signed off' at a review which signifies that progress to the next development stage has been approved by management. 16
Software Reviews Process 17
Program inspections • These are peer reviews where engineers examine the source of a system with the aim of discovering anomalies and defects. • Inspections do not require execution of a system so may be used before implementation. • They may be applied to any representation of the system (requirements, design ,configuration data, test data, etc.). • They have been shown to be an effective technique for discovering program errors. 18
Inspection checklists • Checklist of common errors should be used to drive the inspection. • Error checklists are programming language dependent and reflect the characteristic errors that are likely to arise in the language. • In general, the 'weaker' the type checking, the larger the checklist. • Examples: Initialisation, Constant naming, loop termination, array bounds, etc. 19
An inspection checklist (a) Fault class Inspection check Data faults  Are all program variables initialized before their values are used?  Have all constants been named?  Should the upper bound of arrays be equal to the size of the array or Size -1?  If character strings are used, is a delimiter explicitly assigned?  Is there any possibility of buffer overflow? Control faults  For each conditional statement, is the condition correct?  Is each loop certain to terminate?  Are compound statements correctly bracketed?  In case statements, are all possible cases accounted for?  If a break is required after each case in case statements, has it been included? Input/output faults  Are all input variables used?  Are all output variables assigned a value before they are output?  Can unexpected inputs cause corruption? 20
An inspection checklist (b) Fault class Inspection check Interface faults  Do all function and method calls have the correct number of parameters?  Do formal and actual parameter types match?  Are the parameters in the right order?  If components access shared memory, do they have the same model of the shared memory structure? Storage management faults  If a linked structure is modified, have all links been correctly reassigned?  If dynamic storage is used, has space been allocated correctly?  Is space explicitly deallocated after it is no longer required? Exception management faults  Have all possible error conditions been taken into account? 21
Software Reliability  Reliability is a measurable system attribute so non-functional reliability requirements may be specified quantitatively. These define the number of failures that are acceptable during normal use of the system or the time in which the system must be available. • Functional reliability requirements define system and software functions that avoid, detect or tolerate faults in the software and so ensure that these faults do not lead to system failure. • Software reliability requirements may also be included to cope with hardware failure or operator error. 22
Software Reliability • Reliability – The probability of failure-free system operation over a specified time in a given environment for a given purpose • Availability – The probability that a system, at a point in time, will be operational and able to deliver the requested services • Both of these attributes can be expressed quantitatively e.g. availability of 0.999 means that the system is up and running for 99.9% of the time. 23
Reliability Specification Process • Risk identification – Identify the types of system failure that may lead to economic losses. • Risk analysis – Estimate the costs and consequences of the different types of software failure. • Risk decomposition – Identify the root causes of system failure. • Risk reduction – Generate reliability specifications, including quantitative requirements defining the acceptable levels of failure. 24
Types of system failure Failure type Description Loss of service The system is unavailable and cannot deliver its services to users. You may separate this into loss of critical services and loss of non-critical services, where the consequences of a failure in non-critical services are less than the consequences of critical service failure. Incorrect service delivery The system does not deliver a service correctly to users. Again, this may be specified in terms of minor and major errors or errors in the delivery of critical and non-critical services. System/data corruption The failure of the system causes damage to the system itself or its data. This will usually but not necessarily be in conjunction with other types of failures. 25
Reliability Metrics • Reliability metrics are units of measurement of system reliability. • System reliability is measured by counting the number of operational failures and, where appropriate, relating these to the demands made on the system and the time that the system has been operational. • A long-term measurement programme is required to assess the reliability of critical systems. • Metrics – Probability of failure on demand – Rate of occurrence of failures/Mean time to failure – Availability 26
Examples: Probability of failure on demand (POFOD) • This is the probability that the system will fail when a service request is made. Useful when demands for service are intermittent and relatively infrequent. • Appropriate for protection systems where services are demanded occasionally and where there are serious consequence if the service is not delivered. • Relevant for many safety-critical systems with exception management components – Emergency shutdown system in a chemical plant. 27
Rate of fault occurrence (ROCOF) • Reflects the rate of occurrence of failure in the system. • ROCOF of 0.002 means 2 failures are likely in each 1000 operational time units e.g. 2 failures per 1000 hours of operation. • Relevant for systems where the system has to process a large number of similar requests in a short time – Credit card processing system, airline booking system. • Reciprocal of ROCOF is Mean time to Failure (MTTF) – Relevant for systems with long transactions i.e. where system processing takes a long time (e.g. CAD systems). MTTF should be longer than expected transaction length. 28
Perceptions of reliability • The formal definition of reliability does not always reflect the user’s perception of a system’s reliability – The assumptions that are made about the environment where a system will be used may be incorrect • Usage of a system in an office environment is likely to be quite different from usage of the same system in a university environment – The consequences of system failures affects the perception of reliability • Unreliable windscreen wipers in a car may be irrelevant in a dry climate • Failures that have serious consequences (such as an engine breakdown in a car) are given greater weight by users than failures that are inconvenient 29
Reliability and specifications • Reliability can only be defined formally with respect to a system specification i.e. a failure is a deviation from a specification. • However, many specifications are incomplete or incorrect – hence, a system that conforms to its specification may ‘fail’ from the perspective of system users. • Furthermore, users don’t read specifications so don’t know how the system is supposed to behave. • Therefore perceived reliability is more important in practice. 30

