"No Silver Bullet? Silver Buckshot May Work" Presented - - PDF document
KT3 Keynote 11/10/2011 12:45:00 PM "No Silver Bullet? Silver Buckshot May Work" Presented by: Gregory Pope Law rence Livermore National Laboratory Brought to you by: 340 Corporate Way, Suite 300, Orange Park, FL 32073 888 268
340 Corporate Way, Suite 300, Orange Park, FL 32073 888‐268‐8770 ∙ 904‐278‐0524 ∙ sqeinfo@sqe.com ∙ www.sqe.com
With more than forty years of experience developing software in the commercial and government sectors, Gregory Pope currently works for the Lawrence Livermore National Laboratory as a software quality engineering group leader, and verification and validation project leader for advanced simulation. Previously, Greg founded and ran a software testing company, patented automated software testing tools, and held management and technical positions involving mission-critical testing of military systems and development of software code for avionics and aerospace uses. Greg has given industry keynote addresses, written technical papers, taught on software quality internationally, and been a consultant.
SQE Group Leader
Lawrence Livermore National Laboratory under Contract DE$AC52$07NA27344
Top Down Structured Programming $$$$$$$$$$$$$$$$$$$$c. 1974 Waterfall Lifecycle $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ c. 1976 DoD Standard 2167A $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ c. 1988 Computer Aided Software Engineering (CASE)$$$$$ c. 1990 Object Oriented Design and Programming $$$$$$$$$$ c. 1992 CMM/CMMI $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ c. 1993 Rational Unified Process $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ c. 1996 Automated Testing Tools $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ c. 1995 Continuous Integration $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ c. 1999
Less spaghetti code In process error detection, iterative, incremental spins More documentation is not the answer $ RUP, artifacts Frameworks and plug ins $ Eclipse, Team Forge Reusability $ Java, Python, Ruby, C# Regulated vendor minimum competencies, Outsource Expect requirements to change $ Agile Nightly regression testing – Junit, Subversion, QTP Defects detected earlier – CMAKE, BuildBot, Jenkins
Integrated Development Environments (IDEs) Networking Static analysis Continuous integration Distributed Code repositories
Debug and try it Write unit test drivers and stubs manually Stand alone framework to write unit tests Automated tool (Automated Regression Tests to run periodically) Automated the Automated tool, run unit tests when a code change is detected
Source: William Oliver LLNL “Quantifying the Value of Static Analysis”, Starwest 2011
15%
15% 15%
Missile Simulator Software New Software RWR Software
Source: Lunch with Ken Schwaber 2007
The XYZ project is ahead of schedule and under budget. What do you mean the software isn't ready for test yet?
for a couple of days. We have got to add a month to this schedule. Admits there is a problem. We should have time to test if we get the software on schedule. You can't use our test schedule to keep writing new code. We can't even begin to test XYZ, let alone finish, in two days. You can't deliver XYZ without a minimum of testing. Admits the need to automate testing. Let's plan a picnic to celebrate the success$ ful XYZ delivery. Perhaps we should delay the picnic by a week or so. Perhaps we should delay the picnic by a month. Refers Test Manager to Employee Assistance Program. Finds job for old program manager. Admits self to Employee Assistance Program. Trust me. We just have a few minor functions to add. That last function required changing 50%
Tomorrow, for certain, will be the day we give it to test. We didn't know you wanted all functions in the first version. Admits the need to plan based on prior experiences. XYZ will increase our sales by 50% next quarter. XYZ will be even better than we first thought. XYZ is so good, test hasn't even found any bugs in it. What do you mean it's late and doesn't work? We'll lose market share! Admits the need to keep in closer contact with engineering. Denial Anger Depression Bargaining Acceptance XYZ PROGRAM MANAGER TEST$QA MANAGER HR MANAGER ENGINEERING MANAGER MARKETING MANAGER DEPT STAGE
Static Analysis Security Testing C, C++ written before there was an internet * Security not a function or test, it is an intrinsic value*
Estimation Tools Acceleration Release Prediction Tools
* Source: James Gosling, inventor Java, speaking at Sandia Labs 8/18/2011
Automated workflow
Some Examples
Some thoughts
Some thoughts
Type first integer : 5 Type second integer : 6 Type third integer : 7 5 is in the range 30 to 199 : FALSE at least two integers you typed are equal : FALSE 5 != 6 : TRUE NOT (5 < 6) : FALSE 5 <= 6 : TRUE 7 > 6 : FALSE (7 = 5) AND (6 != 7) : FALSE (7 <= 5) XOR (6 >= 7) : FALSE (7 > 5) AND (6 <= 7) : TRUE Polarity
Please enter January 1's starting day; A 0 indicates January 1 is on a Monday, A 1 indicates January 1 is on a Tuesday, etc: 5 Enter the year you want the calender generated: 2011 The calendar for the year 2011 January Sun Mon Tue Wed Thu Fri Sat $$$ $$$ $$$ $$$ $$$ $$$ $$$ 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 November Sun Mon Tue Wed Thu Fri Sat $$$ $$$ $$$ $$$ $$$ $$$ $$$ 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30
Change string to Sunday and Monday Spelling
Chaos Chaos Perceived Order Emerging Problem Solving Chaos Emerging Order Order Deliberate Problem Seeking
Instead of trying to make order exist initially, chaos is allowed to exist so all stakeholders can problem seek together. Emerging chaos closely resembles the waterfall
(create apparent order).
