Quality Management of Software and Systems: DIN ISO 9000-Standards



Similar documents
Testing and Certification Procedure

VdS Guidelines for the Certification of quality management systems

Certification of management systems

Quality management systems

The impact of TECHART Individualization on your Porsche model's vehicle warranty and guarantee under German Law

Global supply chain quality improvements with certification and what can be done beyond

Control and Indicating Equipment

Description of the certification procedure MS - ISO 9001, MS - ISO 14001, MS - ISO/TS and MS OHSAS and MS ISO 50001

EM Hold-open magnets

Notes on the certification and surveillance of management systems for companies with subsidiaries

How DCMA Helps To Ensure Good Measurements

How to Upgrade SPICE-Compliant Processes for Functional Safety

Supplier quality guideline. VOSS Automotive Group Issue Rev00

EN Type Approval & Certification of AMS (QAL1)

Ordinance on Specialised Waste Management Companies (Entsorgungsfachbetriebeverordnung - EfbV) *) of 10 September 1996

Conditions of Purchase MAHLE Industrial Thermal Systems Status 06/14

Testing and Certification Procedure

Hidden Supply Chain Risk A Social, Quality, Environmental and Security Challenge

Advanced Testing Techniques

VDA6.3 Process Audit Webinar 1 st April Paul Hardiman Qualified VDA6.3 trainer

AS9100 B to C Revision

Principles and development of quality assurance in welding of rail structures

SOFTWARE DEVELOPMENT STANDARD FOR SPACECRAFT

ISRINGHAUSEN GmbH & Co. KG ISRINGHAUSEN-Ring Lemgo Germany Local Court (Amtsgericht) Lemgo, 6 HRA 1276

Certification Bodies for Quality Management Systems

Information Security Management Systems. Chief Operating Officer, Director of Strategy and Business Development, Chief Information Security Officer

Guidance from the Group of Notified Bodies for the Construction Products Directive 89/106/EEC. GNB-CPD position paper from SG17 - EN :2009

.RUHR Domain Name Registration Policy

The V-Model. Prepared for. Prepared by. Christian Bucanac Software Engineering Student, University Of Karlskrona/Ronneby

NC General Statutes - Chapter 99B 1

Auditor view about ETSI and WebTrust criteria. Christoph SUTTER

SQ 901 Version D. Railway Application Quality Specification REQUIREMENTS FOR THE QUALITY MANAGEMENT SYSTEM AND QUALITY PLAN

Your property valuation partner: TÜV SÜD

Internal Audit Hearing Sheet

Measures to increase accuracy and precision of software-based noise prediction

Overview Presented by: Boyd L. Summers

An Alternative Method for Maintaining ISO 9001/2/3 Certification / Registration

IAS ACCREDITED INSPECTION AGENCIES: GUIDELINES FOR CONDUCTING INTERNAL AUDITS AND MANAGEMENT REVIEWS. Revised January, 2016

Certification Process Requirements

fulfils all requirements defined in the technical specification The appendix to the certificate is part of the certificate and consists of 6 pages.

ASSESSMENT OF THE ISO STANDARD, ROAD VEHICLES FUNCTIONAL SAFETY

Enrolment in the training course and exam for auditors of accredited bodies certified to ISO/TS 16949

Project Management. TermNet International Network for Terminology. TSS 2009 Cologne. For Translators & Terminologists.

TÜV AUSTRIA CERT GMBH. Your partner for certifications and operational safety

FOR ELECTRICAL, ELECTRONIC & INFORMATION TECHNOLOGIES

Chapter 1. The ISO 9001:2000 Standard and Certification Process

Description of the Technical Component:

Management of Information Systems. Certification of Secure Systems and Processes

What Are the Differences?