More Related Content

PPTX
Software quality assurance
Er. Nancy
 
PPTX
Software testing & Quality Assurance
Webtech Learning
 
PPSX
Software Development Life Cycle
Manohar Prasad, PfMP®, PgMP®, PMP®, RMP®, ACP®, CAL®, ACC®, CSP®
 
PPTX
Software Quality Assurance
ShashankBajpai24
 
PPTX
Software quality
Sara Mehmood
 
PPT
Chapter 5 Software Quality Assurance-Finalised_BW.ppt
Bule Hora University
 
PPTX
Software development life cycle (SDLC)
Simran Kaur
 
PPT
SOFTWARE QUALITY ASSURANCE.ppt
DrTThendralCompSci
 
Software quality assurance
Er. Nancy
 
Software testing & Quality Assurance
Webtech Learning
 
Software Development Life Cycle
Manohar Prasad, PfMP®, PgMP®, PMP®, RMP®, ACP®, CAL®, ACC®, CSP®
 
Software Quality Assurance
ShashankBajpai24
 
Software quality
Sara Mehmood
 
Chapter 5 Software Quality Assurance-Finalised_BW.ppt
Bule Hora University
 
Software development life cycle (SDLC)
Simran Kaur
 
SOFTWARE QUALITY ASSURANCE.ppt
DrTThendralCompSci
 

What's hot (20)

PPTX
Software quality assurance
University of Sargodha
 
PPTX
Software Quality Assurance
Saqib Raza
 
PDF
Software requirements
Dr. Loganathan R
 
PPTX
formal verification
Toseef Aslam
 
PDF
Types of software testing
Prachi Sasankar
 
PPT
Software Quality Assurance
Sachithra Gayan
 
PPT
REQUIREMENT ENGINEERING
Saqib Raza
 
PPTX
Software Process Models
Hassan A-j
 
PPTX
Software design
Syed Muhammad Hammad-ud-Din
 
PPTX
Software Engineering Layered Technology Software Process Framework
JAINAM KAPADIYA
 
PPTX
software quality
preetikapri1
 
PPTX
Design Model & User Interface Design in Software Engineering
Meghaj Mallick
 
PPTX
Software Configuration Management (SCM)
Er. Shiva K. Shrestha
 
PPT
Software architecture design ppt
farazimlak
 
PPTX
SRS(software requirement specification)
Akash Kumar Dhameja
 
PPTX
Data Designs (Software Engg.)
Arun Shukla
 
PPTX
Cohesion and coupling
Aprajita (Abbey) Singh
 
PPTX
software cost factor
Abinaya B
 
PPT
Unit 8
anuragmbst
 
PPT
Software Engineering (Software Process: A Generic View)
ShudipPal
 
Software quality assurance
University of Sargodha
 
Software Quality Assurance
Saqib Raza
 
Software requirements
Dr. Loganathan R
 
formal verification
Toseef Aslam
 
Types of software testing
Prachi Sasankar
 
Software Quality Assurance
Sachithra Gayan
 
REQUIREMENT ENGINEERING
Saqib Raza
 
Software Process Models
Hassan A-j
 
Software design
Syed Muhammad Hammad-ud-Din
 
Software Engineering Layered Technology Software Process Framework
JAINAM KAPADIYA
 
