OPeNDAP Development and Security Policies. Development Policies All of our software uses LGPL or GPL –LGPL is used by most of the code –We want it to.

Slides:



Advertisements
Similar presentations
WikiWikiWebs and PmWiki Dr. Patrick R. Michaud November 8, 2005.
Advertisements

Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.
CHAPTER 1 SOFTWARE DEVELOPMENT. 2 Goals of software development Aspects of software quality Development life cycle models Basic concepts of algorithm.
By SAG Objectives Cross platform QA Automation for web applications Scheduling the automation Automatically build the test scripts Generate the.
Copyright 2004 Monash University IMS5401 Web-based Systems Development Topic 2: Elements of the Web (g) Interactivity.
IS 214 Needs Assessment and Evaluation of Information Systems Managing Usability © Copyright 2001 Kevin McBride.
CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.
Fundamentals of Information Systems, Second Edition
CS 501 : An Introduction to SCM & GForge An Introduction to SCM & GForge Lin Guo
15 Jul 2005CSE403, Summer'05, Lecture 10 Lecture 10: Incremental Releases Valentin Razmov.
When will our bugs be fixed? When will our new features be added? When will the next release come out? Is my server up-to-date? Users Committers Program.
Low level CASE: Source Code Management. Source Code Management  Also known as Configuration Management  Source Code Managers are tools that: –Archive.
Source Code Management Or Configuration Management: How I learned to Stop Worrying and Hate My Co-workers Less.
1 CSc Senior Project Software Testing. 2 Preface “The amount of required study of testing techniques is trivial – a few hours over the course of.
Michael Solomon Tugboat Software Managing the Software Development Process.
Chapter 10 Publishing and Maintaining Your Web Site.
Version Control with git. Version Control Version control is a system that records changes to a file or set of files over time so that you can recall.
Lecturer: Ghadah Aldehim
Open Source Workshop1 IBM Software Group Working with Apache Tuscany A Hands-On Workshop Luciano Resende Haleh.
Introduction to Interactive Media 02. The Interactive Media Development Process.
Welcome to SasView Code Camp III Getting started: Where we are Some news about changes already before we start Work Packages Schedule of camp Planning.
#RefreshCache Redmine Learn why RefreshCache is the community developer's new best friend. Daniel Hazelbaker Information Technology Director.
Article: Source Code Review Systems Author: Jason Remillard Presenter: Joe Borosky Class: Principles and Applications of Software Design Date: 11/2/2005.
Open Source Software An Introduction. The Creation of Software l As you know, programmers create the software that we use l What you may not understand.
CAA/CFA Review | Andrea Laruelo | ESTEC | May CFA Development Status CAA/CFA Review ESTEC, May 19 th 2011 European Space AgencyAndrea Laruelo.
The Joel Test 12 Steps to Better Code. Readings The Joel Test (by Joel Spolsky) 043.html.
Data management in the field Ari Haukijärvi 2nd EHES training seminar.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 OFED 1.x Process and Beyond Jeff Squyres.
The Pipeline Processing Framework LSST Applications Meeting IPAC Feb. 19, 2008 Raymond Plante National Center for Supercomputing Applications.
1 Lecture 19 Configuration Management Software Engineering.
Introduction to Interactive Media The Interactive Media Development Process.
R 29 G 115 B 176 R 69 G 153 B 195 R 0 G 51 B 153 R 190 G 26 B 38 R 234 G 40 B 57 R 255 G 121 B 1 R 155 G 238 B 255 R 146 G 212 B 0 R 205 G 234 B 247 R.
Upgrading to IBM Cognos 10
Software Project Documentation. Types of Project Documents  Project Charter  Requirements  Mockups and Prototypes  Test Cases  Architecture / Design.
1 3. Computing System Fundamentals 3.1 Language Translators.
Web software. Two types of web software Browser software – used to search for and view websites. Web development software – used to create webpages/websites.
Software Quality Assurance
Development of a virtual knowledge network Geraldine Velandria Social Affairs Officer Division for Gender Affairs 1 December 2010.
Chapter 9 Publishing and Maintaining Your Site. 2 Principles of Web Design Chapter 9 Objectives Understand the features of Internet Service Providers.
Documentation NCRR Documentation for BioPSE/SCIRun and map3d All this great software and you want documentation too!?
Part TWO The Process of Software Documentation Chapter 5: Analyzing Your Users Chapter 6: Planning and writing your Doc. Chapter 7: Getting Useful reviews.
A Short Course on Geant4 Simulation Toolkit How to learn more?
Intermediate 2 Software Development Process. Software You should already know that any computer system is made up of hardware and software. The term hardware.
Fundamentals of Information Systems, Second Edition 1 Systems Development.
Developer Session #3 NCRR Advanced SCIRun/BioPSE Elements: GUIs, Core Libs, Contributions & Support.
OARN Database UPDATE – SEPTEMBER We’re Live – and Testing  The site is up and running in Google’s data centers:  The site has been secured: 
Project Workflow Harry. Contents Trac Review board.
-booting Project Management Process to make it more Simple and Sensible.
Part 4: FCM and the UM University of Reading, December 2015.
T Iteration Demo Tikkaajat [PP] Iteration
 Introduction  Tripwire For Servers  Tripwire Manager  Tripwire For Network Devices  Working Of Tripwire  Advantages  Conclusion.
Usability Engineering Dr. Dania Bilal IS 582 Spring 2007.
What is a Wiki? A wiki is an online database that can be edited by anyone with access to it. “ Wiki ” is Hawaiian meaning ‘ fast ’ or ‘ quick ’
Software Test Plan Why do you need a test plan? –Provides a road map –Provides a feasibility check of: Resources/Cost Schedule Goal What is a test plan?
Geant4 Training 2003 A Short Course on Geant4 Simulation Toolkit How to learn more? The full set of lecture notes of this Geant4.
Computer Security Sample security policy Dr Alexei Vernitski.
Configuration Control (Aliases: change control, change management )
Review for Eclipse Release Review | © 2012 by Review for Eclipse Committers, made available under the EPL v1.0 1 Review for Eclipse (R4E) 0.11 Release.
1 DIRAC Project Status A.Tsaregorodtsev, CPPM-IN2P3-CNRS, Marseille 10 March, DIRAC Developer meeting.
QA process for Business Catalyst projects.. Starting a project What QA needs to start testing::  Specifications – A detailed description of the product,
Antonio Hansford ITEC 400 Berkeley Software Design April 14, 2016.
1 April 14, Starting New Open Source Software Projects William Cohen NCSU CSC 591W April 14, 2008.
Developers Users Committers How do I configure this now? Just one more fix and I am done! CVS Download/Use Software Submit problems/ request features Store.
1 March 10, Project Planning William Cohen NCSU CSC 591W March 10, 2008.
Software Documentation in an Agile Environment
Software Documentation
Software Development Life Cycle (SDLC)
OSOR - new opportunities for sharing statistical software
Beta releases and Product Management
Presentation transcript:

