Software Architecture Risk Assessment (SARA) Tool Khader Basha Shaik Problem Report Defense Master of Science in Computer Science Lane Department of Computer Science and Electrical Engineering, West Virginia University This work is funded in part by grants to West Virginia University Research Corp. from the National Science Foundation (NSF-ITR) Program, and from the NASA Office of Safety and Mission Assurance (OSMA) through the NASA Independent Verification and Validation (IV&V) Facility, Fairmont, West Virginia. Outline Introduction Previous and Related work Problem Statement Objectives Maintainability Risk Product Line Architecture Architecture of SARA Tool Proposed Approach Testing Conclusion and Future Work Demo of SARA Tool Introducing Web Based SARA Tool Introduction Risk assessment helps projects to avoid unpredicted failures and catastrophic problems. Also, it largely prevents wrong allocation of resources. According to NASA-STD-8719.13A standard, risk is a function of the anticipated frequency of occurrence of an undesired event, the potential severity of resulting consequences, and the uncertainties associated with the frequency and severity. In this research, we present a tool that support architectural level model-based risk assessment, which includes Maintainability based risk Reliability based risk and Requirements based risk. Introduction (contd..) SARA Tool extends our earlier Architectural-level Risk Assessment Tool (ARAT) by providing support for more architectural models and different perspective of risk assessment other than reliabilitybased and requirement based risk. It is built on the maintainability-based risk assessment methodology developed by Walid Abdelmoez and described in his Ph.D. Dissertation as part of the Software Architecture Risk Assessment Project funded by NASA. Previous and Related work SARA Tool developed in this research is a major extension of an earlier tool called Architecture-level Risk Assessment Tool (ARAT) ARAT estimates the distribution of the scenario, use case and system risk factors on different severity classes which allow us to make a list of critical scenarios in each use case, as well as a list of critical use cases in the system. ARAT supports only Reliability and Requirement Risk. Previous and Related work (contd..) Software Architecture Analysis Method (SAAM) and Architecture Trade-off Analysis Method (ATAM) developed at the Software Engineering Institute (SEI) at Carnegie-Mellon University (CMU). In both above approaches, the assessment is based on qualitative measures and the experience of the analyst. SDMetrics Tool: It analyzes the structural properties of UML designs. Use object-oriented measures of design size, coupling, and complexity. Doesn’t support Risk Analysis and Product Line Architectures. Problem Statement The main focus of this research is to develop tool support for quantitative risk assessment of software architectures. The problem addressed in this report is to further develop and extend the Software Architecture Risk Assessment (SARA) tool by providing support for maintainability-based risk assessment and support for the analysis of product line architectures. This tool shall support quantitative analysis that complements the methods developed by the Software Engineering Institute at Carnegie-Melon University (CMU) on the qualitative assessment of software architectures. Objectives The main objectives of this tool are listed below: • To Design, Develop and Implement the tool for different types of Software Architecture-level metrics and risk Assessment. • To extract the data from the design diagrams (class diagrams, sequence diagrams and state chart diagrams) by accepting the input files in XMI and .txt format. • To implement algorithms, estimating metrics (change propagation and size of change metrics) and risk factors (corrective and adaptive maintainability risk factors) on StarUML, UML RT, and Product Line Architectures based on the methodology proposed. Objectives (contd..) • Complement the ATAM process by providing the quantitative analysis of the product and help to track the quality of software architectures. • Ability to identify critical components and scenarios based on estimated their risk factors. • Providing high flexibility and extensibility, so that the tool can support other risk assessment perspectives such as performance-based risk and other architecture metrics, and other input formats. • Portability and scalability. Maintainability