Cookies Policy
The website need some cookies and similar means to function. If you permit us, we will use those means to collect data on your visits for aggregated statistics to improve our service. Find out More
Accept Reject
  • Menu
Publications

Publications by HumanISE

2017

Developing Anti-Bribery Organization System Based on Quantitative Pair-Wise Information An approach based on Activity Theory

Authors
Goncalves, A; Correia, A; Cavique, L;

Publication
2017 12TH IBERIAN CONFERENCE ON INFORMATION SYSTEMS AND TECHNOLOGIES (CISTI)

Abstract
Nowadays an important issue, for an organization is to be able to implement relevant anti-bribery risk management systems with mandatory laws. Managers strive to reach an equilibrium between a pure mandatory rule oriented organization and people freedom of choice to mitigate bribery on organization. The problem is how to develop and manage efficiently anti-bribery system in an organization without putting at risk its day by day operation. They are concerned how to balance between deep control and flexible way of people work on organization. The purpose of this document is to introduce a decision-making way of defining a context to establish an anti-bribery risk management system in accordance with the best practices. To address this matter, we will support our work in a theoretical framework for the analysis of human work and introduce anti-bribery as non-functional requirement (generic qualities of services) of organization information systems.

2017

Approaches to strategic alignment of software process improvement: A systematic literature review

Authors
Vasconcellos, FJS; Landre, GB; Cunha, JAOG; Oliveira, JL; Ferreira, RA; Vincenzi, AMR;

Publication
JOURNAL OF SYSTEMS AND SOFTWARE

Abstract
Context: Software process improvement (SPI) aims to increase the effectiveness of a software organization. Many studies indicate that the strategic alignment is a critical factor for the SPI success. However, little is known about practical approaches to achieving and maintaining such alignment. Objective: The goal of this study is to evaluate the validation evidence of the existing approaches to the strategic alignment of SPI. Method: We develop a search protocol that combines database search and snowballing to perform the systematic literature review and evaluate empirical studies by applying rigor and relevance criteria. To evaluate the efficiency of our protocol, we use a “quasi-gold standard” to compute the sensitivity and precision of the search. Result: We identified 30 studies (18 empirical) and 19 approaches to strategic alignment of SPI from 495 retrieved studies. Only three out of the 18 empirical studies were rated as high in the categories rigor and relevance, suggesting the need for a stronger validation of the approaches. Conclusion: We conclude that the lack of empirical validation indicates that the results of the existing approaches have not been adequately transferred to practitioners yet, calling for more rigorous studies on the subject.

2017

An Acceptance Empirical Assessment of Open Source Test Tools

Authors
Valentim, NMC; Lopes, A; César, E; Conte, T; Vincenzi, AMR; Maldonado, JC;

Publication
ICEIS: PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS - VOL 2

Abstract
Software testing is one of the verification and validation activities of software development process. Test automation is relevant, since manual application of tests is laborious and more prone to error. The choice of test tools should be based on criteria and evidence of their usefulness and ease of use. This paper presents an acceptance empirical assessment of open source testing tools. Practitioners and graduate students evaluated five tools often used in the industry. The results describe how these tools are perceived in terms of ease of use and usefulness. These results can support software practitioners in the process of choosing testing tools for their projects.

2017

Incremental Strategy for Applying Mutation Operators Emphasizing Faults Difficult to be Detected by Automated Static Analyser

Authors
Silva, VB; Araujo, CA; Spoto, ES; Vincenzi, AMR;

Publication
XXXI BRAZILIAN SYMPOSIUM ON SOFTWARE ENGINEERING (SBES 2017)

Abstract
To ensure software quality, we can use static and dynamic analysis techniques. Both have advantages and disadvantages and should be used together to improve their performance. In this paper, we present a strategy for applying a set of mutation operators for software testing, which represents a dynamic technique, based on the difficulty an automated static analyzer has on detecting their modeled faults. In other words, we investigated which sets of faults, represented by mutation operators, an automated static analyzer was able to recognize and prioritize the mutation testing considering only the set of mutation operators whose set of faults are difficult to be detected by such static analyzer. We compare our set of mutation operators with others, and the statical analysis shows no difference in the mutation score and costs regarding the number of generated and equivalent mutants among the different strategies. Nevertheless, we consider our proposal attractive once it uses operators with lower overlapping with faults detected by the automated static analyzer we have used.

2017

Collaborative economy for testing cost reduction on Android ecosystem

Authors
Crosara Faria, KA; Andrade Freitas, ENd; Rizzo Vincenzi, AM;

Publication
A-TEST@ESEC/SIGSOFT FSE

Abstract
Collaborative Economy (CE) promotes significant changes in several sectors around the world, e.g. the famous companies Uber, Airbnb, and Turo. The general idea behind CE is the establishment of a win-win partnership between two agents. One agent has a potential need for a resource of high cost for acquisition or location, and the other agent has the resource frequently idle. Software quality verification on Android ecosystem is a hard task due to the fragmentation among the devices, i.e. the large number of devices configurations. In this scenario, compatibility testing demands the acquisition or location of several different devices of high cost and volatility due to technology evolution. On the other hand, there are several devices around the world with a high rate of idle time and which could be used for testing, generating an extra budget for their owners. In this sense, this paper defends the principles of CE for supporting the testing activity of Android applications. We implemented a platform to use and evaluate the practical usefulness and applicability of CE principles in Android software testing context. The platform makes it possible to run system testing on several devices, geographically distributed, simultaneously. The general idea is to record system testing by using an extension of Expresso, a Google proposed framework for user interface (UI) testing, and execute the test cases on idle devices previous registered on the platform, according to the test requirements. We carried out some exploratory studies which evidentiate the potential of the proposed platform, its benefits, and its impact not only on the market but also on the way we can run efficiently testing on Android ecosystem.

2017

Towards Automated Deployment of Self-adaptive Applications on Hybrid Clouds (Short Paper)

Authors
Hillah, LM; Assad, RE; Bertolino, A; Delamaro, ME; Rosa, FD; Garcia, VC; Lonetti, F; Maesano, AP; Maesano, L; Marchetti, E; Miranda, B; Vincenzi, A; Iyoda, J;

Publication
SEFM

Abstract
Cloud computing promises high dynamism, flexibility, and elasticity of applications at lower infrastructure costs. However, resource management, portability, and interoperability remain a challenge for cloud application users, since the current major cloud application providers have not converged to a standard interface, and the deployment supporting tools are highly heterogeneous. Besides, by their very nature, cloud applications bring serious traceability, security and privacy issues. This position paper describes a research thread on an extensible Domain Specific Language (DSL), a platform for the automated deployment, and a generic architecture of an ops application manager for self-adaptive distributed applications on hybrid cloud infrastructures. The idea is to overcome the cited limitations by empowering the cloud applications with self-configuration, self-healing, and self-protection capabilities. Such autonomous governance can be achieved by letting cloud users define their policies concerning security, data protection, dependability and functional compliance behavior using the proposed DSL. Real world trials in different application domains are discussed.

  • 450
  • 740