UNIVERSITY OF MAURITIUS

FACULTY OF INFORMATION, COMMUNICATION

AND DIGITAL TECHNOLOGIES

SECOND SEMESTER EXAMINATIONS

(May 2017)

PROGRAMME MSc Software Project Management

MODULE Software Quality and Standards

NAME

DATE Tuesday 02 May MODULE CODE CSE 6095

2017

TIME 09.30 – 12.30 hrs DURATION 3 Hours

NO. OF 4 NO. OF QUESTIONS 4

QUESTIONS TO BE ATTEMPTED
SET

INSTRUCTIONS TO CANDIDATES

Answer ALL questions.

All questions carry equal marks.

 Software Quality and Standards – CSE 6095

Answer ALL questions

All questions carry equal marks

Question 1 [25 Marks]

(a) Differentiate among software error, software fault and software failure.
[3*2 marks]

(b) There are nine causes of software errors. Briefly describe any FOUR such
software errors.
[4*2 marks]

(c) Currently you are working in a software company which does not have a
software quality assurance (SQA) system. A SQA system is made up of SIX
different components.

(i) List down those SIX components.

[3 marks]
(ii) Describe any THREE components.
[3 X 2 marks]

(d) There is a direct relationship between process and product in manufactured

goods. However why is this a complex relationship when applied for software?
[2 marks]

Question 2 [25 Marks]

(a) Consider the following extract from: Zetter K. “FAA: Boeing’s New 787 May Be
Vulnerable to Hacker Attack.” Wired, April 1, 2008.

Boeing’s new 787 Dreamliner passenger jet may have serious security
vulnerability in its onboard computer networks that could allow passengers to
access the plane’s control systems, according to the U.S. Federal Aviation
Administration.

The computer network in the Dreamliner’s passenger compartment, designed to

give passengers in-flight Internet access, is connected to the plane’s control,
navigation, and communication systems, an FAA report reveals.
(continued next page)

1
 Software Quality and Standards – CSE 6095

Question 2 (continued)

The revelation is causing concern in security circles because the physical

connection of the networks makes the plane’s control systems vulnerable to
hackers. A more secure design would physically separate the two computer
networks. Boeing has said that it is aware of the issue and has designed a
solution it will test shortly.

(i) Suggest in which category of IT system the above case study is dealing
with?
[1 mark]

(ii) Provide FOUR quality characteristics associated with the IT system’s

category, as identified in (i)?
[4 marks]

(iii) From the case study, which main quality characteristic has been missed
and describe the impact/cost of missing this quality.
[1 + 4 marks]

(iv) Describe FIVE steps which you can propose to Boeing to adopt in order to
prevent missing an important quality requirement in future software and
system development.
[5 marks]

(v) After identifying a quality requirement for a software, a metric is

associated with it. Differentiate between a Direct metric value and a
Predictive metric value.
[2 marks]

(vi) Provide THREE reasons as to why basic tools such as Histograms, Scatter
Diagrams or Pareto Diagrams are used when analyzing a quality metric.
[3 marks]

(b) Checklist and Templates are often considered as Defect Prevention Tools which
add to the quality of a software.

(i) Describe the contribution of Checklists to a software development team.

[2 marks]

(ii) Provide a source which can be used to update a Checklist.

[1 mark]

(iii) Describe TWO problems associated with Templates.

[2 marks]
2
 Software Quality and Standards – CSE 6095

Question 3 [25 Marks]

(a) Differentiate between Walkthrough and Inspection.

[4 marks]

(b) To conduct a peer review (either walkthrough or inspection), specialized

professionals are required. For an Inspection process, recommend with
justification, THREE specialized professionals.
[3 marks]

(c) Provide THREE reasons as to why Inspection is usually NOT widely conducted
in software companies.
[3 marks]

(d) Testing is one of the most important parts of software quality assurance and the
most performed activity. Testing is often associated with words Validation and
Verification.

(i) Differentiate between Validation and Verification.

[2 marks]

(ii) There are typically FOUR stages in designing a test namely: test strategy,
test planning, test case design and test procedure. Describe the Test Case
Design stage.
[3 marks]

(iii) Provide TWO advantages and TWO disadvantages of using Automated

Testing.
[2 + 2 marks]

(e) Software Configuration Management (SCM) is viewed as a software quality

assurance activity which is carried throughout the whole software life cycle. The
primary responsibility of SCM is the control of change.

(i) Identify FOUR sources of change which can happen during a software life
cycle.
[2 marks]

(ii) Larger outsource vendors are often experts in implementing change

control mechanisms. Describe FOUR control mechanisms which outsource
companies implement in order to manage change.
[4 marks]

3
 Software Quality and Standards – CSE 6095

Question 4 [25 Marks]

(a) Explain how Capability Maturity Model (CMM) is built on Total Quality Model
(TQM) principles?
[4 marks]

(b) A software company is currently on Capability Maturity Model Integration

(CMMI) level 1. Describe the role of people and technology while advancing
through each of the CMMI levels.
[10 marks]

(c) A small enterprise decides to begin implementing COBIT (Control Objectives for
Information and related Technology) as part of its Software Quality Assurance
system.

(i) Describe the FOUR domains of responsibility which COBIT covers.

(ii) Describe an advantage which the company gains by adopting COBIT
early.
[4 + 4 marks]

(d) If an existing software process is in place, but improvement is required, Six

Sigma suggests two additional steps. Describe those two additional steps.
[3 marks]

END OF QUESTION PAPER