a refinement calculus for requirements engineering
play

A Refinement Calculus for Requirements Engineering John Mylopoulos - PowerPoint PPT Presentation

May 04, 2023 •6 likes •286 views

A Refinement Calculus for Requirements Engineering John Mylopoulos University of Ottawa 13 th Int. Conf. on Research Challenges for Information Science Brussels, May 29, 2019 RCIS19 -- 1 Abstract The requirements problem consists of

  1. A Refinement Calculus for Requirements Engineering John Mylopoulos University of Ottawa 13 th Int. Conf. on Research Challenges for Information Science Brussels, May 29, 2019 RCIS’19 -- 1

  2. Abstract The requirements problem consists of transforming stakeholder requirements - however informal, ambiguous, conflicting, unattainable, imprecise and incomplete – into a consistent, complete and realizable specification through a systematic process. We propose a solution for the problem, consisting of an iterative argument between stakeholders and requirements engineers, where posited requirements are attacked for being ambiguous, incomplete, etc. and refined accordingly. Refinements are carried out by operators that refine (e.g., strengthen, weaken, decompose) existing requirements, to build a refinement graph. The semantics of a solution is provided through the notion of acceptable arguments in Dung’s argumentation theory. This is joint work with Yehia ElRakaiby, Alessio Ferrari and Alex Borgida. RCIS’19 -- 2

  3. Requirements Engineering (RE) Concerned with the elicitation, analysis and refinement of stakeholder requirements in order to produce a specification for a system-to-be. Founded on seminal works by Douglas Ross, Michael Jackson and others in the mid-70s. Unique research area within Computer Science because its task is to define software engineering problems (in terms of a specification). Interesting area, because stakeholder (“early”) requirements are necessarily vague, informal, conflicting, unattainable, and more (... in short, "scruffy"), but they constitute the input to the RE process none-the-less. RCIS’19 -- 3

  4. The Requirements problem In its original formulation [Jackson95], a requirements problem consists of finding a specification S for a given set of requirements R and indicative environment properties E such that E, S |- R meaning: “… satisfaction of the requirements can be deduced from satisfaction of the specification, together with the environment properties…” [Jackson95] Solution through refinement (as in program refinement): Start with requirements and keep refining them to eliminate mention of non-executable elements. RCIS’19 -- 4

  5. Requirements as goals Requirements are now goals and (requirements) problem solving amounts to incremental AND/OR goal refinement (Axel van Lamsweerde, c.1993). Achieve Minimize [ParticipantConstraintsKnown] [ParticipantInteraction] goal constraint AND node refinement OR node Achieve AgendaAccessible [ConstraintsRequested] AgendaUpdated Achieve Achieve [ConstraintsAccessed] Constraint [ConstraintsProvided] Handler assumption Send Access Agenda Constraints Request Agenda Handler operationalization agent RCIS’19 -- 5 action

  6. Stakeholders as Actors Models now include stakeholders, represented as actors, who have goals and rely on others for their fulfillment (Eric Yu, c.1993). Initiator ContributeToMtg softgoal UsefulMtg ScheduleMtg actor CalendarInfo goal Participant Scheduler AttendMtg resource task SuitableTime RCIS’19 -- 6

  7. Interesting ideas in RE ... Requirements derived via refinement from models of the domain (Ross, c.1977). Stakeholder requirements and specifications are different things, though logically related (Jackson&Zave, c.1995). Requirements are stakeholder goals (vanLamsweerde, c.1993). The requirements problem is a social problem, calls for social solutions (Yu, c.1993). The requirements problem is solved through problem refinement (all), and this refinement has many forms: activity decomposition (Ross), abductive inference (Jackson), goal refinement (vanLamsweerde), social delegation (Yu). With goal models and refinement, you are not exploring a design, but rather a design space (GORE). RCIS’19 -- 7

  8. Goal models circa 2018 Goals can be mandatory/nice-to-have, can have priorities [Liaskos10], probabilities [Letier04], utilities, … Goal Low cost Schedule AND scheduling Softgoal meeting Good AND quality AND schedule AND AND X Collect timetables Choose Find free schedule room + op OR cp1 OR cp3 - cp2 OR By OR By system OR >70% person OR Get free participation room By person op X Rooms By system Quality Collect op available constraint Schedule Choice Domain Task points assumption RCIS’19 -- 8

  9. What do these models tell us? They allow us to derive alternative specifications ( solutions ) – each consisting of functions/tasks/actions, quality constraints and assumptions for fulfilling requirements. These models are founded on two important concepts of Science and Engineering: refinement and operationalization . RCIS’19 -- 9