software quality
preetikapri1
 
Design Model & User Interface Design in Software Engineering
Meghaj Mallick
 
Software Configuration Management (SCM)
Er. Shiva K. Shrestha
 
Software architecture design ppt
farazimlak
 
SRS(software requirement specification)
Akash Kumar Dhameja
 
Data Designs (Software Engg.)
Arun Shukla
 
Cohesion and coupling
Aprajita (Abbey) Singh
 
software cost factor
Abinaya B
 
Unit 8
anuragmbst
 
Software Engineering (Software Process: A Generic View)
ShudipPal
 
Ad

Similar to Software quality assurance (20)

PPTX
SOFTWARE QUALITY ASSURANCE .pptx
spborkarofficial
 
PPT
Software engineering unit V-2 notes in the ppt format
hodcsm5
 
PPT
Software Engineering (Software Quality Assurance)
ShudipPal
 
PPTX
Software testing introduction
GaneshKumarKanthiah
 
PPTX
Software Quality Assurance - Software Engineering PPT by Devansh Koolwal
Devansh Koolwal
 
PDF
UNIT-1 software testing chapter (must learn)
tanvipatel918261
 
PPTX
Software engineering 15 software quality assurance practices
Vaibhav Khanna
 
PPT
Intoduction to software engineering part 2
Rupesh Vaishnav
 
DOC
Chapter 8 software quality assurance and configuration audit
Cliftone Mullah
 
PPTX
EContent_11_2024_04_24_08_32_29_Unit5_PPT1pptx__2024_04_05_09_12_50.pptx
DevSavaliya1
 
PPTX
S.E Unit 6colorcolorcolorcolorcolorcolor.pptx
SsdSsd5
 
PPTX
SE - Lecture 7 - Software Quality Reliability Mgmt - in lecture.pptx
TangZhiSiang
 
PPTX
SOFTWARE MAINTAINANCE AND ITS KEY ASPECTS .pptx
SONUKUMAR213838
 
PPT
UNIT V SOFTWARE QUALITY ASSUARANCE (1).ppt
BoyaRaghuveera
 
PPT
05_SQA_Overview.ppt
SaqibHabib11
 
PPT
SOFTWARE ENGINEERING unit4-1 CLASS notes in pptx 2nd year
hodcsm5
 
PPTX
Fault code for the whole thing is that you have a
ABDULRAHMANSANI3
 
PDF
Software Quality Assurance- Introduction
pragadarsh
 
PPTX
Lecture 08 (SQE, Testing, PM, RM, ME).pptx
SirRafiLectures
 
PPT
Lec25
Omkar Gupta
 
SOFTWARE QUALITY ASSURANCE .pptx
spborkarofficial
 
Software engineering unit V-2 notes in the ppt format
hodcsm5
 
Software Engineering (Software Quality Assurance)
ShudipPal
 
Software testing introduction
GaneshKumarKanthiah
 
Software Quality Assurance - Software Engineering PPT by Devansh Koolwal
Devansh Koolwal
 
UNIT-1 software testing chapter (must learn)
tanvipatel918261
 
Software engineering 15 software quality assurance practices
Vaibhav Khanna
 
Intoduction to software engineering part 2
Rupesh Vaishnav
 
Chapter 8 software quality assurance and configuration audit
Cliftone Mullah
 
EContent_11_2024_04_24_08_32_29_Unit5_PPT1pptx__2024_04_05_09_12_50.pptx
DevSavaliya1
 
S.E Unit 6colorcolorcolorcolorcolorcolor.pptx
SsdSsd5
 
SE - Lecture 7 - Software Quality Reliability Mgmt - in lecture.pptx
TangZhiSiang
 
SOFTWARE MAINTAINANCE AND ITS KEY ASPECTS .pptx
SONUKUMAR213838
 
UNIT V SOFTWARE QUALITY ASSUARANCE (1).ppt
BoyaRaghuveera
 
05_SQA_Overview.ppt
SaqibHabib11
 
SOFTWARE ENGINEERING unit4-1 CLASS notes in pptx 2nd year
hodcsm5
 
Fault code for the whole thing is that you have a
ABDULRAHMANSANI3
 
Software Quality Assurance- Introduction
pragadarsh
 
Lecture 08 (SQE, Testing, PM, RM, ME).pptx
SirRafiLectures
 
Lec25
Omkar Gupta
 
Ad

More from Aman Adhikari (20)

