master-thesis
/
mar
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 16 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
111 Commits
10 Branches
9.1MB
Tree: e97238781d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e97238781d'
${ noResults }
mar/content/analysis.tex

373 lines
30KB
Raw Blame History 

  1. %&tex

  2. \chapter{Design Plan}

  3. \label{chap:analysis}

  4. The goal of this chapter is to define a concrete design plan that is used in the case study.

  5. All of the steps in the design plan must be specific such that each of these steps can be evaluated after the case study is finished.

  6. The previous chapter introduced how two design methods are combined to form the basis of the design plan.

  7. 

  8. The design plan consists of two parts:

  9. The first part is the Preliminary System Design and contains the linear set of steps from problem description to feature definition.

  10. The second part is the Development Cycle, which contains the features selection, variable-detail approach and rapid development cycle.

  11. 

  12. \section{Preliminary Phase}

  13.     The goal of the preliminary design phase is to create a set of features for the design solution.

  14.     Although these design steps in \ac{se} play a crucial roll in the success of the development, they are, however, very exhaustive.

  15.     A major part of this complete design process is the required documentation to ensure agreement about the design between the different stakeholders.

  16.     Resulting in a process that can take months or even years, which is not feasible for this thesis.

  17. 

  18.     In this thesis, this design plan is only used for evaluation and has only one stakeholder, the author.

  19.     This allows for a simple implementation of the \ac{se} approach, as it not possible to create a false start due to misunderstanding, saving valuable time.

  20. 

  21.     The first three steps of the preliminary phase are based on the \ac{se} approach by \textcite{blanchard_systems_2014}.

  22.     As the evaluation of \ac{se} is not in the scope of this thesis, this chapter only covers the minimal description of the design steps in \ac{se}.

  23.     These three steps deliver requirements and an initial design. 

  24.     The last two steps define the set of features and tests based on these deliverables.

  25. 

  26.     \subsection{Problem Description}

  27.         Before any design process can start, the "problem" has to be described.

  28.         In other words, why is the function of the system needed?

  29.         This is described in a \emph{statement of the problem}.

  30.         In this statement of the problem it is important to describe "what" has to be solved, not directly "how".

  31.         \textcite{blanchard_systems_2014} also note that "defining the problem is often the most difficult part of the process".

  32.         It is important to ensure good communication and understanding between the different stakeholders.

  33.         Otherwise, it is possible that the designed product is not up to the customers expectations.

  34.         It furthermore involves defining the subjects like what are the primary and secondary functions? When must this be accomplished? What is not a function?

  35.         For this thesis, however, the problem definition is limited to a short statement of the problem, covering some required functions with corresponding requirements.

  36. 

  37.     \subsection{System Requirements}

  38.         The system requirements are derived from the problem definition, and describe the characteristics of the system.

  39.         As these characteristics form the foundation of the system, the requirements must be defined without any ambiguity, vagueness or complexity.

  40.         The requirements are written according to the \ac{ears} \autocite{mavin_easy_2009}.

  41.         \ac{ears} was chosen for this design method due to its simplicity, which fits the scope of this thesis.

  42.         Later in the design, these requirements are distributed over the subsystems.

  43.         Any issues, like ambiguity, in the requirements, propagate through these subsystems.

  44.         This might lead to a redesign of multiple sub-systems when these requirements have to be updated.

  45. 

  46.     \subsection{Initial Design}

  47.         \label{sec:se_initial_design}

  48.         In the initial design step, the "what has to be solved", is expanded with a solution on "how it is solved".

  49.         To find the best solution it is important to explore the different solutions and design space.

  50.         Often, there are many possible alternatives but they must be narrowed down to the solutions that fit within the schedule and available resources.

  51.         The best alternative is materialized in a design document together with the system requirements.

  52.         This design document is used in the next phase of the design.

  53. 

  54. %\section{Rapid Iterative Design Method}

  55. %    From this point, the design plan is based on the \ac{ridm} and not anymore on the waterfall model.

  56. %    The first step is the feature definition, which prepares the required features based on the initial design.

  57. %    The features are defined by splitting the system in such a way that the results of each implemented feature are testable.

  58. %    The definition of the feature contains a description and a set of sub-requirements which is used to implement and test the feature.

  59. %    During the feature definition, the dependencies, risks and time resources are determined as well, this establishes the order of implementation in the feature selection step.

