ISO IEC 29110-2-1-2015 Software Engineering - Lifecycle profiles for Very Small Entities (VSEs) - Part 2-1 Framework and taxonomy《软件工程 非常小的实体(VSEs)用生命周期配置文件 第2部.pdf

1、Software Engineering Lifecycle profiles for Very Small Entities (VSEs) Part 2-1: Framework and taxonomy Ingnierie du logiciel Profil de cycle de vie pour trs petits organismes (TPO) Partie 2-1: Cadre gnral et taxinomie INTERNATIONAL STANDARD ISO/IEC 29110-2-1 Reference number ISO/IEC 29110-2-1:2015(

2、E) First edition 2015-11-01 ISO/IEC 2015 ii ISO/IEC 2015 All rights reserved COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2015, Published in Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electroni

3、c or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Ch. de Blandonnet 8 CP 401 CH-1214 Vernier,

4、 Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22 749 09 47 copyrightiso.org www.iso.org ISO/IEC 29110-2-1:2015(E) ISO/IEC 29110-2-1:2015(E)Foreword v Introduction vi 1 Scope . 1 1.1 Fields of application . 1 1.2 Target audience 1 2 Conformance to standardized profiles 1 2.1 Overview 1 2.2 Gener

5、al principles 1 2.2.1 Tailoring and exclusions 1 2.2.2 Extensions . 2 2.2.3 Conformance to base standards . 2 2.3 Conformance requirements for standardized profiles . 3 2.3.1 Conformance situations . 3 2.3.2 Conformance to a standardized profile 3 2.3.3 Limited conformance to the base standards incl

6、uded in the standardized profile 3 3 Normative references 4 4 Terms and definitions . 4 5 Conventions and abbreviated terms .13 5.1 Naming, diagramming, and definition conventions .13 5.2 Abbreviated terms 13 6 Software and Systems engineering profiles for VSEs 13 6.1 Basic concepts 13 6.2 Purpose o

7、f standardized profiles .14 6.3 Preparation of profiles 14 6.3.1 Selection and preparation of base standards .14 6.3.2 Selection of profile elements 15 6.3.3 Refinement of the profile .15 7 Preparing profiles of Software and Systems Engineering standards15 7.1 Rationale for profiles 15 7.2 Profiling

8、 lifecycle product standards 15 7.3 Profiling lifecycle process standards 16 7.4 Relating process and product standards in profiles 16 7.5 Graduated profiles in a profile group .20 7.6 Packaged profiles in a profile group 22 8 The VSE profile taxonomy principles .22 8.1 VSE classification dimensions

9、 .22 8.2 Decoupling VSE classification from profile preparation 22 8.3 Graduating a profile group.22 8.4 Packaging a profile group .23 9 Taxonomy of VSE profiles .23 9.1 Introduction .23 9.2 Profile Taxonomy .23 9.3 The Software Engineering Generic profile group 24 9.3.1 Introduction 24 9.3.2 The En

10、try profile .24 9.3.3 The Basic profile 24 9.3.4 The Intermediate profile 24 9.3.5 The Advanced profile 24 9.4 The Systems Engineering Generic profile group 25 9.4.1 Introduction 25 9.4.2 The Entry profile .25 ISO/IEC 2015 All rights reserved iii Contents Page ISO/IEC 29110-2-1:2015(E)9.4.3 The Basi

11、c profile 25 9.4.4 The Intermediate profile 25 9.4.5 The Advanced profile 25 9.5 The Organisational Management Profile Group 25 9.6 The Service Delivery Profile Group 25 10 Guidelines for the specification of VSE profiles 26 10.1 Rules for Profile Specifications 26 10.1.1 Rules from ISO/IEC TR 10000

12、1 .26 10.1.2 Rules specific to ISO/IEC 291110 VSE Profiles 26 10.2 Profile Specification Process 26 10.3 Profile Specifications 27 10.3.1 Specification content and style .27 10.3.2 Profile Specification Contents .28 10.3.3 Process Reference Models and Process Assessment Models .30 10.4 Exemplar Pro

13、file Specification Tables30 Bibliography .32 iv ISO/IEC 2015 All rights reserved ISO/IEC 29110-2-1:2015(E) Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bod

14、ies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other

15、international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. The procedures used to develop this document and those intended fo

16、r its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of document should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/dir

17、ectives). Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during the development of the document will

