managing a software project the dos and don ts
play

Managing a software project the dos and donts SI2 PI Meeting - PowerPoint PPT Presentation

Jan 27, 2024 •166 likes •264 views

Managing a software project the dos and donts SI2 PI Meeting January 18, 2012 Von Welch Director and PI CTSC trustedci.org 1 Center for Trustworthy Scientific Cyberinfrastructure (CTSC) Jim Basney, Randal Butler, Scott Koranda, Jim

  1. Managing a software project— the dos and don’ts SI2 PI Meeting January 18, 2012 Von Welch Director and PI CTSC trustedci.org 1

  2. Center for Trustworthy Scientific Cyberinfrastructure (CTSC) Jim Basney, Randal Butler, Scott Koranda, Jim Marsteller, Bart Miller, Von Welch We don’t make the software, we help make it more secure (so you can focus on what you do best). Lots of software development (MyProxy, CILogon, GridShib, COmanage), testing (FPVA), and operating (XSEDE, OSG, LIGO, NCSA, PSC) experience. trustedci.org 2

  3. CTSC trustedci.org We engage with projects, and develop training to solve security challenges and we want to help your project. Let us know your needs: trustedci.org/sw-survey/ Or Email me (vwelch@indiana.edu) trustedci.org 3

  4. To Phil’s charge… What are the security do’s and don’t for vulnerability handling for release, support and testing? Considering software of maturity to be used in production science project or facility such as OSG, XSEDE, LIGO, IU, NCSA, etc. This is in a range of maturity, which is separate discussion. trustedci.org 4

  5. Vulnerabilities Like the common cold, we’d love to eliminate vulnerabilities, but today everybody gets them. It’s how you handle them that is important to people trusting your software. A timely, predictable process is the key. trustedci.org 5

  6. Support Do know what versions you support, be clear about that. Do have a clear process for reporting vulnerabilities. E.g. http://grid.ncsa.illinois.edu/myproxy/security/#vh Do have a internal process for handling vulnerabilities. Who is in charge, sets priority, etc. Do know what software you depend on and monitor them for vulnerabilities – you own those as well for your users. trustedci.org 6

  7. Release Do produce a clean fix. I.e. a new release with just the security fix and nothing else. User want a quick, painless installation, testing as little as possible. Do plan your communications Don’t surprise your user community with a security fix. A private channel to key users is good. A dedicated, low-volume channel for announcing is good. trustedci.org 7

  8. Testing Do test security releases. Ability to quickly test is key to quick security releases. Automated testing helpful, e.g. B&T Software assurance (testing code security) from the start is good. The earlier, the easier. Automated help coming in 2014, SWAMP (http://www.cosalab.org/) trustedci.org 8

  9. Thank you Von Welch vwelch@indiana.edu www.trustedci.org blog.trustedci.org twitter.com/TrustedCI We thank the National Science Foundation (grant 1234408) for supporting our work. The views and conclusions contained herein are those of the author and should not be interpreted as necessarily representing the official policies or endorsements, either expressed or implied, of the NSF. trustedci.org 9

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SoberIT Software Business and Engineering Institute T-76.612 Software Project Management -

SoberIT Software Business and Engineering Institute T-76.612 Software Project Management -

SoberIT Software Business and Engineering Institute T-76.612 Software Project Management - Spring 2005 Lecture 5. Managing People and Organizing Teams Chapter 11 Maria Paasivaara HELSINKI UNIVERSITY OF TECHNOLOGY SoberIT Software Business

724 views • 17 slides
Object-Oriented Software Engineering Practical Software Development using UML and Java Chapter

Object-Oriented Software Engineering Practical Software Development using UML and Java Chapter

Object-Oriented Software Engineering Practical Software Development using UML and Java Chapter 11: Managing the Software Process Lecture 13 11.1 What is Project Management? Project management encompasses all the activities needed to plan and

397 views • 25 slides
Managing software variability for dynamic reconfiguration of robot control systems Davide Brugali

Managing software variability for dynamic reconfiguration of robot control systems Davide Brugali

Managing software variability for dynamic reconfiguration of robot control systems Davide Brugali University of Bergamo, Italy Outline Managing software variability for : 1. Reducing software development costs 2. Enforcing NF-Requirements at

672 views • 21 slides
Software Service is our cup of Tea Ease out one of your tensions with one sip We know managing

Software Service is our cup of Tea Ease out one of your tensions with one sip We know managing

Software Service is our cup of Tea Ease out one of your tensions with one sip We know managing training is a Herculean task, only a person of your caliber can perform it so well. We at Trendz appreciate you and offer our expertise in software

470 views • 18 slides
Managing Defects in HPC Software Development Presented to OLCF Webinar Series Tom Evans ORNL,

Managing Defects in HPC Software Development Presented to OLCF Webinar Series Tom Evans ORNL,

Managing Defects in HPC Software Development Presented to OLCF Webinar Series Tom Evans ORNL, PI ExaSMR ECP Applications Project November 1, 2017 Before we start Since I cannot see anyone in this presentation format, feel free to totally

981 views • 54 slides
Managing the co-evolution of software artifacts ir. J.M.A.M. Gabriels dr. ir. D.H.R. Holten ir.

