بهبود تضمین کیفیت نرم‌افزار با استفاده از استانداردهای رایج جهانی

نوع مقاله : ترویجی

نویسندگان

1 استادیار، دانشگاه جامع امام حسین (ع)، تهران، ایران

2 دانشجوی کارشناسی ارشد، مهندسی کامپیوتر گرایش نرم افزار، دانشکده رایانه، شبکه و ارتباطات، دانشگاه جامع امام حسین (ع)، تهران، ایران

چکیده .

محیط توسعه و نگهداری نرم­افزار، به‌عنوان محیط تضمین کیفیت نرم­افزار نامیده می­شود. در دنیای امروز که نرم‌افزارهای پیچیده و حیاتی بسیاری در زندگی روزمره استفاده می‌شوند، اطمینان از کیفیت و قابلیت اطمینان و به عبارتی تضمین کیفیت این محصولات امری ضروری است. ازسوی‌دیگر، برای افزایش احتمال موفقیت پروژه­ها، استفاده از استانداردهای کیفیت نرم­افزار برای هدایت فرایند تضمین کیفیت، بسیار حائز اهمیت است. پدافند غیرعامل در نرم‌افزار به مجموعه اقداماتی اشاره دارد که برای افزایش امنیت و کاهش آسیب‌پذیری نرم‌افزار در مقابل تهدیدات، انجام می‌شود. استانداردهای تضمین کیفیت نرم‌افزار همچون ISO 9001 و ISO 25010، بر ایجاد نرم‌افزارها با ویژگی‌هایی مانند امنیت، قابلیت اطمینان و انعطاف‌پذیری تأکید دارند. این ویژگی‌ها، همسو با اهداف پدافند غیرعامل هستند؛ زیرا نرم‌افزارهای امن و انعطاف‌پذیر می‌توانند در مقابل تهدیدات مختلف مقاوم بوده و امکان ادامه فعالیت را فراهم کنند. استانداردهای ISO مانند ISO 9001 و ISO 25010 و نیز استانداردهای IEEE از قبیل IEEE 730 و IEEE 829، مفاهیم مبنایی و اصول کلیدی را برای تضمین کیفیت نرم‌افزار تعریف می‌کنند. این استانداردها در فرایند تضمین کیفیت نرم‌افزار، برای بهبود عملکرد و کیفیت نرم‌افزار، نقش قابل‌توجهی ایفا می‌کنند. در این مقاله، به بررسی 8 استاندارد رایج و متداول تضمین کیفیت نرم‌افزار در دو دسته­بندی «استانداردهای فرایند پروژه» و «استانداردهای مدیریت کیفیت» می‌پردازیم. این مقاله می‌تواند توسط سازمان‌های توسعه‌دهنده نرم‌افزار و مدیران پروژه‌های نرم‌افزاری، در جهت ارتقای کیفیت محصولات خود مورد استفاده قرار گیرد.

کلیدواژه‌ها


عنوان مقاله [English]

Improving software quality assurance using common international standards

نویسندگان [English]

  • Ali Karimi 1
  • Ali Tolui far 2
1 Assistant Professor,, Imam Hossein (AS) University, Tehran, Iran
2 Master's student, Computer Engineering, Software Engineering, Faculty of Computer, Networking and Communications, Imam Hossein (AS) University, Tehran, Iran
چکیده . [English]

The software development and maintenance environment is called as software quality assurance environment. In today's world where numerous complex and critical software applications are used in daily life, ensuring the quality and reliability, or in other words, the quality assurance of these products is essential. On the other hand, to increase the likelihood of projects’ success, utilizing software quality standards to guide the quality assurance process is of great importance. Passive defense in software refers to a set of measures taken to enhance security and reduce software vulnerabilities against threats. Software quality assurance standards, such as ISO 9001 and ISO 25010, emphasize the development of software with features like security, reliability, and flexibility. These features align with the objectives of passive defense, as secure and flexible software can resist various threats and ensure continued functionality. ISO standards such as ISO-9001 and ISO-25010, as well as IEEE standards like IEEE 730 and IEEE 828, define basic concepts and key principles for software quality assurance. These standards play a significant role in the software quality assurance process by improving the performance and quality of software. In this article, we examine 8 common and widely used software quality assurance standards, categorized into two groups: "Project Process Standards" and "Quality Management Standards". This article can be utilized by software development organizations and software project managers to enhance the quality of their products.

