1 / 46

Software Verification and Validation

Pradeep Konduri Niranjan Rao Julapelly. Software Verification and Validation. Introduction and Overview Verification Vs Validation Process Goals Confidence Role of V&V in different phases of Software Development Static Verification Dynamic Verification Cleanroom Software Development

reynoldsb
Télécharger la présentation

Software Verification and Validation

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Pradeep Konduri Niranjan Rao Julapelly Software Verification and Validation

  2. Introduction and Overview • Verification Vs Validation • Process • Goals • Confidence • Role of V&V in different phases of Software Development • Static Verification • Dynamic Verification • Cleanroom Software Development • Organization of V&V • Summary Planof attack

  3. Verification Vs Validation: • Verification ensures that you are building a product according to its requirements, specifications, and standards. * Are you meeting the specified requirements? * Are you building the product right? • Validation ensures that your product will be usable once it is in the marketplace. * Are you meeting the operational need? * Does this product meet its intended use in the intended environment? * Are you building the right product? Introduction and Overview

  4. Process: • Is a whole life-cycle process - V & V must be applied at each stage in the software process, complementary to and supportive of various phases of Software Development. • Has two principal objectives • The discovery of defects in a system • The assessment of whether or not the system is useful and useable in an operational situation. Introduction and Overview

  5. Goals: • Verification and validation should establish confidence that the software is fit for purpose. • This does NOT mean completely free of defects. • Rather, it must be good enough for its intended use and the type of use will determine the degree of confidence that is needed. Introduction and Overview

  6. Confidence: • Depends on system’s purpose, user expectations and marketing environment • Software function • The level of confidence depends on how critical the software is to an organisation. • User expectations • Users may have low expectations of certain kinds of software. • Marketing environment • Getting a product to market early may be more important than finding defects in the program Introduction and Overview

  7. Role of V&V

  8. Responsibilities of V&V with other groups

  9. Software inspections. Concerned with analysis of the static system representation to discover problems (static verification) • May be supplement by tool-based document and code analysis • Software testing. Concerned with exercising and observing product behaviour (dynamic verification) • The system is executed with test data and its operational behaviour is observed Static and Dynamic V&V

  10. These involve people examining the source representation with the aim of discovering anomalies and defects. Inspections not require execution of a system so may be used before implementation. They may be applied to any representation of the system (requirements, design, configuration data, test data, etc.). They have been shown to be an effective technique for discovering program errors. Software Inspections (Static Verification)

  11. Many different defects may be discovered in a single inspection. In testing, one defect may mask another so several executions are required. The reuse domain and programming knowledge, reviewers are likely to have seen the types of error that commonly arise. Inspection - Success

  12. Inspections and testing are complementary and not opposing verification techniques. Both should be used during the V & V process. Inspections can check conformance with a specification but not conformance with the customer’s real requirements. Inspections cannot check non-functional characteristics such as performance, usability, etc. Inspection and Testing

  13. Formalised approach to document reviews Intended explicitly for defect detection (not correction). Defects may be logical errors, anomalies in the code that might indicate an erroneous condition (e.g. an uninitialized variable) or non-compliance with standards. Program Inspections

  14. A precise specification must be available. • Team members must be familiar with the organisation standards. • Syntactically correct code or other system representations must be available. • An error checklist should be prepared. • Management must accept that inspection will increase costs early in the software process. • Management should not use inspections for staff appraisal ie finding out who makes mistakes. Inspection - Preconditions

  15. Inspection Process

  16. System overview presented to inspection team. Code and associated documents are distributed to inspection team in advance. Inspection takes place and discovered errors are noted. Modifications are made to repair discovered errors. Re-inspection may or may not be required. Inspection Procedure

  17. Author or owner: The programmer or designer responsible for producing the program or document. Responsible for fixing defects discovered during the inspection process. Inspector: Finds errors, omissions and inconsistencies in programs and documents. May also identify broader issues that are outside the scope of the inspection team. Reader: Presents the code or document at an inspection meeting. Scribe: Records the results of the inspection meeting. Chairman or Moderator: Manages the process and facilitates the inspection. Reports process results to the Chief moderator. Chief Moderator: Responsible for inspection process improvements, checklist updating, standards development etc. Inspection Roles

  18. Checklist of common errors should be used to drive the inspection. Error checklists are programming language dependent and reflect the characteristic errors that are likely to arise in the language. In general, the 'weaker' the type checking, the larger the checklist. Examples: Initialisation, Constant naming, loop termination, array bounds, etc. Inspection Checklists

  19. Data Faults Control Faults Input /Output Faults Interface Faults Storage Management Faults Exception Management Faults Inspection Checks:

  20. Dynamic Verification

  21. Can reveal the presence of errors NOT their absence. The only validation technique for non-functional requirements as the software has to be executed to see how it behaves. Should be used in conjunction with static verification to provide full V&V coverage. Program Testing

  22. Defect testing • Tests designed to discover system defects. • A successful defect test is one which reveals the presence of defects in a system. • Validation testing • Intended to show that the software meets its requirements. • A successful test is one that shows that a requirements has been properly implemented. Types of Testing

  23. Defect testing and debugging are distinct processes. • Verification and validation is concerned with establishing the existence of defects in a program. • Debugging is concerned with locating and repairing these errors. • Debugging involves formulating a hypothesis about program behaviour then testing these hypotheses to find the system error. Testing and Debugging

  24. Debugging Process

  25. Careful planning is required to get the most out of testing and inspection processes. Planning should start early in the development process. The plan should identify the balance between static verification and testing. Test planning is about defining standards for the testing process rather than describing product tests. V&V Planning

