ISO/IEC 12207

Information technology - Software life cycle processes

This standard provides an architecture for the life cycle of software and a complete framework for the acquisition , supply, development, operation and maintenance of software. In addition the standard contains a framework for managing, controlling and improving the software life cycle activities.

Information regarding ISO/IEC 12207 is provided under the following headings:

the target audience
the scope of the standard
an abstract of its contents

Audience

The audience for this standard is:

organizations acquiring a system that contains software or a stand-alone software product
software products suppliers
organizations involved in operation and maintenance of software.

Scope

The importance of software as an integral and necessary part of many products and systems requires a common international framework for specifying the best practices for software processes, activities and tasks.

Abstract

The ISO/IEC 12207 groups the activities that may be performed during the life cycle of software into:

primary processes (acquisition process, supply process, development process, operation process, maintenance process)

supporting processes (documentation process, configuration management process, quality assurance process, verification process, validation process, joint review process, audit process, problem resolution process)

organizational processes (management process, infrastructure process, improvement process, training process).

For each of the processes the included activities and tasks are detailed defining specific responsibilities; outputs of activities/tasks are also identified.

It must be noted that this standard does not imply any specific life cycle model.

The processes of ISO/IEC 12207 form a comprehensive set. An organization, depending on its purpose, can select an appropriate subset to fulfill that purpose. In addition all activities should be selected and tailored proportional to the scope, size, complexity and criticality of the software product and of the organization itself.

The most relevant processes from a quality point of view are the: Quality assurance process, verification process, validation process, joint review process, audit process and problem resolution process. Moreover the standard highlights process internal evaluations conducted during all day-to-day activities. The adaptation of ISO/IEC 12207 by ANSI/IEEE/EIA in the USA is in progress.