A model and prototype tool to manage software risks

Software industry is facing many types of risks that make software development projects miss their planned schedule, time and quality. Hence, the urge to manage such risks if one wants to avoid the above problems. However, available software risk management tools present many weaknesses and above all, they are few. This paper is a contribution to increase the number of tools in the library of software risk management tools. The main features of a prototype tool called SoftRisk, which is developed to manage software risks, is presented. SoftRisk is designed based on a software risk management model that has been conceived in this research. This model can be thought of as a reference to any software risk management tool. Among others, contributions like risk estimation assistance, risk documentation, concentrating on top risks and graphic representation are discussed.

[1]  W. Bryan,et al.  Software product assurance-reducing software risk in critical systems , 1988, Computer Assurance, 1988. COMPASS '88.

[2]  Yacov Y. Haimes,et al.  Systems integration via software risk management , 1996, IEEE Trans. Syst. Man Cybern. Part A.

[3]  Karl E. Wiegers Software Process Improvement in Web Time , 1999, IEEE Softw..

[4]  Susan A. Sherer,et al.  The three dimensions of software risk: technical, organizational, and environmental , 1995, Proceedings of the Twenty-Eighth Annual Hawaii International Conference on System Sciences.

[5]  Richard E. Fairley,et al.  Risk management for software projects , 1994, IEEE Software.

[6]  Robert N. Charette,et al.  Software Engineering Risk Analysis and Management , 1989 .

[7]  Art Gemmer,et al.  Risk Management: Moving Beyond Process , 1997, Computer.

[8]  Premkumar T. Devanbu,et al.  Techniques for trusted software engineering , 1998, Proceedings of the 20th International Conference on Software Engineering.

[9]  L. C. Briand,et al.  METRIX: a tool for software-risk analysis and management , 1994, Proceedings of Annual Reliability and Maintainability Symposium (RAMS).

[10]  Des Greer,et al.  Towards an evolutionary software delivery strategy based on soft systems and risk analysis , 1996, Proceedings IEEE Symposium and Workshop on Engineering of Computer-Based Systems.

[11]  Jyrki Kontio,et al.  Risk management in software development: a technology overview and the riskit method , 1999, Proceedings of the 1999 International Conference on Software Engineering (IEEE Cat. No.99CB37002).

[12]  Kalle Lyytinen,et al.  A framework for identifying software project risks , 1998, CACM.

[13]  Michael R. Lyu,et al.  ARMOR: analyzer for reducing module operational risk , 1995, Twenty-Fifth International Symposium on Fault-Tolerant Computing. Digest of Papers.

[14]  Dar-Biau Liu,et al.  A risk-mitigating model for the development of reliable and maintainable large-scale commercial-off-the-shelf integrated software systems , 1997, Annual Reliability and Maintainability Symposium.

[15]  Desmond Greer SERUM - Software Engineering Risk: Understanding and Management , 1997 .