Classification and Analysis of Risks in Software Engineering
Despite various methods that exist in software risk management, software projects have a high rate of failure. When complexity and size of the projects are increased, managing software development becomes more difficult. In these projects the need for more analysis and risk assessment is vital. In this paper, a classification for software risks is specified. Then relations between these risks using risk tree structure are presented. Analysis and assessment of these risks are done using probabilistic calculations. This analysis helps qualitative and quantitative assessment of risk of failure. Moreover it can help software risk management process. This classification and risk tree structure can apply to some software tools.
[1] Rita C. Nienaber, Andries Barnard, "A Generic AgentFramework to
Support the Various Software Project Management Processes",
Interdisciplinary Journal of Information, Knowledge, and Management, Vol. 2, 2007
[2] Ronald P. Higuera, Yacov Y. Haimes, "Software Risk Management",
Carnegie Mellon University, Pittsburgh, 1996
[3] Ray C.Williams, Goerge J.Pandelios, Sandra G.Behrens, "Software Risk
Evaluation Method Description", version 2.0, Software Engineering
Institute,Carnegie Mellon University, 1999
[4] Anatoliy Antonov, Vladimir Nikolov, Yanka Yanakieva, "Risk Simulation
in Project Management System", International Conference on Computer
Systems and Technologies- Compsystech, 2006
[5] Barry W. Boehm, "Software Risk Management Principles and Practices",
Defense Advanced Research Projects Agency, IEEE Software, 8(1): 1991,
PP. 32-41
[6] Roger S. Pressman, Ph.D., "Software Engineering a Practitioners
Approach", 5th Edition, McGraw-Hill, 2001, pp. 145-159
[7] Marcio de Oliveira Barros, Claudia Maria Lima Werner, Guilherme Horta
Travassos," Supporting Risks in Software Project Management", The
Journal of Systems and Software, Published by Elsevier Inc, 2002
[8] Ayad Ali Keshlaf, Khairuddin Hashim, "A Model and Protorype Tool to
Manage Software Risks", First Asia-Pasific Conferance IEEE, 2000
[9] Jyrki Kontio, "The Riskit Method for Software Risk Management", version
1.00, Institute for Advanced Computer Studies and Department of
Computer Science, University Of Maryland ,1999
[10] Linda. Westfal, "Software Risk Management", the Westfal Team, 2001
[11] Jakub Miller, Janusz Gorski, "Risk Identification Patterns for Software
Projects", Published in Foundations of Computing and Decision Sciences,
Vol. 29, No. 1-2, 2004, PP. 115-131
[12] Lawrence E. Hyatt, Linda H. Rosenberg, Ph.D., "A Software Quality
Model and Metrics for Identifying Project Risks and Assessing Software
Quality", 1996
[13] Yudistira Asnar, Paolo Giorgini, "Risk Analysis as part of the
Requirements Engineering Process" University of Trento, Department of
Information and Communication Technology, 2007
[14] Bryan L. McKinney, David R. Engfer, "Formulating Risk into Research
and Engineering Projects", Crystal Ball User Conference, 2004
[15] Aagedal J. O., den Braber F., Dimitrakos T., Gran B. A., Raptis D., Stolen
K., "Model-based Risk Assessment to Improve Enterprise Security", 5th
International Enterprise Distributed Object Computing Conference ,
Switzerland, IEEE, 2002, PP. 51-62
[16] Marvin J. Carr, Suresh L. Konda, Ira Monarch, F.Carol Ulrich, Clay
F.Walker, "Taxonomy-Based Risk Identification", Carnegie Mellon
university, Pittsburgh Pennsylvania, 1993
[17] Robert Armstrong, Gillian Adens, "Management Software Project Risk",
2004
[18] Hu Yong, Chen Juhua, Rong Zhenbang, Mei Liu, Xie Kang, "A Neural
Networks Approach for Software Risk Analysis", 2006
[19] Daniel D. Galorath, Michael W. Evans, "Software Sizing Estimation and
Risk Management", Auerbach Publications, United States of America, 2006, pp. 339-393
[20] Philippe Kruchten, "The Rational Unified Process an Introduction",
Third edition, Addison Wesley, 2003, chapter 7
[21] C.Ravindranath Pandian, "Applied Software Risk Management a Guide
for Software Project Managers", Auerbach Publications, United States of
America, 2007, Chapters 2,3,5
[22] John D. McGregor, David A. Sykes, "A Practical Guide to Testing
Object-Oriented Software", Addison-Wesley, 2001, pp. 87-92
[23] Yacov Y. Haimes, "Risk Modeling, assessment, and Management",
second edition, John Wiley & Sons, INC., Publication, 2004, pp. 525-540
[24] Nikolaos Limnios, "Fualt Trees", Published in Great Britain and United
states by ISTE Ltd, 2007, chapters 3 and 5
[1] Rita C. Nienaber, Andries Barnard, "A Generic AgentFramework to
Support the Various Software Project Management Processes",