18、 be in the Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents). Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement. For an explanation on the meaning of ISO specific terms and express

19、ions related to conformity assessment, as well as information about ISOs adherence to the WTO principles in the Technical Barriers to Trade (TBT) see the following URL: Foreword - Supplementary information The committee responsible for this document is ISO/IEC JTC 1, Information technology, Subcommi

20、ttee SC 7, Software and systems engineering. This second edition cancels and replaces the first edition (ISO/IEC 29110-2:2011), which has been technically revised. The full list of parts of ISO/IEC 29110 is available here. ISO/IEC 2015 All rights reserved v ISO/IEC 29110-2-1:2015(E) Introduction Ver

21、y Small Entities (VSEs) around the world are creating valuable products and services. For the purpose of this part of ISO/IEC 29110, a Very Small Entity (VSE) is an enterprise, an organization, a department, or a project having up to 25 people. Since many VSEs develop and/or maintain system and soft

22、ware components used in systems, either as independent products or incorporated in larger systems, a recognition of VSEs as suppliers of high quality products is required. According to the Organization for Economic Co-operation and Development (OECD) SME and Entrepreneurship Outlook report (2005), “

23、Small and Medium Enterprises (SMEs) constitute the dominant form of business organization in all countries world-wide, accounting for over 95 % and up to 99 % of the business population depending on country”. The challenge facing governments and economies is to provide a business environment that su

24、pports the competitiveness of this large heterogeneous business population and that promotes a vibrant entrepreneurial culture. From studies and surveys conducted, it is clear that the majority of International Standards do not address the needs of VSEs. Implementation of and conformance with these

25、standards is difficult, if not impossible. Consequently, VSEs have no, or very limited, ways to be recognized as entities that produce quality systems/system elements including software in their domain. Therefore, VSEs are excluded from some economic activities. It has been found that VSEs find it d

26、ifficult to relate International Standards to their business needs and to justify the effort required to apply standards to their business practices. Most VSEs can neither afford the resources, in terms of number of employees, expertise, budget, and time, nor do they see a net benefit in establishin

27、g over-complex systems or software lifecycle processes. To address some of these difficulties, a set of guides has been developed based on a set of VSE characteristics. The guides are based on subsets of appropriate standards processes, activities, tasks, and outcomes, referred to as Profiles. The p

28、urpose of a profile is to define a subset of International Standards relevant to the VSEs context; for example, processes, activities, tasks, and outcomes of ISO/IEC/IEEE 12207 for software; and processes, activities, tasks, and outcomes of ISO/IEC/IEEE 15288 for systems; and information products (d

29、ocumentation) of ISO/IEC/IEEE 15289 for software and systems. VSEs can achieve recognition through implementing a profile and by being audited against ISO/IEC 29110 specifications. The ISO/IEC 29110 series of International Standards and Technical Reports can be applied at any phase of system or soft

30、ware development within a lifecycle. This series of International Standards and Technical Reports is intended to be used by VSEs that do not have experience or expertise in adapting/tailoring ISO/IEC/IEEE 12207 or ISO/IEC/IEEE 15288 standards to the needs of a specific project. VSEs that have expert

31、ise in adapting/tailoring ISO/IEC/IEEE 12207 or ISO/IEC/IEEE 15288 are encouraged to use those standards instead of ISO/IEC 29110. ISO/IEC 29110 is intended to be used with any lifecycle such as: waterfall, iterative, incremental, evolutionary, or agile. The ISO/IEC 29110 series, targeted by audienc

32、e, has been developed to improve system or software and/or service quality, and process performance (see Table 1).vi ISO/IEC 2015 All rights reserved ISO/IEC 29110-2-1:2015(E) Table 1 ISO/IEC 29110 target audience ISO/IEC 29110 Title Target audience Part 1 Overview VSEs and their customers, assessor

33、s, standards producers, tool vendors, and methodology vendors. Part 2 Framework Profile producers, tool vendors, and methodology vendors. Not intended for VSEs. Part 3 Assessment guide VSEs and their customers, assessors, accreditation bodies. Part 4 Profile specifications VSEs, customers, standards

34、 produc- ers, tool vendors, and methodology vendors. Part 5 Management and engi- neering guide VSEs and their customers. If a new profile is needed, ISO/IEC 29110-4 and ISO/IEC TR 29110-5 can be developed with minimal impact to existing documents. ISO/IEC TR 29110-1 defines the terms common to the I