Procedure PS-TNI-001 Information Security Management System Certification

Macromedia University Master of Arts (M.A.) Academic Information

ISO Introduction

Methods Commission CLUB DE LA SECURITE DE L INFORMATION FRANÇAIS. 30, rue Pierre Semard, PARIS

Specific Conditions for the Assessment of Management Systems and Product Certifications

-Blue Print- The Quality Approach towards IT Service Management

Copyright, Language, and Version Notice The official language of this [Certification Protocol] is English. The current version of the [Certification

Connected mobility services to reduce individual traffic

File:Quality-Management Manual-V2

Translation Service Provider according to ISO 17100

International Association of Scientific Innovation and Research (IASIR) (An Association Unifying the Sciences, Engineering, and Applied Research)

Restructure of CIMO-Guide Part III Chapter 3 (Quality Management of Meteorological Observing Systems): Changes and Supplements

National Accreditation Board for Certification Bodies. Accreditation Criteria

ISO20000: What it is and how it relates to ITIL v3

Spillemyndigheden s Certification Programme Change Management Programme

DAAD Deutscher Akademischer Austausch Dienst German Academic Exchange Service

Terms and Conditions of Certification TUV Rheinland of North America

EXPERTISE EXCELLENCE FOR PROPERTY DEVELOPERS COR PORATIONS BANKS PRIVATE INVESTORS PORTFOLIO OBJECT RESIDENTIAL REAL INVESTMENT

Germanischer Lloyd Systems Certification. 0E

SOFTWARE LICENSE AGREEMENT

ACIL POSITION PAPER PROCUREMENT AND EFFECTIVE PRACTICE OF CONSTRUCTION MATERIALS ENGINEERING AND TESTING SERVICES

fulfils all requirements defined in the technical specification The appendix to the certificate is part of the certificate and consists of 6 pages.

Specific Conditions for the Assessment of Management System and Product Certifications

Australian Computer Society. Policy Statement

6. KINGHERO AG FINANCIAL STATEMENTS FOR THE SHORT FINANCIAL YEAR FROM 16 APRIL TO 31 DECEMBER Balance Sheet as at 31 December 2009

DYNAMIC BILL OF MATERIALS. cc discrete manufacturing CALCULATION SCHEMES CHECKLIST SYSTEM. Business Software for People QUALITY CONSTRUCTION

I S O I E C I N F O R M A T I O N S E C U R I T Y A U D I T T O O L

NABL NATIONAL ACCREDITATION

New Scholarships New Scholarships 2005

SOFTWARE QUALITY & SYSTEMS ENGINEERING PROGRAM. Quality Assurance Checklist

RESEARCH PAPERS FACULTY OF MATERIALS SCIENCE AND TECHNOLOGY IN TRNAVA SLOVAK UNIVERSITY OF TECHNOLOGY IN BRATISLAVA

APPROVAL SHEET. Procedure Complaint and Appeal Management. PT. TÜV NORD Indonesia PMLF - TNI 009 Rev.05

ETSI TS : Electronic Signatures and Infrastructures (ESI): Policy

Transcription:

Quality Management of Software and Systems: DIN ISO 9000-Standards

Contents Motivation Product liability and DIN EN ISO 900X Contents of ISO/IEC 90003 Who gives the certificate? What can be certified? Procedure of certification Comparison: DIN EN ISO 9001 and Software Process Assessments Summary 2

DIN ISO 9000-Standards Standards for quality assurance DIN EN ISO 9000:2005 Quality management systems - Fundamentals and vocabulary DIN EN ISO 9001:2008 Quality management systems - Requirements DIN EN ISO 9004:2009 Managing for the sustained success of an organization - A quality management approach DIN EN ISO 19011:2011 Guidelines for auditing management systems None of these standards is designed explicitly for the application to software or software-based systems ISO 90003: Software engineering. Guidelines for the application of ISO 9001:2000 to computer software 3

Motivation Proof of an organization s capability to deliver quality results to their customers: This proof is a precondition for companies to participate in public tenders (offers) of the Single European Market. Product liability: in case of damages caused by the product, the question of liability can be clarified easier (Documentation of a suitable QA-System). Marketing (no longer: Made in Germany, but: ISO 9000 certified) The certificate is not given for unlimited time but can be deprived again. After the certification, checks are made regularly Permanent obligation to maintain the QA-system 4

