Integration and validation of embedded flight software on space-qualified multicore architectures

In the recent decades, the importance of software on space missions has notably increased, reflecting the need to integrate advanced on-board functionalities. With multicore processors being lately introduced to host critical high-performance applications, the complexity to validate software has significantly raised with respect to single core architectures. While there has been a big step forward in avionics after the publication of the CAST-32A paper, the ECSS-E-ST-40C software engineering standard used by the European Space Agency (ESA) is still not providing validation support for multicore processors. Hence, it is expected that standardising guidelines to develop software on such platforms will become a recurring topic in the industry to match the demands of future space exploration missions

Realizing Adaptive Process-aware Information Systems with ADEPT2

In dynamic environments it must be possible to quickly implement new business processes, to enable ad-hoc deviations from the defined business processes on-demand (e.g., by dynamically adding, deleting or moving process activities), and to support dynamic process evolution (i.e., to propagate process schema changes to already running process instances). These fundamental requirements must be met without affecting process consistency and robustness of the process-aware information system. In this paper we describe how these challenges have been addressed in the ADEPT2 process management system. Our overall vision is to provide a next generation technology for the support of dynamic processes, which enables full process lifecycle management and which can be applied to a variety of application domains

Análisis comparativo entre metodologías para el desarrollo software seguro de acuerdo con el estándar ISO/IEC 15408.

Investigaciones ha demostrado en los últimos tiempos que la gran mayoría de las vulnerabilidades dentro de los sistemas de información se ejecuta a través del código, debido que se presenta una debilidad dentro de los equipos de ingeniería, donde no se aplica buenas prácticas de desarrollo seguro, dado que para muchos desarrolladores existe un desconocimiento sobre, la existencia de metodologías para el desarrollo de software seguro, de ahí surge la necesidad de indagar que metodologías de desarrollo seguro existe, como se podrían implementar y aplicar dentro de los equipos de desarrollo de acuerdo al número de integrantes; por consiguiente, se realiza un análisis comparativo, entre siete metodologías de desarrollo de software seguro, bajo un estándar internacional Common Criteria (ISO/IEC 15408). A lo largo de este estudio se desarrolla tres capítulos, que permiten describir conceptos, antecedentes, características y finalmente realizar un análisis comparativo entre las metodologías de desarrollo de software seguro y como objeto de estudio, se observa que la metodología de desarrollo seguro, que cumple con la mayoría de los criterios establecidos, dentro del estándar internacional es la metodología Security Development Lifecycle SDL. La investigación permite concluir que hay criterios que hasta el momento ninguna de las metodologías los tiene presentes dentro sus fases, por consiguiente, se considera que estos aspectos se puedan tener en cuenta para futuras investigaciones.Research has shown in recent times that the vast majority of vulnerabilities within information systems are executed through code, due to a weakness within engineering teams, where good safe development practices are not applied, Given that for many developers there is a lack of knowledge about the existence of methodologies for the development of secure software, hence the need to investigate what secure development methodologies exist, how they could be implemented and applied within development teams according to the number of participants; therefore, a comparative analysis is carried out between seven secure software development methodologies, under an international standard Common Criteria (ISO / IEC 15408). Throughout this study three chapters are developed, which allow describing concepts, antecedents, characteristics and finally make a comparative analysis between secure software development methodologies and as an object of study, it is observed that the secure development methodology, which complies With most of the established criteria, within the international standard it is the Security Development Lifecycle SDL methodology. The research allows to conclude that there are criteria that so far none of the methodologies have present them within their phases, therefore, it is considered that these aspects can be taken into account for future research

Ernst Denert Award for Software Engineering 2020

This open access book provides an overview of the dissertations of the eleven nominees for the Ernst Denert Award for Software Engineering in 2020. The prize, kindly sponsored by the Gerlind & Ernst Denert Stiftung, is awarded for excellent work within the discipline of Software Engineering, which includes methods, tools and procedures for better and efficient development of high quality software. An essential requirement for the nominated work is its applicability and usability in industrial practice. The book contains eleven papers that describe the works by Jonathan Brachthäuser (EPFL Lausanne) entitled What You See Is What You Get: Practical Effect Handlers in Capability-Passing Style, Mojdeh Golagha’s (Fortiss, Munich) thesis How to Effectively Reduce Failure Analysis Time?, Nikolay Harutyunyan’s (FAU Erlangen-Nürnberg) work on Open Source Software Governance, Dominic Henze’s (TU Munich) research about Dynamically Scalable Fog Architectures, Anne Hess’s (Fraunhofer IESE, Kaiserslautern) work on Crossing Disciplinary Borders to Improve Requirements Communication, Istvan Koren’s (RWTH Aachen U) thesis DevOpsUse: A Community-Oriented Methodology for Societal Software Engineering, Yannic Noller’s (NU Singapore) work on Hybrid Differential Software Testing, Dominic Steinhofel’s (TU Darmstadt) thesis entitled Ever Change a Running System: Structured Software Reengineering Using Automatically Proven-Correct Transformation Rules, Peter Wägemann’s (FAU Erlangen-Nürnberg) work Static Worst-Case Analyses and Their Validation Techniques for Safety-Critical Systems, Michael von Wenckstern’s (RWTH Aachen U) research on Improving the Model-Based Systems Engineering Process, and Franz Zieris’s (FU Berlin) thesis on Understanding How Pair Programming Actually Works in Industry: Mechanisms, Patterns, and Dynamics – which actually won the award. The chapters describe key findings of the respective works, show their relevance and applicability to practice and industrial software engineering projects, and provide additional information and findings that have only been discovered afterwards, e.g. when applying the results in industry. This way, the book is not only interesting to other researchers, but also to industrial software professionals who would like to learn about the application of state-of-the-art methods in their daily work

The Essence of Software Engineering

Software Engineering; Software Development; Software Processes; Software Architectures; Software Managemen