Risk Management for Web and Distributed Software Development Projects

The level of complexity and risks associated with software have been increasing in line with the growth of the software industry. Modern software development, with an emphasis on web and distributed development, presents specific challenges and risk areas to the software industry which need to be considered and managed. In this paper we survey a number of software risk management approaches and identify weaknesses such as the treatment of culture issues, geographical location, and process and product perspectives. These weaknesses must be tackled in order to accommodate the continuously evolving challenges to web and distributed software development and to cover some perspectives of the software industry which have not been well covered up to now. This work is a part of PhD research at Newcastle University (UK) to develop an improved approach to measure and control web and distributed development risks.

[1]  Lars Mathiassen,et al.  Managing Risks in Distributed Software Projects: An Integrative Framework , 2009, IEEE Transactions on Engineering Management.

[2]  Antero Taivalsaari Mashware: the future of web applications , 2009 .

[3]  Khairuddin Hashim,et al.  An Approach to Sharing Solutions to Software Project Management Problems , 2009, 2009 International Conference on Information Management and Engineering.

[4]  N. Rodriguez,et al.  Implementing and improving the SEI Risk Management method in a university software project , 2005, IEEE Latin America Transactions.

[5]  Geoffrey G. Roy,et al.  A risk management framework for software engineering practice , 2004, 2004 Australian Software Engineering Conference. Proceedings..

[6]  Vince Bruno,et al.  Characteristics of web applications that affect usability: a review , 2005, OZCHI.

[7]  Sandra G. Behrens,et al.  Software risk evaluation (SRE) method description (version 2.0) , 1999 .

[8]  Peter Kaiser,et al.  An industrial case study of implementing software risk management , 2001, ESEC/FSE-9.

[9]  Pekka Abrahamsson,et al.  Managing commitments and risks: challenges in distributed agile development , 2004, Proceedings. 26th International Conference on Software Engineering.

[10]  Richard F. Paige,et al.  Agile development of secure web applications , 2006, ICWE '06.

[11]  D. T. Lee,et al.  Non-detrimental Web application security scanning , 2004, 15th International Symposium on Software Reliability Engineering.

[12]  Khairuddin Hashim,et al.  A model and prototype tool to manage software risks , 2000, Proceedings First Asia-Pacific Conference on Quality Software.

[13]  OffuttJeff Quality Attributes of Web Software Applications , 2002 .

[14]  Shareeful Islam,et al.  Software development risk management model: a goal driven approach , 2009, ESEC/FSE Doctoral Symposium '09.

[15]  Chun-guang Pan,et al.  An Optimization Model of CMMI-Based Software Project Risk Response Planning , 2008 .

[16]  Yong Hu,et al.  A Neural Networks Approach for Software Risk Analysis , 2006, Sixth IEEE International Conference on Data Mining - Workshops (ICDMW'06).

[17]  Ray Welland,et al.  Web development evolution: the assimilation of Web engineering security , 2005, Third Latin American Web Congress (LA-WEB'2005).

[18]  Victor R. Basili,et al.  Empirical Evaluation of a Risk Management Method , 1997 .

[19]  A. Jefferson Offutt,et al.  Quality Attributes of Web Software Applications , 2002, IEEE Softw..

[20]  Y. Kwak,et al.  Project risk management: lessons learned from software development environment , 2004 .

[21]  Amrit Tiwana,et al.  Functionality Risk in Information Systems Development: An Empirical Investigation , 2006, IEEE Transactions on Engineering Management.

[22]  D. Scott McCrickard,et al.  Project management for the 21st century: supporting collaborative design through risk analysis , 2005, ACM Southeast Regional Conference.

[23]  Subhas C. Misra,et al.  Risk management models in software engineering , 2007 .

[24]  Gerti Kappel,et al.  Web engineering : the discipline of systematic development of web applications , 2006 .

[25]  Bikram Sengupta,et al.  A research agenda for distributed software development , 2006, ICSE.

[26]  Francesco M. Donini,et al.  A Model Checking-based Method for Verifying Web Application Design , 2006, Electron. Notes Theor. Comput. Sci..

[27]  Mohammad Kazem Akbari,et al.  Customizing ISO 9126 quality model for evaluation of B2B applications , 2009, Inf. Softw. Technol..

[28]  Mario Piattini,et al.  Challenges and Improvements in Distributed Software Development: A Systematic Review , 2009, Adv. Softw. Eng..

[29]  Sun-Jen Huang,et al.  An empirical analysis of risk components and performance on software projects , 2007, J. Syst. Softw..

[30]  Sergey M. Avdoshin,et al.  Software risk management , 2011, 2011 7th Central and Eastern European Software Engineering Conference (CEE-SECR).

[31]  Mark Keil,et al.  How Software Project Risk Affects Project Performance: An Investigation of the Dimensions of Risk and an Exploratory Model , 2004, Decis. Sci..

[32]  Jyrki Kontio,et al.  The Riskit Method for Software Risk Management, version 1.00 , 1997 .

[33]  J. Moses,et al.  Bayesian probability distributions for assessing measurement of subjective software attributes , 2000, Inf. Softw. Technol..

[34]  David Lowe,et al.  Web Engineering: A Practitioner's Approach , 2008 .

[35]  Paul L. Bannerman,et al.  Risk and risk management in software projects: A reassessment , 2008, J. Syst. Softw..

[36]  Md. Forhad Rabbi,et al.  A Review of Software Risk Management for Selection of Best Tools and Techniques , 2008, 2008 Ninth ACIS International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing.

[37]  Daniel Antonio Callegari,et al.  Project Management and Software Development Processes: Integrating RUP and PMBOK , 2007, 2007 International Conference on Systems Engineering and Modeling.

[38]  Kenneth E. Nidiffer,et al.  Evolving distributed project management , 2005, IEEE Software.

[39]  W. Duncan A GUIDE TO THE PROJECT MANAGEMENT BODY OF KNOWLEDGE , 1996 .

[40]  Dirk Meyerhoff,et al.  Software Quality and Software Testing in Internet Times , 2002, Springer Berlin Heidelberg.

[41]  Brunil Romero,et al.  Simon's Intelligence Phase for Security Risk Assessment in Web Applications , 2008, Fifth International Conference on Information Technology: New Generations (itng 2008).

[42]  B. Boehm Software risk management: principles and practices , 1991, IEEE Software.

[43]  John Dhlamini,et al.  Intelligent risk management tools for software development , 2009 .

[44]  Mira Kajko-Mattsson,et al.  State of Software Risk Management Practice , 2008 .

[45]  Standard for Software Life Cycle Processes — Risk Management , 2001 .

[46]  Catherine M. Beise,et al.  IT project management and virtual teams , 2004, SIGMIS CPR '04.

[47]  Zhao Li,et al.  Evaluating Web software reliability based on workload and failure data extracted from server logs , 2004, IEEE Transactions on Software Engineering.

[48]  Barry W. Boehm,et al.  Using the WinWin Spiral Model: A Case Study , 1998, Computer.