Evaluation of the UML profile for QoS from the user perspective

Carimo, Rossana

January 2007

Addressing Quality of Service and specification of quality attributes has been gaining a growing importance in the software engineering area. The research presented in this study investigates different approaches to specification of Quality of Service. UML profile for Quality of Service is one of the standards of the Quality of Service specification and is described in the QoS specification context. The research aim of this thesis is the evaluation of the UML profile for Quality of Service against the following criteria: expressiveness, reusability, understandability, applicability and tool support, as well as further comparison of the profile with other Quality of Service specification languages. To perform that, several tasks and activities were conducted, such as a survey on different QoS specification languages, an examination of the UML profile for Quality of Service, the formulation of the evaluation criteria, and the appliance of the criteria in the evaluation and comparison processes. This study is performed from the perspective of readers and users of the profile that are not UML experts but have sufficient knowledge of UML in terms of software systems analysis and design. The context of the UML profile and Quality of Service aspects include basic concepts of the UML 2.0 and Quality of Service which will be described along the thesis. The main contribution of the thesis is the evaluation of the UML profile for Quality of Service against a set of criteria, followed by explanations on the contents of the profile and how Quality of Service is specified within it. The presented comparison of the UML profile and other Quality of Service specification languages could be the basis for a user to decide what language to use in a particular situation. This study can be comprehended as a starting point for further evaluation of the UML profile and its comparison with other quality specification languages.

QoS

UML profile

modeling language

evaluation

comparison

QoS specification

metamodels

profile

stereotypes

Software Engineering

Programvaruteknik

A Framework for Security Requirements : Security Requirements Categorization and Misuse Cases / En ram för Säkerhetskrav : Säkerhetskrav kategorisering och missbruk ärenden

Bogale, Helen Yeshiwas, Ahmed, Zohaib

January 2011

Context: Security Requirements engineering is necessary to achieve secure software systems. Many techniques and approaches have been proposed to elicit security requirements in the initial phases of development. With the growing importance of security and immense increase in security breaches over the past few years, researchers and practitioners have been striving to achieve a mature process of coping with security requirements. Much of the activities in this regard are seen in academia but industry still seems to be lacking in giving the required importance to security requirements engineering. That is why, security requirements engineering is still not always considered as a central part of requirements engineering. This study is targeted to bridge this gap between academia and industry in terms of security requirements engineering and to provide a concrete approach to efficiently elicit and specify security requirements. The Misuse case technique is proposed for this purpose. However it lacks in providing guidelines for enabling scalable use. This limitation has been addressed to achieve a mature process of security requirements elicitation. Objectives: In this study, we propose a framework to elicit security requirements early in the software development using misuse case technique. Objective is to make misuse case technique scalable and applicable to the real-world projects. The proposed framework was presented to two representatives from the Swedish Armed Forces (SWAF). The feedback received from the representatives was utilized to refine, update and finalize the framework. Methods: The study involved a systematic review to gain an insight of the academic perspective in the area of study. Document extraction was adopted to observe the industrial trends in the said subject. These were the software requirements specification documents of the real-world systems. Document extraction was supported with informed brainstorming because the study revolved around misuse case technique and informed brainstorming is considered to be the most suitable technique for this purpose. A workshop was conducted with two representatives of Swedish Armed Forces followed by two subsequent asynchronous communication rounds and a facilitated session to get feedback about the proposed solution. This feedback was utilized to refine, update and finalize the proposed solution. Results: The results of the systematic review were organized in tabular forms for a clear understanding and easy analysis. A security requirements categorization was obtained as a result which was finalized after an initial validation with the help of real-world projects. Furthermore, a framework was proposed utilizing this categorization to address the limitations of misuse case technique. The framework was created and refined through workshop and different communication rounds with representatives of SWAF. Their feedback was used as input to further improve the usefulness and usability aspects of the framework. Conclusions: The significance of security requirements engineering is undisputedly accepted both in academia and industry. However, the area is not a subject of practice in industrial projects. The reasons include lack of mature processes as well as expensive and time consuming solutions. Lack of empirical evidences adds to the problems. The conducted study and proposed process of dealing with this issue is considered as a one step forward towards addressing the challenges. / Säkerhet Kravhantering är nödvändigt för att uppnå säkra programvarusystem. Många tekniker och metoder har föreslagits för att framkalla säkerhetskraven i de inledande faserna i utvecklingen. Med den växande betydelsen av säkerhet och enorma ökning av brott mot säkerheten under de senaste åren har forskare och praktiker strävat efter att uppnå en mogen process för att klara säkerhetskraven. Mycket av verksamheten i detta avseende ses i den akademiska världen, men industrin fortfarande tycks saknas i att ge den nödvändiga betydelse för säkerheten kravhantering. Därför är säkerheten kravhantering fortfarande inte alltid som en central del av kravhantering. Denna studie är inriktad att överbrygga denna klyfta mellan akademi och näringsliv när det gäller säkerhet kravhantering och att ge en konkret strategi för att effektivt få fram och specificera säkerhetskrav. Missbruk fallet tekniken föreslås för detta ändamål. Men det saknar i att ge riktlinjer för att möjliggöra skalbar användning. Denna begränsning har åtgärdats för att uppnå en mogen process av säkerhetskrav elicitation. / +46 (0) 735 84 12 97, +46 (0) 760 60 96 55