PDF
Algorithmic Toolbox Certificate from Coursera for Aman Adhikari
Aman Adhikari
 
PPS
Vp all slides
Aman Adhikari
 
PPS
Mca se chapter_9_formal_methods
Aman Adhikari
 
PPS
Mca se chapter_07_software_validation
Aman Adhikari
 
PDF
Mca 1st & 2nd final
Aman Adhikari
 
PPTX
Software testing
Aman Adhikari
 
PPTX
Software requirement and specification
Aman Adhikari
 
PPTX
Software project plannings
Aman Adhikari
 
PPTX
Software requirement and specification
Aman Adhikari
 
PPTX
Software project plannings
Aman Adhikari
 
PDF
Software engineering mca
Aman Adhikari
 
PPTX
Software ee1
Aman Adhikari
 
PPTX
Software ee111
Aman Adhikari
 
PPTX
Research problem unit2 supplementary
Aman Adhikari
 
PPTX
Research methodology unit i
Aman Adhikari
 
PPTX
Research methodology unit6
Aman Adhikari
 
PPTX
Research methodology – unit5
Aman Adhikari
 
PPTX
Research methodology – unit 9
Aman Adhikari
 
PPTX
Research methodology – unit 4
Aman Adhikari
 
PPTX
Research methodology unit5
Aman Adhikari
 
Algorithmic Toolbox Certificate from Coursera for Aman Adhikari
Aman Adhikari
 
Vp all slides
Aman Adhikari
 
Mca se chapter_9_formal_methods
Aman Adhikari
 
Mca se chapter_07_software_validation
Aman Adhikari
 
Mca 1st & 2nd final
Aman Adhikari
 
Software testing
Aman Adhikari
 
Software requirement and specification
Aman Adhikari
 
Software project plannings
Aman Adhikari
 
Software requirement and specification
Aman Adhikari
 
Software project plannings
Aman Adhikari
 
Software engineering mca
Aman Adhikari
 
Software ee1
Aman Adhikari
 
Software ee111
Aman Adhikari
 
Research problem unit2 supplementary
Aman Adhikari
 
Research methodology unit i
Aman Adhikari
 
Research methodology unit6
Aman Adhikari
 
Research methodology – unit5
Aman Adhikari
 
Research methodology – unit 9
Aman Adhikari
 
Research methodology – unit 4
Aman Adhikari
 
Research methodology unit5
Aman Adhikari
 

Recently uploaded (20)

PDF
GIÁO ÁN TIẾNG ANH 7 GLOBAL SUCCESS (CẢ NĂM) THEO CÔNG VĂN 5512 (2 CỘT) NĂM HỌ...
Nguyen Thanh Tu Collection
 
PDF
Horaris_Grups_25-26_Definitiu_15_07_25.pdf
rpujol11
 
PPTX
operating_systems_presentations_delhi_nc
Sagar878973
 
PPTX
MMW-CHAPTER-1-final.pptx major Elementary Education
kimberlydespair4
 
PPTX
CHROMIUM & Glucose Tolerance Factor.pptx
V.V.V College for Women, Virudhunagar
 
PPTX
Neurology of Systemic disease all systems
BisratAlex2
 
DOCX
THEORY AND PRACTICE ASSIGNMENT SEMESTER MAY 2025.docx
muhammadsyahir916
 
PPTX
ACFE CERTIFICATION TRAINING ON LAW.pptx
Godwin Emmanuel Oyedokun MBA MSc PhD FCA FCTI FCNA CFE FFAR
 
PPTX
Copy of ARAL Program Primer_071725(1).pptx
LovelyLocsinVillar
 
PDF
GSA-Past-Papers-2010-2024-2.pdf CSS examination
AsraAli6
 
PPT
hemostasis and its significance, physiology
rakshasb
 
PDF
African Communication Research: A review
AgathaMashindano1
 
PDF
Disorder of Endocrine system (1).pdfyyhyyyy
[email protected]
 
