Embed Size (px)
Citation preview
Risk Analysis in RFC 1149Alison Hawke / Director of QA
RFC 1149Our target system for risk analysis
“A Standard for the Transmission of IP Datagrams on Avian Carriers”
RFC 1149 was released for comment by the Internet Engineering Task Force on 1 April 1990.
What is risk analysis?What is a risk? Where do they lurk? How do you find them?
No code is 100% risk-free.
Assumptions are bad, especially ones you don’t know about.
Trade-off sliders, what does the client really care about?
Certain areas are inherently risky because they’re hard to get right.
Hygiene factors/detractors.
Assumptions and “unknown unknowns”How do you know what you know and what you don’t know?
“Reports that say that something hasn't happened are always interesting to me, because as we know, there are known knowns; there are things we know we know. We also know there are known unknowns; that is to say we know there are some things we do not know. But there are also unknown unknowns – the ones we don't know we don't know. And if one looks throughout the history of our country and other free countries, it is the latter category that tend to be the difficult ones.”
Donald Rumsfeld, US Secretary of Defense, Feb 12, 2012
Trade-off sliders and risk prioritizationWho cares, and about what? Why is this more important than that?
• What does the client care about most? Ask them, often.
• Will this feature lose the client money if it’s broken?
• Will this feature make the client look bad if it’s broken?
• Nonfunctional considerations are a risk
Some stuff is just difficultFebruary 29th, 2015 and other problems
https://twitter.com/kellan/status/11110460227
Some stuff is just difficult“GU2 5XH” is a valid UK postal code
• Dates, times, and time zones are complex.
• Names and addresses, especially global ones, are tricky.
• Math is hard, rounding errors happen, int’l currencies are difficult.
• If the user can enter data, the app is open to attack.
• Caching is hard, and horrible when it goes wrong.
• Nonfunctional considerations are a risk, e.g. system resources.
• What about security? Encryption? Privacy? Personally identifiable information?
Hygiene factors and other detractorsNo-one likes a dirty bathroom
If {X} is there, it provides little user satisfaction.
If {X} is missing or broken, it is a HUGE problem.
Examples:• Clean bathrooms.• Caching.• Performance.• Encryption and other security.• Session persistence.
![RFC Editor Tutorial -- “How to Write an RFC”xml.coverpages.org/IETF-RFC-Tutorial63-2005.pdf · 31 Jul 05 RFC Editor 7 RFCs RFC document series Begun by Steve Crocker [RFC 3] and](https://img.pdfslide.net/doc/110x75/5f32dade5b09150ccd3dbc58/rfc-editor-tutorial-aoehow-to-write-an-rfcaxml-31-jul-05-rfc-editor-7-rfcs.jpg)