Misuse Case

Security Requirements

Categorization

Elicitation

Specification

Computer Sciences

Datavetenskap (datalogi)

Software Engineering

Programvaruteknik

Analysis of Intent Specification and SystemUpgrade Traceability / Analys av Intent Specification och spårbarhet vid systemuppgradering

Elmqvist, Jonas

January 2003

The impact of computer programs in safety-critical systems has increased in the past decades and computer-based systems can now be found in a wide range of applications. A new approach for developing dependable systems is documenting all design rationale that affects safety using Intent Specifications. A recent approach for developing complex systems efficiently and in an upgradeable manner is Component-Based System Engineering. In this thesis, these approaches are combined in the development and upgrade of a Remote Robot Control Unit by using the tool SpecTRM. The case study showed that Intent Specifications and CBSE could successfully be combined. The tool SpecTRM was also studied during this work. It showed that traceability is of great importance during system upgrades. Since SpecTRM does not support formal verification of safety properties in design models, the SpecTRM-RL models were translated to Esterel code. Further analysis showed that functional verification can be efficient and useful when using the automatic model-checking tool available in Esterel Studio. This work also proposes a practical guideline for system upgrades in component-based systems, presented as the Sigma model. The work also showed some shortcomings. First of all, the tool SpecTRM is at an early development stage and not yet mature for industrial use. Secondly, neither of the two languages SpecTRM-RL and Esterel was expressive enough for some of the numerical computations and data-exchange structures needed for navigation in the system. Finally, the verifier was not able to prove any data properties since valued signals are abstracted into pure signals during verification in Esterel Studio.

Datalogi

Intent Specification

SpecTRM

Traceability

Verification

Component-Based Systems Engineering

Datalogi

Computer Sciences

Datavetenskap (datalogi)

Runtime Verification of A PLC System: An Industrial Case Study

Heidari, Mohammad

January 2017

The term verification can mean different things to different people based on their background and the context of research. Comparably the term runtime might bring about similar disarray with lesser confusion. Whilst a software application executes on a system, there are libraries and codes that facilitates the execution of that binary, these processes and libraries make up the runtime environment, and verification in this context refers to the concrete techniques that verify a run and checks if it satisfies or defies the specified requirements. This study is specifically concerned with runtime verification systems, and how to make use of them in a limited-resource environment such as embedded systems or Programmable Logic Controller (PLC). It is of utmost importance to validate the conformance of a system, specially those in automotive and transportation industry. Vehicles such as trains are responsible to transport millions of people everyday which makes safety and reliability of the system the most prime component of bunch. Many manufacturers employs state of the art technologies and processes to endure the safety of the final product. Since most of the parts in vehicles (including trains) are computer controlled, the system (OS, application, control system, etc.) should undergo proper and comprehensive tests to single out even the smallest anomalies and misbehaviour. While traditional software testing can detect most of the anomalies, runtime verification can be used as a complementary method to passively monitor the running system and point out those behaviours and malfunctioning that are otherwise close to impossible to be caught. This thesis investigates runtime verification in train manufacturing, and propose a structured, contemporary process and system to monitor the train control system for conformance. Furthermore several methods of formal specification to be used for declaration of specification were explored and a suitable choice for this case study was suggested, in addition a proof of concept tool to demonstrate the entire process is developed as well.