  10. Refinement Literally means “the process of removing impurities, defects or unwanted elements”, as in oil or sugar refinery. Refinement has an illustrious history in Computer Science, specifically in programming methodology (Abrial, Hoare et al) In GORE, refinement has been used to iteratively reduce a goal G to specification S (collections of tasks, quality constraints) and assumptions such that A, S |- G Goal refinements come in two flavours, AND/alternative: G  AND G 1 , G 2 , … , G n (decomposition) G  G 1 , G  G 2 , … , G  G m (alternation) RCIS’19 -- 10

  11. Operationalization In spoken English, operationalization means “to make something operational/working” [spoken] Operationalizing a goal in terms of a task/action uses this [spoken] sense. In the Sciences (Natural, Life and Social), operationalization means “defining a concept that is not directly observable through the operations by which we measure it” [sciences] [Bridgeman27]. e.g., ‘mass’ can be operationalized inertially or gravitationally. Operationalizing a non-functional requirement in terms of quality constraints/metrics uses that [sciences] sense. Operationalization marks the boundary between problem and solution space. RCIS’19 -- 11

  12. But , many things can’t be told in GORE … The requirements stakeholders give are often:  Redundant/not needed so they can be dropped “Highly secure system”  X (forget it, not needed!)  Unattainable, so they need to be weakened, “7/24 availability”  “office hour availability”  Conflicting, so they need to be weakened “Low cost” & “High security”  “modest cost” & “secure from DoS attacks” Refinements provided by GORE can’t address problems of unattainability, conflict, ambiguity, incompleteness, etc. … we need a new calculus! RCIS’19 -- 12

  13. A calculus for RE (CaRE) Consists of refinement operators that operate on requirements and derive other requirements. Through this calculus we propose to solve the requirements problem incrementally by applying refinement operators until we can derive specifications/solutions from the refinement graph that address all their attacks. Incremental refinement is cast in the form of a Hegelian dialectical argument between stakeholders (including requirements engineers) where posited requirements are attacked for being ambiguous/incomplete/conflicting/unattainable/non-atomic/… etc., and refinements are proposed that eliminate defects under attack. RCIS’19 -- 13

  14. Examples r1:= “System shall schedule meetings upon request” r2:= “Meeting schedules shall be of good quality” (reduce)  Non-atomic(r1) “No single function for r1” r3:= “Collect timetables”,r4:= “Generate a schedule” (add)  Incomplete(r3) “No privacy requirement” r5:= “timetable data shall be confidential” Ambiguous(r2) (strengthen)  r6:=“≥70% participation rate” Rejected(r6) Ambiguous(r2) (strengthen)  r7:=“≥80% participation rate” … RCIS’19 -- 14

  15. Refinement graph r1 r2 Ambiguous Non-atomic strengthen strengthen reduce r6 r7 X r3 r4 r1:= “System shall schedule meetings upon request” Incomplete r2:= “Meeting schedules shall be of good quality” add r3:= “Collect timetables”, r4:= “Generate a schedule” r5 r5:= “timetable data are confidential” r6:=“≥70% participation” r7:=“≥80% participation” RCIS’19 -- 15

  16. Hegelian dialectics For Hegel, dialectics is a form of argument where a thesis is attacked with an antithesis, leading to a synthesis. This is a different form of dialectic than the original version presented by Plato (and practiced by Socrates). For our purposes, a thesis is a requirement (or set thereof), an antithesis is a attack that points to a defect of the requirement(s), and a synthesis is the result of a refinement that refines attacked requirement(s) into new ones that don’t have the defect. Hegel calls refinement a sublation (from German verb “aufheben”, to sublate) meaning that a refinement at the same time cancels (or negates) and preserves what it refines [SEP16]. RCIS’19 -- 16

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Refinement Calculus for Compositional System Reasoning Viorel Preoteasa Joint work with Stavros

Refinement Calculus for Compositional System Reasoning Viorel Preoteasa Joint work with Stavros

Relational Interfaces and Refinement Calculus for Compositional System Reasoning Viorel Preoteasa Joint work with Stavros Tripakis and Iulia Dragomir 08.12.2015 Computational Logic Day 2015 1 Overview Motivation General refinement

341 views • 20 slides
Software Design Refinement Using Design Patterns Instructor: Dr. Hany H. Ammar Dept. of Computer

Software Design Refinement Using Design Patterns Instructor: Dr. Hany H. Ammar Dept. of Computer

Software Design Refinement Using Design Patterns Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU 1 Outline The Requirements, Analysis, Design, and Design Refinement Models Class diagram

762 views • 51 slides
Tool-Supported Refinement of High- Level Requirements and Constraints into Low-Level Policies

Tool-Supported Refinement of High- Level Requirements and Constraints into Low-Level Policies

IEEE International Symposium on Policies for Distributed Systems and Networks (POLICY 2011) Tool-Supported Refinement of High- Level Requirements and Constraints into Low-Level Policies Outline: Automated Policy Refinement Background

