"Is it still Scrum if we use a kanban board instead of a burndown?"

"Is it still XP if we don't break things down into tasks but just use stories?"

Who the hell cares???

If we hope to excite people with the power of programming, we will do it with big ideas, not the placement of periods, spaces, keywords, and braces. We need to find ways so that students can solve problems and write programs by understanding the ideas behind them, using tools that get in the way as little as possible. No junk allowed. That may be through simpler languages, better libraries, or something else that I haven't learned about yet.

It's entirely possible that there's a detente to be reached between the copyists and the copyright holders: a set of rules that only try to encompass "culture" and not "industry." But the only way to bring copyists to the table is to stop insisting that all unauthorized copying is theft and a crime and wrong. People who know that copying is simple, good, and beneficial hear that and assume that you're either talking nonsense or that you're talking about someone else.

Your comments, as always, are welcome.

Cohesion Good. Coupling, Baaaaad!



It's great because it shuts up the newbie who asks the question -- he doesn't want to appear dumb, after all -- and it gets all of those in-the-know to nod their heads in approval. "Yep, that's right. He's got it. +1."

But no one benefits from the exchange. The newbie is still frustrated, while the professional doesn't give a second thought to the fact that he probably doesn't know what he means. He's just parroting back the advice that someone gave to him. It's not malicious or even conscious, but nobody is getting smarter as a result of the practice.

Maybe we think the words are intuitive enough. Coupling means that something is depending on something else, multiple things are tied together. Cohesion means ... well, maybe the person asking the question heard something about it in high school chemistry and can recall it has something to do with sticking together. Maybe they don't know at all.

Maybe, if they're motivated enough (and not that we've done anything to help in that department), they'll look it up:

Types of Cohesion and Coupling

Types of Cohesion

Coincidental cohesion (worst) is when parts of a module are grouped arbitrarily (at random); the parts have no significant relationship (e.g. a module of frequently used functions).

Logical cohesion is when parts of a module are grouped because they logically are categorised to do the same thing, even if they are different by nature (e.g. grouping all I/O handling routines).

Temporal cohesion is when parts of a module are grouped by when they are processed - the parts are processed at a particular time in program execution (e.g. a function which is called after catching an exception which closes open files, creates an error log, and notifies the user).

Procedural cohesion is when parts of a module are grouped because they always follow a certain sequence of execution (e.g. a function which checks file permissions and then opens the file).

Communicational cohesion is when parts of a module are grouped because they operate on the same data (e.g. a module which operates on the same record of information).

Sequential cohesion is when parts of a module are grouped because the output from one part is the input to another part like an assembly line (e.g. a function which reads data from a file and processes the data).

Functional cohesion (best) is when parts of a module are grouped because they all contribute to a single well-defined task of the module

Types of Coupling

Content coupling (high) is when one module modifies or relies on the internal workings of another module (e.g. accessing local data of another module). Therefore changing the way the second module produces data (location, type, timing) will lead to changing the dependent module.

Common coupling is when two modules share the same global data (e.g. a global variable). Changing the shared resource implies changing all the modules using it.

External coupling occurs when two modules share an externally imposed data format, communication protocol, or device interface.

Control coupling is one module controlling the logic of another, by passing it information on what to do (e.g. passing a what-to-do flag).

Stamp coupling (Data-structured coupling) is when modules share a composite data structure and use only a part of it, possibly a different part (e.g. passing a whole record to a function which only needs one field of it). This may lead to changing the way a module reads a record because a field, which the module doesn't need, has been modified.

Data coupling is when modules share data through, for example, parameters. Each datum is an elementary piece, and these are the only data which are shared (e.g. passing an integer to a function which computes a square root).

Message coupling (low) is the loosest type of coupling. Modules are not dependent on each other, instead they use a public interface to exchange parameter-less messages (or events, see Message passing).

No coupling [is when] modules do not communicate at all with one another.

What does it all mean?

The Wikipedia entries mention that "low coupling often correlates with high cohesion" and "high cohesion often correlates with loose coupling, and vice versa."

However, that's not the intuitive result of simple evaluation, especially on the part of someone who doesn't know in the first place.

In the context of the prototypical question about how to improve the structure of code, one does not lead to the other. By reducing coupling, on the face of it the programmer is going to merge unrelated units of code, which would also reduce cohesion. Likewise, removing unrelated functions from a class will introduce another class on which the original will need to depend, increasing coupling.

To understand how the relationships become inversely correlated requires a larger step in logic, where examples of the different types of coupling and cohesion would prove helpful.

Examples from each category of cohesion

Coincidental cohesion often looks like this:


In other words, the code is organized with no special thought as to how it should be organized. General helper and utility classes, God Objects, Big Balls of Mud, and other anti-patterns are epitomes of coincidental cohesion. You might think of it as the lack of cohesion: we normally talk about cohesion being a good thing, whereas we'd like to avoid this type as much as possible.

(However, one interesting property of coincidental cohesion is that even though the code in question should not be stuck together, it tends to remain in that state because programmers are too afraid to touch it.)

With logical cohesion, you start to have a bit of organization. The Wikipedia example mentions "grouping all I/O handling routines." You might think, "what's wrong with that? It makes perfect sense." Then consider that you may have one file:

IO.somelang
While logical cohesion is much better than coincidental cohesion, it doesn't necessarily go far enough in terms of organizing your code. For one, we've got all IO in the same folder in the same file, no matter what type of device is doing the inputting and outputting. On another level, we've got functions that handle both input and output, when separating them out would make for better design.