Risk • In accordance with NASA-STD-8719 standard, we define maintainability-based risk is as a combination of two factors: the probability performing maintenance tasks and the impact of performing these tasks . Accordingly, Maintainability-based Risk for a component is defined as: Probability of changing the component* Maintenance impact of changing the component. Maintainability Risk (contd..) Maintainability Risk Methodology Product Line Architecture • A software product line architecture is the encompassing architecture for the family of products that make up the product line and specifies what is common, and what variations are explicitly allowed among them. –Variabilities are characteristics that may vary from a product to another. The main challenge in the context of software Product Lines (PL) approach is to model and implement these variabilities. • One of the main concepts behind Product line architecture is software reuse through managing variability between the products in the PL. Product Line Architecture (contd..) Stereotypes: Kernel. Kernel in PLs represents the mandatory features for the PL members. i.e.: they cannot be omitted in products. The stereotype <<kernel>> is used to specify Kernel in UML class diagrams. Optionality. Optionality in PLs means that some features are optional for the PL members. i.e.: they can be omitted in some products. The stereotype <<optional>> is used to specify optionality in UML class diagrams. Variation. We model variation point using UML inheritance and stereotypes: each variation point will be defined by an abstract class and a set of subclasses. The abstract class will be defined with the stereotype <<variation>> and each subclass will be stereotyped<<variant>>. Example of PLA for Micro-oven model in shown in the next side <<kernel>> DoorSensor +Door Opened() +Door Closed() Class Diagram of Micro-oven PLA model <<kernel>> Keypad <<optional>> Lamp <<optional>> Beeper <<optional>> Turntable +Cooking Time Selected() +Cooking Time Entered() +Start() MicrowaveOvenSystem <<kernel>> Display <<kernel>> WeightSensor <<variant>> Multi-lineDisplay <<default>> BooleanWeightSensor <<default>> One-lineDisplay +Item Placed() +Item Removed() +Read() <<variant>> AnalogWeightSensor <<kernel>> HeatingElement <<default>> One-levelHeatingElement <<variant>> Multi-levelHeatingElement Architecture of SARA Tool Control Flow diagram for Maintainability risk Calculation Module Import Architecture Desc file Display Module Data Parser Module Database access Module Storing data into database SARA Tool Database Retrieving data from database Calculation Module Change Propagation and Size of Change Calculation Initial Change Probability Calculation (Optional) Maintainability Risk Calculation Process Flow Chart of PLA module in SARA Tool Build StarUML PLA model of target System SARA Tool Import modal data (XMI) into SARA Tool Create Instances (Product Lines) Store the Product Lines in Repository Preprocess each Product Line and save data is Repository Change Propagation Analysis Size of Change Analysis No Maintainability Risk Identify optimal Product Line Is the architecture quality of the target software? satisfied the specification requirement? Use case diagram of maintainability-based risk functionality of the SARA tool PerformStaticAnalysis StarUML UMLRT Estmate ICP Analyst Estimate CP Probability PLA Repository EstimateComponentMaintainabilityRisk Estimate Size of Change RetriveAnalysisInfo Class Diagram of SARA Tool SeverityWeightFame File Creator +File f +JTextField +JRadioButton +writeToFile(File f) +getFile() +actionPerformed() +getOptions() computuationModule +fileConnector +doDataProcessing() +calMaintainabilytRisk() +calReliabilitytRisk() +calRequirementRisk() +saveData() +getData() MyFrame1-SARAT Copier +MenuBar +InterframeSet +MenuItem +StringTokenizer +calculationModule +File of,ef +Copy() +actioinPerformed() +instaniate() +import() fileRepository +Files +getData() +storeData() 1..* Display Component +InterFrameSet() +TableFrame() +ChartFrame() +LogFrame() +ModelFrame() +DynamicTable() +DynamicChart() +DynamicTree() 1..* Parser Component +parserStarUML() +parserPLA() +parserUMLRT() +parserJavaUnd() 1..* 1..