کلیدواژه‌ها [English]

  • Software Standards
  • Software quality assurance
  • Software development
  • Software quality assurance environment
  • International standards
  • Project process
  • Quality management

Smiley face

[1] S. Pargaonkar, “Enhancing Software Quality in Architecture Design: A Survey-Based Approach,” Int. J. Sci. Res. Publ. (IJSRP), vol. 13, no. 08, 2023, http://dx.doi.org/10.29322/IJSRP.13.08.2023.p14014
[2]R. Silva Farias, I. Ahmed, and E. Santana de Almeida, “What Makes a Great Software Quality Assurance Engineer?,” arXiv e-prints, p. arXiv: 2401.13623, 2024, https://doi.org/10.48550/arXiv.2401.13623
[3]W. Y. Wong, T. H. Sam, C. W. Too, and W. F. Pok, “Software quality assurance plan: Setting quality assurance checkpoints within the project life cycle and system development life cycle,” 2022 IEEE 18th Int. Colloq. Signal Process. Appl. (CSPA), 2022: IEEE, pp. 214-219.
[4]               S. Ibarra and M. Muñoz, “Support tool for software quality assurance in software development,” 2018 7th Int. Conf. Softw. Process Improv. (CIMPS), 2018: IEEE, pp. 13-19, https://doi.org/10.1109/CIMPS.2018.8625617
[5]Y. Zhao, Y. Hu, and J. Gong, “Research on International Standardization of Software Quality and Software Testing,” 2021 IEEE/ACIS 20th Int. Fall Conf. Comput. Inf. Sci. (ICIS Fall), 2021: IEEE, pp. 56-62, https://doi.org/10.1109/ICISFall51598.2021.9627426
[6]I. Atoum, M. K. Baklizi, I. Alsmadi, A. A. Otoom, T. Alhersh, J. Ababneh, J. Almalki, and S. M. Alshahrani, “Challenges of software requirements quality assurance and validation: A systematic literature review,” IEEE Access, vol. 9, pp. 137613-137634, 2021, https://doi.org/10.1109/ACCESS.2021.3117989
[7]N. Silega, G. F. Castro Aguilar, I. M. Alcívar, K. M. Faggioni, Y. I. Rogozov, and V. S. Lapshin, “An ontology-based approach to support the knowledge management of software quality standards,” Enfoque UTE, vol. 14, no. 3, pp. 49-56, 2023, https://doi.org/10.29019/enfoqueute.946
[8]C. Y. Laporte, G. Verret, and M. Muñoz, “A software project that partially failed: A small organization that ignored the management and technical practices of software standards,” Computer, vol. 56, no. 5, pp. 138-144, 2023, https://doi.org/10.1109/MC.2023.3253979
[9]C. Y. Laporte and A. April, “Software quality assurance.” John Wiley & Sons, 2018.
[10]R. E. Al-Qutaish, “Quality models in software engineering literature: an analytical and comparative study,” J. Am. Sci., vol. 6, no. 3, pp. 166-175, 2010.
[11]D. Jamwal, “Analysis of software quality models for organizations,” Int. J. Latest Trends Comput., vol. 1, no. 2, pp. 19-23, 2010.
[12]I. G. Ndukwe, S. A. Licorish, A. Tahir, and S. G. MacDonell, “How have views on software quality differed over time? Research and practice viewpoints,” J. Syst. Softw., vol. 195, p. 111524, 2023, https://doi.org/10.1016/j.jss.2022.111524
[13]A. Kumar and D. Gupta, “Paradigm shift from conventional software quality models to web based quality models,” Int. J. Hybrid Intell. Syst., vol. 14, no. 3, pp. 167-179, 2017, https://doi.org/10.3233/HIS-180249
[14]             J. P. Miguel, D. Mauricio, and G. Rodríguez, “A review of software quality models for the evaluation of software products,” Int. J. Softw. Eng. Appl. (IJSEA), 2014, https://doi.org/10.48550/arXiv.1412.2977
[15]S. S. Thapar, P. Singh, and S. Rani, “Challenges to development of standard software quality model,” Int. J. Comput. Appl., vol. 49, no. 10, 2012.
[16]D. Galin, “Software quality: concepts and practice.” John Wiley & Sons, 2018.
[17]N. Nyári and A. Kerti, “Review of software quality related iso standards,” Biztonságtudományi Szemle, vol. 3, no. 2, pp. 61-72, 2021.