  60. %

  61. %    Based on the requirements of \ac{ridm} as explained in \autoref{chap:background}, the next step is the feature selection.

  62. %    However, it became apparent that the number of tests related to a specific feature is a good metric for the selection step.

  63. %    Because, at the point that a feature is implemented, the tests are completed as well, and when the tests of the complete system pass, the system meets the requirements.

  64. %    Following the \ac{ridm}, these tests are specified at the start of the rapid development cycle.

  65. %    This makes it impossible to use the tests during the feature selections.

  66. %    Therefore, a test protocol step is added after the feature definition and before the feature selection step.

  67. %

  68. %    The third step is the feature selection, where one of the features is selected. 

  69. %    This selection is based on the dependencies, tests, risk, and time requirements in the feature definitions.

  70. %    The fourth step is the rapid development cycle, which uses the sub-requirements and description of the selected feature to create an initial design and a minimal implementation.

  71. %    In the last step, the variable-detail approach is used to add detail to the minimal implementation over the course of multiple iterations.

  72. %    The tests are used to determine if the added detail does not introduce any unexpected behavior.

  73. %    This cycle of adding detail and testing is repeated till the feature is fully implemented.

  74. %    From this point, the \ac{ridm} is repeated from the third step until all features are implemented.

  75. 

  76. \subsection{Feature Definition}

  77.     \label{sec:featuredefinition}

  78.         During the feature definition step, the initial design is split into features as preparation for the rapid development cycle and the variable-detail approach.

  79.         The \ac{ridm} does not provide a particular approach to define the features of the design.

  80.         But, the goal is to have features that can be implemented and tested individually.

  81.         The approach in this design plan aims to provide a more guided and structured way to split the features.

  82.         \begin{marginfigure}

  83.             \centering

  84.             \includegraphics[width=21mm]{graphics/robmosys_levels.pdf}

  85.             \caption{Hierachical structure of functions and components. Each arrow represents a many-to-many relation.}

  86.             \label{fig:robmosys_levels}

  87.         \end{marginfigure}

  88.         

  89.         The approach to define features in this design plan is based on the separation of levels principle \autocite{noauthor_robmosys_2017}.

  90.         This principle defines different levels of abstraction.

  91.         This starts from the top with the \emph{mission}, for example, serving coffee.

  92.         Followed by less abstract levels such as: a \emph{task} to fill the coffee mug; a \emph{skill} to hold that mug; and a \emph{service} allows the hand to open or close.

  93. 

  94.         The different levels allow the features to be split multiple times in a structured way.

  95.         Take the coffee serving example, to fill the coffee mug, it is not sufficient to only hold the mug.

  96.         The system also has to pour coffee into the mug, and maybe add sugar or milk.

  97.         This results in a hierarchical tree of functions as shown in \autoref{fig:robmosys_levels}.

  98.         Each of the levels have a many-to-many relation with each other.

  99. 

  100.         With this approach, features are defined top-down and are implemented bottom-up.

  101.         Thus a \emph{skill} is defined as one or more \emph{services}.

  102.         When all the \emph{services} are implemented, they are combined into a \emph{skill}.

  103.         The advantage of this is that the \emph{skill} defines a milestone to combine the relevant \emph{services}.

  104.         Or looking at the example: the system must at least be able to grab, stir, and pour before it can fill a mug with coffee, milk and sugar.

  105. 

  106.         Another advantages is that multiple \emph{skills} can have a \emph{service} in common.

  107.         This would be the case if our system also needs to serve tea. The system can already hold a mug and only needs the ability to add a teabag.

  108.         Even though there is no exact level of abstraction required for each of the features, it does create a structure for the developer.

  109.         In the end, the developer must rely on its engineering judgement to chose the optimal division between features.

  110. 

  111.         The bottom level of the hierarchy is a special case as it describes hardware instead of functions.

  112.         The components are used to execute the functionality of the system with.

  113.         For example, having a mobile robot arm near a coffee machine does meet the hardware requirements, it does not have any functionality if that is not yet implemented.

  114.         This also creates a clear division for the developer as the functions cannot be mixed with the hardware.

  115. 