PLC

Runtime verification

Formal specification

Embedded system

Engineering and Technology

Teknik och teknologier

Regulation of cell fate and cell behaviour during primitive endoderm formation in the early mouse embryo

Saiz, Nestor

January 2012

The preimplantation stages of mammalian development are dedicated to the differentiation of two extraembryonic epithelia, the trophectoderm (TE) and the primitive endoderm (PrE), and their segregation from the pluripotent embryonic lineage, the epiblast. The TE and PrE are responsible for implantation into the uterus and for producing the tissues that will support and pattern the epiblast as it develops into the foetus. PrE and epiblast are formed in a two step process that involves random cell fate specification, mediated by fibroblast growth factor (FGF) signalling, and cell sorting through several mechanisms. In the present work I have addressed aspects of both steps of this process. Chimaera assays showed that epiblast precursors transplanted onto a recipient embryo rarely differentiate into PrE, while PrE precursors are able to switch their identity and become epiblast. Transient stimulation or inhibition of the FGF4-ERK pathway in the chimaeras can modify the behaviour of these cells and restore the plasticity of epiblast precursors. This work shows that epiblast precursors are refractory to differentiation signals, thus ensuring the preservation of the embryonic lineage. I have also found that atypical Protein Kinase C (aPKC) is a marker of PrE cells and that pharmacological inhibition of aPKC impairs the segregation of PrE and epiblast precursors. Furthermore, it affects the survival of PrE cells and can alter the subcellular localisation of the PrE transcription factor GATA4. These data indicate aPKC plays a central role for the sorting of the PrE and epiblast populations and links cell position within the embryo to PrE maturation and survival. Lastly, I have found that aPKC can directly phosphorylate GATA4 in vitro. Knockdown of GATA4 affects cell position within the embryo, whereas aPKC knockdown reduces the number of GATA4-positive cells. These results indicate GATA4 plays an important role in cell sorting during preimplantation development and suggest phosphorylation by aPKC could determine its presence in the nuclei of PrE cells. My work, in the light of the current knowledge, supports a model where the earliest cell fate decisions during mammalian development depend on cellular interactions and not on inherited cell fate determinants. This robust mode of development underlies the plasticity of the preimplantation embryo and ensures the formation of the first mammalian cell lineages, critical for any further progression in mammalian development.

571.1

Miljömedveten produktvalsprocess med hjälp av BIM / Eco-friendly material selection with BIM

