# Foundations of Software Engineering 

## Introduction

O'Regan gives a brief history of problems with timely delivery and reliability of software. He compares a "software crisis" of major delays, budget overruns, and defective software in the 1950s and 1960s to a similar crisis in bridge construction in the 1800s. In both cases, a crisis of late, over-budget, and canceled projects, and defective products that endangered the public created an awareness of a need for engineering competence, discipline, and professionalism.

## What is Software Engineering

O'Regan quotes the IEEE 610.12 definition of software engineering:

> Software engineering is the application of a systematic, disciplined, quantifiable approach to the development, operation, and maintenance of software; that is, the application of engineering to software, and the study of such approaches.

In O'Regan's view, what sets software engineering apart from programming is that software engineers state precise requirements for their software; design, develop, and test their software to meet those requirements using engineering methods according to engineering principles; employ sound project management and quality management practices; and ensure proper maintenance and support for the software.

O'Regan argues that to merit being called a software engineer, developers require core competencies and education in engineering mathematics, specification, design, programming, inspections, and testing. O'Regan also talks about the responsibility and accountability of engineers to meet required standards and to adhere to a professional code of ethics.

## Challenges in Software Engineering

The main challenge in software engineering according to O'Regan is the accurate estimation of project cost, effort, and schedule. Two other main challenges are managing risks and quality.

O'Regan gives three examples of defective code, a quality problem, posing severe risks in terms of damages caused. Examples include the millennium bug, the floating-point bug in Intel microprocessors, and the European Space Agency Ariane-5 disaster.

## Software Processes and Lifecycles

O'Regan lists the following software process assets organizations typically have:
- Software development policies
- Process/activity flow maps
- Detailed procedures and guidelines
- Performance assessment checklists
- Templates for specific activities
- Training materials

O'Regan lists the following processes for developing high-quality software:
- Project Management Process
- Requirements Process
- Design Process
- Coding Process
- Peer Review Process
- Testing Process
- Supplier Selection and Management Processes
- Configuration Management Process
- Audit Process
- Measurement Process
- Improvement Process
- Customer Support and Maintenance Processes

O'Regan also discusses several lifecycle models.

### Waterfall Lifecycle 

O'Regan explains that one variation of the waterfall V model goes in the following sequence:
1. Define requirements
2. Define system specification
3. Design software
4. Code implementation
5. Unit testing
6. Integration testing
7. System testing
8. Acceptance testing

### Spiral Lifecycles 

O'Regan explains that the spiral model is an iterative model of development that's useful when all requirements can't be defined at the start of the project and will evolve as the project develops successive versions of the product. Development proceeds in several rounds that involve analysis of objectives and risks, requirements updates, design, code, testing, and user reviews.  

O'Regan lists several similar methodologies, including:
- Rapid Application Development (RAD)
- Joint Application Development (JAD)
- Dynamic Systems Development Method (DSDM)
- Agile Development

### Rational Unified Process 

O'Regan explains that the Rational Unified Process (RUP) is use case driven, architecture-centric, iterative, and incremental, and includes cycles, phases, workflows, risk mitigation, quality control, project management, and configuration control. It also makes use of Unified Modelling Language as a tool for specification and design.

O'Regan explains that one of the ways that RUP mitigates risk is by decomposing the work of a large project into smaller slices or mini-projects.

### Agile Development

O'Regan explains that Agile is a more responsive methodology in which typically it's possible to finish 50% of requirements 100% halfway through a project, whereas with waterfall, typically 100% of the requirements would be 50% done halfway through a project.

Similar to the spiral lifecycle, Agile breaks a project down into small mini-projects, and ongoing changes to requirements are considered normal. The methodology includes controls to manage changes to requirements and good communication and early regular feedback is an essential part of the process.

Requirements are defined as user stories. Stories are considered either done or not done. Partial completion isn't counted. Stories are considered complete when they've passed acceptance tests. Stories are prioritized based on factors like business value, risk, and dependence on other stories.

O'Regan explains that scrum is an agile method for managing iterative development. After the outline of the project has been planned, there follows a series of sprint cycles. Each sprint usually lasts 2 to 4 weeks in which an increment of the system is developed. At the start of an iteration, sprint planning is performed.

During a sprint, a short morning stand-up meeting is held daily, attended by the scrum master, project manager, and project team to discuss the previous day's progress, problems, and the work planned for the day ahead. Separate meetings are held for problems that require detailed discussion.

The scrum master is a facilitator who arranges scrum meetings, ensures that the process is followed, and removes roadblocks.

At the end of a sprint, the increment is demonstrated to the product owner to receive feedback and new requirements. The team also conducts a retrospective meeting for continuous improvement to reflect on what went well and what went poorly and to plan for improvement. Then planning for the next sprint starts.

O'Regan explains that agile employs pair programming.

O'Regan also explains that Agile employs test-driven development with tests written before code and that Agile generally employs automated testing and that tests are rerun before each release.

O'Regan explains that Agile employs refactoring as a design and coding practice. Refactors are changes to the design of the system without changing what it does to improve maintainability and readability and reduce complexity.

Finally, O'Regan mentioned that continuous integration is often used in Agile and that it allows the system to be built with every change. Early and regular integration allows for early and regular feedback, including from automated testing. 

### Continuous Software Development 

O'Regan explains that continuous software development is a development of Agile that involves continuous integration, continuous delivery, continuous testing, and continuous deployment of software.

