Modelling Risks in Open Source Software Component Selection

  • Alberto Siena
  • Mirko Morandini
  • Angelo Susi
Part of the Lecture Notes in Computer Science book series (LNCS, volume 8824)


Adopting Open Source Software (OSS) components is a decision that offers many potential advantages – such as cost effectiveness and reputation – but even introduces a potentially high number of risks, which span from the inability of the OSS community to continue the development over time, to a poor quality of code. Differently from commercial off-the-shelf components, to assess risk in OSS component adoption, we can rely on the public availability of measurable information about the component code and the developing communities. In the present paper, we present a risk evaluation technique that uses conceptual modelling to assess OSS component adoption risks. We root it in the existing literature on OSS risk assessment and validate it by means of our industrial partners.


Risk assessment Open Source Software Automated reasoning 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Asnar, Y., Giorgini, P., Mylopoulos, J.: Goal-driven risk assessment in requirements engineering. Requir. Eng. 16(2), 101–116 (2011)CrossRefGoogle Scholar
  2. 2.
    Barone, D., Jiang, L., Amyot, D., Mylopoulos, J.: Reasoning with key performance indicators. In: Johannesson, P., Krogstie, J., Opdahl, A.L. (eds.) A Calculus of Communication Systems. LNBIP, vol. 92, pp. 82–96. Springer, Heidelberg (1980)Google Scholar
  3. 3.
    Cailliau, A., van Lamsweerde, A.: Assessing requirements-related risks through probabilistic goals and obstacles. Requir. Eng. 18(2), 129–146 (2013)CrossRefGoogle Scholar
  4. 4.
    Gangemi, A., Guarino, N., Masolo, C., Oltramari, A.: Sweetening wordnet with dolce. AI Magazine 24(3), 13–24 (2003)Google Scholar
  5. 5.
    Giorgini, P., Mylopoulos, J., Nicchiarelli, E., Sebastiani, R.: Reasoning with goal models. In: Spaccapietra, S., March, S.T., Kambayashi, Y. (eds.) ER 2002. LNCS, vol. 2503, pp. 167–181. Springer, Heidelberg (2002)CrossRefGoogle Scholar
  6. 6.
    Giorgini, P., Mylopoulos, J., Nicchiarelli, E., Sebastiani, R.: Formal reasoning techniques for goal models. J. Data Semantics 1, 1–20 (2003)Google Scholar
  7. 7.
    Kenett, R.S., Zacks, S.: Modern Industrial Statistics: with applications in R, MINITAB and JMP, 2nd edn. John Wiley and Sons (2014) With contributions by D. AmbertiGoogle Scholar
  8. 8.
    Lund, M.S., Solhaug, B., Stølen, K.: Model-Driven Risk Analysis - The CORAS Approach. Springer (2011)Google Scholar
  9. 9.
    Messerschmitt, D.G., Szyperski, C.: Software Ecosystem: Understanding an Indispensable Technology and Industry. The MIT Press (2003)Google Scholar
  10. 10.
    Morandini, M., Siena, A., Susi, A.: Systematic literature review: Risks in oss adoption. Technical report, FBK, Trento (2013),
  11. 11.
    Morandini, M., Siena, A., Susi, A.: A context-specific definition of risk for enterprise-level decision making. In: The 8th International Workshop on Value Modeling and Business Ontology (2014)Google Scholar
  12. 12.
    Nilsson, N.J.: Problem-solving Methods in Artificial Intelligence. McGraw-Hill, New York (1971)Google Scholar
  13. 13.
    Rolland, C., Nurcan, S., Grosz, G.: Enterprise knowledge development: the process view. Information & Management 36(3), 165–184 (1999)CrossRefGoogle Scholar
  14. 14.
    Siena, A., Jureta, I., Ingolfo, S., Susi, A., Perini, A., Mylopoulos, J.: Capturing Variability of Law with Nómos 2. In: Atzeni, P., Cheung, D., Ram, S. (eds.) ER 2012 Main Conference 2012. LNCS, vol. 7532, pp. 383–396. Springer, Heidelberg (2012)CrossRefGoogle Scholar
  15. 15.
    van Lamsweerde, A., Letier, E.: Handling obstacles in goal-oriented requirements engineering. IEEE Trans. Software Eng. 26(10), 978–1005 (2000)CrossRefGoogle Scholar
  16. 16.
    Yu, E.S.-K.: Modelling strategic relationships for process reengineering. PhD thesis, University of Toronto, Toronto, Ont., Canada, Canada (1996)Google Scholar

Copyright information

© Springer International Publishing Switzerland 2014

Authors and Affiliations

  • Alberto Siena
    • 1
  • Mirko Morandini
    • 1
  • Angelo Susi
    • 1
  1. 1.Fondazione Bruno KesslerTrentoItaly

Personalised recommendations