Naohiko Tsuda, Hironori Washizaki, Kiyoshi Honda, Hidenori Nakai, Yoshiaki Fukazawa, Motoei Azuma, Toshihiro Komiyama, Tadashi Nakano, Hirotsugu Suzuki, Sumie Morita, Katsue Kojima, Akiyoshi Hando, “WSQF: Comprehensive Software Quality Evaluation Framework and Benchmark based on the SQuaRE,” Proceedings of the 41st ACM/IEEE International Conference on Software Engineering (ICSE 2019), Industry Track, pp. 1-10, Montreal, QC, Canada, 25 May – 31 May 2019. (CORE Rank A*)(acceptance rate 30/118=25%)

Conventional quality evaluations of software concentrate on specific quality characteristics. Moreover, the measurement data are limited to specific products and organizations. Consequently, the present state of product quality and quality-in-use characteristics are not fully understood, preventing effective decision-making for software stakeholders. To alleviate this problem, ISO/IEC defined international standards called the SQuaRE (Systems and software Quality Requirements an Evaluation) series for comprehensive quality measurement and evaluation. However, these standards remain rather general and abstract, making them difficult to apply. In this paper, we establish a SQuaRE-based comprehensive software quality evaluation framework, Waseda Software Quality Framework (WSQF), which concretizes many product quality and quality-in-use measurement methods originally defined in the SQuaRE series. By applying the WSQF to 21 commercial ready-to-use software products, we revealed the status of software product quality. A resulted comprehensive benchmark includes trends of the quality measurement values, relationships among quality characteristics, relationship between quality-in-use and product quality, and relationship between the quality characteristics and product contexts within the limits of an application.

文部科学省社会人教育enPiT-Proスマートエスイー1期生修了式・シンポジウム盛大に開催。懇親会も大変な賑わいでした。修了生の皆さん、おめでとうございます。連携大学・企業・講師・送り出し組織ほか関係各位に御礼申し上げます。この熱気を深め広げるべく、来年度の募集とともにコンソーシアムを立ち上げてまいります。

Thanks to all sponsors, participants, authors, staffs and volunteers, 25th Asia-Pacific Software Engineering Conference (APSEC2018) was successfully over at Nara, Japan. Prof. Washizaki was nominated and approved as a member of APSEC steering committee.

津田直彦, 鷲崎弘宜, 深澤良彰, 保田裕一朗, 杉村俊輔, “プログラムソースコードのわかりやすさの閾値に基づく評価基準とその導出手法群の評価”, 情報処理学会論文誌, pp.1-17, 2019. (掲載予定)

プログラムソースコード(以下コードと略す) における機能的不具合を伴わない構造上の問題は，コードスメル，発展性欠陥，不可視の技術的負債等と呼ばれ，長期的なソフトウェア開発において保守コストを増加させる原因のひとつとして知られている．そのため，コードのわかりやすさをコードメトリクスと閾値で自動評価する様々な手法がこれまでに提案されてきた．しかし，必ずしもメトリクス間のトレードオフや冗長性が考慮されていないために，問題個所の正解(教師データ) を用いても自動評価の精度が改善されにくい場合があるという問題を抱えていた．一方で，分類木学習と呼ばれる機械学習手法では複数のメトリクスの影響関係を考慮できるため，過学習しやすくなる可能性があるものの，評価精度のより大きな改善を期待できる．従来，コードのわかりやすさの評価の分野では，一般的な閾値ベースの手法と，閾値に加えて解釈の形式表現も導出可能な分類木学習との性能比較事例は報告されていない．本論文では評価実験として，建機制御用のC++組込みソフトウェア群を題材としてソースコードファイル単位の評価基準の導出における手法の性能を比較した．そして，分類木学習アルゴリズムC5.0 では少量の教師データでも開発者の認識に反しない評価基準を導出でき，教師データの量を増加させた際には従来手法よりも自動評価の精度が改善され，実用的であることを確認した．自動評価の精度としてはエキスパートが実施したレビュー結果との一致度(F 値) を用い，比較対象の従来手法にはパーセンタイル関数，Alves 法，Bender法，ROC 曲線法を用いた．