Magnryd, Anton, Kádár, Petra

January 2017

Syfte: Det föreligger svårigheter att undvika byggprodukter som innehåller farliga ämnen då användningen av dessa varor i vissa projekt är oundviklig spelar dokumentering en nyckelroll. Detta då spårbarhet förutsätter ett gott dokumenteringsunderlag. Genom att vidare kontrollera produkter som byggs in säkerställs det att nödvändig information finns tillgänglig för beslutsfattning och problemlösning. Detta för att möjliggöra hantering av eventuella lagstiftningsförändringar under ombyggnationer eller vid ändring av kemiska ämnens klassificering. Produktval har som ord blivit en vanligare förekomst i byggbranschen efter att Produktvalsprincipen presenterades i Miljöbalkens 2 kapitel 6 §. Produktvalsprincipen uppmanar till att produktval i så stor utsträckning som möjligt ska undvika produkter med fara för människa och miljö om de kan ersättas med mindre farliga. Syftet med arbetet är att kartlägga hur en förvaltarbyggherre inom den offentliga sektorn arbetar med produktval och undersöka vilka problem som kan uppstå kopplat till arbetet samt undersöka hur BIM kan effektivisera processen. Metod: För att upprätta arbetets teoretiska ramverk har en litteraturstudie genomförts. I arbetets fallstudie har empirin som insamlats bestått av dokumentanalys samt intervjuer med projektaktörer. Resultat: Arbetet har kartlagt förvaltarbyggherrens produktvalsprocess samt vidare hur denne ställer krav kopplat till det utförda arbetet, entreprenören genomför sedermera produktval utifrån krav samt rekommendationer i miljöprogram, administrativa föreskrifter samt rambeskrivningar och dokumenterar dessa i projektets loggbok. Problem studien funnit är att produkter ej i full utsträckning registreras utifrån satta krav. Författarna har vidare lokaliserat att i takt med att BIM-utvecklingen fortskrider kommer detta med tid möjliggöra för beställare att tillsammans med färdigställt projekt erhålla en specifik BIM-modell berikad med aktuell produktinformation (en Asset- Information-Model). Då projekterad information och inköpsinformation lagras i en BIM-modell kan en effektivare informationshantering säkerställas med hjälp av leveransspecifikationer vid överföringen av information mellan system. BIM- teknologin möjliggör vidare en effektivare uppföljning av ställda krav samt på sikt en effektivisering av processen som den genomförs idag. Konsekvenser: Rapporten ligger till grund för att tydliggöra upprättning av krav och problem relaterat till produktval under projektering och byggskede. För att produktvalsprocessen ska förlöpa på ett kvalitetsmässigt sätt bör satta krav efterföljas samt ansvariga för registrering genomgå utbildning. Rapporten föreslår att beställare genom ekonomiska incitament kopplar inköpsutbetalningar mot färdig produktdokumentering. En BIM-modell kan när mognadsgrad uppnås med fördel användas som dokumenteringsunderlag. Begränsningar: Rapportens resultat begränsas då undersökningen utförs från tidig design till och med första efterbesiktning samt att endast ett projekt har granskats. / Purpose: There are difficulties in avoiding construction products containing hazardous substances considering that the use of these products are inevitable in some projects. Documentation regarding product selection plays a key role as traceability requires thorough documentation. By adding further control of built-in-products it is ensured that necessary information is available for decision making and problem solving. This will allow the managing of possible legislative changes, during reconstruction or when chemical substances get their classification status changed. Product selection has become a more common occurrence in the construction industry since the release of Miljöbalkens second chapter 6 §, The Product selection principle (Produktvalsprincipen). This legislation has called for product selection to avoid hazardous products where they can be replaced with products less dangerous. The propose with this bachelor thesis is to map how a property developer/facility manager in the public sector transacts the work regarding product selection, map the problems related to the procedure and find a solution to the problem with the help of Building Information Modelling (BIM). Method: To create the theoretical framework of the report a literature study has been conducted. The empirical collection has been made in the form of a case study with empirical collection through interviews and document analysis. Findings: The thesis has mapped how the property developer/facility manager conducts product selection and how the property developer/facility manager sets the requirements connected to product selection. The entrepreneur documents the selected products with an outlook in set requirements in a log book. Problems the study has found are that all utilized products are not documented. The authors have further found that as BIM technology progresses it will eventually enable clients to procure specific BIM models enriched with specific product information. When information is stored in the BIM model it is possible to ensure more efficient information management with the help of information delivery specifications when transferring information in between systems. BIM technology also enables a more efficient follow up of requirements and in the long term a less labour intensive product selection process. Implications: The thesis bases the clarification of requirements and problems that the product selection consists of during the construction planning and construction stage. For the product selection to proceed with quality in mind, set requirements should be followed and the ones responsible for documenting products should undergo adequate training. The thesis proposes clients to connect economic incentives to purchase payments when product documentation is complete. A BIM-model can when maturity level is achieved compile of- and be utilized as product documentation. Limitations: The thesis result is limited in the sense that the investigations that has been conducted has examined the construction phase from early design to final inspection and has studied one project alone.

BIM

Information delivery specification

Log book

Product selection

BIM

Leveransspecifikation

Loggbok

Produktval

Building Technologies

Husbyggnad

Healthcare product-service system characterisation : implications for design

Yip, Man Hang

January 2015

The engineering design process transforms stakeholders’ needs and desires into design specifications. In this process, manufacturers make decisions that impact how much value can be generated from a new product/service. Clear design specification can enhance the value of a product/service. This research study focuses on the engineering design process for systems of products and services - product-service systems (PSSs). An unambiguous PSS classification could help manufacturers to produce clearer design specifications, however there is a lack of clear PSS classifications for engineering design. Existing classifications rely on an out-dated distinction between tangible objects as products, and everything else as a service, a division that inappropriately classifies digital products as services. To develop a coherent PSS classification, it is necessary to understand which characteristics of PSS can clarify its design specification. This research addresses this problem by determining the PSS characteristics that are useful for clarifying the design specification. The research aims to develop a PSS characterisation scheme and explore how the scheme influences design specifications. To achieve these aims, case study and action research methods are employed. This study has developed a PSS characterisation scheme that clarifies design specifications and a method to systematically apply this scheme, the PSS characterisation approach. This approach proves useful for practitioners to clarify design specifications, and has extended the application of the theory of technical systems to instruments supporting the engineering design process. The PSS characterisation scheme comprises four characteristics: customer perceived value level, ‘connectivity number’, type and degree of connectivity and configuration type. The scheme does not use the ‘tangibility’ distinction, but incorporates concepts of value creation and interdependencies within a PSS and between a PSS and its environment. This novel characterisation scheme contributes to the development of a PSS classification scheme for engineering design and also to the literature of PSS classifications.