Temporal cohesion is one where you might be thinking "duh, of course code that's executed based on some other event is tied to that event." Especially considering the Wikipedia example:

a function which is called after catching an exception which closes open files, creates an error log, and notifies the user.

But consider we're not talking about simple the relationship in time. We're really interested in the code's structure. So to be temporally cohesive, your code in that error handling situation should keep the closeFile, logError, and notifyUser functions close to where they are used. That doesn't mean you'll always do the lowest-level implementation in the same file -- you can create small functions that take care of setting up the boilerplate needed to call the real ones.

It's also important to note that you'll almost never want to implement all of that directly in the catch block. That's sloppy, and the antithesis of good design. (I say "almost" because I am wary of absolutes, yet I cannot think of a situation where I would do so.) Doing so violates functional cohesion, which is what we're really striving for.

Procedural cohesion is similar to temporal cohesion, but instead of time-based it's sequence-based. These are similar because many things we do close together in time are also done in sequence, but that's not always the case. There's not much to say here. You want to keep the definitions of functions that do things together structurally close together in your code, assuming they have a reason to be close to begin with. For instance, you wouldn't put two modules of code together if they're not at least logically cohesive to begin with. Ideally, as in every other type of cohesion, you'll strive for functional cohesion first.

Communicational cohesion typically looks like this:


In other words, you're keeping functions together that work on the same data.

Sequential cohesion is much like procedural and temporal cohesion, except the reasoning behind it is that functions would chain together where the output of one feeds the input of another.

Functional cohesion is the ultimate goal. It's The Single Responsibility Principle [PDF] in action. Your methods are short and to the point. Ones that are related are grouped together locally in a file. Even files or classes contribute to one purpose and do it well. Using the IO example from above, you might have a directory structure for each device, and within it, a class for Input and one for Output. Those would be children of abstract I/O classes that implemented all but the device-specific pieces of code.

(I use inheritance terminology here only as a subject that I believe communicates the idea to others. Of course, you don't have to even have inheritance available to you to achieve the goal of keeping device agnostic code in one locale while keeping the device specific code apart from it).

Examples from each category of coupling

Content coupling is horrific. You see it all over the place. It's probably in a lot of your code, and you don't realize it. It's often referred to a violation of encapsulation in OO-speak, and it looks like one piece of code reaching into another, without regard to any specified interfaces or respecting privacy. The problem with it is that when you rely on an internal implementation as opposed to an explicit interface, any time that module you rely on changes, you have to change too:


What if data_member was really called num_times_accessed? Well, now you're screwed since you're not calculating it.

Common coupling occurs all the time too. The Wikipedia article mentions global variables, but this could be just a member in a class where two or more functions rely on it if you consider it. It's not as bad when its encapsulated behind an interface, where instead of accessing the resource directly, you do so indirectly, which allows you to change internal behavior behind the wall, and keeps your other units of code from having to change every time the shared resource changes.

An example of external coupling is a program where one part of the code reads a specific file format that another part of the code wrote. Both pieces need to know the format so when one changes, the other must as well.


Control coupling might look like:
Stamp coupling (Data-structured coupling) involved disparate pieces of code touching the same data structure in different ways. For example:


The two functions don't need the employee structure, but they rely on it and if it changes, those two functions have to change. It's much better to just pass the values and let them operate on that.

Data coupling is starting to get to where we need to be. One module depends on another for data. It's a typical function call with parameters:


Message coupling looks like data coupling, but it's even looser because two modules communicate indirectly without ever passing each other data. Method calls have no parameters, in other words.

No coupling, like Wikipedia says, is when "modules do not communicate at all with one another." There is no dependency from code A to code B.

Concluding Remarks

So how do we reconcile the thought that "if I separate code to increase functional cohesion, I introduce dependencies which is going to increase coupling" with the assertion that low coupling and high cohesion go hand in hand? To do that, you must recognize that the dependencies already exist. Perhaps not at the class level, but they do at the lines of code level. By pulling them out into related units, you remove the spaghetti structure (if you can call it that) and turn it into something much more manageable.



A system of code can never be completely de-coupled unless it does nothing. Cohesion is a different story. I can't claim that your code cannot be perfectly cohesive, but I can't claim that it can. My belief is it can be very close, but at some point you'll encounter diminishing returns on your quest to make it so.

The key takeaway is to start looking at your code and think about what you can do to improve it as you notice the relationships between each line you write start take shape.

Comments and corrections(!) are encouraged. What are your thoughts?

If you know where I can find the constants for file type numbers, that would be appreciated. Calling SaveAs without the type seems to use whatever version of Excel you are running, but I'd like to find how to save as CSV or other formats.

Needless to say, this requires Excel be on the computer that's running the code.


It's also posted in my Miscellany project at GitHub

I've certainly espoused that point of view. I'm fond of quoting Ron Jeffries as saying,

My advice is to do it by the book, get good at the practices, then do as you will. Many people want to skip to step three. How do they know?

In fact, I think that's the third time I've done so in almost as many years.

But what if that's not the primary benefit of reading other people's code? I don't mean scanning it - I mean reading it until you understand exactly what it's doing. Is there something else you can get out of it?

I think so. Perhaps it's not the mimicking of a particular style like a monkey that makes us better for reading code. What if it's tracing through an unfamiliar thought process that flexes the brain and makes it think in ways it previously had not?

By reading unfamiliar code and forcing yourself to trace through until you understand it, you end up thinking in ways that were previously foreign to you.



I think that's where the real value in reading code exists. What are your thoughts?

