Beruflich Dokumente
Kultur Dokumente
TABLE OF CONTENT
We can consider process for the measurement of the quality, but it is not only the
unique parameter, we can also consider directly the product, and also the service that
the company offers (generally related to the development and maintenance of
software).
So basically during this module we will see new standards that can help us for the
establishment of quality in our product, and in our service.
We have seen in the module 1 that the processes are key to obtain quality, but if
we also focus on the product and the service, considering some new parameters
related to the product, and new processes related to the service, we can obtain
better results.
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
1.2.1. Introduction
The major interest of any company is to have satisfied customers, and for that, it
is fundamental to offer quality. So, if the company follows an adequate way
focusing into processes, the product, and the service, will be more easy to obtain
the satisfaction of their clients.
Anyway, the more important here is the processes and the product, because can
be specific, although the service can be also interesting, but it is generic, and
there are various quality standards related to the service.
For the quality of the software product, we can follow various models, although
most of them have the same origin.
The most important standards related to the quality of the software product are
ISO 9126 and ISO 25000, and they have a similar structure, based on
characteristics and attributes.
One of the most important standards related to the quality of the software
product is ISO/IEC 25000, which is also known as SQuaRE, although really this
standard is composed by various groups of standards.
1.2.5. Tools for the assessment of the quality of the software product
There are various tools that we can use for the assessment of the quality of the
software product, some of them are free.
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
ISO/IEC 20000 is composed by various parts, defining each one specifics aspects
about the quality of the service.
For the evaluation of the service, ISO/IEC 20000 uses processes related to the IT
service, and these processes are structured in various groups.
For the management of the IT service, it is important include the PDCA model, to
keep a continual improvement.
1.3. Examples (not to exceed 2 pages)
1.4. Exercises
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
1.- The quality of a product is very subjective, so if you buy a software, how can
you evaluate if it has quality?
2.- We can use some standards related to the software product, for the
evaluation of the quality, but we can use an automatic way?
3.- If we think that we can also improve the service, what are the elements
related to the IT service that we need to consider?
1.5. Conclusions
The satisfaction of the client is very important, but all clients are different, but
we can establish a generic way, based on international standards, to give them
quality, from the point of view of the processes, the product, and the service.
To do this, companies often use CMMI (one of the more widespread, popular and
used worldwide standard), or its equivalent, SPICE, which defines a model of
evaluation of maturity of processes.
As you recall, SPICE saw it in the previous module, and based on a series of levels
of capacity and maturity, we could identify the maturity of an organization (ISO/IEC
15504-7), and we could also identify the ability of each process (ISO/IEC 15504-2).
Now we will see a different approach, but it will also help us to develop software with
quality. Therefore, we will now focus on the quality of the product, which can offer
many guarantees to develop the software with quality, which will obviously result in
customer satisfaction.
Processes
Product
Quality
standards
Therefore, the final idea is not to decide between use the model of processes, or
focus only in the quality of the product, the best is to use both perspectives, to get
the development of a software with quality, and obtain the satisfaction of the
customers. So, now we will see the approach of the quality of the product.
It is clear that everyone prefers a product with quality that a product without quality.
Imagine that we buy a bicycle that is manufactured with quality controls, and another
in which quality controls have not been established.
Probable, the bicycle that has been produced with quality parameters will give us
less problems, because a company can give us a guarantee of quality. And if we
have problems, a company can give us a support.
But with the bicycle that has been produced without minimum quality parameters,
generally nobody can ensure that the bicycle can run adequately.
Products that have been developed with quality parameters, generally have a higher
cost, and it is logical, because ensure that quality takes time, and generally additional
resources are necessary.
We can also find a product that has been developed with quality parameters, and
which also fails or does not work well, but in principle the probability of failure is low,
and usually we will have a support from the company.
In software occurs something similar, because we also have a product, but in this
case the product is software.
But then, with a software product, how we can determine that has a good quality?
Also think that the software product never fails, but is very difficult to use or
understand.
In 1977 Mr McCall created a list composed by several parameters that can affect the
quality of the software product, and which can be used to evaluate or measure its
quality.
