Independent Verification and Validation of SAPHIRE 8 Software Quality Assurance Plan



Similar documents
Independent Verification and Validation of SAPHIRE 8 Software Configuration Management Plan

Independent Verification and Validation of SAPHIRE 8 Software Project Plan

SAPHIRE 8 Software Configuration Management Plan

SAPHIRE 8 Software Quality Assurance Oversight

SOFTWARE QUALITY & SYSTEMS ENGINEERING PROGRAM. Quality Assurance Checklist

Regulatory Guide Configuration Management Plans for Digital Computer Software Used in Safety Systems of Nuclear Power Plants

Information Technology Policy

How To Write A Contract For Software Quality Assurance

When printed the document is for reference only and is considered uncontrolled - refer to the Document Control System for the most current version

Regulatory Guide Verification, Validation, Reviews, And Audits For Digital Computer Software Used in Safety Systems of Nuclear Power Plants

Software Quality Subcontractor Survey Questionnaire INSTRUCTIONS FOR PURCHASE ORDER ATTACHMENT Q-201

CHAPTER 7 Software Configuration Management

2010, T. K. Gaughan, PMP IT Process Architects & Engineers Global Services, LLC 1

DRAFT REGULATORY GUIDE

STS Federal Government Consulting Practice IV&V Offering

SOFTWARE CONFIGURATION MANAGEMENT GUIDEBOOK

AP1000 European 18. Human Factors Engineering Design Control Document

What is a life cycle model?

23. The quality management system

Cyber Security Considerations in the Development of I&C Systems for Nuclear Power Plants

<name of project> Software Project Management Plan

Proposal: Application of Agile Software Development Process in xlpr ORNL- 2012/41412 November 2012

Software Quality Assurance Plan

Recertification CARD No. 22 Quality Assurance

REGULATORY GUIDE 5.29 (Draft was issued as DG 5028, dated May 2012) SPECIAL NUCLEAR MATERIAL CONTROL AND ACCOUNTING SYSTEMS FOR NUCLEAR POWER PLANTS

SAFETY SOFTWARE QUALITY ASSURANCE FUNCTIONAL AREA QUALIFICATION STANDARD. DOE Defense Nuclear Facilities Technical Personnel

IT SYSTEM LIFE-CYCLE AND PROJECT MANAGEMENT

CDC UNIFIED PROCESS PRACTICES GUIDE

CMS Policy for Configuration Management

Automated Office Systems Support Quality Assurance Plan. A Model DRAFT. December 1996

The Framework for Quality Assurance

How To Support A Small Business Subcontracting Plan At Idaho National Laboratory

Executive Director for Operations AUDIT OF NRC S CYBER SECURITY INSPECTION PROGRAM FOR NUCLEAR POWER PLANTS (OIG-14-A-15)

SOFTWARE MANAGEMENT PROGRAM. Software Testing Checklist

CDC UNIFIED PROCESS PRACTICES GUIDE

Hazard Classification of the Remote Handled Low Level Waste Disposal Facility

MATERIALS LICENSE. 1. Honeywell International, Inc. 3. License Number: SUB-526, Amendment 6-1

SOFTWARE DEVELOPMENT PLAN

Software Configuration Management Plan

PROJECT MANAGEMENT PLAN TEMPLATE < PROJECT NAME >

Lecture Objectives. Software Life Cycle. Software Engineering Layers. Software Process. Common Process Framework. Umbrella Activities

From Chaos to Clarity: Embedding Security into the SDLC

DATA ITEM DESCRIPTION

Quality Management Plan Template

Quality Assurance Source Requirements Traceability Database. Ram Murthy. Anna Naydenova

Program Lifecycle Methodology Version 1.7

consulting training auditing Steven R. Rakitin

High Level Requirements for the Nuclear Energy Knowledge Base for Advanced Modeling and Simulation (NE-KAMS)

QUALITY ASSURANCE SURVEILLANCE PLAN (QASP)

Uncontrolled Document

Office Of Nuclear Energy Sensors and Instrumentation Annual Review Meeting

Suggested/Recommended Audit Points in the Software Lifecycle (From thought to sunset)