Managing the co-evolution of software artifacts ir. J.M.A.M. Gabriels dr. ir. D.H.R. Holten ir.

Managing the co-evolution of software artifacts ir. J.M.A.M. Gabriels dr. ir. D.H.R. Holten ir. M.D. Klabbers ir. W.J.P. van Ravensteijn dr. A. Serebrenik LaQuSo, SynerScope Laboratory for Quality Software Part of TU/e department of

443 views • 15 slides
Software Solutions for Managing Coding (Billing) Compliance Minnette Terlep Senior Vice

Software Solutions for Managing Coding (Billing) Compliance Minnette Terlep Senior Vice

Software Solutions for Managing Coding (Billing) Compliance Minnette Terlep Senior Vice President United Audit Systems, Inc. 360 Gest Street Cincinnati, OH 45203 513-723-1122, extension 114 Software Solutions for Managing

759 views • 58 slides
ClickPoint Software Lead Management Software ClickPoint Software Confidential ClickPoint

ClickPoint Software Lead Management Software ClickPoint Software Confidential ClickPoint

ClickPoint Software Lead Management Software ClickPoint Software Confidential ClickPoint Software was created because there was no software that was easy to implement for managing and distributing leads and phone calls. The process was

225 views • 11 slides
Software size measures and their usefulness for software project estimation Software Size

Software size measures and their usefulness for software project estimation Software Size

Software size measures and their usefulness for software project estimation Software Size Measures and their usefulness for software project estimation Harold van Heeringen Sogeti Nederland B.V., Senior Software Cost Engineer San Diego (CA,

779 views • 32 slides
Stress-Free Revit Project Setup Core Services Applied Matt Dillon Director Software Agenda

Stress-Free Revit Project Setup Core Services Applied Matt Dillon Director Software Agenda

Stress-Free Revit Project Setup Core Services Applied Matt Dillon Director Software Agenda Project Templates Linking Project Data Revit Models CAD Files Creating Levels with Copy Monitor Creating/Managing Views

155 views • 11 slides
Models at Runtime for Adaptive and Self-managing Software Dagstuhl Seminar on Models@run.time

Models at Runtime for Adaptive and Self-managing Software Dagstuhl Seminar on Models@run.time

Models at Runtime for Adaptive and Self-managing Software Dagstuhl Seminar on Models@run.time (2011) Holger Giese and Thomas Vogel System Analysis & Modeling Group Hasso Plattner Institute for Software Systems Engineering University of

399 views • 11 slides
Managing Project Extensions through Adaptive Management during Project Implementation The

Managing Project Extensions through Adaptive Management during Project Implementation The

Managing Project Extensions through Adaptive Management during Project Implementation The Presentation of Jordans Program: Increasing the Resilience of Poor and Vulnerable Communities to Climate Change Impacts in Jordan through

125 views • 11 slides
Towards Automated Software Project Planning Extending Palladio for the Simulation of Software

Towards Automated Software Project Planning Extending Palladio for the Simulation of Software

KPD Symposium 2013 Position Paper Towards Automated Software Project Planning Extending Palladio for the Simulation of Software Processes Oliver Hummel & Robert Heinrich sdq.ipd.kit.edu SOFTWARE DESIGN AND QUALITY GROUP INSTITUTE FOR

233 views • 11 slides
Managing Modular Software for your NuGet, C++ and Java Development Agenda Modular software

Managing Modular Software for your NuGet, C++ and Java Development Agenda Modular software

Managing Modular Software for your NuGet, C++ and Java Development Agenda Modular software why? Building modular software in Java in C++ in .NET Whos talking? @jbaruch 3 WTF IS MODULE? Module Modular

1.87k views • 158 slides
COSC 340: Software Engineering Course Project: Introduction Michael Jantz COSC 340: Software

COSC 340: Software Engineering Course Project: Introduction Michael Jantz COSC 340: Software