  116. %        

  117. %

  118. %

  119. %        

  120. %

  121. %        

  122. %        

  123. %

  124. %        

  125. %    

  126. %

  127. %        As explained in the previous chapter, the goal of the \ac{ridm} is to get feedback on the design as early as possible. 

  128. %        To achieve this, the design is split into features, and each feature is implemented and tested sequentially.

  129. %        Resulting in smaller development cycles that are tested individually.

  130. %        If a feature fails its test it occurs directly after its implementation, instead of when the full system is implemented.

  131. %        The goal of this step is to apportion the system into features.

  132. %        Each feature must be small but independent, meaning that the feature can still be individually implemented and tested.

  133. %

  134. %        In some cases it is not possible to define a feature that can be implemented and tested independently.

  135. %        This occurs when the feature is dependent on the implementation of other features.

  136. %        This dependency can occur in requirements where, for example, strength of one feature limits the mass of another feature.

  137. %        Such a dependency can work both ways and can be resolved by strengthening one feature, or reduce the mass of the other feature.

  138. %        Another type of dependency is when the implementation influences other features.

  139. %        In this case, if the implementation of one feature changes, it requires a change in the other features.

  140. %        An example of this is a robot arm, where the type of actuation strongly influences the end-effector.

  141. %        When the robot arm approaches an item horizontally, it requires a different end-effector than approaching the item vertically.

  142. %

  143. %    \subsubsection{Feature Hierarchy}

  144. %        

  145. %

  146. %        

  147. %

  148. %

  149. %        %%%%%%%% ->

  150. %        There are two important responsibilities for the developer when the design encounters feature dependency.

  151. %        The first one is that the developer must determine where to split the system.

  152. %

  153. %        In case of a dependency, the developer must evaluate the optimal order of implementation.

  154. %        The developer must arrange the dependency of the features such that the influence on the dependent feature is as small as possible.

  155. %        In other words, if feature A can be easily adapted to the implementation of feature B, but not the other way around, the developer must go for A dependent on B.

  156. %        The second responsibility is organizing the feature requirements.

  157. %        Due to these dependencies it is possible that the division of requirements changes, because the result of the implemented feature was not as expected.

  158. %        This is not directly a problem, but a good administration of the requirements makes an update of these requirements easier. 

  159. %

  160. %        

  161. %        

  162. %

  163. %

  164. %

  165. %

  166. %    To achieve these short cycles, the features that are implemented in these cycles, are as small as possible. 

  167. %    However, the features must still be implemented and tested individually during the implementation and can thus not be split indefinitely.

  168. %    Together with the definition of the features, the requirements are divided along the features as well.

  169. %    The optimal strategy on splitting features and requirements is strongly dependent on the type of system.

  170. %    Therefore, the best engineering judgement of the developer the best tool available.

  171. %

  172. %    In some cases it is not possible to define a feature that can be implemented and tested independently.

  173. %    This occurs when the feature is dependent on the implementation of other features.

  174. %    This dependency can occur in requirements, where strength of one feature dictates the maximum mass of another feature.

  175. %    Such a dependency can work both ways and can be resolved by strengthening the one feature, or reduce the weight of the other feature.

  176. %    Another type of dependency is when the implementation influences other features.

  177. %    In this case, if the implementation of one feature changes, it requires a change in the other features.

  178. %    An example of this is a robot arm, where the type of actuation strongly influences the end-effector.

  179. %    When the robot arm approaches an item horizontally, it requires a different end-effector than approaching the item vertically.

  180. %

  181. %    There are two important responsibilities for the developer when the design encounters feature dependency.

  182. %    The first one is during the definition, where the developer has to decide on how to split the system and how the dependency is stacked.

  183. %    For the requirement and the implementation dependency the developer must evaluate the optimal order of dependency.

  184. %    The developer must arrange the dependency of the features such that the influence on the dependent feature is as small as possible.

  185. %    In other words, if feature A can be easily adapted to the implementation of feature B, but not the other way around, the developer must go for A dependent on B.

  186. %    The second responsibility is organizing the feature requirements.

  187. %    Due to these dependencies it is possible that the division of requirements changes, because the result of the implemented feature was not as expected.

  188. %    This is not directly a problem, but a good administration of the requirements makes an update of these requirements easier. 

  189. 