This list was focused solely on the quality of the software product, i.e. not addressed
anything relating to processes, methodologies, etc.
Operation
Revision
Transition
Several years more afternoon, on 1991, began to develop the first standards for the
assurance of the quality of the software product, and these standards were used as
reference for the current standards.
The first standard that was developed, related to the quality of the software product,
based on the models of McCall and Boehm, was the ISO 9126
With the publication of this first ISO standard, companies began to use these models
as a fundamental tool for the development of software product applying quality
parameters.
However, the ISO 9126 today really is not used, since it was updated by the ISO
25000, which actually consists of a set of standards, as we will see in the next
chapter.
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
ISO
9126
Standards
related to the
quality of the
software
product
ISO
25000
Use Internal
External
On the other hand, this model also provides other 10 parameters, which are known
as "characteristics", that in turn, each feature, is also composed of multiple attributes.
These 10 characteristics related to the quality of the software product are the
following:
Functional Performance
Compatibility Usability
suitability efficiency
Functional suitability
Functional
completeness
Functional
correctness
Functional
appropriateness
Time behaviour
Resource
utilization
Capacity
Compatibility Co-existence
Interoperability
Appropriateness
recognizability
Learnability
Usability
Operability
User error
protection
User interface
aesthetics
Accessibility
Maturity
Reliability
Availability
Fault tolerance
Recoverability
Maturity: Capacity of the system to meet the needs of reliability under normal
conditions.
Availability: Capacity of the system, or component, to be available and
accessible when required.
Fault tolerance: Ability of the system, or component, to operate according to
provisions against possible failures of hardware or software.
Recoverability: Capacity of the software product to recover any lost data,
and restore the system in case of interruption or failure.
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
Confidentiality
Integrity
Security
Non-repudation
Authenticity
Accountability
Modularity
Maintainability
Reusability
Analyzability
Modifiability
Testability
Figure 12 – Attributes of the maintainability
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
Adaptability
Installability
Replaceability
Arrived to this point, already know that the more important standard international,
with recognition world, related to the quality of the software product is the ISO / IEC
25000, that also is often know as SQuaRE, by its initial "Software Quality
REquirements and Evaluation". Therefore, we will see with a little more detail the
structure of this standard.
ISO/IEC 2500n
Then we will see the standards that make up each of these groups.
ISO/IEC
2500n
ISO/IEC
25000
ISO/IEC
25001
Figure 15 – Standards of ISO/IEC 2500n
The series of standards ISO/IEC 2500n basically defines models, terms and
common definitions that may be used or referenced by the standards of ISO/IEC
25000 series. On the other hand, ISO/IEC 2500n is composed by the following
standards:
ISO/IEC
2501n
ISO/IEC
25000
ISO/IEC
25001
Figure 16 – Standards of ISO/IEC 2501n
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
ISO/IEC
2502n
ISO/IEC
25020
ISO/IEC
25021
ISO/IEC
25022
ISO/IEC
25023
ISO/IEC
25024
Figure 17 – Standards of ISO/IEC 2502n
The series of standards ISO/IEC 2502n includes a reference model for the
measurement of the quality of the product, including definitions of quality measures
(internal, external and in use), as well as practical guidelines for its implementation.
On the other hand, ISO/IEC 2502n is composed by the following standards:
ISO/IEC
2503n
ISO/IEC
25030
Figure 18 – Standards of ISO/IEC 2503n
The series of standards ISO/IEC 2503n allows you to specify quality requirements
which may be used in the process of definition of the software product quality
requirements. On the other hand, ISO/IEC 2503n is composed by the following
standard:
ISO/IEC 25030 – Quality requirements: Provides a series of
recommendations for the establishment of quality requirements for the
software product.
ISO/IEC
2504n
ISO/IEC
25040
ISO/IEC
25041
ISO/IEC
25042
ISO/IEC
25045
Figure 19 – Standards of ISO/IEC 2504n
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
Moreover, also there is a set of standards that are used as extension, which contain
aspects more specific, and can be used as complement to the standards seen until
now.