620

Správa a řízení požadavků a její implementace do projektů IS/ICT / Software requirements engineering and implementation of IS/ICT project requirements

Kinská, Marcela

January 2008

This diploma thesis defines the issue of software requirements engineering and the implementation of software requirement into IS/ICT projects. One of the aims is to highlight the importance of systematic requirements management to successful IS/ICT projects. The theoretical part of thesis includes requirements definition, requirements typology and qualitative parameters of good requirement and actors, that are involved into the process of requirements management. The practical part of this thesis defines the process of requirements management general accepted methodologies of as it is specified in the internationally recognizable methodologies. Author's own contribution is the definition of a methodological process for managing requirements specifications, based on rigorous methodologies and extended to reflect author's practical experience. Methodological approach is tailored to the needs of smaller software companies and small to medium scale IS / ICT projects, and, if necessary, is further extendable. Another practical benefit of this thesis is the recommended methodology for change management requirements. Proposal process is based on the ITIL set of best practices; sub-threads are adapted to be able to meet the change management requirements and the broader business environment infrastructure. This methodology emphasizes an individual approach to the requirement. There is a recommendation of appropriate software tools for development and management requirements support divided into partial ITIL processes.

Analýza a návrh aplikační podpory logistiky ve firmě Cukrovary a lihovary TTD, a.s. / Analysis and design of application support logistics for Cukrovary a lihovary TTD, a.s.

Davídek, Tomáš

January 2009

The main aim of this thesis is IT support of logistics in sugar refinery Cukrovary a lihovary TTD, a.s. In the first part is an introduction of the company and sugar refinery industry. The goal of second part of thesis was achieved thorough application of optimization methods of Operation research. The third part describes requirements on the new designed system. This system will support transport supervisor in his activities. The aim of this part was achieved thorough application of Unified Process methodic.

Specification testing of Garch regression models

Shadat, Wasel Bin

January 2011

This thesis analyses, derives and evaluates specification tests of Generalized Auto-Regressive Conditional Heteroskedasticity (GARCH) regression models, both univariate and multivariate. Of particular interest, in the first half of the thesis, is the derivation of robust test procedures designed to assess the Constant Conditional Correlation (CCC) assumption often employed in multivariate GARCH (MGARCH) models. New asymptotically valid conditional moment tests are proposed which are simple to construct, easily implementable following the full or partial Quasi Maximum Likelihood (QML) estimation and which are robust to non-normality. In doing so, a non-normality robust version of the Tse's (2000) LM test is provided. In addition, a new and easily programmable expressions of the expected Hessian matrix associated with the QMLE is obtained. The finite sample performances of these tests are investigated in an extensive Monte Carlo study, programmed in GAUSS.In the second half of the thesis, attention is devoted to nonparametric testing of GARCH regression models. First simultaneous consistent nonparametric tests of the conditional mean and conditional variance structure of univariate GARCH models are considered. The approach is developed from the Integrated Generalized Spectral (IGS) and Projected Integrated Conditional Moment (PICM) procedures proposed recently by Escanciano (2008 and 2009, respectively) for time series models. Extending Escanciano (2008), a new and simple wild bootstrap procedure is proposed to implement these tests. A Monte Carlo study compares the performance of these nonparametric tests and four parametric tests of nonlinearity and/or asymmetry under a wide range of alternatives. Although the proposed bootstrap scheme does not strictly satisfy the asymptotic requirements, the simulation results demonstrate its ability to control the size extremely well and therefore the power comparison seems justified. Furthermore, this suggests there may exist weaker conditions under which the tests are implementable. The simulation exercise also presents the new evidence of the effect of conditional mean misspecification on various parametric tests of conditional variance. The testing procedures are also illustrated with the help of the S&P 500 data. Finally the PICM and IGS approaches are extended to the MGARCH case. The procedure is illustrated with the help of a bivariate CCC-GARCH model, but can be generalized to other MGARCH specifications. Simulation exercise shows that these tests have satisfactory size and are robust to non-normality. The marginal mean and variance tests have excellent power; however the covariance marginal tests lack power for some alternatives.

519.536