I've delivered most projects during this period on schedule, but I did cave into pressure to over-promise and under-deliver on one occasion. And it sucked.

When I wrote that rewarding heroic development promotes bad behavior, I said reducing the risk and uncertainty of project delivery is the subject of a different story, and the discussion in the comments got me thinking about this. There are many stories worth telling regarding this issue. The rest of this story is about how I'm intending to get out of my funk using techniques that have worked for me in the past.

(Aside: As I write the words below, it occurs to me we have a chicken/egg problem of which comes first. Just start somewhere.)

To make decent estimates there are 3 must-haves:

1. Historical data as to how much you can complete in a given time frame
2. Backlog of items you need to complete in the time frame you're wanting to estimate for
3. The ability to break requests into sweet, chunky, chewy, bite-sized morsels of estimable goodness.

Since you haven't been doing this ["ever", "in a while"][rand*2], you don't have historical data. Your backlog is anything on your table that hasn't been completed yet - so you've got that. Now, you need to break your backlog apart into small enough bits to estimate accurately. This way, you practice the third item and in a couple of weeks, you'll have historical data.

About estimating tasks: Don't worry about estimating in units of time. You're probably not good at it. Most of us aren't, and you haven't even given it a fair shot with some data to back up your claims. Measure in points or tomatoes. Provide your estimate in chocolate chips. The unit of measurement doesn't matter at this point, so pick something that makes you happy. However, you should stay away from units of time at this point in the exercise. You're not good at that, remember?

So I have some number of tasks that need to be completed. I write each of them down, and decide how many chocolate chips it's going to take me to finish each one. I count in Fibonacci numbers instead of counting numbers, because as tasks grow in time and complexity, estimates grow in uncertainty. I try to keep all of my tasks as 1, 2, or 3 chocolate chips. Sometimes I'll get up to a 5.

But if you start venturing into 8 and 13 or more, you're basically saying IDFK anyway, so you might as well be honest and bring that out into the open. Such tasks are more like Chewbaccas than chocolate chips, so take some time to think about how you might break them down as far as possible.


photo by Bonnie Burton found on starwarsblog photostream licensed CC Attribution 2.0 as of 5/21/2009

Now that you know how to estimate tasks: Before you start on a task -- with a preference to earlier rather than later (hopefully as soon as you know it needs to be done) -- estimate how many points it should take you, then write it down on your list of items to complete. Take note of how many chocolate chips you finish daily. Write down the number completed and the date.

Make a graph over time comparing the number of chocolate chips you have remaining (or how many you've completed) on the Y-axis and the date that applied to. If you use points remaining, it's a Burn Down chart. If you go the otherway, it's not surprisingly called a Burn Up chart.



Keep a log of the number of chips you complete per week. The last two or three weeks' averages are a good indication of how many you'll be able to do for the next few weeks, and helps planning for individuals spanning several projects, or teams on a single project.

You can now reference your chips per week to extrapolate how long it's likely to take you to finish a particular task or small project.

Further, you'll always want to know how many points you've got in your backlog and how many you need to complete by a given date. If you keep a log of due dates you can reference it and your points per weeks when someone asks you when you can have something done. Now, you can say "I can start on the 26th or you can rearrange the priorities on my current work and I can be done by the end of the day."

Any questions? As always, I'm happy to answer them.

The majority of these ideas are scrum-thought and I've used terms from that methodology, so if you want to go deeper, that would be a good place to look.

What is do you do for planning and estimation?

• How many of the three variables scope, time and cost can be fixed by the customer?
  Two. (See The 'Broken Iron Triangle' for a good discussion.)
  
  
• Who should make estimates for the effort of a project? Who is allowed to set the deadline?
  The team tasked with implementing the project should make the estimates. The deadline can be set by the customer if they forego choosing the cost or scope. There are cases where the team should set the deadline. One of these is if they are working concurrently on many projects, the team can give the deadline to management, with the knowledge that priorities on other projects can be rearranged if the deadline for the new project needs to be more aggressive than the team has time to work on it.
  
  Otherwise, I imagine management is free to set it according to organizational priorities.
  
  
• Do you prefer minimization of the number of releases or minimization of the amount of work-in-progress?
  I generally prefer to minimize the amount of work on the table, as it can be distracting to
  
  
• Which kind of diagrams do you use to track progress in a project?
  I've tended to return to the burndown chart time after time. Big visible charts has some discussion of different charts that can be used to measure various metrics of your project.
  
  
  
  
• What is the difference between an iteration and an increment?
  Basically, an iteration is a unit of work and and increment is a unit of product delivered.
  
  
• Can you explain the practice of risk management? How should risks be managed?
  I don't know anything about risk management formally, but I prefer to to deal with higher risk items first when possible.
  
  
• Do you prefer a work breakdown structure or a rolling wave planning?
  I have to be honest and say I don't know what you're talking about. Based on the names, my guess would be that "work breakdown structure" analyzes what needs to be done and breaks it into chunks to be delivered in a specific order, whereas rolling wave may be more like do one thing and then another, going with the flow.
  
  Wikipedia shows what I had in mind about WBS, while pmcrunch.com has info on RWP. After reading about RWP I realized that I had already known about it - it was just buried deep in my memory.
  
  In any case, I would think like most everyone else that I'd prefer the work breakdown structure, but it's unrealistic in most projects (repetitive projects could use it very successfully, for instance). Therefore, I'll take the rolling wave over WBS please.
  
  
• What do you need to be able to determine if a project is on time and within budget?
  Just the burndown chart, if it's been created out of truthful data.
  
