ISO/IEC 29110-5-1-2:2025

International
Standard
ISO/IEC
29110-5-1-2
First edition
Systems and software
2025-02
engineering — Life cycle profiles for
very small entities (VSEs) —
Part 5-1-2:
Software engineering guidelines for
the generic Basic profile
Reference number
© ISO/IEC 2025
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
© ISO/IEC 2025 – All rights reserved
ii
Contents Page
Foreword .iv
Introduction .vi
1 Scope . 1
2 Normative references . 1
3  Terms and definitions . 1
4  Naming, diagramming and definitions conventions . 8
4.1 General .8
4.2 Naming, diagramming and definition conventions .8
4.3 Abbreviated terms .10
5 Overview .11
5.1 General .11
5.2 Entry conditions to use the software Basic profile .11
5.3 Processes and activities of the software Basic profile .11
6 Project management (PM) process .12
6.1 PM process purpose . 12
6.2 PM process outcomes . 12
6.3 PM roles involved . 13
6.4 PM activities and tasks. 13
6.4.1 Overview of the PM process . 13
6.4.2 PM activities .14
6.4.3 Incorporation to project repository . 22
7 Software implementation (SI) process .22
7.1 SI process purpose . 22
7.2 SI process outcomes . 23
7.3 SI Roles involved . 23
7.4 SI activities and tasks . 23
7.4.1 Overview of the SI process . 23
7.4.2 SI activities .24
7.4.3 Incorporation to the project repository . 35
8 Description of roles .36
9 Description of work products .37
10 Software tools .51
10.1 General .51
10.2 Project management process tools.51
10.3 Software implementation process tools .51
Annex A (informative)  Support process for the software Basic profile .53
Annex B (informative)  Additional testing tasks to the software Basic profile .62
Annex C (informative)  Accessibility tasks to the software Basic profile . 74
Annex D (informative)  Security addition for the software engineering Basic profile .82
Annex E (informative)  Deployment packages for the software Basic profile .90
Bibliography .92

© ISO/IEC 2025 – All rights reserved
iii
Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that are
members of ISO or IEC participate in the development of International Standards through technical
committees established by the respective organization to deal with particular fields of technical activity.
ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations,
governmental and non-governmental, in liaison with ISO and IEC, also take part in the work.
The procedures used to develop this document and those intended for its further maintenance are described
in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the different types
of document should be noted. This document was drafted in accordance with the editorial rules of the ISO/
IEC Directives, Part 2 (see www.iso.org/directives or www.iec.ch/members_experts/refdocs).
ISO and IEC draw attention to the possibility that the implementation of this document may involve the
use of (a) patent(s). ISO and IEC take no position concerning the evidence, validity or applicability of any
claimed patent rights in respect thereof. As of the date of publication of this document, ISO and IEC had not
received notice of (a) patent(s) which may be required to implement this document. However, implementers
are cautioned that this may not represent the latest information, which may be obtained from the patent
database available at www.iso.org/patents and https://patents.iec.ch. ISO and IEC shall not be held
responsible for identifying any or all such patent rights.
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and expressions
related to conformity assessment, as well as information about ISO's adherence to the World Trade
Organization (WTO) principles in the Technical Barriers to Trade (TBT) see www.iso.org/iso/foreword.html.
In the IEC, see www.iec.ch/understanding-standards.
This document was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology,
Subcommittee SC 7, Software and systems engineering.
This first edition replaces the ISO/IEC TR 29110-5-1-2:2011, which has been technically revised.
The main changes are as follows:
— Many task statements have been reworded to facilitate their understanding.
— Conditional tasks have been added to develop optional work products (e.g. operation guide) that have
been requested by a customer. This notation replaces the ‘Optional’ notation [e.g. *(optional)] used in the
TR that caused ambiguities.
— Terms have been added to Clause 3 such that this document is self-contained.
— A few terms have been modified to align this document with the updated version of standards such as
the ISO/IEC/IEEE 12207 and the ISO/IEC/IEEE 15289.
— Texts have been added for giving additional information intended to assist the understanding or use of
the text of the document.
— Annex A has been added to describe a process, which can be added to the software Basic profile, to
enable VSEs to support the software product which they developed.
— Annex B has been added to describe a set of tasks which can be added to the software Basic profile for
VSEs with the aim to better support software testing.
— Annex C has been added to describe a set of tasks, which can be added to the software Basic profile, to
enable VSEs to add accessibility tasks to the software implementation process.
— Annex D has been added to describe a set of tasks which can be added to the Basic profile to integrate
security related tasks.
© ISO/IEC 2025 – All rights reserved
iv
A list of all parts in the ISO/IEC 29110 series can be found on the ISO and IEC websites.
Any feedback or questions on this document should be directed to the user’s national standards
body. A complete listing of these bodies can be found at www.iso.org/members.html and
www.iec.ch/national-committees.

© ISO/IEC 2025 – All rights reserved
v
Introduction
0.1  Introduction to the ISO/IEC 29110 series
For the purpose of the ISO/IEC 29110 series, a very small entity VSE is an enterprise, organization (e.g.
government agency, non-profit organization), department or project having up to 25 people. Many VSEs
develop and/or maintain systems and the software components used in those systems, either as independent
products or incorporated into the larger system. Due to this, a recognition of VSEs as suppliers of high-
quality products is required.
VSEs around the world are creating valuable products and services. According to the World Bank, small and
medium enterprises (SMEs) account for about 90 % of enterprises worldwide. According to the Organisation
for Economic Co-operation and Development (OECD), SMEs represent 99 % of all businesses and generate
about 60 % of employment. Almost one person out of three is employed in a micro firm with less than 10
employees. The European Union reports that micro firms, with fewer than 10 persons, account for 93,5 % of
all enterprises and small firms, with 10 to 49 employees, account for 5,5 % of all enterprises. The challenge
facing OECD government
...