Title :
Source-based software risk assessment
Author :
Van Deursen, Arie ; Kuipers, Tobias
Author_Institution :
CWI, Amsterdam, Netherlands
Abstract :
The paper reports on a method for software risk assessments that take into account "primary facts" and "secondary facts". Primary facts are those obtained through automatically analyzing the source code of a system, and secondary facts are those facts obtained from people working with or on the system, and available documentation. We describe how both types of facts are retrieved, and how we are bridging the interpretation gap from the raw facts (either primary or secondary) to a concise risk assessment, which includes recommendations to minimize the risk. This method has been developed while performing numerous risk assessments, and is continuously being fine-tuned.
Keywords :
risk management; software maintenance; software reliability; system documentation; documentation; source based software risk assessment; system source code; Documentation; Feedback; Information retrieval; Inspection; Packaging; Paper technology; Risk management; Security; Software maintenance; Software systems;
Conference_Titel :
Software Maintenance, 2003. ICSM 2003. Proceedings. International Conference on
Print_ISBN :
0-7695-1905-9
DOI :
10.1109/ICSM.2003.1235448