809 views • 23 slides
Software Design Refinement Using Design Patterns Part II The FSM and the StateChart Patterns

Software Design Refinement Using Design Patterns Part II The FSM and the StateChart Patterns

Software Design Refinement Using Design Patterns Part II The FSM and the StateChart Patterns Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU Outline Review The Requirements, Analysis, Design, and

561 views • 54 slides
Whats Calculus? Answer: Next semester! (Fundamental Theorem of Calculus, by Newton and

Whats Calculus? Answer: Next semester! (Fundamental Theorem of Calculus, by Newton and

Whats Calculus? Answer: Next semester! (Fundamental Theorem of Calculus, by Newton and Leibniz.) Virtually all of modern science uses calculus! Physics, engineering, statistics, biology (modeling), etc. This semester: Differential Calculus.

552 views • 17 slides
CS 5150 So(ware Engineering 6. Requirements Analysis William Y. Arms Requirements Requirements

CS 5150 So(ware Engineering 6. Requirements Analysis William Y. Arms Requirements Requirements

Cornell University Compu1ng and Informa1on Science CS 5150 So(ware Engineering 6. Requirements Analysis William Y. Arms Requirements Requirements describe the func1on of the system from the client's viewpoint. The requirements

438 views • 32 slides
Lecture 10: Req. Eng. Wrap-Up / . Requirements Engineering with scenarios . . Documents

Lecture 10: Req. Eng. Wrap-Up / . Requirements Engineering with scenarios . . Documents

Topic Area Requirements Engineering: Content Content VL 6 Introduction LSCs: Automaton Construction Requirements Specification Excursion: Symbolic Bchi Automata Softwaretechnik / Software-Engineering Desired Properties

322 views • 10 slides
Backlog Refinement SWEN-610 By Dr ian mitchell (Own work) [CC BY-SA 4.0

Backlog Refinement SWEN-610 By Dr ian mitchell (Own work) [CC BY-SA 4.0

Backlog Refinement SWEN-610 By Dr ian mitchell (Own work) [CC BY-SA 4.0 (http://creativecommons.org/licenses/by-sa/4.0) or CC0], via Wikimedia Commons Foundations of Software Engineering Department of Software Engineering Rochester Institute

442 views • 9 slides
Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland

Requirements Engineering Software Engineering Software Engineering Andreas Zeller Saarland University Waterfall Model (1968) Communication project initiation requirements gathering Planning estimating scheduling tracking

511 views • 49 slides
Software Requirements and the Requirements Engineering Process Chapters 5 and 6 References

Software Requirements and the Requirements Engineering Process Chapters 5 and 6 References

Software Requirements and the Requirements Engineering Process Chapters 5 and 6 References Software Engineering. Ian Sommerville. 6th edition. Pearson. Code Complete. Steve McConnell. (CC) The art of requirements triage. Alan M.

484 views • 25 slides
APMA Calculus Options Which Course Should I Take? School of Engineering & Applied Science

APMA Calculus Options Which Course Should I Take? School of Engineering & Applied Science

APMA Calculus Options Which Course Should I Take? School of Engineering & Applied Science University of Virginia July 3, 2018 APMA Calculus Sequences Originally, there was a single 3-semester sequence with 3 different starting points,

334 views • 15 slides
Introduction to Block-Structured Adaptive Mesh Refinement (AMR) Ann S. Almgren Center for

Introduction to Block-Structured Adaptive Mesh Refinement (AMR) Ann S. Almgren Center for

Introduction to Block-Structured Adaptive Mesh Refinement (AMR) Ann S. Almgren Center for Computational Sciences and Engineering (Building 50A) Lawrence Berkeley National Laboratory asalmgren@lbl.gov Almgren p. 1/25 Types of Refinement

968 views • 49 slides
Requirement Requirement Requirement Requirement Engineering Engineering Engineering

Requirement Requirement Requirement Requirement Engineering Engineering Engineering

Requirement Requirement Requirement Requirement Engineering Engineering Engineering Engineering Outline Stakeholders Context diagram and interfaces Types of requirements Numbering requirements Scenarios, sequence diagrams

586 views • 39 slides
Backlog Refinement and Estimation SWEN-261 By Dr ian mitchell (Own work) [CC BY-SA 4.0

Backlog Refinement and Estimation SWEN-261 By Dr ian mitchell (Own work) [CC BY-SA 4.0

Backlog Refinement and Estimation SWEN-261 By Dr ian mitchell (Own work) [CC BY-SA 4.0 (http://creativecommons.org/licenses/by-sa/4.0) or CC0], via Wikimedia Commons Introduction to Software Engineering Department of Software Engineering

320 views • 12 slides
Requirements for Requirements Engineering Tools that Require Understanding Requirement

