Abstract
In this paper we introduce a framework for capturing and managing the requirements associated with the non-functional part of the services like service management, security management, assurance, for which norms, recommendations and good practices exist. The proposed framework considers these service requirements both from a business and a software perspective. The elicitation, the capture and the traceability issues related to these requirements are solved with goal-oriented requirements engineering techniques, while the structuring and the assessment of the requirements is based on the ISO/IEC-15504 standard. The overall framework is illustrated with a business case run by our research centre in a public/private partnership. It is associated with the design of project management services delivered through a portal and is focusing on the services management requirements in relation with the IT service management ISO/IEC 20000 norm.
Access provided by Autonomous University of Puebla. Download to read the full chapter text
Chapter PDF
Similar content being viewed by others
Keywords
References
Zarvić, N., Wieringa, R.J., van Daneva, M.: Towards Information Systems Design for Value Webs. In: Proceedings of Workshops of CAiSE 2007, Trondheim, Norway, pp. 453–460. Tapir Academic Press, London (2007)
ISO, ISO/IEC 9126-1: Software Engineering – Product Quality – Part 1: Quality Model (2001)
Gordijn, J., Akkermans, H.: Value based requirements engineering: Exploring innovative e-commerce idea. Requirements Engineering Journal 8(2), 114–134 (2003)
Parasuraman, A., Zeithaml, V.A., Berry, L.: A Conceptual Model of Service Quality and Its Implications for Future Research. Journal of Marketing 49, 41–50 (1985)
O’Sullivan, J., Edmond, D., ter Hofstede, A.: What’s in a Service? Towards Accurate Descriptions of Non-Functional Service Properties. Distributed and Parallel Databases 12, 117–133 (2002)
IT Infrastructure Library – Service Delivery, The Stationery Office Edition (2000); ISBN 011 3308671
ISO, ISO/IEC 20000-1:Information Technology – Service Management – Part 1: Specification (2005)
ISO, ISO/IEC 27005: Information Technology – Security Techniques – Information Security Risk Management (2008)
The Sarbanes-Oxley Act of 2002, Pub. L. No. 107-204, 116 Stat. 745, USA. Public Company Accounting Reform and Investor Protection Act (SOX) (July 30, 2002)
COSO (1994) Internal Control – Integrated Framework, CSOTC, USA, (Retrieved December 1, 2007), http://www.coso.org/
Basel Committee on Banking Supervision: International Convergence of Capital Measure-ment and Capital Standards. Bank for International Settlements Press & communication, Basel (2004)
ISO, ISO/IEC 15504: Information Technology – Process Assessment: Part1 - Part5 (2003)
Yu, E., Mylopoulos, J.: Understanding “Why” in Software Process Modelling, Analysis, and Design. In: Proceedings of 16th International Conference on Software Engineering (1994)
Henderson, J.C., Venkatraman, N.: Strategic Alignment: Leveraging Information Technology for Transforming Organizations. IBM Systems Journal 38, 472–484 (2004)
Dardenne, A., van Lamsweerde, A., Fickas, S.: Goal Directed Requirements Acquisition. Science of Computer Programming 20, 3–50 (1993)
Thevenet, L.H., Salinesi, C.: Aligning IS to Organization’s Strategy: The InStAlMethod. In: Krogstie, J., Opdahl, A.L., Sindre, G. (eds.) CAiSE 2007 and WES 2007. LNCS, vol. 4495, pp. 203–217. Springer, Heidelberg (2007)
Barafort, B., Humbert, J.-P., Poggi, S.: Information Security Management and ISO/IEC 15504: the link opportunity between Security and Quality. In: Proc. Conf. SPICE 2006, Luxembourg (2006)
Valoggia, P., Di Renzo, B.: Assessment and Improvement of Firm’s Knowledge Management Capabilities by Using a KM Process Assessment Compliant to ISO/IEC 15504. A Case Study. In: Proc. Conf. SPICE 2007, Seoul, Korea (2007)
Rifaut, A., Di Renzo, B., Picard, B.,, M.: ISO/IEC 15504, a Basis for Generally Accepted Sound Process Models in Financial Institutions: A Case Study about Venture Capital Fund Management. In: Proc. Conf. SPICE 2008, Nuremberg (2008)
Rifaut, A., Picard, M., Di Renzo, B.: ISO/IEC 15504 Process Improvement to Support Basel II Compliance of Operational Risk Management in Financial Institutions. In: Proc. Conf. SPICE 2006, Luxembourg (2006)
Barafort, B., Renault, A., Picard, M., Cortina, S.: A Transformation process for Building PRMs and PAMs Based on a Collection of Requirements – Example with ISO/IEC 20000. In: SPICE 2008, Nuremberg, Germany (2008)
CMM® (2007): Capability Maturity Model for Software, Software Engineering Measurement and Analysis Initiative, Carnegie Mellon University, USA (Retrieved December 1, 2007), http://www.sei.cmu.edu/cmm
Rifaut, A., Dubois, E.: Using Goal-Oriented Requirements Engineering for Improving the Quality of ISO/IEC 15504 based Compliance Assessment Frameworks. In: Proc. IEEE Intl. Conf. On Requirements Engineering (RE 2008), Barcelona. IEEE Press, Los Alamitos (2008)
ISO, ISO/IEC 14662: Information Technology – Open EDI Reference Model (2004)
Breaux, T.D., Vail, M., Anton, A.: Towards Regulatory Compliance: Extracting Rights and Obligations to Align Requirements with Regulations. In: Proc. 14th IEEE International Requirements Engineering Conference (RE 2006), pp. 46–55. IEEE Press, Los Alamitos (2006)
Ghanavati, S., Amyot, D., Peyton, L.: Towards a Framework for Tracking Legal Compliance in Healthcare. In: Krogstie, J., Opdahl, A.L., Sindre, G. (eds.) CAiSE 2007 and WES 2007. LNCS, vol. 4495, pp. 218–232. Springer, Heidelberg (2007)
Karagianis, D., Mylopoulos, J., Schwab, M.: Business Process-Based Regulation Compliance: The Case of the Sarbanes-Oxley Act. In: Proc. 15th IEEE International Requirements Engineering Conference (RE 2007), pp. 315–321. IEEE Press, Los Alamitos (2007)
Lapouchnian, A., Yu, Y., Mylopoulos, J.: Requirements-Driven Design and Configuration Management of Business Processes. In: Alonso, G., Dadam, P., Rosemann, M. (eds.) BPM 2007. LNCS, vol. 4714, pp. 246–261. Springer, Heidelberg (2007)
Rifaut, A.: Goal-Driven Requirements Engineering for Supporting the ISO 15504 Assessment Process. In: Richardson, I., Abrahamsson, P., Messnarz, R. (eds.) EuroSPI 2005. LNCS, vol. 3792, pp. 151–162. Springer, Heidelberg (2005)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2008 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Grandry, E., Dubois, E., Picard, M., Rifaut, A. (2008). Managing the Alignment between Business and Software Services Requirements from a Capability Model Perspective. In: Mähönen, P., Pohl, K., Priol, T. (eds) Towards a Service-Based Internet. ServiceWave 2008. Lecture Notes in Computer Science, vol 5377. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-89897-9_15
Download citation
DOI: https://doi.org/10.1007/978-3-540-89897-9_15
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-89896-2
Online ISBN: 978-3-540-89897-9
eBook Packages: Computer ScienceComputer Science (R0)