Operational risks Classification for Information Systems with Service-Oriented Architecture (Including Loss Calculation Example)

This article presents the results of a study conducted to identify operational risks for information systems (IS) with service-oriented architecture (SOA). Analysis of current approaches to risk and system error classifications revealed that the system error classes were never used for SOA risk estimation. Additionally system error classes are not normallyexperimentally supported with realenterprise error data. Through the study several categories of various existing error classifications systems are applied and three new error categories with sub-categories are identified. As a part of operational risks a new error classification scheme is proposed for SOA applications. It is based on errors of real information systems which are service providers for application with service-oriented architecture. The proposed classification approach has been used to classify SOA system errors for two different enterprises (oil and gas industry, metal and mining industry). In addition we have conducted a research to identify possible losses from operational risks.

• Irina Pyrlina

• Enterprise architecture
• Error classification
• Oil&Gas and Metal&Mining industries
• Operational risks
• Serviceoriented architecture

[1] S. Kaner, G. Folk, E.Nguen, ÔÇ×Software testing. Fundamental concepts of
business application management", Diasoft, 2001.
[2] G. Mayers, Software reliability, Mir, 1980.
[3] H. Krawczyk, B. Wiszniewski, H. Mork, "Classification of software
defects in parallel programs," in HPCTI Progress Report no 1, Apr. 1995.
[4] T.J. Ostrand, E.J. Weyuker, "Collecting and Categorizing Software
Error Data in an Industrial Environment," in The Journal of Systems and Software, vol. 4, 1984, p. 289-300.
[5] IEEE Standard Glossary of Software Engineering Terminology, IEEE
Std 729-1983, Inst. Electrical and Electronics Eng., New York,1983.
[6] Y. Guo, S. Sampath, "Web Application Fault ClassificationÔÇöAn
Exploratory Study," ESEM '08 Proceedings of the Second ACM-IEEE international symposium on Empirical software engineering and
measurement ACM New York, NY, USA, 2008. (Online). Available:
http://portal.acm.org/citation.cfm?id=1414060
[7] "SAP TCO Framework: A Framework to Reduce Total Cost of Ownership," SAP White Paper, SAP AG, 2005.
[8] F.T.Aleskerov, I.K. Andrievich, G.I. Penikas, V.M.Solodov, Analysis of
mathematical models of Basel II, Moscow, Phismatlit, 2010, 288 p. (in Russian)
[9] H. Haas, A. Brown, "Web Services Glossary", W3C Working Group
Note, Feb. 2004, (Online). Available: http://www.w3.org/TR/ws-gloss/