  26. V - Model

  27. The testing process. • Requirements traceability. • Tested items. • Testing schedule. • Test recording procedures. • Hardware and software requirements. • Constraints. Structure of Software Test Plan

  28. The testing process The testing process is carries out in different phases. • Requirements traceability Users are most interested in the system meeting its requirements and testing should be planned so that all requirements are individually tested. • Tested items The products of the software process that are to be tested should be specified. • Testing schedule An overall testing schedule and resource allocation for this schedule. This, obviously, is linked to the more general project development schedule. Software Test Plan

  29. Test recording procedures: It is not enough simply to run tests. The results of the tests must be systematically recorded. It must be possible to audit the testing process to check that it has been carried out correctly. • Hardware and software requirements: This section should set out software tools required and estimated hardware utilisation. • Constraints: Constraints affecting the testing process such as staff shortages should be anticipated in this section Software test plan (contd..)

  30. Whom does the V & V report? • Four methods of organizing a V& V effort are described: • Independent V & V • Embedded in the development system engineering group • Embedded in the development quality assurance group • Embedded in the user group. Organizing V&V

  31. Independent of the development group and is called Independent V&V. • The IV& V group reports directly to the system program manager. • The V & V group establishes formal procedures for receiving software releases and documentation from the development team. • V & V tasks are oriented towards engineering analysis (algorithm analysis, control/data flow analysis), and comprehensive testing (such as simulation) • Main objective is to determine whether the software satisfies critical system requirements. • Sends all evaluation reports and discrepancy reports to both the program manager and development group. Independent V & V

  32. Advantages: • Detailed analysis and test of software requirements. • Early detection of high risk software and system errors. • Disadvantages: • Higher cost to the project • Additional development interfaces Independent V & V (contd..)

  33. Embedded in development’s systems engineering group • V & V tasks are to review the group’s engineering analyses (like algorithm development, sizing/timing), and testing (like test evaluation or review of the adequacy of the development test planning document) • V & V’s results are reviewed and monitored by systems engineering and quality assurance groups. • Advantages: • Minimize cost impact to the project • No system learning for the staff • No additional development interfaces • Disadvantages: • Loss of engineering analysis objectivity V & V embedded in the Systems Engineering Group

  34. V & V group is part of quality assurance and maintains its relationship with systems engineering and other development groups in the same manner as quality assurance. • Tasks include monitoring, auditing, reviewing content (for example, audit performance, audit support, test witnessing, walk-through support, documentation review) • Advantages: • Low cost to the project • Bringing V & V analysis capabilities into reviews, audits, and inspections • Disadvantages: • Loss of an independent software systems analysis and test capability V & V embedded in QA Group

  35. Tasks consists of • configuration management support of development products • support of formal reviews • user documentation evaluation • test witnessing • test evaluation of the development test planning documents • user testing support • Advantages: • Strong systems engineering and user perspective that can be brought to bear on the software product during development • Disadvantages: • Loss of detailed analysis and test of incremental software products V & V effort embedded in the User Group

  36. Varies with project size, project complexity, and V & V staff experience • Some positive effects of V & V on a software project include: • Better quality • More rigorous development planning • Better adherence by the development organization to programming language, developments standards and configuration management practices. • Early error detection • Better schedule compliance and progress monitoring • Greater project management visibility into technical quality and progress • Better criteria and results for decision making at formal reviews and audits. Effectiveness ofV & V

  37. Negative effects of V & V on a software development project include: • Additional project cost of V & V (10% – 30 %) • Additional interface involving the development team, user, and V & V organization • Lower development staff productivity Effectiveness of V & V (contd..)

  38. Cleanroom Software Development • The name is derived from the 'Cleanroom‘ process in semiconductor fabrication. The philosophy is defect avoidance rather than defect removal. • This software development process is based on: • Incremental development; • Formal specification; • Static verification using correctness arguments; • Statistical testing to determine program reliability.

  39. The Cleanroom Process

  40. Cleanroom Process - Characteristics • Formal specification using a state transition model. • Incremental development where the customer prioritises increments. • Structured programming - limited control and abstraction constructs are used in the program. • Static verification using rigorous inspections. • Statistical testing of the system

  41. Formal Specifications and Inspections • The state based model is a system specification and the inspection process checks the program against this mode. • The programming approach is defined so that the correspondence between the model and the system is clear. • Mathematical arguments (not proofs) are used to increase confidence in the inspection process.

  42. Cleanroom Process - Teams • Specification team. Responsible for developing and maintaining the system specification. • Development team. Responsible for developing and verifying the software. The software is NOT executed or even compiled during this process. • Certification team. Responsible for developing a set of statistical tests to exercise the software after development. Reliability growth models used to determine when reliability is acceptable.

  43. Cleanroom Process - Evaluation • The results of using the Cleanroom process have been very impressive with few discovered faults in delivered systems. • Independent assessment shows that the process is no more expensive than other approaches. • There were fewer errors than in a 'traditional' development process. • However, the process is not widely used. It is not clear how this approach can be transferred to an environment with less skilled or less motivated software engineers.

  44. Software V & V is a proven systems engineering discipline for generating correct and quality software • Uncovers high risk errors early • Evaluates the correctness of products against system and software requirements. • Provides the user an incremental preview of system performance, with the chance to make early adjustments. • Provides decision criteria for whether or not to proceed to the next development phase • Software V & V has become a powerful risk management tool by providing the detailed technical insight into the “true” performance of the software Summary

  45. The Cleanroom Development Process depends on incremental development, static verification and statistical testing. Cleanroom Process is intended to be “Quick and Clean” not “Quick and Dirty” Summary (contd..)

  46. Thank you

More Related