Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dr. Rob Hasker. Classic Quality Assurance  Ensure follow process Solid, reviewed requirements Reviewed design Reviewed, passing tests  Why doesn’t “we.

Published byElizabeth Hood Modified over 9 years ago

Similar presentations

Presentation on theme: "Dr. Rob Hasker. Classic Quality Assurance  Ensure follow process Solid, reviewed requirements Reviewed design Reviewed, passing tests  Why doesn’t “we."— Presentation transcript:

1 Dr. Rob Hasker

2 Classic Quality Assurance  Ensure follow process Solid, reviewed requirements Reviewed design Reviewed, passing tests  Why doesn’t “we did a good job” work?  Why isn’t this model needed for Scrum?  Why do we need something?

3 A little history  What’s the Hippocratic oath?  Therac-25: medical linear accelerator Generates high-energy beams Targets tumors from multiple angles  June, 1985 61-year old woman receives radiation therapy She received 15,000 to 20,000 rads ○ Typical therapeutic does: in range of 200 rads ○ 1000 rads can be fatal Her breast had to be removed, constant pain in arms  Nov 3, 1985: patient dies after receiving 13,000 to 17,000 rads

4 A little history  March, April 1986 Patient receives 16,500 to 25,000 rads in < 1 sec Within weeks: paralysis in an arm, legs, vocal cords Died 5 months later  At least 3 other documented deaths  Cause: poor software design Interface assumed operators would type slowly Experienced operators could type faster than SW allowed, so data entry was setting a different field than shown on screen Classic race condition: timing assumptions gone wrong

5 What is the root cause?  Simple root cause analysis: ask why 6 times  Multiple failures beyond design Manufacturer: poor safety model ○ Relied on hardware reliability ○ Reliability: likely to work ≠ safety: no harm Hardware engineers: assumed SW worked ○ Inadequate logs SW Developers: poor specs, no process Medical authorities: slow to respond

6 But that can’t happen today, right?  July, 2015: Wired reports ability to remotely control JeepsWired reports Set radio blaring Engaged windshield wipers Disabled accelerator Disabled brakes  Method: Connect via cellular Rewrite entertainment firmware Connect to CAN bus Send signals to engine, brakes, etc.

7 Software Quality Assurance  Need a process to ensure SW well designed, tested Who signs off on that in an agile model? What do they look for? Open questions!!

8 SQA  Definition of software quality  Goals  Methods  Quality metrics

9 CMMI  How can an organization establish it provides quality software?  One solution: capability maturity model

10

11 Another approach  What can you accomplish by testing? Showing the existence of bugs NOT: showing system has no bugs  Solution: prove system correct Provide formal specification ○ Basic tool: mathematics – esp. set theory Can then prove theorems  Limitations Writing specifications is difficult Limited support for theorems  Has been done for compilers, safety critical systems Easy to dismiss, but strong limits to testing

12 Model-based Development

13 Proving code works  Z specification:

Download ppt "Dr. Rob Hasker. Classic Quality Assurance  Ensure follow process Solid, reviewed requirements Reviewed design Reviewed, passing tests  Why doesn’t “we."

Similar presentations

Ch.21 Software Its Nature and Qualities. Ch.22 Outline Software engineering (SE) is an intellectual activity and thus human-intensive Software is built.

Ch.21 Software Its Nature and Qualities. Ch.22 Outline Software engineering (SE) is an intellectual activity and thus human-intensive Software is built.
“An Investigation of the Therac-25 Accidents” by Nancy G. Leveson and Clark S. Turner Catherine Schell CSC 508 October 13, 2004.

“An Investigation of the Therac-25 Accidents” by Nancy G. Leveson and Clark S. Turner Catherine Schell CSC 508 October 13, 2004.
The Therac-25: A Software Fatal Failure

The Therac-25: A Software Fatal Failure
Why Leap Seconds are Difficult for a Vendor. Multiple Notification Sources  Inconsistencies in notification date  GPS< 6 months  NTPneeds 24 hours.

