Trade-offs in continuous integration: Assurance, security, and flexibility

Michael Hilton; Nicholas Nelson; Timothy Tunnell; Darko Marinov; Danny Dig

doi:10.1145/3106237.3106270

Trade-offs in continuous integration: Assurance, security, and flexibility

Michael Hilton, Nicholas Nelson, Timothy Tunnell, Darko Marinov, Danny Dig

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Continuous integration (CI) systems automate the compilation, building, and testing of software. Despite CI being a widely used activity in software engineering, we do not know what motivates developers to use CI, and what barriers and unmet needs they face. Without such knowledge, developers make easily avoidable errors, tool builders invest in the wrong direction, and researchers miss opportunities for improving the practice of CI. We present a qualitative study of the barriers and needs developers face when using CI. We conduct semi-structured interviews with developers from different industries and development scales. We triangulate our findings by running two surveys. We find that developers face trade-offs between speed and certainty (Assurance), between better access and information security (Security), and between more configuration options and greater ease of use (Flexibility). We present implications of these trade-offs for developers, tool builders, and researchers.

Original language	English (US)
Title of host publication	ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering
Editors	Andrea Zisman, Eric Bodden, Wilhelm Schafer, Arie van Deursen
Publisher	Association for Computing Machinery
Pages	197-207
Number of pages	11
ISBN (Electronic)	9781450351058
DOIs	https://doi.org/10.1145/3106237.3106270
State	Published - Aug 21 2017
Event	11th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering, ESEC/FSE 2017 - Paderborn, Germany Duration: Sep 4 2017 → Sep 8 2017

Publication series

Name	Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering
Volume	Part F130154

Other

Other	11th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering, ESEC/FSE 2017
Country/Territory	Germany
City	Paderborn
Period	9/4/17 → 9/8/17

Keywords

Automated testing
Continuous integration

ASJC Scopus subject areas

Software

Online availability

10.1145/3106237.3106270

Library availability

Discover UIUC Full Text

Cite this

Hilton, M., Nelson, N., Tunnell, T., Marinov, D., & Dig, D. (2017). Trade-offs in continuous integration: Assurance, security, and flexibility. In A. Zisman, E. Bodden, W. Schafer, & A. van Deursen (Eds.), ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering (pp. 197-207). (Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering; Vol. Part F130154). Association for Computing Machinery. https://doi.org/10.1145/3106237.3106270

Trade-offs in continuous integration: Assurance, security, and flexibility. / Hilton, Michael; Nelson, Nicholas; Tunnell, Timothy et al.
ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering. ed. / Andrea Zisman; Eric Bodden; Wilhelm Schafer; Arie van Deursen. Association for Computing Machinery, 2017. p. 197-207 (Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering; Vol. Part F130154).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Hilton, M, Nelson, N, Tunnell, T, Marinov, D & Dig, D 2017, Trade-offs in continuous integration: Assurance, security, and flexibility. in A Zisman, E Bodden, W Schafer & A van Deursen (eds), ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering. Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering, vol. Part F130154, Association for Computing Machinery, pp. 197-207, 11th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering, ESEC/FSE 2017, Paderborn, Germany, 9/4/17. https://doi.org/10.1145/3106237.3106270

Hilton M, Nelson N, Tunnell T, Marinov D, Dig D. Trade-offs in continuous integration: Assurance, security, and flexibility. In Zisman A, Bodden E, Schafer W, van Deursen A, editors, ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering. Association for Computing Machinery. 2017. p. 197-207. (Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering). doi: 10.1145/3106237.3106270

Hilton, Michael ; Nelson, Nicholas ; Tunnell, Timothy et al. / Trade-offs in continuous integration : Assurance, security, and flexibility. ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering. editor / Andrea Zisman ; Eric Bodden ; Wilhelm Schafer ; Arie van Deursen. Association for Computing Machinery, 2017. pp. 197-207 (Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering).