Source: Moshe F. Rubinstein and Iris R. Firstenberg, University of California, Los Angeles, John Wiley and Sons, pg. 91
Source: Nancy Levenson,
Title Source: Yogi Berra, New York Yankees http://www.lbl.gov/CS/html/SC08ExascalePowerWorkshop/gara.pdf Yuan Chen, Jet Propulsion Laboratory, Pasadena, California
Matures 1933$1945 Boomers 1946$1964 Gen X 1965$1976 Gen Y 1977$1998 34 Million 76 Million 41 Million 75 Million
Source: Love’Em or Lose’Em, Kay and Jordan$Evans, page 236
Matures Boomers Generation X Generation Y Work Ethic
Work 'til you drop. Work long hours and tell your manager about it. Personal life first, work is important. Lifestyle comes first.
Loyality
Loyal to employer. Loyal to employer, with reservations. Career and professional loyalty. Career options.
Technology
Technology fascination. Technology challanged. Technology proficient. Technology immersed.
Reporting Relationships
Strong chain of command. Chain of command. What is the purpose of a chain of command? Be respectful but move ahead.
Source: !" !", Kay and Jordan$Evans, page 245
"!#""!#! $!%& #' (# ( ("%&) (* !&&$#! (%% *"! +!%!$!# !( (, (* !+#($!%) (* %-!"#
#*&&!/$!% (%%#% "!##+(!$!%0#" %(#+(# (&#+( !% # ( ) %"-%"+ !/%#+-%"+ ## ("&$ %&!$" $!%*#" +#+#"!""!!"
'!!(/!#"#&$#&" ! $!%+!&!+#((!+) & ($&#+ !(& (# (+&) &-%#&"!(!# ('$!%! (#+(#% (!"!$!%&-!%() &0 +! % !(# ! (' !-#+#+(# !-&!$#! ##&$%" "($$!%&( $ (* & $ %-!! ! #"$!% !% & ((# #($!% #(/!#"#$!% ! %#/!!#! (# ) (/* "$ ! ("%& ! &#! ! %&#+!# ##! "!"# #(# &#! (# &"&$# %#""% #!'
Source: Capers Jones, #$%$$ Source: Gregory Pope, &$$$"
Know who our customers are and meet or exceed their expectations with valuable software systems that are supportable. Understand the context in which our software systems will operate as well as the technical constraints and interfaces. Assemble the right team of individuals, give them the environment and support they need, and trust them to get the job done. Support the customer’s expectations throughout the software project life cycle. Pursue technical excellence by continuously preventing, detecting, and removing defects from the software system. Collaborate and coordinate with partners frequently throughout the software project. Create, integrate, and manage the software codes focusing on continuous improvement of the process and products. Demonstrate frequently during development that the software system supports the customer’s expectations and is fully supportable.
Source: Gregory Pope, &$$$"
"# " "$ %&' %(') %* +! +, +- .$' . .- /0 /, /$ 10 12 3(') 3$ , 4
, !) 4)' "- ", %) %,) +' +, .0 ., /' /, 1 1, 3&55 3 4
Source: Gregory Pope, &
345 67
.36 6 00 Buck .33 8 0 Buck .32 9 1 Buck .30 11 2 Buck .27 15 3 Buck .25 19 4 Buck .24 21 BB .18 50 2 Bird .148 90 4 Bird .129 135 5 Bird .12 170 6 Bird .109 225
51 52 64 28 11 17 22 64 13 28 15 30 16 10 20 30 40 50 60 70
94:;
Prevention
7 41 9 33 41 19 18 13 31 41 13 6 7 6 7 20 24 7 41 4 33 17 7 5 10 15 20 25 30 35 40 45
"44:;
Detection
No cure alls, but each has contributed
How to make things better, cheaper, faster
Better for everyone involved
Security, Complexity, Scale, Safety
Buckshot Wiki, expert system on a Wiki