Why Leap Seconds are Difficult for a Vendor. Multiple Notification Sources  Inconsistencies in notification date  GPS< 6 months  NTPneeds 24 hours.
Background Increasing use of automated systems Hardware and software technology are improving rapidly User interface technology is lagging Critical bottleneck.

Background Increasing use of automated systems Hardware and software technology are improving rapidly User interface technology is lagging Critical bottleneck.
An Investigation of the Therac-25 Accidents Nancy G. Leveson Clark S. Turner IEEE, 1993 Presented by Jack Kustanowitz April 26, 2005 University of Maryland.

An Investigation of the Therac-25 Accidents Nancy G. Leveson Clark S. Turner IEEE, 1993 Presented by Jack Kustanowitz April 26, 2005 University of Maryland.
Can We Trust the Computer? Case Study: The Therac-25 Based on Article in IEEE-Computer, July 1993.

Can We Trust the Computer? Case Study: The Therac-25 Based on Article in IEEE-Computer, July 1993.
+ THE THERAC-25 - A SOFTWARE FATAL FAILURE Kpea, Aagbara Saturday SYSM 6309 Spring ’12 UT-Dallas.

+ THE THERAC-25 - A SOFTWARE FATAL FAILURE Kpea, Aagbara Saturday SYSM 6309 Spring ’12 UT-Dallas.
Real Time Consulting LLC Continuously Engineering Real Solutions Complete Outsource Solution Provider.

Real Time Consulting LLC Continuously Engineering Real Solutions Complete Outsource Solution Provider.
(Quickly) Testing the Tester via Path Coverage Alex Groce Oregon State University (formerly NASA/JPL Laboratory for Reliable Software)

(Quickly) Testing the Tester via Path Coverage Alex Groce Oregon State University (formerly NASA/JPL Laboratory for Reliable Software)
Motivation Why study Software Engineering ?. What is Engineering ? 2 Engineering (Webster) – The application of scientific and mathematical principles.

Motivation Why study Software Engineering ?. What is Engineering ? 2 Engineering (Webster) – The application of scientific and mathematical principles.
Improving Process for Better Software. Who We Are An experiential learning program that provides technology solutions for our partners, and real- world.

Improving Process for Better Software. Who We Are An experiential learning program that provides technology solutions for our partners, and real- world.
Building Reliable Software Requirements and Methods.

Building Reliable Software Requirements and Methods.
June 1, 2004Computer Security: Art and Science ©2002-2004 Matt Bishop Slide #18-1 Chapter 18: Introduction to Assurance Overview Why assurance? Trust and.

June 1, 2004Computer Security: Art and Science © Matt Bishop Slide #18-1 Chapter 18: Introduction to Assurance Overview Why assurance? Trust and.
CS 5150 1 CS 5150 Software Engineering Lecture 21 Reliability 3.

CS CS 5150 Software Engineering Lecture 21 Reliability 3.
Jacky: “Safety-Critical Computing …” ► Therac-25 illustrated that comp controlled equipment could be less safe. ► Why use computers at all, if satisfactory.

Jacky: “Safety-Critical Computing …” ► Therac-25 illustrated that comp controlled equipment could be less safe. ► Why use computers at all, if satisfactory.
Proactive Risk and Problem Management March 14 – 15, 2011 John E. Tinsley Director, Air & Missile Defense Systems Mission Assurance 19 th Annual Conference.

Proactive Risk and Problem Management March 14 – 15, 2011 John E. Tinsley Director, Air & Missile Defense Systems Mission Assurance 19 th Annual Conference.
CONTINUOUS DELIVERY / CONTINUOUS INTEGRATION. IDEAS -> SOLUTIONS Time.

CONTINUOUS DELIVERY / CONTINUOUS INTEGRATION. IDEAS -> SOLUTIONS Time.
Effective Methods for Software and Systems Integration

Effective Methods for Software and Systems Integration
Lecture 7, part 2: Software Reliability

Lecture 7, part 2: Software Reliability

Similar presentations

Ads by Google