  190. \subsection{Test protocol}

  191.     \label{sec:systemtesting}

  192.     During the rapid development cycle and the variable-detail approach, the system is tested constantly.

  193.     This is to make sure that the design still performs as expected.

  194.     The tests are based on the requirements.

  195.     Each requirements must be covered with at least one test.

  196.     The tests consist of a description which specifies how to perform the test and what the result of the test must of must not be.

  197.     Together with the description, there is a list of required features to perform the test and a list of requirements that are met if the test passes.

  198. 

  199. \section{Development Cycle}

  200.     The development cycle consists of three steps, which are repeated for each individual feature.

  201.     These three steps form the core of the \ac{ridm}.

  202.     This starts with selecting the feature that is to be implemented, which then is implemented with the rapid development and variable-detail approach.

  203. 

  204. \subsection{Feature Selection}

  205.     \label{sec:feature_selection}

  206.     The goal of this section is to improve the features selection criteria of the \ac{ridm}

  207.     The \ac{ridm} states that critical features, those with a high \emph{\ac{cof}}, must be implemented first.

  208.     If a critical feature fails, it is at the start of the design process, thereby invalidating only a portion of the design process.

  209.     Features that are (time) expensive to implement, must be implemented as late as possible.

  210.     These expensive features have a high \emph{Cost of Change} and placing them at the end of the development avoids making changes to the features.

  211.     

  212.     The \emph{\acl{cof}} and \emph{Cost of Change} are a good starting point for selection criteria.

  213.     However, this creates an interesting situation for features with both a high change of failure and a high cost of change.

  214.     The rest of this section provides a structured approach for feature selection.

  215.     

  216.     An example that shows the importance of the order of features is the development of a car.

  217.     To have a critical damped suspension in a car, the weight distribution of the car must be known.

  218.     If the suspension of the car is designed before all the features that determine the weight distribution, it is likely that the suspension design is not up to requirements.

  219.     Resulting in a redesign of the suspension feature and thus increasing the overall development cost.

  220.     This example is caused by the dependency between different features.

  221.     \begin{marginfigure}

  222.         \centering

  223.         \includegraphics[width=2.9cm]{graphics/feature_dependency.pdf}

  224.         \caption{Dependency graph for features.}

  225.         \label{fig:feature_dependency}

  226.     \end{marginfigure}

  227.     \begin{table*}[]

  228.         \caption{Comparison of features with their corresponding \ac{cof} and time. 

  229.         The last column is the \ac{cof} value divided by the number of days.}

  230.     \label{tab:feature_selection}

  231.     \begin{tabular}{l|r|r|r|r|r|}

  232.     \cline{2-6}

  233.                           & \multicolumn{1}{l|}{Dependees} & \multicolumn{1}{l|}{Tests} & \multicolumn{1}{p{0.13\paperwidth}|}{\acl{cof} (\acs{cof})} & \multicolumn{1}{l|}{Time} & \multicolumn{1}{p{0.13\paperwidth}|}{Change of Failure over time} \\ \hline

  234.     \multicolumn{1}{|l|}{Feat. A} & 2 (B, C)                       & 2                          & 15 \%                     & 3  days                   & 5                                  \\ \hline

  235.     \multicolumn{1}{|l|}{Feat. B} & 0                              & 3                          & 40 \%                     & 5  days                   & 8                                  \\ \hline

  236.     \multicolumn{1}{|l|}{Feat. C} & 1 (E)                          & 5                          & 25 \%                     & 2  days                   & 12.5                               \\ \hline

  237.     \multicolumn{1}{|l|}{Feat. D} & 0                              & 4                          & 15 \%                     & 1  day                    & 15                                 \\ \hline

  238.     \multicolumn{1}{|l|}{Feat. E} & 0                              & 4                          & 45 \%                     & 6  days                   & 7.5                                \\ \hline

  239.     \end{tabular}

  240.     \end{table*}

  241. 

  242.     To determine the order of implementation of features, a dependency graph and a comparison table is made.

  243.     The dependency graph and the comparison table for a theoretic system is shown in \autoref{fig:feature_dependency} and \autoref{tab:feature_selection} respectively.

  244.     In general the dependency of the features is inherited from the hierarchical structure that is made in the feature definition step.

  245. 

  246.     The comparison table has a dependees column, that describes the number of features that are depending on that specific feature, and are derived from the dependency graph.