PDF
BSc-Zoology-02Sem-DrVijay-Comparative anatomy of vertebrates.pdf
ps6013234
 
PPTX
4. Diagnosis and treatment planning in RPD.pptx
rakshasb
 
PDF
Chevening Scholarship Application and Interview Preparation Guide
Leneka Rhoden
 
PPTX
Math 2 Quarter 2 Week 1 Matatag Curriculum
ChescaMEChannel
 
PPTX
Power Point PR B.Inggris 12 Ed. 2019.pptx
FirdaFauziah14
 
PPTX
Theoretical for class.pptxgshdhddhdhdhgd
MoybonKalif
 
PPTX
IT infrastructure and emerging technologies
dhananjaymane12
 
GIÁO ÁN TIẾNG ANH 7 GLOBAL SUCCESS (CẢ NĂM) THEO CÔNG VĂN 5512 (2 CỘT) NĂM HỌ...
Nguyen Thanh Tu Collection
 
Horaris_Grups_25-26_Definitiu_15_07_25.pdf
rpujol11
 
operating_systems_presentations_delhi_nc
Sagar878973
 
MMW-CHAPTER-1-final.pptx major Elementary Education
kimberlydespair4
 
CHROMIUM & Glucose Tolerance Factor.pptx
V.V.V College for Women, Virudhunagar
 
Neurology of Systemic disease all systems
BisratAlex2
 
THEORY AND PRACTICE ASSIGNMENT SEMESTER MAY 2025.docx
muhammadsyahir916
 
ACFE CERTIFICATION TRAINING ON LAW.pptx
Godwin Emmanuel Oyedokun MBA MSc PhD FCA FCTI FCNA CFE FFAR
 
Copy of ARAL Program Primer_071725(1).pptx
LovelyLocsinVillar
 
GSA-Past-Papers-2010-2024-2.pdf CSS examination
AsraAli6
 
hemostasis and its significance, physiology
rakshasb
 
African Communication Research: A review
AgathaMashindano1
 
Disorder of Endocrine system (1).pdfyyhyyyy
[email protected]
 
