An industrial assessment for a multimodel framework

Larrucea, Xabier; Santamaría, Izaskun

doi:10.1002/smr.1669

Cited by 4 publications

(3 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…From the VSEs' perspective, we have included the most relevant aspects of the NIST privacy framework within the ISO/IEC 29110 basic profile. We have several experiences related to quality models 50,51 and with the role of this standard. Concerning the financial analysis, we are assuming several assumptions that can be discussed.…”

Section: Internal Validitymentioning

confidence: 99%

Integrating privacy debt and VSE's software developments

Santamaría

Larrucea

Fernández-Gauna

2022

J Software Evolu Process

Self Cite

View full text Add to dashboard Cite

With the advent of regulations protecting users such as the General Data Protection Regulation, security and privacy concerns are playing a new role in small settings such as in very small entities. Their relevance is increasing, and privacy is being considered a Troy horse in software developments. In fact, privacy is a part of software architectural decisions, and they must be considered as a technical debt. The contributions of this paper are the following: a privacy debt definition with a principal and an interest, privacy‐related activities to be considered within the ISO/IEC 29110 basic profile, and the use of the net present value within this context. All these contributions help us to integrate privacy debt and VSE's software developments.

show abstract

Section: Internal Validitymentioning

confidence: 99%

Integrating privacy debt and VSE's software developments

Santamaría

Larrucea

Fernández-Gauna

2022

J Software Evolu Process

Self Cite

View full text Add to dashboard Cite

show abstract

“…ITMark is an initiative leaded by European Software Institute aimed to certify software companies assessing their software process. A good introduction to the initiative can be found in . According to these authors, ITMark incorporates three different quality reference models: business processes model; software, systems, and services engineering model; and, finally, security management model.…”

Section: Related Literaturementioning

confidence: 99%

“…ITMark has been tested and analyzed in the scientific literature and cited many times among software process improvement (SPI) initiatives by several authors (e.g., [24][25][26][27][28]).…”

Section: 2mentioning

confidence: 99%

Assessing ISO/IEC29110 by means of ITMark: results from an experience factory

Larrucea

Santamaría

Colomo‐Palacios

2016

J Software Evolu Process

Self Cite

View full text Add to dashboard Cite

ISO/IEC 29110 is intended to help very small entities in improving their software processes. However, this standard is not the only initiative devoted to help organizations in these matters. For instance, ITMark is an established method with an important background in terms of number and diversity of assessments. The aim of this paper is to present a method to assess ISO/IEC 29110 by means of the evaluation performed under the ITMark certification schema built upon an experience factory. To do so, in this paper, authors present, firstly, a mapping for ITMark to ISO/IEC 29110 and, secondly, a study to test the applicability of the assessments made by ITMark in the ISO/IEC 29110 environment taking into account the previous mapping. The main conclusion from this industrial experience is that ITMark can be used as a method for assessing very small entities.

show abstract

The Route to Software Process Improvement in Small- and Medium-Sized Enterprises

Sánchez‐Gordón

Colomo‐Palacios

Seco

et al. 2016

Managing Software Process Evolution

View full text Add to dashboard Cite

The software development industry is dominated by a myriad of small and medium-sized enterprises (SMEs). The main goal of this chapter is to provide a characterization of SMEs based on previous studies. It also includes an overview of a number of software process models and software process improvement (SPI) models, which are aimed at assisting SMEs in improving the way they develop software. Furthermore, this chapter discusses the extent of SPI approaches published in the literature as a way to understand the particular context and some of the major challenges faced. From there, we propose an approach to integrate software process practices. This proposal is based on the results of our study on this topic carried out in small software companies. It is focused on what small organizations could actually do, more than on what they are currently practicing. IntroductionIn the current global economy more and more based on knowledge, software is key. Hence, countries need the capacity to adopt, adapt and develop relevant software [131]. According to the Organization for Economic Co-operation and Development (OECD), small and medium-sized enterprises (SMEs) constitute the dominant form of business organization in all countries world-wide, accounting for over 95% and up to 99% of the business population depending on the country [91]. In most developing and transition economies, the sector is dominated by small and young enterprises. Local software expertise is in a stronger position to understand local needs and, as a consequence, to develop relevant and innovative applications and content [131]. Therefore, it is of particular importance to ensure that this sector can support the public and private sector local needs [131]. Moreover, this sector is able to generate skilled jobs and foreign exchange earnings through the export of products and services produced at a distance [131,130].

show abstract

An industrial assessment for a multimodel framework

Cited by 4 publications

References 11 publications

Integrating privacy debt and VSE's software developments

Integrating privacy debt and VSE's software developments

Assessing ISO/IEC29110 by means of ITMark: results from an experience factory

The Route to Software Process Improvement in Small- and Medium-Sized Enterprises

Contact Info

Product

Resources

About