DOI: https://doi.org/10.32515/2409-9392.2018.31.128-140

Risk Management Software Development, Subject to the Limited Funds Allocated to the Elimination of Security Errors

Oleksandr Kovalenko

About the Authors

Oleksandr Kovalenko, Associate Professor, PhD in Technics (Candidate of Technics Sciences), Central Ukranian National Technical University, Kropyvnytskyi, Ukraine, E-mail: Clashav@gmail.com

Abstract

The conducted researches showed that risk management of software development consists in the early detection of financial, technical, psychological and other related risks. hazards, and taking measures to reduce the risk by deliberately changing these factors, taking into account the effectiveness of the measures taken. Risk management software development includes a system of measures that are carried out both to the occurrence of a negative event and after its implementation. However, as studies have shown, preventive analysis and taking into account the majority of possible operational errors will reduce financial and other issues. expenses in the life cycle of software development. The purpose of the work is to develop a method for managing the risks of software development, provided that the funds allocated to eliminate security errors are limited. In this paper, the problem of risk management of software development on the condition of limited funds (financial, technical, etc.), allocated for the elimination of security errors, is considered as a semi-Markov decision making model for a managed process in a continuous time with a criterion for minimizing the cost of eliminating anomalies. To solve the problem, we propose a method for managing the risks of software development, which differs from the known use of pseudo-Boolean methods of bivalent programming with a nonlinear target function and linear constraints to determine the optimal strategy for eliminating operational errors. As an example, situations of software security error occurrence are considered and an optimal management strategy is identified for eliminating this abnormal situation. The conducted studies have shown that the theoretical positions used in this paper adequately reflect the standards and capabilities of modern software testing methods. It should be noted that the method presented in the work should be used not only in the management of software security risks, but also in functional, load, stress and other types of testing to prevent possible costs.

Keywords

software development, risk management, pseudo-Boolean method

Full Text:

PDF

References

Krishnan, M. (2015). Soumya Software Development Risk Aspects and Success Frequency on Spiral and Agile Model. International Journal of Innovative Research in Computer and Communication Engineering (An ISO 3297: 2007 Certified Organization), 3 (1), 301-310.

Zeng, Y. (2010). Risk Management For Enterprise Resource Planning System Implementations in Project-Based Firms. Candidate’s thesis. Maryland.

Britkin, A.I. (2007). Riski, svjazannye s vnedreniem tehnologij, v proektah razrabotki programmnogo obespechenija [Risks associated with the introduction of technology in software development projects]. Social'no-jekonomicheskie i tehnicheskie sistemy – Socio-economic and engineering systems, 8 (42), 156-168.

Kovalenko, O.V., Smirnov, O.A. & Kovalenko, A.S. (2014). Zadachi raspoznavanija situacij v ERP sistemah [Problem recognition situations in ERP systems]. Sistemi obrobki іnformacії – Information Processing Systems, 4(120), 161-164.

Kovalenko, O.V. & Smirnov, A.A. (2016). Metody kachestvennogo analiza i kolichestvennoj ocenki riskov razrabotki programmnogo obespechenija [Methods of qualitative analysis and quantitative risk assessment software development]. Sistemi obrobki іnformacії – Information Processing Systems, 5(142), 153 - 157.

Kovalenko, O.V., Smirnov, O.A., Jakimenko, N.N. & Dorenskij, O.P. (2016). Metod kolichestvennoj ocenki riskov razrabotki programmnogo obespechenija [Method of quantitative risk assessment software development]. Zbіrnik naukovih prac' Harkіvs'kogo unіversitetu Povіtrjanih Sil – Scientific Works of Kharkiv National Air Force University, 2 (47), 128-133.

Budnikov, S.A. (2009). Polumarkovskaja model' slozhnogo konflikta radiojelektronnyh sistem [The semi-Markov model of a complex conflict of electronic systems]. Technological process control methods and tools ‘9: V Mezhdunarodna konferencia (19-21 nojabrja 2009 hoda.) – 5 International Conference (pp. 201-223). Saransk.

Litvinenko, K.V. (2014). Polumarkovskij gipersluchajnyj podhod k ocenke riskov sistem [The Semi - Markov hyper casual approach to the estimation of risks of systems]. Zbіrnik naukovih prac' ODATRJa – Collection of scientific works of the OSATRQ, 1(4), 77-80.

Gnedenko, B.V. & Kovalenko, I.N. (2005). Introduction to queuing theory. (3d ed.). Moscow: Komkniga.

GOST Style Citations

  1. Krishnan M. Soumya Software Development Risk Aspects and Success Frequency on Spiral and Agile Model [Text] / M. Soumya Krishnan // International Journal of Innovative Research in Computer and Communication Engineering (An ISO 3297: 2007 Certified Organization) Vol. 3, Issue 1, January 2015. – Р.301-310.
  2. Zeng Y. Risk Management For Enterprise Resource Planning System Implementations in Project-Based Firms : dis. for the degree of PHD [Text] / Zeng Yajun, Maryland, 2010 – Р. 210.
  3. Бриткин А.И. Риски, связанные с внедрением технологий, в проектах разработки программного обеспечения [Текст] / А. Бриткин // Социально-экономические и технические системы. – 2007. – № 8 (42).
  4. Коваленко А.В. Задачи распознавания ситуаций в ERP системах [Текст] / А.В. Коваленко, А.А. Смирнов, А.С. Коваленко // Збірник наукових праць "Системи обробки інформації". – Вип. 4(120). – Х.: ХУПС, 2014. – С. 161-164.
  5. Коваленко А.В. Методы качественного анализа и количественной оценки рисков разработки программного обеспечения [Текст] / А.А. Смирнов, А.В. Коваленко // Збірник наукових праць "Системи обробки інформації". – Вип. 5(142). – Х.: ХУПС, 2016. – С. 153-157.
  6. Метод количественной оценки рисков разработки программного обеспечения [Текст] / А.А. Смирнов, А.В. Коваленко, Н.Н. Якименко, А.П. Доренский // Збірник наукових праць Харківського університету Повітряних Сил. –2016. – № 2. – С. 128-133.
  7. Будников С.А. Полумарковская модель сложного конфликта радиоэлектронных систем [Текст] / Методы и средства управления технологическими процессами: материалы V Международной конференции (19 – 21 ноября 2009 года). – Саранск, 2009. – С. 201-223.
  8. Литвиненко К.В. Полумарковский гиперслучайный подход к оценке рисков систем [Текст] / К.В. Литвиненко // Збірник наук. праць ОДАТРЯ. – 2014. – №1(4). – С.77-80
  9. Гнеденко Б.В. Введение в теорию массового обслуживания . – изд. 3-е, испр. и доп. [Текст] / Б.В. Гнеденко, И.Н. Коваленко. – М.: КомКнига, 2005. − 400 с
Copyright (c) 2018 Oleksandr Kovalenko