Upcoming Computer Science Colloquium on Deliver Fast with Confidence by Joseph Yoder

The computer science department by way of our research group is hosting a colloquium talk (free and open to the public):

  • by: Joseph Yoder
  • about: Deliver Fast with Confidence
  • on: 2018-02-01, 16:00 Uhr
  • at: Martensstr. 3 (blaues Hochhaus), Raum 02.152-113 (second floor)

Abstract: Being agile, with its attention on extensive testing, frequent integration, and focusing on important product features, has proven invaluable to many software teams. When building complex systems it can be all too easy to primarily focus on features and overlook software qualities, specifically those related to software architecture. Time has shown that agile practices are not sufficient to prevent or eliminate technical debt, which can ultimately affect reliability. Many issues arise when there isn’t good validation through tests and constant attention to the architecture and code quality. It is important to recognize what is core to the architecture and the problem at hand while evolving it. If there is not enough attention on the architecture and the code, technical debt will creep in to the point where it can become muddy, making it hard to deliver new features quickly and reliably. Two principles that can help teams deliver more quickly and with confidence is to focus on code quality and delivery size. Small frequent delivery with constant attention to a good codebase is crucial to being able to sustain faster reliable delivery. Practices that can help keep the code clean or prevent it from getting muddier include: Testing, Divide & Conquer, Gentrification, Quarantine, Refactoring, and Craftsmanship. This talk examines various practices and techniques such as Continuous Integration, Continuous Delivery, Continuous Inspection, along with techniques to pay good attention to software quality, all of which enable teams to deliver fast and with confidence.

Speaker: Joseph (Joe) Yoder (agilist, computer scientist, speaker and pattern author) is the founder and principal of The Refactory (www.refactory.com), a company focused on software architecture, design, implementation, consulting and mentoring on all facets of software development. Joe serves as president of the board of The Hillside Group, a group dedicated to improving the quality of life of everyone who uses, builds, and encounters software systems. He is best known as an author of the Big Ball of Mud pattern, which illuminates many fallacies in software architecture. Joe teaches and mentors developers on agile and lean practices, architecture, building flexible systems, clean design, patterns, refactoring, and testing. Joe has recently been working with organizations and thought leaders on the best practices for including quality aspects throughout the complete software life-cycle. In 2015 he won the New Directions award with a colleague at Saturn 2015, given to the presentation that best describes innovative new approaches and thought leadership in the application of architecture-centric practices for the presentation “QA to AQ: Shifting from Quality Assurance to Agile Quality”. Joe thinks software is still too hard to change. He wants to do something about this and believes that you can start solving this problem through the use of proven practices (patterns) and by putting the ability to change software into the hands of the people with the knowledge to change it.

Upcoming Industry Talk on Property-Based Testing mit Java by Johannes Link (in German)

We will host an industry talk on “Property-Based Testing mit Java” in ADAP, our course on advanced design and programming (free and open to the public):

  • by: Johannes Link, Selbstständiger Software-Therapeut
  • about: Property-Based Testing mit Java
  • on: 2018-02-05, 13:00 Uhr
  • at: Martensstr. 5/7, Raum 0.68
  • as part of: ADAP

Abstract: Testgetriebene Entwicklung in objekt-orientierten Sprachen setzt bislang meist auf Beispiel-basierte Testfälle, wie man sie leicht mit JUnit und ählichen Test-Frameworks erstellen kann. Schaut man jedoch über den Tellerrand zu funktionalen Programmiersprachen wie z.B. Haskell oder F#, dann findet man dort etwas anderes: Property-Tests. Property-Tests basieren auf der Idee, die erwünschten Eigenschaften unseres Programms zu beschreiben und anschließend das Framework
selbstständig Testfälle generieren zu lassen, welche diese Eigenschaften bestätigen oder falsifizieren. In diesem Vortrag werde ich sowohl auf die Theorie hinter Property-Based Testing eingehen, als auch konkret zeigen, wie man mit Jqwik unter Java solche Tests umsetzen kann.

Speaker: Johannes Link beschäftigt sich schon seit Ende des letzten Jahrhunderts mit Extreme Programming und anderen agilen Ansätzen. Ein wesentlicher Schwerpunkt dabei war und ist die testgetriebene Entwicklung. Zu diesem Thema hat er bereits mehrere Bücher geschrieben und lernt dennoch immer noch dazu. Johannes war einer der Köpfe hinter der Konzeption und Umsetzung der JUnit-5-Plattform und ist Core-Committer bei jqwik.net.