BSc-Zoology-02Sem-DrVijay-Comparative anatomy of vertebrates.pdf
ps6013234
 
4. Diagnosis and treatment planning in RPD.pptx
rakshasb
 
Chevening Scholarship Application and Interview Preparation Guide
Leneka Rhoden
 
Math 2 Quarter 2 Week 1 Matatag Curriculum
ChescaMEChannel
 
Power Point PR B.Inggris 12 Ed. 2019.pptx
FirdaFauziah14
 
Theoretical for class.pptxgshdhddhdhdhgd
MoybonKalif
 
IT infrastructure and emerging technologies
dhananjaymane12
 

Software quality assurance

  • 2. Introduction Software EngineeringSoftware Engineering a “quality” focus process model methods tools 2
  • 3. Introduction • Quality is defined as a characteristics or attributes of something where as attributes refer to measurable characteristics-things that we are able to compare to known standards. • There are two kinds of quality: – Quality of design refers to the characteristics that designers specify for an item. The grade of materials, tolerances and performance specifications all contribute to the quality of design. – Quality of conformance is the degree to which the design specifications are followed during manufacturing. Greater the degree of conformance, the higher is the level of quality of conformance 3
  • 4. Continue… • Software quality is defined as conformance to explicitly stated functional and performance requirements, explicitly documented development standards, and implicit characteristics that are expected of all professionally developed software. 4
  • 5. Continue… • In software development, quality of design encompasses requirements, specifications, and the design of the system where as quality of conformance is an issue focused primarily on implementation. • If the implementation follows the design and the resulting system meets its requirements and performance goals, conformance quality is high. 5
  • 6. Software Quality Assurance(SQA) • Software quality assurance (SQA) is an umbrella activity that is applied throughout the software process. • SQA encompasses: – A quality management approach – Effective software engineering technology – Formal technical reviews – Multi-tier testing strategy – Control of software documentation and the changes made to it – A procedure to ensure compliance with software development standards – Measurement and reporting mechanism 6
  • 7. SQA Activities • SQA is composed of a variety of tasks associated with two different constituencies- the software engineer who do technical work and an SQA group that has responsibility for quality assurance planning, oversight , record keeping analysis and reporting. • The charter of the SQA group is to assist software team in achieving a high quality end product. • The SEI recommends a set of SQA activities that address quality assurance. 7
  • 8. Activities… • Prepare an SQA plan for a project – The plan is developed during project planning and is reviewed by all interested parties. SQA activities performed by the software engineering team and the SQA team group are governed by the plan. The plan identifies: – Evaluations to be performed – Audits and reviews to be performed – Standards that are applicable to the project – Procedures for error reporting and tracking – Documents to be produced by the SQA team – Amount of feedback provided to the software project team 8
  • 9. Continue… • Participates in the development of the project’s software process description – The software team selects a process for the work to be performed – The SQA reviews the process description for compliance with organization policy, internal software standards, externally imposed standards and other parts of software project plan. • Reviews software engineering activities to verify compliances with defined software process – The SQA group identifies, documents and track deviations from the process and verifies that corrections have been made. 9
  • 10. Continue… • Audits designated software work products to verify compliance with those defined as part of the software process – The SQA reviews selected work products, identifies, documents and track deviations; verifies that correction have been made; and periodically reports the results of its works to the project manager • Ensures that deviations in software work and work products are documented and handled according to a documented procedures • Records any noncompliance and reports to senior management 10
  • 11. Quality Concepts • Concerned with ensuring that the required level of quality is achieved in a software product. • Three principal concerns: – At the organizational level, quality management is concerned with establishing a framework of organizational processes and standards that will lead to high-quality software. – At the project level, quality management involves the application of specific quality processes and checking that these planned processes have been followed. – At the project level, quality management is also concerned with establishing a quality plan for a project. The quality plan should set out the quality goals for the project and define what processes and standards are to be used. 11
  • 12. Continue… • Examples: – No two products are similar – All engineered and manufactured parts exhibit variation. – Variation control is the heart of quality control. 12
  • 13. Software Reviews • Software reviews are a filter for the software engineering process. • Reviews are applied at various points during software development and serve to uncover errors and defects that can then be removed. • Software reviews purify the software engineering activities that we have called analysis , design and coding. 13
  • 14. Continue… • A review is a way of using the diversity of a group of people to: – Point out needed improvements in the product of a single person or team; – Confirm those parts of a product in which improvement is either not desired or not needed; – Achieve technical work of more uniform, or at least more predictable, quality than can be achieved without reviews, in order to make technical work more manageable. 14
  • 15. Software Reviews • A group examines part or all of a process or system and its documentation to find potential problems. • Software or documents may be 'signed off' at a review which signifies that progress to the next development stage has been approved by management. • There are different types of review with different objectives – Inspections for defect removal (product); – Reviews for progress assessment (product and process); – Quality reviews (product and standards). 15
  • 16. Quality Reviews • A group of people carefully examine part or all of a software system and its associated documentation. • Code, designs, specifications, test plans, standards, etc. can all be reviewed. • Software or documents may be 'signed off' at a review which signifies that progress to the next development stage has been approved by management. 16
  • 18. Program inspections • These are peer reviews where engineers examine the source of a system with the aim of discovering anomalies and defects. • Inspections do not require execution of a system so may be used before implementation. • They may be applied to any representation of the system (requirements, design ,configuration data, test data, etc.). • They have been shown to be an effective technique for discovering program errors. 18