Motivation 5

Motivation 6

Product Liability and ISO 900X Product liability is the obligation to make up for a damage caused by a defective product In Germany regulated since 1990 by the product liability law Adds to the contract and tort laws The terms product, fault/defect, producer can be interpreted differently (e.g. dealer or seller can be regarded as producer liable to the full extent) Producer is liable for consequential damages To persons in the private and industrial sector To property in the private sector An effective liability exclusion is not possible Faults/defects and damages to the product itself do not come under the product liability law 7

Product Liability and ISO 900X Claimant only has to prove a resulting damage The fault of the producer concerning the defect does not have to be proven The producer has to acquit himself of the fault presumption Proof that the defect did not exist at the time of placing the product on the market Proof that the defect was not avoidable according to the state of the scientific and technical knowledge. Existence of a quality management system (e.g. ISO 900X) can possibly facilitate this 8

Contents of ISO/IEC 90003 It is certified according to DIN EN ISO 9001: the ISO/IEC 90003 standard is a reading aid QA-System - frame Responsibility of the top management Quality assurance system, internal quality audits, corrective actions QA-System life cycle activities Contract verification, determination of the requirements on the part of the client Planning of the development, planning of the QA Design and implementation, testing and validation Acceptance, duplication, delivery and installation, maintenance QA-System supporting activities Configuration management, management of documents, quality records Measurements, rules, methods and agreements, tools and techniques Acquisition/provision, subcontractor management, training 9

Who Gives the Certificate? Certificates are given by external auditors of accredited certificate authorities, e.g. Technical inspection authorities: RWTÜV systems engineering GmbH - institute for information technology, Essen; TÜV Süd, Munich; TÜV Cert e.v., Bonn DEKRA AG certification center, Stuttgart; Landesgewerbeanstalt Bavaria, Nuremberg Germanic Lloyd QA certification center, Hamburg; association of the property insurer (Verband der Sachversicherer) (VdS) e. V., Cologne VDE inspection and certificate authority, Offenbach; German association of materials research and testing, NRW, Dortmund; association of the railway vehicle construction for the certification, Berlin This list is not complete Not each of the listed certificate authorities certifies every branch/sector 10

What can be certified? Business companies Parts of business companies (e.g. business areas) Process for individual products 11

Procedure of a Certification Preparation Classification of the material affected by DIN EN ISO 9001 Identification of problem areas Implementation of required modifications: Modification of problem areas (e.g. closing of gaps in the guidelines) Training of staff members, training of internal auditors Execution of internal preparation audits Execution of the certification Information of the concerned persons Monitoring of the external certifiers After the certificate is granted (continuously) Internal Q-audits, management reviews, monitoring and re-audits, training 12

Comparison: DIN ISO 9001 and Software Process Assessments Subject DIN EN ISO 9001 Multitude of industrial organizations, products and procedures Software Process Assessment At the moment intended for pure software development processes Goal Proof of qualification for the generation of quality-compatible results Detailed objectives and priority specifications for the improvement of the process Status Fixed de facto standard Useful means for problem analysis and process improvement Basis Fixed standard text Flexible Capability Maturity Model Requirements Minimal requirements (have to be met without exception) Hierarchy of demands/requirements depending on the level Result Accepted certificate Actual state, strengths and weaknesses profile Costs vs. benefit Benefit is founded by the given certificate Savings due to process improvements vs. costs for the assessments and the improvement activities 13

Summary The certification according to DIN EN ISO 9001 has gained importance as verifiable qualification criterion in the quality assurance. The main focus of the DIN EN ISO 9001-certification is the proof of a QA-system according to the standard. The main focus of the CMM-assessment is on increasing the quality and productivity of the complete SW development process. There exists no conversion formula between the ISO-certification and CMMlevels. DIN EN ISO 9001-certification and assessments are no alternatives but approaches which complement each other Economic reasons for certification: the client expects a certificate. Competitors are also certified Technical reasons for assessment: productivity, quality, time saving 14

Literature ISO/IEC 90003:2004 Software engineering. Guidelines for the application of ISO 9001:2000 to computer software, Berlin: Beuth Verlag, 2004 DIN EN ISO 9001 Quality management systems - Requirements, Berlin: Beuth Verlag, 2008. 15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information