NATO STANDARD AQAP-2310 NATO QUALITY MANAGEMENT SYSTEM REQUIREMENTS FOR AVIATION, SPACE AND DEFENCE SUPPLIERS

SDLC Methodologies and Validation

The use of computer systems

IT Examination Handbook Presentation Development and Acquisition Booklet

Lecture 1: Introduction to Software Quality Assurance

TOTAL QUALITY MANAGEMENT II QUALITY AUDIT

NRC REGULATORY ISSUE SUMMARY , REQUESTING QUALITY ASSURANCE PROGRAM APPROVAL RENEWALS ONLINE BY ELECTRONIC INFORMATION EXCHANGE

Human Factors in Design and Construction Regulatory Perspective

Chapter 5. Choose the answer that mostly suits each of the sentences given:

JSP 886 DEFENCE LOGISTIC SUPPORT CHAIN MANUAL VOLUME 7 INTEGRATED LOGISTIC SUPPORT PART 8.12 CONFIGURATION MANAGEMENT

Application of software product quality international standards through software development life cycle

Quality Assurance QUALITY ASSURANCE PLAN

4.0 - QUALITY MANAGEMENT SYSTEMS

NATO GUIDANCE ON THE USE OF THE AQAP 2000 SERIES

REGULATORY GUIDE (Draft was issued as DG-1207, dated August 2012)

Data Management Implementation Plan

R000. Revision Summary Revision Number Date Description of Revisions R000 Feb. 18, 2011 Initial issue of the document.

International Journal of Advance Research in Computer Science and Management Studies

122 FERC 61,085 FEDERAL ENERGY REGULATORY COMMISSION WASHINGTON, D.C February 1, 2008

See Block 16C Idaho Operations. Idaho Operations Fremont Avenue. Idaho Falls ID x DE-AC07-05ID /09/2004

CONFIGURATION MANAGEMENT PLAN GUIDELINES

GUIDANCE DOCUMENT TO IMPLEMENT POLICY FOR SOFTWARE QUALITY ASSURANCE IN THE NUCLEAR POWER INDUSTRY

TRADITIONAL VS MODERN SOFTWARE ENGINEERING MODELS: A REVIEW

Role of Software Quality Assurance in Capability Maturity Model Integration

JSP 886 THE DEFENCE LOGISTIC SUPPORT CHAIN MANUAL VOLUME 7 INTEGRATED LOGISTICS SUPPORT PART 8.11 QUALITY MANAGEMENT

Theme 1 Software Processes. Software Configuration Management

FAA WILLIAM J. HUGHES TECHNICAL CENTER ATLANTIC CITY INTERNATIONAL AIRPORT, NEW JERSEY 08405

Balancing cgmp vs. SOX. Compliance Guidances

Frequently Asked Questions. Unannounced audits for manufacturers of CE-marked medical devices. 720 DM a Rev /10/02

U.S. NUCLEAR REGULATORY COMMISSION STANDARD REVIEW PLAN. Organization responsible for the review of instrumentation and controls

SAN FRANCISCO PUBLIC UTILITIES COMMISSION INFRASTRUCTURE DIVISION PROCEDURES MANUAL PROGRAM AND PROJECT MANAGEMENT

Planning Checklist SEM Reference Comments

US EPA REGION III QUALITY MANAGEMENT PLAN REVIEW CHECKLIST

How To Understand And Understand The Cmm

This document was prepared in conjunction with work accomplished under Contract No. DE-AC09-96SR18500 with the U. S. Department of Energy.

Transcription:

INL/EXT-10-17828 Rev. 1 Independent Verification and Validation of SAPHIRE 8 Software Quality Assurance Plan March 2010 The INL is a U.S. Department of Energy National Laboratory operated by Battelle Energy Alliance

INL/EXT-10-17828 Rev. 1 Independent Verification and Validation of SAPHIRE 8 Software Quality Assurance Plan March 2010 Idaho National Laboratory Idaho Falls, Idaho 83415 http://www.inl.gov Prepared for the U. S. Nuclear Regulatory Commission Washington, DC 20555 Project No. N6423

Table of Contents 1.0 Executive Summary... 1 2.0 Background Information... 2 3.0 Summary of Findings... 3 3.1 NUREG/BR-0167 Findings... 3 3.1.1 Section 1.2 Scope and Applicability... 3