  
• Can you name some differences between DSDM, Prince2 and Scrum?
  I'm not at all familiar with Prince2, so I can't talk intelligently about it. DSDM is similar to Scrum in that both stress active communication with and involvement of the customer, as well as iterative and incremental development. I'm not well versed in DSDM, but from what little I've heard, it sounds a bit more prescriptive than Scrum.
  
  I'd suggest reading the Wikipedia articles to get a broad overview of these subjects - they are decent starters. It would be nice if there were a book that compared and contrasted different software development methodologies, but in the absence of such a book, I guess you have to read one for each.
  
  
• How do you agree on scope and time with the customer, when the customer wants too much?
  Are they willing to pay for it? If they get too ridiculous, I'd just have to tell them that I can't do what they're asking for and be able to pay my developers. Hopefully, there would be some convincing that worked before it came to that point, since we don't want to risk losing customers. However, I must admit that I don't have any strategies for this. I'd love to hear them, if you have some.
  
  There are a couple of stories you can tell:
  1. about 9 women having one baby in just one month. (Fred Brooks)
  2. about your friend with an interesting first date philosophy (Venkat Subramaniam)
  
  

How would you answer these questions about project management?

In the case of sport, one might also make that argument against the lesser players in favor of the ones who regularly make the highlight reel: their greatness lets them get just a tad closer, which allows them to make the play.

In the case of software development, that case is not so easily made.

When developers have to stay up all night and code like zombies on a project that may very well be on a death march, you've got a problem, and it's not solely that your project might fail. Even when that super heroic effort saves the project, you've still got at least three issues to consider:

• Was the business side too eager to get the project out the door?
• Are the developers so poor at estimating that it led to near-failure?
• Is there a failure of communication between the two sides?

In saving the project, the spectacular effort and performance of your team or individuals on your team is not something to be marveled at - it's a failure whose cause needs to be identified and corrected.

Handing out bonuses is a nice way to show appreciation for their heroic efforts, but it encourages poor practices by providing disincentives for doing the right thing:

• No incentive to make good estimates.
• Incentive to give in to distrations since they "can always just stay late"
• No reason not to have a foggy head half the day
• A motive for waiting until the last minute, just to show off their prowess

Handing out bonuses to the individuals who displayed the most heroism brings friction and resentment from those who opted to sleep (especially among those who realize half the work was created by the heroes!). Yet, having only part of the team on board with the near-death march causes the same resentment from the sleepless hackers.

Rewards encourage repetition of the behavior that led to the prize. When you do that, you're putting future projects in peril.

There are plenty of ways to reduce the risk and uncertainty of project delivery - and subtantially fewer tend to work when you wait until the last week of a project - but those methods are the subjects of other stories.

What are your thoughts?

(A disclaimer for you: I read this book as a reviewer and haven't yet made the time to go through the finished product, so some of what I'm about to say may change. That said, I can only imagine that it got better before going to publication, so I don't expect anyone would be disappointed.)

The Passionate Programmer retains that status of being a must-read. It adds a few new chapters and removes a couple of others, but more importantly it changes the framing from the negative view of "save your job" to what My Job Went to India was always really about anyway: "creating a remarkable career in software development."

Here's what I had to say about it for the blurb:

Six short months before I read Chad's book, I was on the verge of changing careers. Through a series of accidents from November to May, I decided not only to stick with software development but to be passionate about it while striving to be great. With a healthy dose of inspiration, the book you're now holding served as a road map for achieving those goals.

It truly is an excellent map that helped me find my way from Quit Town to making the decision to be passionate about hacking and life in general, starting this blog, and striving to leave the realm of the unclean masses in our profession whose exploits we read about so often.

If you read MJWTI and understood the positive aspects of it, this book isn't that important since you know most of it already. I'd have purchased it anyway, but you may feel differently. That's Okay.

However, if you felt you'd be embarrassed if someone saw you holding the first version - or just haven't read it before - I strongly recommend picking up a copy of this version and going through it. Don't just read it though - apply it. At the end of every chunk of advice there is a list of activities that you can perform. Don't just gloss over them; make it a point to actually do some of them.

It's short enough to read through in one or two sittings. But there's enough content in there to keep you busy for a couple of years.

If you've read this book or the 1^st edition, what did you think about it? Am I overenthusiastic?

I look forward to covering the new chapters as time allows over the next few weeks. I hope you'll join me in the discussion.

• Do you know what a baseline is in configuration management? How do you freeze an important moment in a project?
  A baseline in configuration management is the same as a baseline anywhere else - some place which serves as a starting point or point we can return to to compare one point in time to another.
  
  Freezing an important moment in a project to me sounds like creating a new major or minor version - so I may make a new tag in the version control system.
  
  
• Which items do you normally place under version control?
  I can't think of anything I'd not put under version control aside from user-specific project settings and files created while executing the software (like logs, for instance) that are always likely to cause change conflicts between different developers.
  
  
  
  
• How can you make sure that team members know who changed what in a software project?
  Give everyone separate accounts to access the VCS. Some people like to keep a change log at the top of each file, but I think that gets ignored and becomes useless.
  
  
• Do you know the differences between tags and branches? When do you use which?
  A tag is for a static snapshot, a branch is intended for development outside the trunk.
  
  
• How would you manage changes to technical documentation, like the architecture of a product?
  I'd put them in VCS along with the rest of the project. I have to say though - I'm not sure I understand what this question is really asking.
  
