Ecosystems Effects on Software-Consuming Organizations: an experience report on two observational studies

Software engineers should have the ability to abstract the complexity of a whole system composed of products, demands and suppliers emerging from an interconnected network termed a software ecosystem (SECO). Since software suppliers resort to virtual integration, software-consuming organizations face difficulties performing IT management activities and analyzing what application or technology enter their SECO. In this context, the `silent' effects of nontechnical factors give rise to serious long-term problems, e.g., low productivity, investment loss, financial crisis, or bankruptcy. This paper presents an investigation of SECO effects on software-consuming organizations performing IT management activities in real settings. IT management teams have regular meetings to deliberate on acquisition decisions which they base on experience and IT market recommendations, including spreadsheets and distributed documents. Analysis of the decision space, business objective synergy, and technology/supplier dependency are identified as the most critical health indicators for SECO platform monitoring in IT management activities. This highlights the critical role acquisition preparation plays in the SECO context

Cloud adoption: a goal-oriented requirements engineering approach

The enormous potential of cloud computing for improved and cost-effective service has generated unprecedented interest in its adoption. However, a potential cloud user faces numerous risks regarding service requirements, cost implications of failure and uncertainty about cloud providers’ ability to meet service level agreements. These risks hinder the adoption of cloud computing. We motivate the need for a new requirements engineering methodology for systematically helping businesses and users to adopt cloud services and for mitigating risks in such transition. The methodology is grounded in goal-oriented approaches for requirements engineering. We argue that Goal-Oriented Requirements Engineering (GORE) is a promising paradigm to adopt for goals that are generic and flexible statements of users’ requirements, which could be refined, elaborated, negotiated, mitigated for risks and analysed for economics considerations. The methodology can be used by small to large scale organisations to inform crucial decisions related to cloud adoption. We propose a risk management framework based on the principle of GORE. In this approach, we liken risks to obstacles encountered while realising cloud user goals, therefore proposing cloud-specific obstacle resolution tactics for mitigating identified risks. The proposed framework shows benefits by providing a principled engineering approach to cloud adoption and empowering stakeholders with tactics for resolving risks when adopting the cloud. We extend the work on GORE and obstacles for informing the adoption process. We argue that obstacles’ prioritisation and their resolution is core to mitigating risks in the adoption process. We propose a novel systematic method for prioritising obstacles and their resolution tactics using Analytical Hierarchy Process (AHP). To assess the AHP choice of the resolution tactics we support the method by stability and sensitivity analysis

A value and debt aware framework for evaluating compliance in software systems

Today's software systems need to be aligned with relevant laws and other prevailing regulations to control compliance. Compliance refers to the ability of a system to satisfy its functional and quality goals to levels that are acceptable to predefined standards, guidelines, principles, legislation or other norms within the application domain. Addressing compliance requirements at an early stage of software development is vital for successful development as it saves time, cost, resources and the effort of repairing software defects. We argue that the management of compliance and compliance requirements is ultimately an investment activity that requires value-driven decision-making. The work presented in this thesis revolves around improving decision support for compliance by making them value, risk and risk aware. Specifically, this thesis presents an economics-driven approach, which leverages on goal-oriented requirements engineering with portfolio-based thinking and technical debt analysis to enhance compliance related decisions at design-time. The approach is value driven and systematic; it leverages on influential work of portfolio thinking and technical to make the link between compliance requirements, risks, value and debt explicit to software engineers. The approach is evaluated with two case studies to illustrate its applicability and effectiveness

Managing mismatches in COTS-based development

EThOS - Electronic Theses Online ServiceGBUnited Kingdo