OPeNDAP Development and Security Policies

Development Policies All of our software uses LGPL or GPL –LGPL is used by most of the code –We want it to be easy for others to use the software –We don’t care if they make money from it –GPL is more appropriate for end products like user interfaces

Participating in Development All are welcome Source code is available for read to anyone Write access is limited to a small number of people –Patches - easier for most people because… –SVN write comes with some strings attached Writers must take care to ‘do no harm’ But we know people are not perfect

SVN for source code control - Trac for management Trac is fairly tightly coupled to SVN Trac provides milestones and ‘tickets’ Tickets are used for features, bugs as well as tasks –That is, it is used for both software issues and group management issues Other Trac features: –Wiki for design documents and plans –Roadmap for lists of milestones –SVN browse

Developer’s Wiki We run a Wiki for developers - separate from the Trac Wiki –It uses TWiki It serves as a scratchpad for ideas A place to refine ideas before making more formal versions (e.g., we worte the DAP spec there first before preparing a version in LateX for NASA)

Two Wiki’s are not enough… We are moving all of our documentation to a MediaWiki –Both Programmer documentation –And User documentation We used to use LaTeX for all of our docs and it was easy to make both PDF and HTML versions from the LaTeX sources The Wiki based docs will be much easier for most people to edit

Nightly builds We run nightly builds on several machines There is a web service system we use to collect the results of those builds and the logs they generate The results of the builds are available from Trac - take a look now (scm.opendap.org:8090/trac) The builds are building code from svn using a fresh checkout. We have a svn project which is used to stage a new nightly build

Who can get write access? Anyone who asks can get write access to our Wikis (Developers and Docs) Trac access is more restricted, but we are not too worried about giving out access Both Trac and SVN are database systems and both are backed up every night Nightly builds are limited to specific IP addresses

Development Security Policies Source code review using an expert system Use US Cert guidelines When is source code ready for release? –All changes must be examined by the expert system –And by a designated ‘Security Officer’ –In addition to the original author

Security Release notes In addition to the regular release notes These notes will detail fixes and known issues They will be encrypted and available to security personnel at sites running our code To receive these notes you must provide us with your public key - we will used GPG to encrypt the notes