  • 19. Inspection checklists • Checklist of common errors should be used to drive the inspection. • Error checklists are programming language dependent and reflect the characteristic errors that are likely to arise in the language. • In general, the 'weaker' the type checking, the larger the checklist. • Examples: Initialisation, Constant naming, loop termination, array bounds, etc. 19
  • 20. An inspection checklist (a) Fault class Inspection check Data faults  Are all program variables initialized before their values are used?  Have all constants been named?  Should the upper bound of arrays be equal to the size of the array or Size -1?  If character strings are used, is a delimiter explicitly assigned?  Is there any possibility of buffer overflow? Control faults  For each conditional statement, is the condition correct?  Is each loop certain to terminate?  Are compound statements correctly bracketed?  In case statements, are all possible cases accounted for?  If a break is required after each case in case statements, has it been included? Input/output faults  Are all input variables used?  Are all output variables assigned a value before they are output?  Can unexpected inputs cause corruption? 20
  • 21. An inspection checklist (b) Fault class Inspection check Interface faults  Do all function and method calls have the correct number of parameters?  Do formal and actual parameter types match?  Are the parameters in the right order?  If components access shared memory, do they have the same model of the shared memory structure? Storage management faults  If a linked structure is modified, have all links been correctly reassigned?  If dynamic storage is used, has space been allocated correctly?  Is space explicitly deallocated after it is no longer required? Exception management faults  Have all possible error conditions been taken into account? 21
  • 22. Software Reliability  Reliability is a measurable system attribute so non-functional reliability requirements may be specified quantitatively. These define the number of failures that are acceptable during normal use of the system or the time in which the system must be available. • Functional reliability requirements define system and software functions that avoid, detect or tolerate faults in the software and so ensure that these faults do not lead to system failure. • Software reliability requirements may also be included to cope with hardware failure or operator error. 22
  • 23. Software Reliability • Reliability – The probability of failure-free system operation over a specified time in a given environment for a given purpose • Availability – The probability that a system, at a point in time, will be operational and able to deliver the requested services • Both of these attributes can be expressed quantitatively e.g. availability of 0.999 means that the system is up and running for 99.9% of the time. 23
  • 24. Reliability Specification Process • Risk identification – Identify the types of system failure that may lead to economic losses. • Risk analysis – Estimate the costs and consequences of the different types of software failure. • Risk decomposition – Identify the root causes of system failure. • Risk reduction – Generate reliability specifications, including quantitative requirements defining the acceptable levels of failure. 24
  • 25. Types of system failure Failure type Description Loss of service The system is unavailable and cannot deliver its services to users. You may separate this into loss of critical services and loss of non-critical services, where the consequences of a failure in non-critical services are less than the consequences of critical service failure. Incorrect service delivery The system does not deliver a service correctly to users. Again, this may be specified in terms of minor and major errors or errors in the delivery of critical and non-critical services. System/data corruption The failure of the system causes damage to the system itself or its data. This will usually but not necessarily be in conjunction with other types of failures. 25
  • 26. Reliability Metrics • Reliability metrics are units of measurement of system reliability. • System reliability is measured by counting the number of operational failures and, where appropriate, relating these to the demands made on the system and the time that the system has been operational. • A long-term measurement programme is required to assess the reliability of critical systems. • Metrics – Probability of failure on demand – Rate of occurrence of failures/Mean time to failure – Availability 26
  • 27. Examples: Probability of failure on demand (POFOD) • This is the probability that the system will fail when a service request is made. Useful when demands for service are intermittent and relatively infrequent. • Appropriate for protection systems where services are demanded occasionally and where there are serious consequence if the service is not delivered. • Relevant for many safety-critical systems with exception management components – Emergency shutdown system in a chemical plant. 27
  • 28. Rate of fault occurrence (ROCOF) • Reflects the rate of occurrence of failure in the system. • ROCOF of 0.002 means 2 failures are likely in each 1000 operational time units e.g. 2 failures per 1000 hours of operation. • Relevant for systems where the system has to process a large number of similar requests in a short time – Credit card processing system, airline booking system. • Reciprocal of ROCOF is Mean time to Failure (MTTF) – Relevant for systems with long transactions i.e. where system processing takes a long time (e.g. CAD systems). MTTF should be longer than expected transaction length. 28
  • 29. Perceptions of reliability • The formal definition of reliability does not always reflect the user’s perception of a system’s reliability – The assumptions that are made about the environment where a system will be used may be incorrect • Usage of a system in an office environment is likely to be quite different from usage of the same system in a university environment – The consequences of system failures affects the perception of reliability • Unreliable windscreen wipers in a car may be irrelevant in a dry climate • Failures that have serious consequences (such as an engine breakdown in a car) are given greater weight by users than failures that are inconvenient 29
  • 30. Reliability and specifications • Reliability can only be defined formally with respect to a system specification i.e. a failure is a deviation from a specification. • However, many specifications are incomplete or incorrect – hence, a system that conforms to its specification may ‘fail’ from the perspective of system users. • Furthermore, users don’t read specifications so don’t know how the system is supposed to behave. • Therefore perceived reliability is more important in practice. 30