Abstract
Risk assessment is dependent on its application domain. Risk values consist of probability and impact factors, but there is no fixed, unique guideline for the determination of these two factors. For a precise risk-value calculation, an adequate collection of factors is crucial. In this paper, we show the evolution from the first phase until the application of a risk assessment approach in the area of an international insurance company. In such a risk-aware field we have to systematically determine relevant factors and their severity. The final results are melted into a calculation tool that is embedded in the companies development process and used for decision support system. This paper shows the results and observations for the whole implementation process achieved via action research.
Keywords
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsReferences
Felderer, M., Haisjackl, C., Breu, R., Motz, J.: Integrating manual and automatic risk assessment for risk-based testing. In: Biffl, S., Winkler, D., Bergsmann, J. (eds.) SWQD 2012. LNBIP, vol. 94, pp. 159–180. Springer, Heidelberg (2012)
Felderer, M., Haisjackl, C., Pekar, V., Breu, R.: A risk assessment framework for software testing. In: Margaria, T., Steffen, B. (eds.) ISoLA 2014, Part II. LNCS, vol. 8803, pp. 292–308. Springer, Heidelberg (2014)
Boehm, B.W.: Software risk management: principles and practices. Softw. IEEE 8(1), 32–41 (1991)
Sulaman, S.M., Weyns, K., Höst, M.: A review of research on risk analysis methods for it systems. In: Proceedings of the 17th International Conference on Evaluation and Assessment in Software Engineering, EASE 2013, pp. 86–96. ACM, New York (2013)
Erdogan, G., Li, Y., Runde, R.K., Seehusen, F., Stølen, K.: Approaches for the combined use of risk analysis and testing: a systematic literature review. Int. J. Softw. Tools Technol. Transf. 16(5), 627–642 (2014)
Felderer, M., Haisjackl, C., Pekar, V., Breu, R.: An exploratory study on risk estimation in risk-based testing approaches. In: Winkler, D., Biffl, S., Bergsmann, J. (eds.) SWQD 2015. LNBIP, vol. 200, pp. 32–43. Springer, Heidelberg (2015)
Iversen, J.H., Mathiassen, L., Nielsen, P.A.: Managing risk in software process improvement: an action research approach. Mis Quart. 28(3), 395–433 (2004)
Lindholm, C., Notander, J.P., Höst, M.: A case study on software risk analysis in medical device development. In: Biffl, S., Winkler, D., Bergsmann, J. (eds.) SWQD 2012. LNBIP, vol. 94, pp. 143–158. Springer, Heidelberg (2012)
Felderer, M., Ramler, R.: Experiences and challenges of introducing risk-based testing in an industrial project. In: Winkler, D., Biffl, S., Bergsmann, J. (eds.) SWQD 2013. LNBIP, vol. 133, pp. 10–29. Springer, Heidelberg (2013)
Felderer, M., Ramler, R.: Integrating risk-based testing in industrial test processes. Softw. Qual. J. 22(3), 543–575 (2014)
Felderer, M., Ramler, R.: A multiple case study on risk-based testing in industry. Int. J. Softw. Tools Technol. Transf. 16(5), 609–625 (2014)
Runeson, P., Host, M., Rainer, A., Regnell, B.: Case Study Research in Software Engineering: Guidelines and Examples. Wiley, Hoboken (2012)
Rausch, A., Bartelt, C., Ternité, T., Kuhrmann, M.: The v-modell xt applied-model-driven and document-centric development. In: 3rd World Congress for Software Quality, vol. 3, pp. 131–138. Citeseer (2005)
Easterbrook, S., Singer, J., Storey, M.A., Damian, D.: Selecting empirical methods for software engineering research. Guide to Advanced Empirical Software Engineering, pp. 285–311. Springer, London (2008)
Davison, R., Martinsons, M.G., Kock, N.: Principles of canonical action research. Inf. Syst. J. 14(1), 65–86 (2004)
Black, R., Mitchell, J.L.: Advanced Software Testing-vol. 3: Guide to the ISTQB Advanced Certification as an Advanced Technical Test Analyst. Rocky Nook, Santa Barbara (2011)
ISO: ISO 31000 - risk management
Cunningham, J.B.: Action Research and Organizational Development. Praeger, Westport (1993)
Rapp, D., Hess, A., Seyff, N., Peter Spoerri, E.F., Glinz, M.: Lightweight requirements engineering assessments in software projects. In: RE 2014. IEEE (2014)
ISO/IEC: ISO/IEC 25010:2011 systems and software engineering-systems and software quality requirements and evaluation (square)-system and software quality models (2011)
Baskerville, R.L.: Investigating information systems with action research. Commun. AIS, 2(3es) (1999)
Felderer, M., Schieferdecker, I.: A taxonomy of risk-based testing. Int. J. Softw. Tools Technol. Transf. 16(5), 559–568 (2014)
Acknowledgements
This research was partially funded by the research projects MOBSTECO (FWF P 26194-N15) and QE LaB - Living Models for Open Systems (FFG 822740).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2016 Springer International Publishing Switzerland
About this paper
Cite this paper
Pekar, V., Felderer, M., Breu, R., Nickl, F., Roßik, C., Schwarcz, F. (2016). Integrating a Lightweight Risk Assessment Approach into an Industrial Development Process. In: Winkler, D., Biffl, S., Bergsmann, J. (eds) Software Quality. The Future of Systems- and Software Development. SWQD 2016. Lecture Notes in Business Information Processing, vol 238. Springer, Cham. https://doi.org/10.1007/978-3-319-27033-3_13
Download citation
DOI: https://doi.org/10.1007/978-3-319-27033-3_13
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-27032-6
Online ISBN: 978-3-319-27033-3
eBook Packages: Computer ScienceComputer Science (R0)