These complementary standards, are defined between the number ISO/IEC 25050
- ISO/IEC 25099, the most noteworthy being the following:
2.1.5- Tools for the assessment of the quality of the software product
Some tools that you can use to ensure the quality of the software product are the
following:
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
Now that you know which are the parameters that can be used to measure the
quality of a software product, we can see a small example, very simple, about how
to assess a software product.
Imagine that we have developed a software, and we want to assess their quality
based on the characteristics and the attributes that we have seen in a previous
section.
If we want to evaluate each of the characteristics and attributes, we can use a table
such as the following:
Usability Appropriateness
Learnability
Operability
User error protection
User interface aesthetics
Accessibility
Reliability Maturity
Availability
Fault tolerance
Recoverability
Security Confidentiality
Integrity
Non-repudiation
Authenticity
Accountability
Maintainability Modularity
Reusability
Analyzability
Modifiability
Testability
Portability Adaptability
Installability
Replaceability
So, we will assess for each attribute of each characteristic, the software that you
want to evaluate.
Given that the degree of compliance is 58%, and according to the defined
acceptance criteria table, is within the margin of 51% - 70%, we can conclude that
software adequately meets a minimum quality, so that we can accept it as well.
However, it should be noted that these tables are indicative, and can be developed
with other values.
I.e., if we consider that we need to provide a service to a client, which can be the
development and maintenance of a software product, we can also improve the
quality.
There are several international standards, but we are going to focus on ISO/IEC
20000, because it is one of the international standards with greater recognition,
related to the management of IT services.
The ISO/IEC 20000 is very similar to ITIL standard, although ITIL mainly defines a
set of best practices for IT service management and ISO 20000 in addition clearly
defines a model of continuous improvement, based on the PDCA cycle.
On the other hand, the companies can be certified in ISO/IEC 20000, as they can be
also certified ISO 27001, ISO 15504, or ISO 9001, etc. But they cannot be certified
Estructura para el diseño de cursos virtuales
Versión 1. Noviembre de 2016
in ITIL, because it is not an ISO standard (you can certify individuals in ITIL, but not
companies, because ITIL does not have a scheme of certification for companies).
ISO 20000, like other management system, has many common points with other
ISOs, and shares many elements with the ISO 27001 (in fact, one of the processes
included in ISO 20000, is the process of information security management).
This standard aims to improve or ensure the quality of the service, so is intended
primarily for companies that provide technology services, such as for example
companies which develop software, and offer a service of maintenance of this
software.
ISO 20000 was developed in 2005, and was subsequently revised in 2011, which is
now the current version of this standard. For the development of the first version,
was used as a basis the BS 15000, which was a British standard developed by BSI
(British Standards Institution).
This standard, similar to the ISO 15504 we saw in module 1, consists of several
parts, which are detailed below:
The most important part of ISO/IEC 20000 is the part 1 (requirements definition),
and the part 2 (best practices for implementing the processes).
These processes that are based on the ISO/IEC 20000, are mainly grouped into 4
groups:
Capacity management
Service reporting
Control processes
Configuration management
Change management
Resolution
processes
Incident and
service request
management
Problem
management
- Problem management: This process is similar to the previous one, with the
difference that when an incidence is repeated and is unable to close
permanently, is considered a problem, and in that case we need to search the
origin of the problem. Here is also important to have a knowledge base.
Relationship
processes
Business
relationship
management
Supplier
management
Figure 24 – Relationship processes
In addition to the processes you have seen until now, ISO 20000 is based on a model
of continual improvement, like any other ISO management system, for example ISO
9001, ISO 27001, ISO 22301, etc.
Plan Do
Act Check
This model is also commonly known as the Deming cycle, and in the case of the
management of a IT service, you can start with planning (Plan) of the service (project
plan, definition of activities/resources, development of documentation, resources),
subsequently you need to implement everything that has been planned in the
previous stage (Do), then checked that everything that has been implemented is
according to what we planned (Check), and finally if any inconsistency is detected
during the review, you need to perform corrective actions for the treatment and
resolution (Act).