  247.     The tests column describes the number of tests that are covered by implementing this feature.

  248.     These tests are defined during the initial design and the feature definition, the number represents the amount of tests that pass after implementation of the feature.

  249. 

  250.     The \ac{cof} per time score is calculated by dividing the \ac{cof} score with the time score.

  251.     The \ac{cof} score indicates the likeliness of unforeseen difficulties during the implementation of the feature.

  252.     The time score is an estimation about the required time for implementation.

  253.     This time score is strongly connected with the \emph{Cost of change}, but for readability I chose to refer to time instead.

  254.     Due to the limited scope of this thesis, it is not possible to give a good metric for determining \ac{cof} and time.

  255.     Nevertheless, it is strongly advised that the developer defines some metric that fits his project best.

  256. 

  257.     It seems logic to always implement the feature with the highest \ac{cof}, but it is possible that the combined \ac{cof} of multiple features is higher for the similar time investment.

  258.     This is visible in \autoref{tab:feature_selection}: In a time span of 6 days it is possible to implement feature E or features A, C, and D.

  259.     The \ac{cof} for E is 45 \% which is significantly less than the combined 65 \%\footnote{This is not a valid approach to calculate the combined chance, but suffices for the goal of this example.} of A, C and D.

  260. 

  261.     With a completed comparison table, the order of implementation for the features is determined by the following rules:

  262.     \begin{enumerate}

  263.         \item Features that are dependencies of others must be implemented first.

  264.         \item Features that complete more system test than other features when implemented have priority.

  265.         \item Features with the higher \emph{\ac{cof} per time} score than other features have priority.

  266.     \end{enumerate}

  267.     The rules are applied in order. 

  268.     If one rule reduces the set to a single feature, the rest of the rules are skipped.

  269.     The third rule is a sorting rule, and the feature that fits best is implemented.

  270.     In case of a draw or in special cases the developer decides what feature to implement next.

  271. 

  272.     Looking at an example of 5 features:

  273.     As shown in \autoref{fig:feature_dependency}, features B and C depend on feature A;

  274.     feature D does not have any dependency connections;

  275.     and feature E is dependent on C.

  276.     Together with the information in \autoref{tab:feature_selection}, the order of implementation is:

  277.     \begin{description}

  278.         \item[Feature A:] has two features that are dependent on this feature, more than any other.

  279.         \item[Feature C:] has one feature that is dependent on this feature, most dependees after A is implemented.

  280.         \item[Feature D:] has the same number of tests as E, but D has a significant higher \ac{cof} per time score than E

  281.         \item[Feature E:] has the most number of tests.

  282.         \item[Feature B:] only one left to be implemented.

  283.     \end{description}

  284.     Note that this example assumes that nothing changes.

  285.     In case of a feature not being feasible during the implementation, the design has to be reviewed.

  286.     This also means that the dependency graph and comparison table change, possibly resulting in a different order of implementation.

  287. 

  288. \subsection{Rapid Development}

  289. Each iteration of this rapid development cycle implements one complete feature.

  290. The feature that is implemented is selected in the prior feature selection step.

  291. The goal of this step is to lay the foundation for the development of the feature.

  292. This foundation consists of a basic model, a set of detail elements and a list of tests.

  293. The set of detail elements is a collection of design aspects that are added to increase the detail during the next design step.

  294. These detail elements can represent behavior, parasitic elements, or components.

  295. How these detail elements are implemented and what the basic model consists of is based on the initial design of the selected feature.

  296. 

  297. The initial design of the feature is similar to the system-wide approach in \autoref{sec:se_initial_design}.

  298. It consists of a design space exploration, but with more detail, which is possible as the feature is significantly smaller than the complete system.

  299. From the design space exploration, the developer selects the optimal design choice for the current feature.

  300. For this design choice, a design document is made that illustrates the rough shape and dynamics of the implementation.

  301. 

  302. The basic model and the detail elements are based on an initial design of the feature.

  303. The basic model consists of only the most basic elements of the design.

  304. As the basic elements that make the basic model differ strongly per system, there is not a specific approach.

  305. In general, the basic elements should only represent dominant and essential behavior of the system.

  306. A good starting point for the dominant behavior is to identify the interesting energy states of the system.

  307. The energy states of interest can include the energy states that are dominant, but also the states that are chosen by the developer.

