Publications (4)2.59 Total impact
- IEEE Trans. Software Eng. 01/2005; 31:3-20.
- [show abstract] [hide abstract]
ABSTRACT: Risk assessment is an essential part in managing software development. Performing risk assessment during the early development phases enhances resource allocation decisions. In order to improve the software development process and the quality of software products, we need to be able to build risk analysis models based on data that can be collected early in the development process. These models will help identify the high-risk components and connectors of the product architecture, so that remedial actions may be taken in order to control and optimize the development process and improve the quality of the product. In this paper, we present a risk assessment methodology which can be used in the early phases of the software life cycle. We use the Unified Modeling Language (UML) and commercial modeling environment Rational Rose Real Time (RoseRT) to obtain UML model statistics. First, for each component and connector in software architecture, a dynamic heuristic risk factor is obtained and severity is assessed based on hazard analysis. Then, a Markov model is constructed to obtain scenarios risk factors. The risk factors of use cases and the overall system risk factor are estimated using the scenarios risk factors. Within our methodology, we also identify critical components and connectors that would require careful analysis, design, implementation, and more testing effort. The risk assessment methodology is applied on a pacemaker case study.IEEE Transactions on Software Engineering 11/2003; 29(10):946- 960. · 2.59 Impact Factor
Conference Proceeding: Architectural Level Risk Assessment Tool Based on UML Specifications.[show abstract] [hide abstract]
ABSTRACT: Recent evidences indicate that most faults in software systems are found in only a few of a system's components . The early identification of these components allows an organization to focus on defect detection activities on high risk components, for example by optimally allocating testing resources , or redesigning components that are likely to cause field failures. This paper presents a prototype tool called Architecture-level Risk Assessment Tool (ARAT) based on the risk assessment methodology presented in . The ARAT provides risk assessment based on measures obtained from Unified Modeling Language (UML) artifacts . This tool can be used in the design phase of the software development process. It estimates dynamic metrics  and automatically analyzes the quality of the architecture to produce architectural-level software risk assessment .Proceedings of the 25th International Conference on Software Engineering, May 3-10, 2003, Portland, Oregon, USA; 01/2003
- IEEE Trans. Software Eng. 01/2003; 29:946-960.