@inproceedings{2fd634ad5dcf441a8b292cc272c1c958,

title = "Trade-offs in continuous integration: Assurance, security, and flexibility",

abstract = "Continuous integration (CI) systems automate the compilation, building, and testing of software. Despite CI being a widely used activity in software engineering, we do not know what motivates developers to use CI, and what barriers and unmet needs they face. Without such knowledge, developers make easily avoidable errors, tool builders invest in the wrong direction, and researchers miss opportunities for improving the practice of CI. We present a qualitative study of the barriers and needs developers face when using CI. We conduct semi-structured interviews with developers from different industries and development scales. We triangulate our findings by running two surveys. We find that developers face trade-offs between speed and certainty (Assurance), between better access and information security (Security), and between more configuration options and greater ease of use (Flexibility). We present implications of these trade-offs for developers, tool builders, and researchers.",

keywords = "Automated testing, Continuous integration",

author = "Michael Hilton and Nicholas Nelson and Timothy Tunnell and Darko Marinov and Danny Dig",

note = "tests whenever possible. That claim was supported by our survey; 11th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering, ESEC/FSE 2017 ; Conference date: 04-09-2017 Through 08-09-2017",

year = "2017",

month = aug,

day = "21",

doi = "10.1145/3106237.3106270",

language = "English (US)",

series = "Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering",

publisher = "Association for Computing Machinery",

pages = "197--207",

editor = "Andrea Zisman and Eric Bodden and Wilhelm Schafer and {van Deursen}, Arie",

booktitle = "ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering",

address = "United States",

}

TY - GEN

T1 - Trade-offs in continuous integration

T2 - 11th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering, ESEC/FSE 2017

AU - Hilton, Michael

AU - Nelson, Nicholas

AU - Tunnell, Timothy

AU - Marinov, Darko

AU - Dig, Danny

N1 - tests whenever possible. That claim was supported by our survey

PY - 2017/8/21

Y1 - 2017/8/21

N2 - Continuous integration (CI) systems automate the compilation, building, and testing of software. Despite CI being a widely used activity in software engineering, we do not know what motivates developers to use CI, and what barriers and unmet needs they face. Without such knowledge, developers make easily avoidable errors, tool builders invest in the wrong direction, and researchers miss opportunities for improving the practice of CI. We present a qualitative study of the barriers and needs developers face when using CI. We conduct semi-structured interviews with developers from different industries and development scales. We triangulate our findings by running two surveys. We find that developers face trade-offs between speed and certainty (Assurance), between better access and information security (Security), and between more configuration options and greater ease of use (Flexibility). We present implications of these trade-offs for developers, tool builders, and researchers.

AB - Continuous integration (CI) systems automate the compilation, building, and testing of software. Despite CI being a widely used activity in software engineering, we do not know what motivates developers to use CI, and what barriers and unmet needs they face. Without such knowledge, developers make easily avoidable errors, tool builders invest in the wrong direction, and researchers miss opportunities for improving the practice of CI. We present a qualitative study of the barriers and needs developers face when using CI. We conduct semi-structured interviews with developers from different industries and development scales. We triangulate our findings by running two surveys. We find that developers face trade-offs between speed and certainty (Assurance), between better access and information security (Security), and between more configuration options and greater ease of use (Flexibility). We present implications of these trade-offs for developers, tool builders, and researchers.

KW - Automated testing

KW - Continuous integration

UR - http://www.scopus.com/inward/record.url?scp=85030774508&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85030774508&partnerID=8YFLogxK

U2 - 10.1145/3106237.3106270

DO - 10.1145/3106237.3106270

M3 - Conference contribution

AN - SCOPUS:85030774508

T3 - Proceedings of the ACM SIGSOFT Symposium on the Foundations of Software Engineering

SP - 197

EP - 207

BT - ESEC/FSE 2017 - Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering

A2 - Zisman, Andrea

A2 - Bodden, Eric

A2 - Schafer, Wilhelm

A2 - van Deursen, Arie

PB - Association for Computing Machinery

Y2 - 4 September 2017 through 8 September 2017

ER -

Trade-offs in continuous integration: Assurance, security, and flexibility

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this