Log In Sign Up

Compliance Requirements in Large-Scale Software Development: An Industrial Case Study

by   Muhammad Usman, et al.

Regulatory compliance is a well-studied area, including research on how to model, check, analyse, enact, and verify compliance of software. However, while the theoretical body of knowledge is vast, empirical evidence on challenges with regulatory compliance, as faced by industrial practitioners particularly in the Software Engineering domain, is still lacking. In this paper, we report on an industrial case study which aims at providing insights into common practices and challenges with checking and analysing regulatory compliance, and we discuss our insights in direct relation to the state of reported evidence. Our study is performed at Ericsson AB, a large telecommunications company, which must comply to both locally and internationally governing regulatory entities and standards such as GDPR. The main contributions of this work are empirical evidence on challenges experienced by Ericsson that complement the existing body of knowledge on regulatory compliance.


page 1

page 2

page 3

page 4


How to Integrate Security Compliance Requirements with Agile Software Engineering at Scale?

Integrating security into agile software development is an open issue fo...

Using Process Models to understand Security Standards

Many industrial software development processes today have to comply with...

Robotics Software Engineering: A Perspective from the Service Robotics Domain

Robots that support humans by performing useful tasks (a.k.a., service r...

An Empirical Investigation on the Challenges Faced by Women in the Software Industry: A Case Study

Addressing women's under-representation in the software industry, a wide...

Are we there yet? Understanding the challenges faced in complying with the General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR), enforced from 25th May...

Integration of Security Standards in DevOps Pipelines: An Industry Case Study

In the last decade, companies adopted DevOps as a fast path to deliver s...