Preliminary results from a state-of-the-practice survey on risk management in off-the-shelf component-based development

Authors:
Jingyue Li;Reidar Conradi;Odd Petter N. Slyngstad;Marco Torchiano;Maurizio Morisio;Christian Bunse
Affiliations:
Department of Computer and Information Science, Norwegian University of Science and Technology (NTNU), Trondheim, Norway;,Department of Computer and Information Science, Norwegian University of Science and Technology (NTNU), Trondheim, Norway;Department of Computer and Information Science, Norwegian University of Science and Technology (NTNU), Trondheim, Norway;Dip.Automatica e Informatica, Politecnico di Torino, Torino, Italy;Dip.Automatica e Informatica, Politecnico di Torino, Torino, Italy;Fraunhofer IESE, Kaiserslautern, Germany
Venue:
ICCBSS'05 Proceedings of the 4th international conference on COTS-Based Software Systems
Year:
2005

Citing 12
Cited 3

Components of Software Development Risk: How to Address Them? A Project Manager Survey

IEEE Transactions on Software Engineering
The Challenges of Using COTS Software in Component-Based Development

Computer
Are We Forgetting the Risks of Information Technology?

Computer
Open Source Security: Opportunity or Oxymoron?

Computer
How Experienced Project Managers Assess Risk

IEEE Software
COTS Software: The Economical Choice?

IEEE Software
Not All CBS Are Created Equally: COTS-Intensive Project Types

ICCBSS '03 Proceedings of the Second International Conference on COTS-Based Software Systems
Risks and challenges of component-based software development

Communications of the ACM - Program compaction
Using Open Source Software in Product Development: A Primer

IEEE Software
Overlooked Aspects of COTS-Based Development

IEEE Software
A Critical Look at Open Source

Computer
An Empirical Study of Variations in COTS-based Software Development Processes in Norwegian IT Industry

METRICS '04 Proceedings of the Software Metrics, 10th International Symposium

Barriers to disseminating off-the-shelf based development theories to IT industry

MPEC '05 Proceedings of the second international workshop on Models and processes for the evaluation of off-the-shelf components
Switch or Struggle: Risk Assessment for Late Integration of COTS Components

IWICSS '07 Proceedings of the Second International Workshop on Incorporating COTS Software into Software Systems: Tools and Techniques
Analyzing differences in risk perceptions between developers and acquirers in OTS-based custom software projects using stakeholder analysis

Proceedings of the ACM-IEEE international symposium on Empirical software engineering and measurement

Quantified Score

Hi-index	0.01

Visualization

Abstract

Software components, both Commercial-Off-The-Shelf and Open Source, are being increasingly used in software development. Previous studies have identified typical risks and related risk management strategies for what we will call OTS-based (Off-the-Shelf) development. However, there are few effective and well-proven guidelines to help project managers to identify and manage these risks. We are performing an international state-of-the-practice survey in three countries – Norway, Italy, and Germany – to investigate the relative frequency of typical risks, and the effect of the corresponding risk management methods. Preliminary results show that risks concerning changing requirements and effort estimation are the most frequent risks. Risks concerning traditional quality attributes such as reliability and security of OTS component seem less frequent. Incremental testing and strict quality evaluation have been used to manage the possible negative impact of poor component quality. Realistic effort estimation on OTS quality evaluation helped to mitigate the possible effort estimation biases in OTS component selection and integration.