[18]G. Karmakar, A. Wakankar, A. Kabra, and P. Pandya, “Development of Safety-Critical Systems: Architecture and Software.” Springer Nature, 2023.
[19]D. Zimon and S. Dellana, “A longitudinal exploratory study of ISO 9001 certification abandonment in small-and medium-sized enterprises,” Int. J. Qual. Reliab. Manag., vol. 37, no. 1, pp. 53-67, 2020, https://doi.org/10.1108/IJQRM-10-2018-0284
[20]D. Zimon, “Quality Management Systems' impact on the functioning of distribution channels in the FMCG market,” Calitatea, vol. 18, no. 156, p. 52, 2017.
[21]D. Zimon, “The influence of quality management systems for improvement of logistics supply in Poland,” Oeconomia Copernicana, vol. 8, no. 4, pp. 643-655, 2017.
[22]F. M. Aarts and E. Vos, “The impact of ISO registration on New Zealand firms’ performance: a financial perspective,” TQM Mag., vol. 13, no. 3, pp. 180-191, 2001.
[23]G. Zimon, A. M. Habib, and D. Haluza, “Does the quality management system affect working capital management efficiency? Evidence from Polish firms,” Cogent Bus. Manag., vol. 11, no. 1, 2024, https://doi.org/10.1080/23311975.2023.2292787
[24]G. Zimon and D. Zimon, “Quality management systems and working capital SMEs in GPO—A Case of Poland,” Adm. Sci., vol. 10, no. 4, p. 76, 2020, https://doi.org/10.3390/admsci10040076
[25]D. Zimon and G. Zimon, “The impact of implementation of standardized quality management systems on management of liabilities in group purchasing organizations,” Qual. Innov. Prosperity, vol. 23, no. 1, pp. 60-73, 2019, https://doi.org/10.12776/qip.v23i1.1210
[26]M. Salehi, N. Mahdavi, S. Zarif Agahi Dari, and H. Tarighi, “Association between the availability of financial resources and working capital management with stock surplus returns in Iran,” Int. J. Emerg. Mark., vol. 14, no. 2, pp. 343-361, 2019, https://doi.org/10.1108/IJoEM-11-2017-0439
[27]IEEE Recommended Practice for Software Requirements Specifications, IEEE Std 830:1998, 20 Oct. 1998.
[28]IEEE/ISO/IEC international standard for software, systems and enterprise–architecture description, ISO/IEC/IEEE 42010:2022(E), 2022.
[29]IEEE standard for information technology–systems design–software design descriptions, IEEE Std. 1016:2009, 2009.
[30]IEEE/ISO/IEC international standard—software and systems engineering—software testing—Part 3: Test documentation, ISO/IEC/IEEE 29119-3:2021(E), 2021.
[31]ISO/IEC/IEEE international standard—software and systems engineering—software testing—Part 2: test processes, ISO/IEC/IEEE 29119-2:2021(E), 2021.
[32]ISO/IEC/IEEE international standard—software and systems engineering—software testing—Part 1: general concepts, ISO/IEC/IEEE 29119-1:2022(E), 2022.
[33]IEEE standard for software quality assurance processes, IEEE Std 730:2014, (Revision of IEEE Std 730-2002), 2014.
[34]IEEE Standard for Configuration Management in Systems and Software Engineering, IEEE Std 828:2012, (Revision of IEEE Std 828-2005), 16 March 2012.
[35]IEEE Standard for System, Software, and Hardware Verification and Validation, IEEE Std 1012:2016, (Revision of IEEE Std 1012-2012/ Incorporates IEEE Std 1012-2016/Cor1-2017), 2016.
[36]IEEE Standard for Software Reviews and Audits, IEEE Std 1028:2008, 2008.
[37]ISO/IEC/IEEE International Standard—Systems and software engineering—Requirements for acquirers and suppliers of information for users, ISO/IEC/IEEE 26512:2017(E), 2017.
[38]N. Mellegård, “Improving Defect Management in Automotive Software Development, LiDeC—A Light-weight Defect Classification Scheme.” Chalmers Tekniska Hogskola (Sweden), 2013.
[39]R. Oberhauser, “VR-V&V: Immersive Verification and Validation Support for Traceability Exemplified with ReqIF, ArchiMate, and Test Coverage,” Int. J. Adv. Syst. Meas., vol. 16, no. 3 & 4, pp. 103-115, 2023.
[40]L. Pourvatan, “Test Process Assessment of Industrial Control Systems via Safety Standards,” ed, 2021.
[41]S. K. Sharma and M. Khaliq, “Design and development of software quality forensics framework and model,” Multidiscip. Sci. J., vol. 6, no. 7, pp. 2024111-2024111, 2024, https://doi.org/10.31893/multiscience.2024111
[42]S. Fahmy, A. Deraman, J. Yahaya, A. Nasir, and N. Shamsudin, “The evolution of software configuration management,” Int. J. Adv. Trends Comput. Sci. Eng., vol. 9, no. 1.3, 2020, https://doi.org/10.30534/ijatcse/2020/0891.32020
[43]Software engineering-Guidelines for the application of ISO 9001:2015 to computer software, ISO/IEC/IEEE 90003:2018, (Revision of ISO/IEC 90003:2014), 2018.
[44]S. K. Sundaram and M. Suresh, “Partial CMMI V2. 0 Assessment Using Multi-grade Fuzzy for Healthcare and Insurance Segment in Software Services,” in Intelligent Manufacturing and Energy Sustainability: Proceedings of ICIMES 2022: Springer, 2023, pp. 401-412. https://doi.org/10.1007/978-981-19-8497-6_37
[45]J. Mona, R. H. A. Al-Sagheer, and S. M. Alghazali, “Software Quality Assurance Models and Application to Defect Prediction Techniques,” Int. J. Intell. Syst. Appl. Eng., vol. 11, no. 1, pp. 169–178-169–178, 2023.
[46]I. Keshta, “A model for defining project lifecycle phases: Implementation of CMMI level 2 specific practice,” J. King Saud Univ. Comput. Inf. Sci., vol. 34, no. 2, pp. 398-407, 2022, https://doi.org/10.1016/j.jksuci.2019.10.013
[47]B. Day, S. C. Ke-Zun, L. Lovelock, and C. Lutteroth, “Climbing the ladder: CMMI level 3,” 2009 IEEE Int. Enterp. Distrib. Object Comput. Conf., 2009: IEEE, pp. 97-106, https://doi.org/10.1109/EDOC.2009.29
[48]P. Clarke and R. V. O'Connor, “An empirical examination of the extent of software process improvement in software SMEs,” J. Softw. (Malden), vol. 25, no. 9, pp. 981-998, 2013, https://doi.org/10.1002/smr.1580
[49]C. Vivatanavorasin, N. Prompoon, and A. Surarerks, “A process model design and tool development for supplier agreement management of CMMI: Capability Level 2,” 2006 13th Asia Pac. Soft. Eng. Conf. (APSEC'06), 2006: IEEE, pp. 385-392, https://doi.org/10.1109/APSEC.2006.12
[50]C. Quintal and J. A. Macías, “Measuring and improving the quality of development processes based on usability and accessibility,” Univers Access Inf. Soc., vol. 20, no. 2, pp. 203-221, 2021, https://doi.org/10.1007/s10209-020-00726-7
[51]S. Peldzius and S. Ragaisis, “Comparison of maturity levels in CMMI-DEV and ISO/IEC 15504,” Appl. Math. and Comput. Eng., pp. 117-122, 2011.
[52]T. P. Rout and A. Tuffley, “Harmonizing iso/iec 15504 and cmmi,” Softw. Process: Improv. Pract., vol. 12, no. 4, pp. 361-371, 2007, https://doi.org/10.1002/spip.329
[53]M. I. F. Nuzula and S. Rochimah, “Evaluation of Service Quality in Human Resource Information Systems Using the ISO/IEC 25010,” Int. Semin. Appl. Technol. Inf. Commun. (iSemantic), 2023: IEEE, pp. 215-220, https://doi.org/10.1109/iSemantic59612.2023.10295365
[54]V. Santa Barletta, D. Caivano, L. Colizzi, G. Dimauro, and M. Piattini, “Clinical-chatbot AHP evaluation based on “quality in use” of ISO/IEC 25010,” Int. J. Med. Inform., vol. 170, p. 104951, 2023, https://doi.org/10.1016/j.ijmedinf.2022.104951
[55]A. Sopandi, N. A. Yahaya, and A. Subiyakto, “Developing the Readiness and Success Model of Information System Implementation in the Indonesian Equestrian Industry,” J. Appl. Data Sci., vol. 5, no. 1, pp. 133-145, 2024, https://doi.org/10.47738/jads.v5i1.145
[56]Systems and software engineering-Systems and software Quality Requirements and Evaluation (SQuaRE)-Product quality model, ISO/IEC 25010:2023, International Organization for Standardization (ISO), 2023.