A Layered Approach to Managing Risks in OSS Projects

  • Xavier Franch
  • Ron Kenett
  • Fabio Mancinelli
  • Angelo Susi
  • David Ameller
  • Ron Ben-Jacob
  • Alberto Siena
Part of the IFIP Advances in Information and Communication Technology book series (IFIPAICT, volume 427)

Abstract

In this paper, we propose a layered approach to managing risks in OSS projects. We define three layers: the first one for defining risk drivers by collecting and summarising available data from different data sources, including human-provided contextual information; the second layer, for converting these risk drivers into risk indicators; the third layer for assessing how these indicators impact the business of the adopting organisation. The contributions are: 1) the complexity of gathering data is isolated in one layer using appropriate techniques, 2) the context needed to interpret this data is provided by expert involvement evaluating risk scenarios and answering questionnaires in a second layer, 3) a pattern-based approach and risk reasoning techniques to link risks to business goals is proposed in the third layer.

Keywords

OSS Open Source Risk Management Layered Model 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Harel, A., Kenett, R.S., Ruggeri, F.: Modeling Web Usability Diagnostics on the basis of Usage Statistics. In: Statistical Methods in eCommerce Research, Wiley (2009)Google Scholar
  2. 2.
    Li, J., Conradi, R., Slyngstad, O., Torchiano, M., Morisio, M., Bunse, C.: A State-of-the-Practice Survey of Risk Management in Development with Off-the-Shelf Software Components. IEEE Trans. Software Eng. 34(2) (2008)Google Scholar
  3. 3.
    Kenett, R.S., Baker, E.: Process Improvement and CMMI for Systems and Software: Planning, Implementation, and Management. Taylor and Francis, Auerbach Pub. (2010)Google Scholar
  4. 4.
    Ligaarden, O.S., Refsdal, A., Stolen, K.: ValidKI: A Method for Designing Key Indicators to Monitor the Fulfillment of Business Objectives. In: BUSTECH 2011 (2011)Google Scholar
  5. 5.
    Wallace, L., Keil, M.: Understanding software project risk: a cluster analysis. Inf. Manage. 42(1) (2004)Google Scholar
  6. 6.
    Franch, X., Susi, A., Annosi, M.C., Ayala, C., Glott, R., Gross, D., Kenett, R., Mancinelli, F., Ramsamy, P., Thomas, C., Ameller, D., Bannier, S., Nili Bergida, N., Blumenfeld, Y., Bouzereau, O., Costal, D., Dominguez, M., Haaland, K., López, L., Morandini, M., Siena, A.: Managing Risk in Open Source Software Adoption. In: ICSOFT 2013 (2013)Google Scholar
  7. 7.
    Salter-Townshend, M., White, A., Gollini, I., Murphy, T.B.: Review of statistical network analysis: models, algorithms and software. Statistical Analysis & Data Mining 5(4) (2012)Google Scholar
  8. 8.
    Yu, E.S.K.: Modelling strategic relationships for process reengineering. PhD thesis, University of Toronto, Toronto, Ont., Canada (1995)Google Scholar

Copyright information

© IFIP International Federation for Information Processing 2014

Authors and Affiliations

  • Xavier Franch
    • 1
  • Ron Kenett
    • 2
  • Fabio Mancinelli
    • 3
  • Angelo Susi
    • 4
  • David Ameller
    • 1
  • Ron Ben-Jacob
    • 2
  • Alberto Siena
    • 4
  1. 1.Universitat Politècnica de Catalunya (UPC)BarcelonaSpain
  2. 2.KPARaananaIsrael
  3. 3.XWikiParisFrance
  4. 4.Fondazione Bruno Kessler (FBK)TrentoItaly

Personalised recommendations