  
• Which tools do you need to manage the state of all digital information in a project? Which tools do you like best?
  This is another question which I'd need prodding to give a more useful answer. My favorite would be a VCS, but what else exists? Are we talking about using Wikis and bug/issue trackers? Are we talking about using Excel to create spreadsheets to manage burndown charts and make predictions as to project completion dates? Are we talking about using Word to manage user documentation?
  
  I'm unsure.
  
  
• How do you deal with changes that a customer wants in a released product?
  I mainly deal in web development, so in that case we just make the change and re-deploy the web application. In desktop applications, I've only ever released projects to customers who will be using it on so few machines that coming up with an automatic update strategy would have been a waste of resources.
  
  If it was the right project, I'd have it do a call to a central server that looks for updates, and perform the updates automatically. In that case, we just make the updates and set a flag when a customer wants a change to a released product.
  
  
  
  
• Are there differences in managing versions and releases?
  As with so many things in software development, the answer depends on how you view versions and releases. If you view a release as the deliverable to customers and a version as a concept to get you there, then the answer is undeniably yes.
  
  If you view versions and releases as the same things, then perhaps not so much.
  
  Do you have multiple versions between releases? There are many questions to ask here, and I certainly don't have all the answers. Personally, I see them as a combination of the two views I mentioned above: the version is the version of the code that we tag at certain points in time. The release happens in tandem, but it is the deliverable we give to clients - so they differ in the way we manage them, because it's not simply an issue of "commit->version->release." I'd love to get there, but I'm not close yet.
  
  
• What is the difference between managing changes in text files vs. managing changes in binary files?
  diff is much less useful in highlighting differences in binary files than it is in text files (at least as far as the person running the diff is concerned). It is much harder to manage conflicting changes in binary files as a result.
  
  
• How would you treat simultaneous development of multiple RfC's or increments and maintenance issues?
  I fear I don't understand what this question is asking. RfC == Request for Comments? What does that have to do with increments and maintenance issues? Any advice as to what you think this question means is truly appreciated.
  
  

Reading through and answering these questions has made one thing very clear to me: I'm stuck in the middle of the forest and I'm only seeing the trees. I don't have a strategy when it comes to configuration management and version control. I use it, because I know I should, and it has some benefits. However, focusing only on the tactical side means I'm not getting as much out of it as I could.

How would you answer these questions about configuration management?

Domain code in controllers and views isn't a problem that's limited to Rails, of course. It's a problem everywhere, and one you generally need to remain vigilant about. Rails doesn't make it easy by making it easy - it's much too easy to do the wrong thing.

You've got the view open and think, "I need to get a list of Widgets."

<% widgets = Widget.find(:all, :conditions=>["owner=?",session[:user_id]]) %>

That was easy, and it's even easier in controllers where you don't have the hassle of angled brackets and percent signs. Worse yet, since you've got what you need right there, it's easy to add more logic around it. Before you know it, your views and controllers are cluttered with a bunch of crap that shouldn't be there.

I fall into the trap more often than I'd like to admit. And I know it's wrong. What of those who haven't a clue?

To combat this syndrome, I created a Rails plugin called FindFail that makes ActiveRecord::Base#find private. FindFail results in less business logic in your views and controllers because it forces you to open a model and add a method. Since you're already in the right place, you may as well stay there. It makes it hard to do the wrong thing, and contributes to making it easier to do the right thing.

It preys on your laziness that way.





It's only one line of useful code, but it can help keep the rest of your code clean.

This is my Quality is Dead hypothesis: a pleasing level of quality for end users has become too hard to achieve while demand for it has simultaneously evaporated and penalties for not achieving it are weak. The entropy caused by mindboggling change and innovation in computing has reached a point where it is extremely expensive to use traditional development and testing methods to create reasonably good products and get a reasonable return on investment. Meanwhile, user expectations of quality have been beaten out of them. When I say quality is dead, I don't mean that it's dying, or that it's under threat. What I mean is that we have collectively- and rationally- ceased to expect that software normally works well, even under normal conditions. Furthermore, there is very little any one user can do about it.

I haven't figured out yet exactly how I'm going to use this, but it'll probably look like this: one new beat per day, one new track per weekend. One new app per month, one milestone on the app per week. The goal is not to establish a far-off goal and find a way to hit it, but to establish a series of tiny, immediate goals that keep you forever moving forward. Aristotle argued that virtue was mostly a matter of having good habits; Lao-Tzu tells us that the voyage of a million miles starts with a single step. So the key is to get moving and keep moving.

But in computer games, it's impossible to have an equal match. It's humans versus machines. One side has an advantage of being able to perform a billion calculations per second, and the other has the massively parallel human brain.

Any parity here is an illusion, and it's that illusion that we seek to improve and maintain via the introduction of intelligent mistakes and artificial stupidity.

The computer has to throw the game in order to make it fun. When you beat the computer, it's an illusion. The computer let you win. We just want it to let you win in a way that feels good.

• What kind of tools are important to you for monitoring a product during maintenance?
  I rely on logs and profiling tools on occasion. I'm really interested to hear from the rest of you about this though.
  
  
• What is important when updating a product that is in production and is being used?
  I'd say it's important not to interrupt service. Surely there must be something else you're getting at?
  
  
• How do you find an error in a large file with code that you cannot step through?
  cout, puts, printf, System.Out.print, Console.Out.WriteLine, and ## have all been useful for me at one time or another.
  
  A good strategy here is to isolate the code that's causing the error by removing code and faking results. By doing that, you can slowly add code back in until the error reappears. Rewrite that part.
  