1.0 Executive Summary The purpose of the Independent Verification and Validation (IV&V) role in the evaluation of the SAPHIRE Software Quality Assurance Plan is to assess the planned and systematic pattern of all actions necessary to provide adequate confidence that a software product conforms to established technical requirements. The IV&V team began this endeavor after the software engineering and software development of SAPHIRE had already been in production. The requirements for IV&V review were extracted primarily from the NUREG but also included an examination of best software engineering methods provided in the IEEE Standard for Software Verification and Validation. IV&V based the evaluation upon software quality assurance guidance specified in NUREG/BR-0167, Software Quality Assurance Program and Guidelines. The evaluation criteria and the results of the assessment are identified in section 3 of this document. Per the requirements and document outline provided in the SAPHIRE IV&V Plan, this report and all subsequent reports will be included as attachments and/or background evidence of the evaluation as well as the results of the assessment. Page 1

2.0 Background Information NUREG/BR-0167, Software Quality Assurance Program and Guidelines, requires the development of software quality assurance activities that includes both management and technical aspects of software development and maintenance. This report provides an evaluation of the Software Quality Assurance Plan. The Software Quality Assurance Plan is intended to ensure all actions necessary for the software life cycle; verification and validation activities; documentation and deliverables; project management; configuration management, nonconformance reporting and corrective action; and quality assessment and improvement have been planned and a systematic pattern of all actions necessary to provide adequate confidence that a software product conforms to established technical requirements; and to meet the contractual commitments prepared by the sponsor; the Nuclear Regulatory Commission. Independent Verification and Validation (IV&V) evaluates and assesses the processes and products developed during each phase of the Software Development Life Cycle (SDLC). The SAPHIRE 8 development team is implementing a spiral rapid application approach to the product development. One of the roles that IV&V performs, regardless of the development methodology, is to analyze products developed throughout the development process. The intent is to provide a level of confidence to the sponsor that the quality of the software product and supporting documentation is built into the software, not tested in. Evaluating the supporting documentation for each product is one aspect of providing this level of confidence. IV&V supports and is complementary to the Quality Assurance, Project Management, and product development activities. To achieve this support, IV&V must also evaluate the processes identified in the documentation to ensure that the development team is implementing the processes and methodology that ensures a high-level software product. Due to the spiral approach implemented for the software development, it is expected that the Software Quality Assurance Plan will evolve as the SAPHIRE 8 product matures. Therefore, IV&V will evaluate each iteration of the Software Quality Assurance Plan. To provide direction in the evaluation process, IV&V used the software quality assurance guidance specified in NUREG/BR-0167, Software Quality Assurance Program and Guidelines to support the requirements for the SDLC. The Project Plan requirements used for the analysis of the Software Quality Assurance Plan is included in the SAPHIRE 8 Software Independent Verification and Validation Plan (INL/EXT-09-15649). The evaluation criteria and the results of the assessment are identified in section 3 of this document. Page 2

3.0 Summary of Findings An Independent Verification and Validation evaluation of the Software Quality Assurance Plan Document ID: INL/EXT-09-16697 for SAPHIRE 8 was performed using the evaluation criteria contained in section 3.1.1. The evaluation criteria were extracted from the guidance specified in NUREG/BR-0167, Software Quality Assurance Program and Guidelines. Section 3.1.1 refers to the guidance within the NUREG/BR-0167 Software Quality Assurance Program and Guidelines requirements the SAPHIRE 8 Software Quality Assurance Plan must satisfy. 3.1 NUREG/BR-0167 Findings Refer to the SAPHIRE 8 Software Independent Verification and Validation Plan Document ID: INL/EXT-09-15649 for the substitution of Peer Review in place of Configuration Control Board (CCB). 3.1.1 Section 1.2 Scope and Applicability Pass Software quality assurance is the planned and systematic pattern of all actions necessary to provide adequate confidence that a software product conforms to established technical requirements. Section 1.1 Project Background and Objectives first sentence states This Quality Assurance (QA) Plan documents the QA activities that will be managed by the INL related to JCN N6423. JCN N6423 Revision 5, Date: 04/20/09, I. Task 9: Quality Assurance specifies that INL will support a variety of verification and validation (V&V) activities, including support of a NRC peer review, audits, testing, maintenance, and modifications of the SAPHIRE 8 software Section 1.2 Project Scope and Organization last paragraph states INL will follow NRC Management Directive 11.7 Procedures for Placement and Monitoring of Work with the Department of Energy related to software development. This directive suggests that all software development, modification, or maintenance tasks shall follow general guidance provided in NUREG/BR-0167 Software Quality Assurance Program and Guidance. SAPHIRE 8 will follow the requirements for Level 1 software defined in Section 1.2 of NUREG/BR-0167. The NRC will perform an audit of the software QA implementation once a year against the requirement of NUREG/BR-0167. Page 3

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information