* Metrics Component Risk Component +changePropagation() +sizeOfChange() +ICP() +errorPropagation() +MaintainabilityRisk() +ReliabilityRisk() +RequirementRisk() Proposed Approach • Models supported by the Tool – For Maintainability Risk • StarUML • UMLRT • PLA – For Reliability Risk • UMLRT – For Requirement Risk • UMLRT • Extract Architectural Description of Models • Modules in SARA Tool – – – – Import Module Metrics Module Risk Module User Interface Module Proposed Approach (contd..) • Import Module Architecture description files to be imported to the SARA Tool workspace The input formats used by the SARA Tool are: For StarUML model : XMI and .txt Files For UMLRT model : .txt Files Unlike UMLRT, StarUML is an open source UML/MDA Tool. Any user can just develop his Architecture Model and use SARA Tool for Risk Assessment. Proposed Approach (contd..) • Metrics module in SARA Tool – The transaction methods in Java call various algorithms to compute metrics. – StarUML model Change propagation Size of change Initial Change Probabilities Error propagation Size Coupling Complexity – UMLRT model Change propagation Size of change Initial Change Probabilities Error propagation Proposed Approach (contd..) • Risk module in SARA Tool – Maintainability Risk – Reliability Risk – Requirement Risk • User Interface module in SARA Tool – Swings are used to show the outputs to the user. – Results are shown to the analyst in both table and bar chart format. – A third party tool- Espress Chart has been used to display results in bar chart format Testing • Testing was done on the following modules with different Case Studies Import Module Metrics Module Risk Module User Interface Module • Case Studies Used CM1 Model Pacemaker Model Game of life Model Micro-oven PLA Model Case Study:CM-1: Class Diagram from StarUML DCI TMALI +hkData() +dciGetEvents() +dpaSetNumEvents() +dpaEvent() +tmaliEvents() +tmaliNullEvents() +dpaConfigDone() ICUI +read() +ccmCmdEnq() +write() +hkData() +dpaModeReady() +dpaEnqDone() DPA 1553 +tmaliWaitForEvents() +tmaliGetEvents() +dciConfigure() +dciConfigure() +scuiEnqDone() +icuiChanBound() +icuiReady() +icuiEnq() +dcxEnq() +dcxEnqDone() +hkData() +events() +scuiEnq() +tisTimeSync() +writeEDone() +hkData() +dcxEventIn() +dcxEnqDone() +dpaEnqDone() +write() +writeE() SSI +readData() +write() SCUI DCX +dpaEnqDone() +hkData() +scuiEnq() +scuiEnqDone() CCM +tmaliDciTimeoutSet() +tmaliHkGet() +icuiHBSend() +dpaModeCmd() +icuiHkGet() +dcxHkGet() +dpaHkGet() +bitHkGet() +tisHkGet() +edacHkGet() +scuiHkGet() +scuiEnq() TIS +hkData() EDAC +hkData() BIT +hkData() Some of the Sequence Diagrams of CM-1 Model : SETUP ICUI SSI CCM DPA 1 : initDpa() 2 : initCcm() 3 : initSsi() 4 : initIcui() 5 : read() 6 : readData() 7 : ccmCmdEnq() SETUP ICUI SSI CCM DPA 8 : dpaModeCmd() TMALI 1 : initTmali() 9 : icuiChanBound() 2 : initDpa() 3 : initCcm() 10 : write() 4 : initSsi() 5 : initIcui() 6 : read() 7 : readData() 8 : ccmCmdEnq() 9 : dpaModeCmd() 10 : TmaliDoiTimeoutSet() Some of the Sequence Diagrams of CM-1 Model : (Khder there is no need for this slide, you already showed examples of sequence diagrams in previous slide) SETUP CCM BIT DCX DPA EDAC ICUI SCUI TIS TMALI 1 : initMilstd() 2 : initTmali() 3 : initTis() 4 : initScui() 5 : initIcui() 6 : initEdac() 7 : initDpa() 8 : initDcx() 9 : initBit() 10 : initCcm() 11 : hkData() 12 : hkData() 13 : dcxHkGet() 14 : hkData() 15 : dpaHkGet() 16 : hkData() 17 : edacHkGet() 18 : hkData() 19 : icuiHkGet() 20 : hkData() 21 : scuiHkGet() 22 : hkData() 23 : tisHkGet() 24 : hkData() 25 : tmaliHkGet() 26 : hkData() 27 : scuiEnq() 28 : write() 1553 XMI file exported from StarUML ------Let us go to Tool demo now Conclusion and Future Work Software Architecture Risk Assessment (SARA) Tool is designed and implemented as a tool for computing and analyzing architectural level risk factors like Maintainability Risk, Reliability Risk and Requirement Risk. Efforts are made in implementing the methodology on Product Line Architectures for analyzing all possible instances and coming out with better architecture with minimum risk Conclusion and Future Work (contd..) Among our venues of further research, we are considering To add other risk assessment perspectives like performance-based risk. To support reliability and requirement risk for StarUML model( do we have reliability risk supported already in the current version?). To support more input formats for the tool and test with multiple case studies. To support evaluation of Product Line Architectures with multiple case studies. To make SARA Tool a complete version of web based open source tool. Support Data Mining analysis process with statistical data and risk factors. DEMO of the SARA Tool…… Thank You
© Copyright 2025