Requirements for Requirements Engineering Tools that Require Understanding Requirement

Requirements for Requirements Engineering Tools that Require Understanding Requirement Semantics 2017 Daniel M. Berry Requirements Engineering Tools for Hairy Tasks Pg. 1 Why such tools should be clerical and not NLP-based Daniel

850 views • 68 slides
1 Representations for requirements Unified Modeling Language UML (1997) Requirement

1 Representations for requirements Unified Modeling Language UML (1997) Requirement

Today CSE 403, Software Engineering Representation of requirements Lecture 4 Use of requirements Key parts of the discussion will (probably) be about process, not Documenting and Using artifacts Requirements Non-functional

358 views • 4 slides
I NTRODUCTION Pattern Recognition Problems (OCR, handwritten and

I NTRODUCTION Pattern Recognition Problems (OCR, handwritten and

XXIV SIBGRAPI - Conference on Graphics, Patterns and Images Rosario A. Medina Rodriguez and Ronaldo Fumio Hashimoto Institute of Mathematics and Statistics

320 views • 20 slides
Please visit pollev.com/jeffterrell for a poll 1 / 29 Interpersonal Effectivness UNC COMP 523

Please visit pollev.com/jeffterrell for a poll 1 / 29 Interpersonal Effectivness UNC COMP 523

Please visit pollev.com/jeffterrell for a poll 1 / 29 Interpersonal Effectivness UNC COMP 523 September 30, 2020 Jeff Terrell 2 / 29 Announcements music: Come Together by the Beatles, as a nod to interpersonal effectiveness autograding on

851 views • 29 slides
Rhetorical structure and argumentation structure in monologue text Andreas Peldszus Manfred

Rhetorical structure and argumentation structure in monologue text Andreas Peldszus Manfred

Rhetorical structure and argumentation structure in monologue text Andreas Peldszus Manfred Stede Applied Computational Linguistics, University of Potsdam 3rd Workshop on Argument Mining @ACL 2016, Berlin, 12.08.2016 Peldszus, Stede (Uni

611 views • 57 slides
Representing Interventions Nathaniel Osgood Agent-Based Modeling Bootcamp for Health Researchers

Representing Interventions Nathaniel Osgood Agent-Based Modeling Bootcamp for Health Researchers

Representing Interventions Nathaniel Osgood Agent-Based Modeling Bootcamp for Health Researchers August 25, 2011 Representing Interventions in AnyLogic & Vensim Interventions disturb the baseline operation of the system

437 views • 25 slides
1 OLD TESTAMENT MODELS FOR THE NEW TESTAMENT CHRIST Old

1 OLD TESTAMENT MODELS FOR THE NEW TESTAMENT CHRIST Old

Class 10a HOW JESUS BECAME GOD TRAJECTORIES IN EARLY CHRISTIANITY Questions What is the scope of your gospel that is, where does it

462 views • 12 slides
The Norwegian Blue A lesson in Privacy Engineering Eivind Arvesen, Aug. 7th 2020 Crypto &

The Norwegian Blue A lesson in Privacy Engineering Eivind Arvesen, Aug. 7th 2020 Crypto &

The Norwegian Blue A lesson in Privacy Engineering Eivind Arvesen, Aug. 7th 2020 Crypto & Privacy Village: Glitched (at DEF CON 28: SAFE MODE) $ whoami Eivind Arvesen Consultant @ Bouvet (Oslo, Norway) Privacy and security Senior

1.18k views • 63 slides
WHEN SERIES GO IN INDEFINITUM, AD INFINITUM AND IN INFINITUM CONCEPTS OF INFINITY IN KANT'S

WHEN SERIES GO IN INDEFINITUM, AD INFINITUM AND IN INFINITUM CONCEPTS OF INFINITY IN KANT'S

WHEN SERIES GO IN INDEFINITUM, AD INFINITUM AND IN INFINITUM CONCEPTS OF INFINITY IN KANT'S PHILOSOPHY AND COSMOLOGY Silvia De Bianchi TU Dortmund silvia.debianchi@tu-dortmund.de CONTENTS Part I Kants Antinomy of pure Reason and

500 views • 22 slides
Building Blocks for Value-Based Payment N A H D O 2 0 1 9 H E A L T H C A R E D A T A S U M M

Building Blocks for Value-Based Payment N A H D O 2 0 1 9 H E A L T H C A R E D A T A S U M M

Medicare Price Benchmarks: Building Blocks for Value-Based Payment N A H D O 2 0 1 9 H E A L T H C A R E D A T A S U M M I T N O V E M B E R 6 , 2 0 1 9 L I T T L E R O C K , A R C H A P I N W H I T E S E N I O R P O L I C Y R E S

464 views • 29 slides

More recommend