61 research outputs found

    Framework to study the requirements-driven collaboration in agile teams / Irum Inayat

    No full text
    Requirements engineering requires intensive collaboration among team members. The importance of collaboration in agile methods is also undeniable. Due to their emphasis on collaboration, agile methods and requirements engineering activities seem to mutually support each other in software development. However, very little is still known about the “agile way” of dealing with requirements and how collaboration driven by requirements takes place especially among distributed team members. The main aim of this research is to investigate the socio-technical aspects of requirements-driven collaboration in agile teams. Firstly, this research identified the most relevant socio-technical aspects of` requirements-driven collaboration among agile teams through an online survey conducted on industry practitioners, as communication and awareness. Secondly, a framework was proposed to study the identified socio-technical aspects of requirements-driven collaboration among agile teams and a prototype was developed to partially automate the framework. Thirdly, an empirical investigation was conducted by studying four IT-based projects carried out in four different organizations. This empirical investigation led to the practical implementation of the proposed framework to study the requirements-driven collaboration among agile teams. This research was validated from two perspectives. From the academic perspective, the results show that the framework is structurally acceptable. From the industrial perspective, an applicability validation was performed to assess the application of the proposed framework while a utility validation was conducted to gauge the usefulness of the proposed framework. The study provides implications for both research and industry practitioners in the form of further research and tool development for agile teams collaboration and performance analysis underlying the concepts proposed in this study

    A reflection on agile requirements engineering: solutions brought and challenges posed

    No full text
    The software development industry has rapidly accepted agile methods. Empirical studies suggest that due to their flexible and emergent nature, agile methods brought solutions to several chronic problems of traditional software development methods. One among the many is the acceptance of requirements changes at later stages of development. However, knowledge about the solutions that agile brought to requirements engineering (RE) is fragmented. Also, little is known about whether the agile philosophy, while introducing solutions to well-known RE problems from the past, has unintentionally opened new challenges. This paper offers a reflection on this matter. Based on the results of our recently published systematic review on agile RE, we reflect on the differences of ‘traditional’ and agile RE and the practices adopted by the latter, on the solutions and challenges of agile RE, and on some implications that agile RE might have posed for research and practice

    Safety and security risks management process for cyber‐physical systems: A case study

    No full text
    Cyber-physical systems (CPS) are applicable in emerging industries such as health, energy, autonomous vehicles, and Industrial Internet of Things (IIOT). In CPS the physical assets, that is, actuators and sensors, etc. communicate with each other over a messaging protocol. This communication process of CPS makes them vulnerable to cyber-attacks which challenge the system safety, making security and safety two major concerns for CPS. Both safety and security risks are considered separately in literature. However, the International Society of Automation (ISA) focuses on the alignment of security and safety risks of CPS. Weak or no alignment in safety and security of a system may result in an inefficient or partially protected system which could end up in disasters. This pressed the need for an integrated safety-security risk management process. For this purpose, we used a tetra packaging case study to (i) examine the vulnerabilities of CPS by running the risk management process, (ii) identify safety-security requirements, and (iii) align retrieved safety-security requirements with the relevant standards. The results show (i) safety hazards and security risks along with their severity and priority, (ii) mitigation guidelines are provided by consulting IEC 61508, and (iii) 15 safety-security requirements are identified and are aligned with ISO9001 Packaging and labeling machine standard.</p

    Security-Based Safety Hazard Analysis Using FMEA: A DAM Case Study

    No full text
    Safety and security emerge to be the most significant features of a Cyber-Physical System (CPS). Safety and security of a system are interlaced concepts and have mutual impact on each other. In the last decade, there are many cases where security breach resulted in safety hazards. There have been very few studies in the literature that address the integrated safety security risk assessment. Since, the need of the time is to consider both safety and security concurrently not even consequently. To close this gap, we aim to: (i) perform hazard analysis using Failure Mode Effect Analysis (FMEA) of a cyber physical system case i.e., Dam case study, and (ii) perform risk identification, risk analysis and mitigation for the said case. As a result, we extracted the potential failure modes, failure causes, failure effects, and the risk priority number. In addition, we also identified the safety requirements for the modes of the subject.</p

    Security Risk Mitigation of Cyber Physical Systems: A Case Study of a Flight Simulator

    No full text
    Avionics has seen a greatest shift in technology over the last two decades. The severity of the consequences resulting from a lack of risk management in avionics can be seen from recent incidents of unmanned aerial vehicles being hacked or in the hacking of vendor-controlled systems installed in commercial aircrafts. Over a million incidents related to security breaches at cyber layer have been recorded over the last decade, among which 350,000 cyber-attacks alone have taken place in the year 2018. Unfortunately, only a limited set of studies have been conducted on security risk management, particularly specific to avionics. In this article, we aim to identify, analyze and mitigate the security risks of 6 Degree of Freedom Flight Simulator. As a result, we identify 8 risks of level 3–4 as per the IEC 61508 standard. Further analysis of the identified risks yields in another 34 risks. We then mitigate the severity of the identified risks from level 4 to level 2 as per the IEC 61508 standard. The cryptosystem used for risk mitigation performed relatively faster as compared to some of the most recently proposed encryption schemes.</p
    corecore