Open Ph.D. Position in Open Source Governance

We have a full-time Ph.D. position (German Mitarbeiter position at TVL-E13 level) available on the topic of open source governance.

In this research project, the new team member will build and evaluate a theory on what constitutes good open source governance and license compliance at companies who use open source in projects and products. The specific focus is on selecting open source components for company use, both from a managerial and legal perspective. The new team member will join a team where other people are working on related (but distinct) topics.

Continue reading Open Ph.D. Position in Open Source Governance

The 2017 Letter to Stakeholders (Year-end)

Welcome to the 2017 (year-end) letter to stakeholders of the Professorship of Open Source Software at the Friedrich-Alexander-University Erlangen-Nürnberg! (Download as PDF.)


In 2017, we continued our successful work from prior years, focussing on existing projects. Revenues kept growing at about 20% CAGR and we got a new top-tier research journal paper published. We finally acquired our first DFG grant and welcomed Andreas Bauer as a new member to the team. Welcome, Andi!

Continue reading The 2017 Letter to Stakeholders (Year-end)

Final Thesis: A Theory of Open Source Engineering Processes

Abstract: Open Source communities are largely people centric and work on customized software processes created by people while trying to solve a problem. Hence, most Open Source projects do not have formal processes or do not follow software engineering best practices. But at the same time, they are successful and the processes followed are instrumental in their success. The objective of this thesis is to build a theory of Open Source Engineering processes. This theory can be used by Open Source communities to design their own processes and to compare their processes with that of other communities. The theory is presented as categories and sub-categories and is derived from qualitative data analysis of interviews and supplemental materials. The model is then applied to three polar Open Source communities.

Keywords: Open source engineering process, open source development process, qualitative research, decision-making in open source

PDFs: Master Thesis, Work Description

Reference: Harisree Radhakrishnan. A Theory of Open Source Engineering Processes. Master Thesis, Friedrich-Alexander-Universität Erlangen-Nürnberg: 2017.

Vorträge am Senior Design Day des Zollhof

Wir werden am Freitag, 2017-12-08, um 11:30 Uhr, am Senior Design Day des Startup-Inkubators der FAU teilnehmen. Unser Beitrag sind die folgenden drei Vorträge resp. Demos (jeweils nur wenige Minuten). Das Event ist kostenfrei; Tickets gibt es hier.

  1. Das Uni1 / AMOS Projektkonzept für Industrieinnovation mit Universitäten

    Uni1 ermöglicht es Unternehmen, preisgünstig und flexibel mit Universitäten in der Lehre zusammenzuarbeiten und eine Pipeline fuer offene Innovation zu erzeugen. Wir stellen als wichtiges Beispiel das AMOS Projekt vor, einen Kurs, in dem Unternehmen Softwareentwicklungsprojekte mit der FAU abwickeln.

  2. Das 2017 AMOS Projekt “Raspberry Pi as User Control Board” mit Sivantos

    The mission of this AMOS project is to enhance the Sivantos Fitting Software System with a Raspberry Pi user control board to test the software efficiently and rapidly replacing the existing manual interaction with the system under test. Our project enables test engineers and manual testers at Sivantos to test their software faster, more comfortably, more efficiently and more thoroughly.

  3. Das 2015 AMOS Projekt “Croudtrip!” mit Elektrobit

    Als Teil des Elektrobit-internen Innovationswettbewerbs wurde die Idee eines Car-Sharing-Dienst entwickelt, welcher auf Basis von Elektrobit Diensten und Produkten entwickelt eine Startup darstellen sollte, die das Elektrobit (jetzt Continental) Ökosystem bereichert. Das Projekt wurde als AMOS Projekt in 2015 umgesetzt. PS: Crowd + Cloud + Kraut = Croud