  
• How can you make sure that changes in code will not affect any other parts of the product?
  Regression tests!
  
  
• How do you create technical documentation for your products?
  Ideally I'd have comments that can be harvested by tools like RDoc or JavaDoc, but times are often less than ideal.
  
  
  
  
• What measures have you taken to make your software products more easily maintainable?
  See my answers to the questions about technical design. Also, having unit tests helps handily.
  
  
• How can you debug a system in a production environment, while it is being used?
  You can read logs if important events are being logged. Profiling tools exist for this purpose, but I don't have experience with any outside of those for use with databases.
  
  
• Do you know what load balancing is? Can you name different types of load balancing?
  One computer acts as the gatekeeper for an array of computers and directs requests to the others to "balance the load" of the entire system.
  
  I'm not familiar with different types, but just guessing I'd assume they have round-robin and need-based load balancing. I'd also presume any other scheduling algorithmic scheme could be applied in load balancing.
  
  I'm more interested to know why this is on the maintenance list of questions. Is it because you've deployed your application and now you need to scale it with hardware?
  
  
• Can you name reasons why maintenance of software is the biggest/most expensive part of an application's life cycle?
  One view is that after you write the first line of code, you begin maintenance. But more in-line with the popular view: it lasts the longest. You may take a month to build a system that will be in production over several years. During that time, defects are found that need to be fixed, business rules may change, or new features may be added.
  
  Also, we suck at writing software.
  
  
  
  
• What is the difference between re-engineering and reverse engineering?
  I didn't know this one. I thought and would have responded that re-engineering would be rebuilding an application with a white box, while reverse engineering would be done through a black box.
  
  According to Wikipedia, who is never wrong,

  The reengineering of software was described by Chikofsky and Cross in their 1990 paper, as "The examination and alteration of a system to reconstitute it in a new form". Less formally, reengineering is the modification of a software system that takes place after it has been reverse engineered, generally to add new functionality, or to correct errors.
  
  This entire process is often erroneously referred to as reverse engineering; however, it is more accurate to say that reverse engineering is the initial examination of the system, and reengineering is the subsequent modification.

How would you answer these questions about software maintenance?

There are two disparate pieces of knowledge they can hope to glean from my answer to that question:

1. Does she concentrate on a single item well enough to finish it? In this case, they are asking the opposite of what they want to find out. The trick relies on the reviewer to give an honest opinion, whereas most people would assume they should answer each question in the affirmative. Because the rest of the questions seem straightforward, I'd give this potential "real question" a low probability of being what they really want to know.
   
   
2. Is the candidate able to juggle multiple different projects and work effectively? I give this one the higher probability of being the question the employer really wants the answer to. But it's a ridiculous question. On the one hand, you already know the job candidate has successfully completed two levels of college, so it should be clear that they can handle multiple different projects given the appropriate resources. On the other hand, I don't think they care about the "appropriate resources" part. I think they're setting their employees up to fail because they don't understand that

   Multitasking can result in time wasted due to human context switching and apparently causing more errors due to insufficient attention.

Is "multitasking ability" just code for unable to accomplish anything because you require employees to work on so many different projects in parallel that progress cannot be made on any of them?

What's your opinion?

Update: John G. Miller (or someone claiming to be him) is author of a book and has asserted trademark rights to a phrase originally used in this article, so I've removed it.

• Do you know what a regression test is? How do you verify that new changes have not broken existing features?
  You answered the second part of the question with the first: you run regression tests to ensure that new changes have not broken existing features. For me, regression tests come in the form of already written tests, especially unit tests that I've let turn into integration tests. However, you could write a regression test before making a new change, and it would work as well.
  
  The point is that you want to have some tests in place so that when you inevitably make changes, you can ensure they didn't cascade throughout the system introducing bugs.
  
  
• How can you implement unit testing when there are dependencies between a business layer and a data layer?
  Generally I'd let that unit test become an integration test. But if the time to run the tests was becoming too long, I'd build a mock object that represented the data layer without hitting the database or file system, and that would be expected to decrease the running time significantly.
  
  
• Which tools are essential to you for testing the quality of your code?
  I don't know if anything is essential. If you've got asserts or throws, you can always implement testing yourself, and a good eye for bad code helps as well. That said, to reduce psychological barriers to testing, it would be nice to have tools already made for this purpose.
  
  Luckily, we have such tool available: unit testing frameworks and static code analysis tools in your language of choice.
  
  
• What types of problems have you encountered most often in your products after deployment?
  Most recently I've encountered very specific integration errors, and written about some ideas on fixing the polysystemic testing nightmare.
  
  
• Do you know what code coverage is? What types of code coverage are there?
  Generally I'd thought it refers to the percentage of code covered by tests. I don't know what the second question here refers to, as I thought it referred exclusively to testing.
  
  
• Do you know the difference between functional testing and exploratory testing? How would you test a web site?
  I have to admit that before being asked this question, I wouldn't have thought about it. My guess is that functional testing refers to testing the expected functionality of an application, whereas exploratory testing involves testing without knowing any specific expectations.
  
  As far as testing a web site, I'll have plenty of unit tests, some acceptance tests, perhaps some in Selenium or a similar offering, as well as load testing. These aren't specific to web apps, however, except for load testing in most cases.
  
  I'm very interested in feedback here, given my misunderstanding of the question. If you can offer it, let me thank you in advance.
  
  
• What is the difference between a test suite, a test case and a test plan? How would you organize testing?
  A test suite is made up of test cases. I'm not sure what a test plan is, aside from the obvious which the name would suggest. As far as organizing testing: I tend to organize my unit tests by class, with the method they test in the same order they exist within that class.
  