Continuous integration is a practice where each developer submits their work for integration as soon as it's done, sometimes resulting in several builds during a single day. The build processes typically have an associated set of automated unit and integration tests.

Continuous delivery expands with additional automated functional tests, regression tests, and possibly acceptance tests.

Continuous testing allows continuous manual testing and user acceptance testing where the software is expected to change during testing.

Continuous deployment involves automating the deployment to production process with automated delivery tests prior to deployment.

## Activities in Software Development 

### Requirements Definition

O'Regan explains that user and business requirements specify goals that software is required to accomplish without specifying how and that the process of determining, analyzing, validating, and managing requirements is called requirements engineering. 

O'Regan explains that there are distinctions between user requirements and functional and non-functional system requirements. Functional requirements are functions that the user must be able to form, and non-functional requirements are other system characteristics like security, reliability, availability, performance, portability, maintainability, etc.

O'Regan explains that in Agile the product backlog and accompanying user stories take the place of a requirements document.

O'Regan explains that requirements verification involves verifying that the implementation meets requirements, while requirements validation ensures that requirements are correctly defined.

O'Regan mentions that while requirements are usually specified in natural English, sometimes languages like UML, VDM or Z are used.

### Design

O'Regan explains that design involves describing the architecture, user interface, and data will be structured and the functions and algorithms needed to meet requirements.

O'Regan explains that refactoring involves changes the design, without changing the functioning of software.

O'Regan mentions that there are several tools for specifying designs including UML diagrams, program description languages and pseudocode.

O'Regan contrasts  function-oriented design which involves abstracting functions that operate on a shared global system state with object-oriented design, based on the notion of objects that are instances of classes that can inherit attributes and operations from superclasses, that hide information from each other, while sending messages and operating in a decentralized fashion.

O'Regans mentions a similar distinction between design verification and validation to requirements verification and validation.

### Implementation

O'Regan explains that implementation involves writing code in a given language to match the design and meet requirements. According to O'Regan code reviews or walkthroughs are important to ensure implementation conforms to coding standards, that maintainability issues are addressed, and the code is a valid implementation of the design.

O'Regan explains that in Agile, implementation starts with writing a suite of tests and iterative development and refactoring are test driven.

O'Regan explains that software reuse is an important way to speed up the implementation process and that the reuse of open-source software has become popular in recent years.

### Software Testing

O'Regan explains that testing is used to verify that software is defect-free and meets requirements. Code coverage and branch coverage metrics can indicate how comprehensive testing is.

O'Regan explains that *Test Driven Development* is used in Agile as explained above under implementation.

O'Regan explains that *unit testing* is internal tests of modules or units prior to integration with other modules, that *integration testing* tests to verify that modules and their interfaces work correctly together, that *system testing* tests to verify that the software is a valid implementation of system requirements, that *performance testings* are tests to verify that the implemented system satisfies non-functional performance requirements, and that *user acceptance testing* are tests done with customers in conditions that closely resemble real-life use case conditions for the system, to verify that the product satisfies customer needs and expectations.

### Support and Maintenance

O'Regan explains that support and maintenance involve ongoing enhancements and corrections of defects of software over its lifetime. When customers report problems with the software, an investigation must be done to determine if it's a software defect, a required enhancement, or a customer error or misunderstanding. A solution must be found and tested to verify that it's correct.

O'Regan explains that it's usually infeasible to deliver code that is absolutely free of any defects and that quality should include and should be included in support and maintenance practices.

## Software Inspections

O'Regan explains that there are several methodologies for software inspection, including the Fagan Methodology, Gilb's approach, and Prince 2's approach, and that inspection involves independent experts inspecting requirements documents, design documents, source code, and test plans to ensure quality.

## Software Project Management 

O'Regan highlights that software projects have a history of being delivered late, over budget, and with quality defects and require special attention to good project management.

O'Regan gives a list of activities to include in good software project management:
- Estimating cost and effort
- Identifying and managing risks
- Preparing a project plan
- Preparing an initial project schedule with key milestones
- Obtaining approval for the project plan and schedule
- Staffing the project
- Monitoring progress, budget, schedule, effort, risks, issues, change requests, and quality
- Taking corrective action
- Replanning and rescheduling
- Communicating progress to affected stakeholders
- Preparing status reports and presentations

## CMMI Maturity Model 

O'Regan explains that the Capability Maturity Model Integration (CMMI) model is an internationally recognized model for software process improvement and assessment developed by the Software Engineering Institute.

O'Regan explains that the model consists of five maturity levels, each with several process areas, each area with several goals, and each goal pursued by a set of practices. Level two focuses on management practices, level three on engineering and organization practices, level four on quantitative measures, and level five on continuous improvement.

## Formal Methods 

O'Regan explains that formal methods describe formal specification languages and a method to design and implement software via stepwise refinement and proof. He also observes that these mathematically rigorous methods are cumbersome to use, that they have mostly been used in safety-critical areas, and that they are unlikely to find widespread use. O'Regan lists some areas in which formal methods have been successfully applied including circuit design, artificial intelligence, specification of standards, and specification and verification of programs. 

## Summary

O'Regan very briefly summarizes the chapter highlighting the birth date of software engineering, the Standish group's research, the analogy between software development and engineering, a brief overview of software development best practices, and the CMMI software process maturity model.