COSC 340: Software Engineering Course Project: Introduction Michael Jantz COSC 340: Software Engineering 1 Project Timeline Week(s) Dates Tasks 1 2 1/13 1/27 Form teams, pick a project topic 3 4 1/30 2/10 Write and present

94 views • 8 slides
Software and Experience with Managing Workflows for the Computing Operation of the CMS Experiment

Software and Experience with Managing Workflows for the Computing Operation of the CMS Experiment

Software and Experience with Managing Workflows for the Computing Operation of the CMS Experiment Jean-Roch Vlimant, on behalf of the CMS Collaboration California Institute of Technology E-mail: jvlimant@caltech.edu We present a system deployed

421 views • 8 slides
How iR iRODS Manages Data for a Hydrology Community of 1000's 's of Users Ray Idaszak, David G.

How iR iRODS Manages Data for a Hydrology Community of 1000's 's of Users Ray Idaszak, David G.

HydroShare and iR iRODS: : How iR iRODS Manages Data for a Hydrology Community of 1000's 's of Users Ray Idaszak, David G. Tarboton (PI), Hong Yi, Chris Calloway, Shaowen Wang, Jeffery Horsburgh, Dan Ames, Martyn Clark, Jon Goodall, Alva

373 views • 15 slides
Security Contacts in SAML Metadata Jim Basney jbasney@ncsa.illinois.edu Topics About

Security Contacts in SAML Metadata Jim Basney jbasney@ncsa.illinois.edu Topics About

Security Contacts in SAML Metadata Jim Basney jbasney@ncsa.illinois.edu Topics About InCommon Federated security incident response Security contacts in metadata Metadata integrity Examples and statistics Open questions

463 views • 12 slides
1 2 3 Provide background on CA student demographics Briefly describe the CAASPP and ELPAC testing

1 2 3 Provide background on CA student demographics Briefly describe the CAASPP and ELPAC testing

1 2 3 Provide background on CA student demographics Briefly describe the CAASPP and ELPAC testing programs, purposes of each, how many students are tested, etc. Describe the state perspective on communicating results to parents, using the

530 views • 27 slides
HTCondor in Astronomy at NCSA Michael Johnson, Greg Daues, and Hsin-Fang Chiang HTCondor Week

HTCondor in Astronomy at NCSA Michael Johnson, Greg Daues, and Hsin-Fang Chiang HTCondor Week

HTCondor in Astronomy at NCSA Michael Johnson, Greg Daues, and Hsin-Fang Chiang HTCondor Week 2019 The Dark Energy Survey The Dark Energy Survey (DES) is designed to probe the origin of the accelerating universe and help uncover the nature

412 views • 16 slides
1 About the Better Identity Coalition Focus: developing and advancing consensus-driven,

1 About the Better Identity Coalition Focus: developing and advancing consensus-driven,

1 About the Better Identity Coalition Focus: developing and advancing consensus-driven, cross-sector policy solutions that promote the development and adoption of better solutions for identity verification and authentication. Launched in

855 views • 64 slides
CCIN2P3 connectivity NCSA / LSST meeting jerome.bernier@in2p3.fr May 2015 CCIN2P3 connectivity

CCIN2P3 connectivity NCSA / LSST meeting jerome.bernier@in2p3.fr May 2015 CCIN2P3 connectivity

CCIN2P3 connectivity NCSA / LSST meeting jerome.bernier@in2p3.fr May 2015 CCIN2P3 connectivity n Generic IP RENATER GEANT n LHC project LHCOPN LHCONE n CCIN2P3 LAN n LSST needs CCIN2P3 May 2015 IN2P3 network SC

158 views • 15 slides
Road Map 1. Introduction Introduction 1. 2. The Physical Problem The Physical Problem 2. 3.

Road Map 1. Introduction Introduction 1. 2. The Physical Problem The Physical Problem 2. 3.

CBPF S ANTA F E I NSTITUTE Brazilian Center for Research in Physics NExtComp Molecular Dynamics Application for Long-Range Interacting Systems on a Computational Grid Environment Marcelo Portes de Albuquerque Marcelo Portes de Albuquerque

254 views • 12 slides
Introduc)on to GPU Programming Mubashir Adnan Qureshi

Introduc)on to GPU Programming Mubashir Adnan Qureshi

Introduc)on to GPU Programming Mubashir Adnan Qureshi h3p://www.ncsa.illinois.edu/People/kindr/projects/hpca/files/singapore_p1.pdf h3p://developer.download.nvidia.com/CUDA/training/NVIDIA_GPU_Compu)ng_Webinars_CUDA_Memory_Op)miza)on.pdf Tutorial

597 views • 27 slides

More recommend