A Layered Approach to Managing Risks in OSS Projects

TitleA Layered Approach to Managing Risks in OSS Projects
Publication TypeBook Chapter
Year of Publication2014
AuthorsFranch, X, Kenett, R, Mancinelli, F, Susi, A, Ameller, D, Ben-Jacob, R, Siena, A
Secondary AuthorsCorral, L, Sillitti, A, Succi, G, Vlasenko, J, Wasserman, AI
Secondary TitleOpen Source Software: Mobile Open Source Technologies
Series TitleIFIP Advances in Information and Communication Technology
PublisherSpringer Berlin Heidelberg
ISBN Number978-3-642-55127-7
KeywordsLayered Model, open source, OSS, Risk Management

In this paper, we propose a layered approach to managing risks in OSS projects. We define three layers: the first one for defining risk drivers by collecting and summarising available data from different data sources, including human-provided contextual information; the second layer, for converting these risk drivers into risk indicators; the third layer for assessing how these indicators impact the business of the adopting organisation. The contributions are: 1) the complexity of gathering data is isolated in one layer using appropriate techniques, 2) the context needed to interpret this data is provided by expert involvement evaluating risk scenarios and answering questionnaires in a second layer, 3) a pattern-based approach and risk reasoning techniques to link risks to business goals is proposed in the third layer.

Full Text