  
• What kind of tests would you include for a smoke test of an ecommerce web site?
  Again, here's another where I didn't know the terminology, so having to ask would result in demerits, but knowing the answer of "what is a smoke test?" allows us to properly answer the question:

  In software testing, a smoke test is a collection of written tests that are performed on a system prior to being accepted for further testing.

  
  
  In that case, I'd click around (or more likely, write an application that could be run many times that does the same thing, or use that application to write Selenium tests) looking for problems. I'd fill out some forms, and leave others blank. Ideally, it would all be random, so as to find problems with the specs as often as possible without actually testing all the specs, since the point seems to be to give us a quick way to reject the release without doing full testing.
  
  
• What can you do reduce the chance that a customer finds things that he doesn't like during acceptance testing?
  The best thing to do is to use incremental and iterative development that keeps the customer in the loop providing feedback before you get down to acceptance testing. Have effective tests in place that cover his requirements and ensure you hit those tests. When you come across something you know won't pass muster, address it even though it might not be a formal requirement.
  
  There are undoubtedly underhanded ways to achieve that goal as well, but I'm not in the habit of going that direction, so I won't address them here.
  
  
• Can you tell me something that you have learned about testing and quality assurance in the last year?
  Again I'm going to reference my polysystemic testing nightmare, because it taught me that testing is extremely hard when you don't have the right tools at your disposal, and that sometimes, you've got to create them on your own.
  
  

As far as reading goes, I'd start with literature on TDD, as it's the most important yet underused as far as I'm concerned.

What advice would you give?

Ramit Sethi wrote a guest post on personal finance blog Get Rich Slowly about passive barriers that got me thinking about passive barriers in software development, or perhaps just any easily destroyed (or erected barrier) that prevents you from doing something useful (or stupid). One example he uses that comes up a lot in my own work references email:

I get emails like this all the time:

"Hey Ramit, what do you think of that article I sent last week? Any suggested changes?"

My reaction? "Ugh, what is he talking about? Oh yeah, that article on savings accounts ... I have to dig that up and reply to him. Where is that? I'll search for it later. Marks email as unread"

Note: You can yell at me for not just taking the 30 seconds to find his email right then, but that's exactly the point: By not including the article in this followup email, he triggered a passive barrier of me needing to think about what he was talking about, search for it, and then decide what to reply to. The lack of the attached article is the passive barrier, and our most common response to barriers is to do nothing.

(Bold emphasis is mine).

If I can't immediately answer an email, it gets put on hold until I have time to go through and do the research that I need to do to give a proper reply. Sometimes, that means your email never gets answered because eventually I look down at the receipt date and say to myself "I guess it'd be stupid to respond now." But I digress.

In everyday software development, there are a number of barriers that can help us:

• Minimizing or closing the browser. When a compilation is expected to take up to a minute, or a test suite will run for too long, or a query takes forever, there's not much work that can be done, so I might fire up the feed reader, email, or twitter to pass the time away. The problem here is that you'll often spend far longer on your excursion than it takes for your process to complete. If you waste just 5 minutes each time, you've accomplished nothing - you're just skimming and certainly not getting anything out of it, and you could have been back working on what you were trying to accomplish. In these situations, I have my email, feed reader, and twitter minimized, and that significantly reduces the urge to open them up and start a side quest.
  
  If you wanted to get more to the active side of barriers, you might just add the line

  127.0.0.1	reddit.com

  to your hosts file. That turns a passive barrier to time waste into a downright pain.
  
  
• Having a test suite with continuous integration and code analysis tools running. At various points in a day you might be tempted to check in code that breaks the build or introduces a bug. This is especially true at the end of the day. However, if you have a test suite that runs on every commit, you're much more likely to run it to avoid the embarrassment of checking in bad code. If you've got static analysis tools that also report on potentially poor code, you're less likely to write it.
  
  
• Annoyance Driven Development. This isn't one that I know how to turn on or off, but I think it would be a great feature to have in IDEs or text editors: it gets slow when your methods or classes or files get too big. This would be a great preventative tool, if it exists. I guess it falls back to using test suites and code analysis to provide instant feedback that annoys you into doing the right thing.
  
  
• Working with others, or having others review your code. Most of us pay more attention to quality when we know others will be looking at the code we write. Imagine how much more of your code you'd be proud to show off if you just knew that someone would be looking at it later.
  
  

Just as well, there are also barriers that hinder us:

• Interruptions. This one is obvious, but so pervasive it should be mentioned. IM, telephone calls, email, coworkers stopping by to chat or ask questions - they all prevent us from working from time to time. The easy answer is to close these things, and that's what I do. They all represent passive barriers to getting work done, and you can easily turn that around to be a passive barrier against wasting time (see above). Pair programming is an effective technique that erects its own barrier to these time wasters.
  
  If you're really looking for something to help you focus, I'd have a look at The Pomodoro Technique, which divides your work into tomato time units of 25 minutes each, which really helps you focus on work. It's agile for time management. (The Pomodoro Technique PDF book is available for free.)
  