Interdisciplinary Journal of Information, Knowledge, and Management, Vol. 2, 2007
[2] Ronald P. Higuera, Yacov Y. Haimes, "Software Risk Management",
Carnegie Mellon University, Pittsburgh, 1996
[3] Ray C.Williams, Goerge J.Pandelios, Sandra G.Behrens, "Software Risk
Evaluation Method Description", version 2.0, Software Engineering
Institute,Carnegie Mellon University, 1999
[4] Anatoliy Antonov, Vladimir Nikolov, Yanka Yanakieva, "Risk Simulation
in Project Management System", International Conference on Computer
Systems and Technologies- Compsystech, 2006
[5] Barry W. Boehm, "Software Risk Management Principles and Practices",
Defense Advanced Research Projects Agency, IEEE Software, 8(1): 1991,
PP. 32-41
[6] Roger S. Pressman, Ph.D., "Software Engineering a Practitioners
Approach", 5th Edition, McGraw-Hill, 2001, pp. 145-159
[7] Marcio de Oliveira Barros, Claudia Maria Lima Werner, Guilherme Horta
Travassos," Supporting Risks in Software Project Management", The
Journal of Systems and Software, Published by Elsevier Inc, 2002
[8] Ayad Ali Keshlaf, Khairuddin Hashim, "A Model and Protorype Tool to
Manage Software Risks", First Asia-Pasific Conferance IEEE, 2000
[9] Jyrki Kontio, "The Riskit Method for Software Risk Management", version
1.00, Institute for Advanced Computer Studies and Department of
Computer Science, University Of Maryland ,1999
[10] Linda. Westfal, "Software Risk Management", the Westfal Team, 2001
[11] Jakub Miller, Janusz Gorski, "Risk Identification Patterns for Software
Projects", Published in Foundations of Computing and Decision Sciences,
Vol. 29, No. 1-2, 2004, PP. 115-131
[12] Lawrence E. Hyatt, Linda H. Rosenberg, Ph.D., "A Software Quality
Model and Metrics for Identifying Project Risks and Assessing Software
Quality", 1996
[13] Yudistira Asnar, Paolo Giorgini, "Risk Analysis as part of the
Requirements Engineering Process" University of Trento, Department of
Information and Communication Technology, 2007
[14] Bryan L. McKinney, David R. Engfer, "Formulating Risk into Research
and Engineering Projects", Crystal Ball User Conference, 2004
[15] Aagedal J. O., den Braber F., Dimitrakos T., Gran B. A., Raptis D., Stolen
K., "Model-based Risk Assessment to Improve Enterprise Security", 5th
International Enterprise Distributed Object Computing Conference ,
Switzerland, IEEE, 2002, PP. 51-62
[16] Marvin J. Carr, Suresh L. Konda, Ira Monarch, F.Carol Ulrich, Clay
F.Walker, "Taxonomy-Based Risk Identification", Carnegie Mellon
university, Pittsburgh Pennsylvania, 1993
[17] Robert Armstrong, Gillian Adens, "Management Software Project Risk",
2004
[18] Hu Yong, Chen Juhua, Rong Zhenbang, Mei Liu, Xie Kang, "A Neural
Networks Approach for Software Risk Analysis", 2006
[19] Daniel D. Galorath, Michael W. Evans, "Software Sizing Estimation and
Risk Management", Auerbach Publications, United States of America, 2006, pp. 339-393
[20] Philippe Kruchten, "The Rational Unified Process an Introduction",
Third edition, Addison Wesley, 2003, chapter 7
[21] C.Ravindranath Pandian, "Applied Software Risk Management a Guide
for Software Project Managers", Auerbach Publications, United States of
America, 2007, Chapters 2,3,5
[22] John D. McGregor, David A. Sykes, "A Practical Guide to Testing
Object-Oriented Software", Addison-Wesley, 2001, pp. 87-92
[23] Yacov Y. Haimes, "Risk Modeling, assessment, and Management",
second edition, John Wiley & Sons, INC., Publication, 2004, pp. 525-540
[24] Nikolaos Limnios, "Fualt Trees", Published in Great Britain and United
states by ISTE Ltd, 2007, chapters 3 and 5
@article{"International Journal of Information, Control and Computer Sciences:58314", author = "Hooman Hoodat and Hassan Rashidi", title = "Classification and Analysis of Risks in Software Engineering", abstract = "Despite various methods that exist in software risk management, software projects have a high rate of failure. When complexity and size of the projects are increased, managing software development becomes more difficult. In these projects the need for more analysis and risk assessment is vital. In this paper, a classification for software risks is specified. Then relations between these risks using risk tree structure are presented. Analysis and assessment of these risks are done using probabilistic calculations. This analysis helps qualitative and quantitative assessment of risk of failure. Moreover it can help software risk management process. This classification and risk tree structure can apply to some software tools.
", keywords = "Risk analysis, risk assessment, risk classification, risk tree.", volume = "3", number = "8", pages = "2037-7", }