  308. These last states could represent the output states or status that have to be measured.

  309. In the end, the developer decides which states are required and implements them in the basic model.

  310. All the elements that are part of the initial design but are not part of the basic model are classified as the detail elements.

  311. 

  312. Lets take a motorized double inverted pendulum for example, which consists of two arms with motorized joints.

  313. Both pendulum arms are dominant energy states.

  314. The electrical motors have also internal states, but store significantly less energy than the pendulum arms.

  315. An basic model would in this case only consists of the arms, possibly even without any dynamic behavior.

  316. The dynamic behavior, motor characteristics, resistance, or gravitational force are examples of detail elements to be added to increase the detail.

  317. 

  318. \subsection{Variable-Detail Approach}

  319. With the variable-detail approach the basic model is developed into a refined model of the feature.

  320. This is done by adding the detail elements over the course of multiple iterations.

  321. Each iteration produces a new model with more detail than the previous.

  322. The newly added detail is evaluated by performing the tests that were defined during the rapid development cycle.

  323. \begin{figure}

  324.     \centering

  325.     \includegraphics[width=8.5cm]{graphics/test_flow_graph.pdf}

  326.     \caption{Decision flowchart to follow for failed tests on each detail level.

  327.     Decision tree starts at the top left rectangle.

  328.     Depending on the questions, the next step of action is to continue with the design or review the design.}

  329.     \label{fig:test_flow_graph}

  330. \end{figure}

  331. Not all tests are expected to succeed from the start, as not all details are implemented.

  332. For example, if the internal resistance of a electric motor is not yet implemented in the model, the motor can draw unlimited current, and this would exceed the maximum current draw of the system.

  333. The decision flowchart in \autoref{fig:test_flow_graph} determines whether the design must be reviewed or can continue on a failed test.

  334. The decisions are made with the following questions:

  335. \begin{description}

  336.     \item[Passed Before?] The current test of the current design failed, but was there a previous detail level where it passed?

  337.     \item[Expected to fail?] Does the test fail as a direct result from the added detail and was that intentional?

  338.     \item[Expected to pass?] Should the added detail to the model result in a pass of the test?

  339.     \item[Will pass in future?] Is there an element to be implemented that results in a pass of the test?

  340. \end{description}

  341. In the case that the implementation of a detail element fails multiple times, the developer has to investigate if implementing the feature is still feasible.

  342. This could result in a redesign of the feature or system.

  343. When and how this decision has to be made differs per situation and is outside the scope of this thesis.

  344. The developer must evaluate if there are feasible alternatives left for this element, feature or system, and apply these alternatives if possible.

  345. 

  346. When all detail elements are implemented; all tests pass; and the basic model has evolved into a refined model of the feature, the design cycle moves back to the feature selection.

  347. In the case that this is the last feature to implement, this concludes the development.

  348. 

  349. \section{Summary of Design Plan}

  350. \begin{marginfigure}

  351.     \centering

  352.     \includegraphics[width=6cm]{graphics/design_flow_analysis.pdf}

  353.     \caption{Combined design plan, based on the \ac{se} and \ac{ridm} approach.}

  354.     \label{fig:design_plan_analysis}

  355. \end{marginfigure}

  356. The steps from \ac{se} and the \ac{ridm} are combined to create the design plan as shown in \autoref{fig:design_plan_analysis}.

  357. The first five steps of the design process form the preparation phase: problem description, requirements, initial design, feature definition, and test protocol.

  358. The initial design step creates a holistic design based on the prior problem description and requirements step.

  359. The last step of the preparation is the feature definition, where the initial design is split into different features.

  360. The resulting initial design and its features together form the design proposal for the development steps.

  361. The last step of the preparation phase is the test protocol step, where the tests are defined to monitor the design process and validate that the system meets the requirements.

  362. The development cycle consists of the feature selection, rapid development, and variable-detail steps.

  363. These three steps are applied to each feature in the system individually.

  364. 

  365. With each iteration of the development cycle a new feature is added to the complete system.

  366. All the tests of the individual features are performed in the complete system as well.

  367. This ensures that the one feature does not break a another feature.

  368. The design is finished when all the features are implemented, tested and combined.

  369. 

  370. In the optimal situation the preparation phase is only performed once at the start of the design, and the development cycle is performed for each feature.

  371. However, if features prove to be infeasible, some steps have to be revisited.