Page 1 of 313
Abstract: In large scale agile systems development, the lack of a unified requirements engineering (RE) process is a major challenge, exacerbated by the absence of high level guiding principles for effective requirements management. To address this challenge, we conducted a five year longitudinal case study with Grundfos AB, in collaboration with the Software Centre in Sweden. RE principles were first deriv...
Abstract: The proliferation of resource-constrained Internet-of-Things (IoT) and Industrial IoT (IIoT) devices has intensified the need for local, intelligent cybersecurity solutions that do not rely on cloud connectivity. This paper presents a TinyML-based Intrusion Detection System (IDS) framework designed for embedded edge controllers. Two machine-learning IDS models — a Convolutional Neural Network (CNN...
Abstract: As software applications get increasingly connected and complex, cybersecurity becomes more and more important to consider during development and evaluation. Software engineers need to be aware of various security threats and the countermeasures that can be taken to mitigate them. Currently, there is a lack of guidance for software engineers aiming to develop secure web applications. We conducted ...
Abstract: We explore the concept of folklore within software engineering, drawing from folklore studies to define and characterize narratives, myths, rituals, humor, and informal knowledge that circulate within software development communities. Using a literature review and thematic analysis, we curated exemplar folklore items (e.g., beliefs about where defects occur, the 10x developer legend, and technical...
Abstract: In the last column, we promised to return to one of the inevitable challenges that vibe coding leaves us with. At the AI Engineer World’s Fair 2025, OpenAI’s Sean Grove claimed that whoever writes the specification is now the programmer since AI can take it from there. Sounds amazing, but what gets lost along the way? To explore this, I’m joined by Jan-Philipp Steghöfer, a researcher at XITASO and...
Abstract: : Informal diagrams created in general-purpose diagramming tools are widely used in software architecture because they are quick to produce and easy to share. However, the lack of constraints in such tools often yields inconsistent notations and ad-hoc conventions, which in turn invite misinterpretation when diagrams are read outside their original context. Dedicated modeling languages and environ...
Abstract: Context: The state-of-the-art and practice on software quality is growing constantly and presents several challenges. The ever-growing body of knowledge on the topic, obfuscates the situation further, the lack of explicit structure makes it difficult to identify which properties exist today and how they can be evaluated, two critical aspects to increase software quality. Objective: A step to disam...
Abstract: : Software-intensive systems are characterized by intricate interactions, distributed structures, and ongoing evolution posing notable challenges for traceability, change analysis, and decision support. Modeling and versioning practices are widely used to manage this complexity; however, in practice, they are often fragmented, limiting the value that organizations can derive from them. To address ...
Abstract: With this paper, we introduce RESTifAI, an LLM-driven approach for generating reusable, CI/CD ready REST API tests, following the happy-path approach. Unlike existing tools that often focus primarily on internal server errors, RESTifAI systematically constructs valid test scenarios (happy paths) and derives negative cases to verify both intended functionality (2xx responses) and robustness against...
Abstract: Quality assurance for large-scale cyber-physical systems relies on sophisticated test activities using complex test environments investigated with the help of numerous types of simulators. As these systems grow, extensive resources are required to develop and maintain simulation models of hardware and software components, as well as physical environments. Meanwhile, recent advances in generative A...
Abstract: While the integration of Artificial Intelligence (AI) and Internet of Things (IoT) is rapidly increasing, there is no general framework for assessing the intelligence level of AI-enabled IoT systems. However, assessing the intelligence level of Artificial Intelligence of Things (AIoT) systems, e.g., their ability to make predictions, take autonomous decisions or to provide decision support, is cru...
Abstract: We extend the Benamou-Brenier formula from classical optimal transport to weak optimal transport and show that the barycentric optimal transport problem studied by Gozlan and Juillet has a dynamic analogue. We also investigate a martingale relaxation of this problem, and relate it to the martingale Benamou-Brenier formula of Backhoff-Veraguas, Beiglb\"ock, Huesmann and K\"allblad....
Page 1 of 313