Risks of off-the-shelf-based software acquisition and development: a systematic mapping study and a survey
Risks of off-the-shelf-based software acquisition and development: a systematic mapping study and a survey
- Author(s): D.S. Kusumo ; M. Staples ; Liming Zhu ; He Zhang ; R. Jeffery
- DOI: 10.1049/ic.2012.0031
For access to this article, please select a purchase option:
Buy conference paper PDF
Buy Knowledge Pack
IET members benefit from discounts to all IET publications and free access to E&T Magazine. If you are an IET member, log in to your account and the discounts will automatically be applied.
16th International Conference on Evaluation & Assessment in Software Engineering (EASE 2012) — Recommend this title to your library
Thank you
Your recommendation has been sent to your librarian.
- Author(s): D.S. Kusumo ; M. Staples ; Liming Zhu ; He Zhang ; R. Jeffery Source: 16th International Conference on Evaluation & Assessment in Software Engineering (EASE 2012), 2012 p. 233 – 242
- Conference: 16th International Conference on Evaluation & Assessment in Software Engineering (EASE 2012)
- DOI: 10.1049/ic.2012.0031
- ISBN: 978-1-84919-541-6
- Location: Ciudad Real, Spain
- Conference date: 14-15 May 2012
- Format: PDF
Background- Risks associated with a software project have the potential to affect all stakeholders. Today much software makes use of off-the-shelf (OTS) components. A better understanding of OTS-derived software risks will help to define responsibilities for these risks, and also to avoid them. Aim- Our objective is to identify, classify and compare risks of OTS-based software projects from both a software development and a software acquisition perspective. Method- To identify and classify the risks, we performed a systematic mapping study. In order to compare risks of OTS-based software development and acquisition in the real world setting, we used the mapping study results to survey occurrences of 11 shared risks in OTS-based software, in 35 OTS-based software developments and 34 OT-Sbased software acquisitions of Indonesian background. The survey is a partial replication of a previous study. Results- We identified 133 risks associated with OTS-based software development and 36 risks associated with OTS-based software acquisition. These risks are grouped into 17 risk categories. Risks occurred more frequently in software acquisition than in software development. In addition, two risks, insufficient OTS component documents and lack of provider technical support and training, frequently occurred only in the software development. Conclusions- In OTS-based projects, most risks for acquisition and development are similar. Technical-related risks are found less often in acquisition and project management related risks are found less often in development. Shared risks are perceived differently by developers and acquirers. Better understanding of actual and perceived risk in OTS-based software projects will improve risk management. Further work to validate these results is ongoing.
Inspec keywords: project management; risk management; software management; software engineering
Subjects: Software management; Software engineering techniques
Related content
content/conferences/10.1049/ic.2012.0031
pub_keyword,iet_inspecKeyword,pub_concept
6
6