35、SO/IEC 29110 series. It introduces processes, lifecycle, and standardization concepts, the taxonomy (catalogue) of ISO/IEC 29110 profiles, and the ISO/IEC 29110 series. It also introduces the characteristics and needs of a VSE, and clarifies the rationale for specific profiles, documents, standards,

36、 and guides. ISO/IEC TR 29110-3 defines certification schemes, assessment guidelines, and compliance requirements for process capability assessment (ISO/IEC 33xxx), conformity assessments (ISO/IEC 17xxx), and self-assessments for process improvements. ISO/IEC TR 29110-3 also contains information tha

37、t can be useful to developers of certification and assessment methods and developers of certification and assessment tools. ISO/IEC 29110-3 is addressed to people who have direct involvement with the assessment process, e.g. the auditor, certification, and accreditation bodies and the sponsor of the

38、 audit, who need guidance on ensuring that the requirements for performing an audit have been met. ISO/IEC 29110-4-m provides the specification for all profiles in one profile group that are based on subsets of appropriate standards elements. ISO/IEC TR 29110-5-m-n provides a management and engineer

39、ing guide for each profile in one profile group. ISO/IEC TR 29110-6-x provides management and engineering guides not tied to a specific profile. This part of ISO/IEC 29110 introduces the concepts for systems and software engineering profiles for VSEs. It establishes the logic behind the definition a

40、nd application of profiles. For standardized profiles, it specifies the elements common to all profiles (structure, requirements, conformance, and assessment). For domain-specific profiles (profiles that are not standardized and developed outside of the ISO process), it provides general guidance ada

41、pted from the definition of standardized profiles. Figure 1 describes the International Standards (IS) and Technical Reports (TR) of ISO/IEC 29110 and positions the parts within the framework of reference. Overview, assessment guide, management, and engineering guide are available from ISO as freely

42、 available Technical Reports (TR). The Framework document, profile specifications and certification schemes are published as International Standards (IS). ISO/IEC 2015 All rights reserved vii ISO/IEC 29110-2-1:2015(E) Figure 1 ISO/IEC 29110 Seriesviii ISO/IEC 2015 All rights reserved Software Engine

43、ering Lifecycle profiles for Very Small Entities (VSEs) Part 2-1: Framework and taxonomy 1 Scope 1.1 Fields of application ISO/IEC 29110 is applicable to Very Small Entities (VSEs). The lifecycle processes described in ISO/IEC 29110 are not intended to preclude or discourage their use by organizatio

44、ns bigger than VSEs. However, certain issues faced by large organizations might not be covered by ISO/IEC 29110. The lifecycle processes defined in ISO/IEC 29110 can be used by VSEs when acquiring and using, as well as when creating and supplying, a software, and systems. They can be applied at any

45、level in a software and systems structure and at any stage in the lifecycle. The processes described in ISO/IEC 29110 are not intended to preclude or discourage the use of additional processes that VSEs find useful. This part of ISO/IEC 29110 introduces the major concepts for software and systems en

46、gineering profiles for VSEs, and defines the terms common to the set of documents associated with VSE profiles. It establishes the logic behind the definition and application of profiles. It specifies the elements common to all standardized profiles (structure, conformance, assessment). This part of

47、 ISO/IEC 29110 is applicable to all profiles. 1.2 Target audience This part of ISO/IEC 29110 is targeted at authors and reviewers of standardized profiles, authors of other parts, and authors of other VSE profiles. 2 Conformance to standardized profiles 2.1 Overview Conformance is specified within e

48、ach profile specification document, published as ISO/IEC 29110-4-6 1)for systems engineering and ISO/IEC 29110-4-1 for software engineering. The general rules for conformance to ISO/IEC 29110 profiles are in accordance with ISO/IEC TR 10000-1 and outlined in 2.2 and 2.3. 2.2 General principles 2.2.1

49、 Tailoring and exclusions ISO/IEC 29110 standardized profiles are pre-tailored packages of related software and systems engineering standards, therefore tailoring of ISO/IEC 29110 profiles is not needed nor allowed (except in one case outlined in 2.3.2), partial compliance is not allowed (except in one case outlined in 2.2.3), and 1) To be published. INTERNATIONAL ST ANDARD ISO/IEC 29110-2-1:2015(E) ISO/IEC 2015 All rights reserved 1 ISO/IEC 29110-2-1:2015(E) there are no levels of conform