Final Thesis: A Visual UML-Editor for QDAcity

Abstract: QDAcity ist eine Webanwendung zur Unterstützung der qualitativen Datenanalyse (QDA) von Text-Daten. Bei der qualitativen Datenanalyse geht es darum Informationen und Zusammenhänge aus unstrukturierten Daten wie Interviewtranskriptionen zu gewinnen. Ein wichtiger Prozess bei der QDA ist die Kodierung, bei der Textstellen mit selbstdefinierten Codes versehen werden, um die Inhalte besser zu strukturieren. Die Anwendung QDAcity unterstützt die Kodierung von Texten mit einem Codesystem, welches die Codes hierarchisch strukturiert. In dieser Arbeit wurde für QDAcity eine Software entwickelt, durch die es erstmals möglich ist, einzelne Elemente des konzeptuellen Modells (Klassen oder Beziehungen) mit Elementen aus qualitativen Daten (Codes) zu verknüpfen. Es wurde also ein Domänenmodell-Editor entwickelt, der auf Basis eines Codesystems arbeitet, und bei dem sowohl für das Klassendiagramm, als auch für das Codesystem ein gemeinsames Modell verwendet wird. Für die Umsetzung wurde das Codesystem um eine Codesystem-Language erweitert, die die Kategorisierung und damit die Abbildung in einen UML-Klassen-Diagramm ermöglicht.

Keywords: Domain Modeling, Qualitative Data Analysis, QDA, UML

PDFs: Master Thesis, Work Description

Reference: Felix Loos. A Visual UML-Editor for QDAcity. Master Thesis, Friedrich-Alexander-Universität Erlangen-Nürnberg: 2017.

Entry-level position in open source compliance at Software AG

Software AG, one of our industry partners, informs us about an entry-level position in the domain of open source governance and compliance, including commercial licensing and technology alliances. As always, feel free to apply directly or request an introduction and recommendation through Prof. Riehle.

Final Thesis: A Method to Determine the Return on Investement of Inner Source

Abstract: Inner source is the use of open source software developing practices in proprietary software development across organizational borders. A significant amount of companies are adopting inner source. Some companies already utilize inner source practices without a coordinated effort to adopt inner source. It is unclear if the gains of inner source outweight the costs of running and adopting it because there is no quantitative method to determine the return on investment for inner source yet. In this paper, we develop a quantitative method to determine the return on investment of inner source. We followed a four phase research approach: First, we conducted a methodological literature review to collect methods and best practices on how to create a return on investment model. Second, we performed a exploratory literature review to identify typical inner source costs and gains. Third, we hypothesized formulas to quantify the costs and gains. Fourth, we prepared but not fully conducted an industry case study to evaluate the method. We provide a methode on how to determine the gains and costs induced by inner source and on how to aggregate them to the return on investment value. We evaluated our method at an organization already adopting inner source. As the results were inconclusive, we suggest further research on evaluating the method. This paper contains the first method to determine the return on investment for inner source.

Keywords: Software engineering, open source, inner source, return on investement

PDFs: Master Thesis, Thesis Description

Reference: Sebastian Duda. A Method to Determine the Return on Investement of Inner Source. Bachelor Thesis, Friedrich-Alexander-Universität Erlangen-Nürnberg: 2017.

Final Thesis: Sweble Security Programming Plugin – Security Rules Engine

Abstract: Within the scope of industry 4.0 and digitalization, there is a growing danger of cyber crime and security attacks, causing huge harm for digital business. Therefore, in nowadays software development, IT-security is regarded as a quality criterion, determining the success of a product or project. Nevertheless, the complexity of security attacks, vulnerabilities and software development as a whole, complicates the reliable protection against and mitigation of security attacks.

To support software engineers to develop more secure software, this thesis shows the concept and presents a prototype of a software security rules methodology called Serum. Serum is designed to help software developers and all other project members in creating a more secure software. A domain-specific language was designed and integrated into a global knowledge management system (Sweble), to allow modeling and describing software assets, associated security attacks as well as known countermeasures. A second component, using the gathered security knowledge, was implemented, focusing on the support of software architects during the creation of a threat- and risk analysis. To facilitate the consideration of security even more a custom test- and dashboard system allows developers and test architects to monitor their contribution towards a more secure system.

The thesis should provide a basis for a holistic security support during all phases of the software development life cycle.

Keywords: IT-Security, threat analysis, DSL, Sweble, structured data

PDFs: Master Thesis

Reference: Florian Gerdes. Sweble Security Programming Plugin – Security Rules Engine. Master Thesis, Friedrich-Alexander-Universität Erlangen-Nürnberg: 2017.