Pablo Alejandro Quezada- Sarmiento, Liliana Enciso, Lorena Conde, Monica Patricia Mayorga -Diaz, Martha Elizabeth Guaigua –Vizcaino, Wilmar Hernandez, Hironori Washizaki, “Body of Knowledge Model and Linked Data applied in development of Higher Education Curriculum,” Computer Vision Conference (CVC 2019), SAI Conference, 25-26 April 2019, Las Vegas, Nevada, United States

Takanori Kobashi, Hironori Washizaki, Nobukazu Yoshioka, Haruhiko Kaiya, Takao Okubo, Yoshiaki Fukazawa, “Designing Secure Software by Testing Application of Security Patterns,” in Exploring Security in Software Architecture and Design, IGI Global, 2019. (invited)

Simply confirming potential threats and vulnerabilities in an early stage of the development process (e.g., the requirement- or design-phase) is insufficient because software developers are not necessarily security experts. Additionally, even if the software design considers security at an early stage, whether the software actually satisfies the security requirements must be confirmed. To realize secure design, we propose an application to design software systems with verification of security patterns using model testing. Our method provides extended security patterns, which include requirement- and design-level patterns as well as a new designing and model testing process that uses these patterns. Once developers specify threats and vulnerabilities in the target system in an early stage of development, our method can verify whether the security patterns are properly applied and assess if the vulnerabilities are resolved.

Lab students celebrated birthday of Prof. Washizaki. 学生がサプライズで鷲崎教授の誕生日をお祝いしてくれました。ありがとう！

Joseph W. Yoder, Danijel Arsenovski, Ademar Aguiar and Hironori Washizaki, “Delivering Value with Confidence “Swarming Patterns”,” 12th Latin American Conference on Pattern Languages of Programs (SugarLoafPLoP 2018), Valparaíso, Región de Valparaíso, Chile, November 20-23, 2018

Many software development processes such as Agile and Lean focus on the delivery of working software that meets the needs of the end users. Many of these development processes help teams respond to unpredictability through incremental, iterative work cadences and through empirical feedback. There is a commitment to quickly deliver reliable working software that has the highest value to those using or benefiting from the software. A key principle to the long term success of a project is during the development and release cycles, to have confidence that changes will not break important parts of the system. This is only done if there is time taken to build confidence into the process and architecture. Swarming is a technique where multiple people work together to complete one or more tasks. Recently there has been success with techniques such as swarming to help assure the delivery meets the requirements and proper validation and checks are done before release. This paper will focus on some “Swarming” patterns and how they assist teams to Deliver with Confidence.

Joseph W. Yoder, Hironori Washizaki and Ademar Aguiar, “Deliver Value with Confidence: Quality Delivery Pipeline,” 12th Latin American Conference on Pattern Languages of Programs (SugarLoafPLoP 2018), Valparaíso, Región de Valparaíso, Chile, November 20-23, 2018

Many software development processes such as Agile and Lean focus on the delivery of working software that meets the needs of the end users. Many of these development processes help teams respond to unpredictability through incremental, iterative work cadences and through empirical feedback. There is a commitment to quickly deliver reliable working software that has the highest value to the those using or benefiting from the software. This can be done reliably if there is time taken to build confidence into the process and architecture. Continuous integration and delivery has been incorporated into many successful Agile processes. DevOps as a software engineering practice unifies software development (Dev) and software operation (Ops). To assist with quality delivery in these practices you need to provide a quality “Delivery Pipeline” to help assure the delivery meets the requirements and proper validation and checks are done before integration or release. This paper will focus on the “Delivery Pipeline” as a practice that can help sustain Delivering Value with Confidence.