Identification and Importance of the Technological Risks of Open Source Software in the Enterprise Adoption Context

Open source software (OSS) has reshaped and remodeled various layers of the organizational ecosystem, becoming an important strategic asset for enterprises. Still, many enterprises are reluctant to adopt OSS. Knowledge about technological risks and their importance for IT executives is still under researched. We aim to identify the technological risks and their importance for OSS adoption during the risk identification phase in the enterprise context. We conducted an extensive literature review, identifying 34 risk factors from 88 papers, followed by an online survey of 115 IT executives to study the risk fac- tors' importance. Our results will be very valuable for practitioners to use when evaluating, assessing and calculating the risks related to OSS product adoption. Also, researchers can use it as a base for future studies to expand current theo- retical understanding of the OSS phenomenon related to IT risk management.

[1]  Charles M. Schweik,et al.  Internet Success: A Study of Open-Source Software Commons , 2012 .

[2]  Pär J. Ågerfalk,et al.  Assessing the role of open source software in the European secondary software sector: a voice from industry , 2005 .

[3]  Sigi Goode,et al.  Something for nothing: management rejection of open source software in Australia's top firms , 2005, Inf. Manag..

[4]  Pär J. Ågerfalk,et al.  Outsourcing to an Unknown Workforce: Exploring Opensourcing as a Global Sourcing Strategy , 2008, MIS Q..

[5]  Jim Henderson,et al.  Google Scholar: A source for clinicians? , 2005, Canadian Medical Association Journal.

[6]  Sreenivasa Rao Vadalasetty Security Concerns in Using Open Source Software for Enterprise Requirements , 2009 .

[7]  Christian Payne,et al.  On the security of open source software , 2002, Inf. Syst. J..

[8]  Richard T. Watson,et al.  Analyzing the Past to Prepare for the Future: Writing a Literature Review , 2002, MIS Q..

[9]  Björn Niehaves,et al.  Reconstructing the giant: On the importance of rigour in documenting the literature search process , 2009, ECIS.

[10]  Guido Schryen,et al.  Is open source security a myth? , 2011, Commun. ACM.

[11]  Benedikte Brincker,et al.  Software as Risk: Introduction of Open Standards in the Danish Public Sector , 2010, Inf. Soc..

[12]  Todd R. Zenger,et al.  Do Formal Contracts and Relational Governance Function as Substitutes or Complements , 2002 .

[13]  Diomidis Spinellis,et al.  Organizational adoption of open source software , 2012, J. Syst. Softw..

[14]  Paul Kavanagh,et al.  The Open Source Definition , 2004 .

[15]  Anol Bhattacherjee,et al.  Organizational adoption of open source software: barriers and remedies , 2010, CACM.

[16]  M. Dewey,et al.  Coefficients of Agreement , 1983, British Journal of Psychiatry.

[17]  Muzamil Ahmed,et al.  OPEN SOURCE SOFTWARE DEVELOPMENT IN CHINA , 2012 .

[18]  Mark Aberdour A people-focused , 2022 .

[19]  Adenekan Dedeke Is Linux Better than Windows Software? , 2009, IEEE Software.

[20]  Shahron Williams van Rooij Perceptions of Open Source versus Commercial Software: Is Higher Education Still on the Fence? , 2007 .

[21]  Jan Muntermann,et al.  A method for taxonomy development and its application in information systems , 2013, Eur. J. Inf. Syst..

[22]  Austen Rainer,et al.  Open-source software in an occupational health application: the case of Heales Medical Ltd , 2005 .

[23]  Alberto Sillitti,et al.  Open Source Development, Adoption and Innovation , 2007 .

[24]  Lorraine Morgan,et al.  Benefits and Drawbacks of Open Source Software: An Exploratory Study of Secondary Software Firms , 2007, OSS.

[25]  Xavier Franch,et al.  Managing Risk in Open Source Software Adoption , 2018, ICSOFT.

[26]  Ari Jaaksi,et al.  Experiences on Product Development with Open Source Software , 2007, OSS.

[27]  Guido Schryen,et al.  Increasing Software Security through Open Source or Closed Source Development? Empirics Suggest that We have Asked the Wrong Question , 2010, 2010 43rd Hawaii International Conference on System Sciences.

[28]  Brian Fitzgerald,et al.  Developing an information systems infrastructure with open source software , 2004, IEEE Software.

[29]  Klaus Krippendorff,et al.  Answering the Call for a Standard Reliability Measure for Coding Data , 2007 .

[30]  Jacob Cohen,et al.  Weighted kappa: Nominal scale agreement provision for scaled disagreement or partial credit. , 1968 .

[31]  Jakub Rudzki,et al.  Evaluating Quality of Open Source Components for Reuse-Intensive Commercial Solutions , 2009, 2009 35th Euromicro Conference on Software Engineering and Advanced Applications.

[32]  Guido Schryen,et al.  Security of Open Source and Closed Source Software: An Empirical Comparison of Published Vulnerabilities , 2009, AMCIS.

[33]  Reidar Conradi,et al.  Adoption of open source software in software-intensive organizations - A systematic literature review , 2010, Inf. Softw. Technol..

[34]  P. Slovic Perception of risk. , 1987, Science.

[35]  Kris Ven,et al.  Should You Adopt Open Source Software? , 2008, IEEE Software.