  
• Rotting Design: Rigidity, Fragility, Immobility, and Viscosity. Bob Martin discusses these in his (PDF) article on Design Principles and Design Patterns. Quoting him for the descriptions, I'll leave it to you to read for the full story:

  Rigidity is the tendency for software to be difficult to change, even in simple ways. Every change causes a cascade of subsequent changes in dependent modules. What begins as a simple two day change to one module grows into a multi- week marathon of change in module after module as the engineers chase the thread of the change through the application.
  ...
  Closely related to rigidity is fragility. Fragility is the tendency of the software to break in many places every time it is changed. Often the breakage occurs in areas that have no conceptual relationship with the area that was changed. Such errors fill the hearts of managers with foreboding. Every time they authorize a fix, they fear that the software will break in some unexpected way.
  ...
  Immobility is the inability to reuse software from other projects or from parts of the same project. It often happens that one engineer will discover that he needs a module that is similar to one that another engineer wrote. However, it also often happens that the module in question has too much baggage that it depends upon. After much work, the engineers discover that the work and risk required to separate the desirable parts of the software from the undesirable parts are too great to tolerate. And so the software is simply rewritten instead of reused.
  ...
  Viscosity comes in two forms: viscosity of the design, and viscosity of the environment. When faced with a change, engineers usually find more than one way to make the change. Some of the ways preserve the design, others do not (i.e. they are hacks.) When the design preserving methods are harder to employ than the hacks, then the viscosity of the design is high. It is easy to do the wrong thing, but hard to do the right thing.

  The point is that poor software design makes an effective barrier to progress. There are only two ways I know to tear down this wall: avoid the rot, and make a conscious decision to fix it when you know there's a problem. There are plenty of ways to avoid the rot, but books are devoted to them, so I'll leave it alone except to say a lot of the agile literature will point you in the right direction.
  
  
  
  
• Unit Tests. I struggled with the idea of putting this on here or not. If you're an expert, you already know this. If you're a novice or lazy, you'll use it as an excuse to avoid unit testing. The point remains: unit testing can be a barrier to producing software, if you are exploring new spaces and having trouble determining test cases for it. I'll let the Godfather of TDD, Kent Beck, explain:

  ... I still didn't have any software. As with any speculative idea, the chances that this one will actually work out are slim, but without having anything running, the chances are zero. In six or eight hours of solid programming time, I can still make significant progress. If I'd just written some stuff and verified it by hand, I would probably have the final answer to whether my idea is actually worth money by now. Instead, all I have is a complicated test that doesn't work, a pile of frustration, eight fewer hours in my life, and the motivation to write another essay.

These are just a few examples, so I'm interested in hearing from you. What barriers have you noticed that positively affect your programming? Negatively?

• How would you implement the structure of the London underground in a computer's memory?
  Without having travelled to London or on its subway system, I'd guess a graph would be the right data structure. The set of vertices would represent the stations, and the edges connecting them would be the tracks.
  
  Not safe for work (language):
  
  
  I don't know the proper in-memory representation of tramps.
  
  
• How would you store the value of a color in a database, as efficiently as possible?
  Efficiently for retrieval speed, storage speed, size? I'm guessing size. After asking why such efficiency is needed, and assuming we're talking about a range of up to 16⁶ colors (FFFFFF), I'd just store it as the smallest integer type where it would fit.
  
  
• What is the difference between a queue and a stack?
  A queue is typically FIFO (priority queues don't quite follow that) while a stack is LIFO. Elements get inserted at one end of a queue and retrieved from the other, while the insertion and removal operations for a stack are done at the same end.
  
  
• What is the difference between storing data on the heap vs. on the stack?
  The stack is smaller, but quicker for creating variables, while the heap is limited in size only by how much memory can be allocated. Stack would include most compile time variables, while heap would include anything created with malloc or new. (This is for C/C++, and not strictly the case.)
  
  
• How would you store a vector in N dimensions in a datatable?
  I need a little direction for this question, as I know not what it means. I encourage my readers, who have on most occasions proven themselves more adept than me, to come through again.
  
  
• What type of language do you prefer for writing complex data structures?
  I can't imagine using anything higher level than C or C++. Anything more advanced has most anything already built and not very easily molded. Or perhaps I just wouldn't think of it as complex.
  
  
• What is the number 21 in binary format? And in hex?
  10101 in binary and 15 in hex, and no I didn't cheat and use a calculator. It works just like decimal. Take the following digits of an arbitrary number in base B:
  
  UVWXYZ
  
  The number in decimal is U*B5 + V*B4 + W*B3 + X*B2 + Y*B1 + Z*B0
  
  As more digits are added, you just increase the power by which it is raised. Also note that any number raised to the zeroth power is 1, so the Z element is just itself, and the ones digit.
  
  
• What is the last thing you learned about data structures from a book, magazine or web site?
  As with my answer to this question with regard to algorithms, I'm certain I've used to web for reference here, but I'd guess my introduction and original knowledge acquisition came from a book.
  
  However, I would add journal article to the list of answers, because in both cases that would have been my answer, even though I read them via the web.
  
  
• How would you store the results of a soccer/football competition (with teams and scores) in an XML document?
  
  

  <fixtures>
    <fixture>
      <team name="Chelsea FC">
  	<score>0</score>
      </team>
      <team name="Fulham FC">
  	<score>1</score>
  	<!-- any other stats? -->
      </team>
    </fixture>
  </fixtures>
  

  
  That might be reasonable.
  
  
• Can you name some different text file formats for storing unicode characters?
  I have to be honest here and say I don't know what you're talking about. I can't think of a file format that wouldn't take it.
  
  

Again the reading material is similar to last week:

1. The Art of Computer Programming series by Donald Knuth
2. Wikipedia's list of data structures is another good place to start.
3. Perhaps a book or resource on data modeling, since there were XML and DB questions.

What advice would you give?

If you need to authenticate before seeing the WSDL, you'll need this patch: