Skip to main content
SpringerLink
Log in

A New Compound Metric for Software Risk Assessment

  • Chapter
Book cover Software Engineering Research, Management and Applications 2010

Part of the book series: Studies in Computational Intelligence ((SCI,volume 296))

  • 526 Accesses

Abstract

Many different methods have been proposed for software risk analysis and assessment. These methods can be categorized in 3 groups: some methods are based on business owners and developers estimation about the probability and damage of a risk; some are based on software architecture analysis (using design diagrams), and some are based on source-code analysis. Each one of these approaches has some advantages and disadvantages, but none of them cover all risky aspects of a software project. The reason to this is that from one point of view software development is a heuristic process and it requires developers’ heuristic analysis and opinions. But from another point of view there is a high probability that these opinions contain faulty evaluations. In this paper we propose an approach based on combining different metrics which are obtained from all three approaches of risk analysis. In our approach both Risk Probability and Risk Damage are obtained using this compound technique. The architectural risk of the components is calculated based on the cyclomatic complexity of the statecharts; the source-based risk is obtained by a code weight association technique and these values are aggregated with the analysts opinions to produce the risk model. We provide a case study to present the results of our approach.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 109.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Tao, Y.: A Study of Software Development Project Risk Management. In: Proceedings of the 2008 International Seminar on Future Information Technology and Management Engineering, pp. 309–312 (2008)

    Google Scholar 

  2. Larman, C.: Applying UML and Patterns: An Introduction to Object-Oriented Analysis and Design and Iterative Development, 3rd edn. Addison Wesley, Reading (2004)

    Google Scholar 

  3. Pressman, R.S.: Software Engineering: A Practitioner’s Approach, 5th edn. McGraw-Hill, New York (2001)

    Google Scholar 

  4. Popstojanova, K.G.: Architectural-Level Risk Analysis Using UML. IEEE Transactions on Software Engineering 29(6), 946–960 (2003)

    Article  Google Scholar 

  5. Yacoub, S.M., Ammar, H.H.: A Methodology for Architecture-Level Reliability Risk Analysis. IEEE Transactions on Software Engineering 28(6), 529–547 (2002)

    Article  Google Scholar 

  6. Khoshgoftaar, T.M., Seliya, N., Liu, Y.: Genetic Programming-Based Decision Trees for Software Quality Classification. In: Proceedings of 15th IEEE International Conference on Tools with Artificial Intelligence, pp. 374–383 (2003)

    Google Scholar 

  7. NASA Safety Manual NPG 8719.13A, Software Safety (1997)

    Google Scholar 

  8. Wong, W.E., Qi, Y., Cooper, K.: Source Code-Based Software Risk Assessing. In: Proceedings of the 2005 ACM symposium on Applied computing, pp. 1485–1490 (2005)

    Google Scholar 

  9. Deursen, A., Kuipers, T.: Source-based software risk assessment. In: Proceedings of the International Conference on Software Maintenance, p. 385 (2003)

    Google Scholar 

  10. McCabe, T.J.: A Complexity Metrics. IEEE Transactions on Software Engineering 2(4), 308–320 (1976)

    Article  MathSciNet  Google Scholar 

  11. Khan, S.: An approach to facilitate software risk identification. In: Proceedings of 2nd International Conference on Computer, Control and Communication, pp. 1–5 (2009)

    Google Scholar 

  12. Emam, K.E., Melo, W.: The Prediction of Faulty Classes Using Object-Oriented Design Metrics. Technical Report NRC 43609, Nat’l. Research Council Canada, Inst. For Information Technology (1999)

    Google Scholar 

  13. Bass, L., Nord, R., Wood, W., Zubrow, D.: Risk Themes Discovered through Architecture Evaluations. In: Proceedings of the Working IEEE/IFIP Conference on Software Architecture, pp. 1–10 (2007)

    Google Scholar 

  14. Cortellessa, V., Popstojanova, K.G., Appukkutty, K., Guedem, A.R., Hassan, A., Elnaggar, R., Abdelmoez, W., Ammar, H.H.: Model-based performance risk analysis. IEEE Transactions on Software Engineering 31(1), 3–20 (2005)

    Article  Google Scholar 

  15. Cheung, L., Roshandel, R., Medvidovic, N., Golubchik, L.: Early prediction of software component reliability. In: Proceedings of the 30th international conference on Software engineering, pp. 111–120 (2008)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science, Ryerson University, 350 Victoria Street, Toronto, Ontario, M5B 2K3, Canada

    Ahmad Hosseingholizadeh & Abdolreza Abhari

Authors
  1. Ahmad Hosseingholizadeh
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Abdolreza Abhari
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Software Engineering & Information Technology Institute, Computer Science Department, Central Michigan University, 48859, Mt. Pleasant, MI, U.S.A.

    Roger Lee

  2. Concordia University, Montreal, Canada

    Olga Ormandjieva  & Constantinos Constantinides  & 

  3. Université du Québec, Montreal, Canada

    Alain Abran

Rights and permissions

Reprints and permissions

Copyright information

© 2010 Springer-Verlag Berlin Heidelberg

About this chapter

Cite this chapter

Hosseingholizadeh, A., Abhari, A. (2010). A New Compound Metric for Software Risk Assessment. In: Lee, R., Ormandjieva, O., Abran, A., Constantinides, C. (eds) Software Engineering Research, Management and Applications 2010. Studies in Computational Intelligence, vol 296. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-13273-5_8

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-13273-5_8

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-13272-8

  • Online ISBN: 978-3-642-13273-5

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation