Abstract
The SPICE-R risk model defines a binary correlation between a list of generic risks and the ISO/IEC TR 15504 processes. The likelihood for a given risk depends on the gaps between the target or required capability level and the capability level actually achieved for the correlated processes. Process Risk Factors (PRF) are applied to modulate the influence of gaps at the different process attributes. Concepts from the S:PRIME risk method, the SPEC study project and the Risk Taxonomy defined by the Software Engineering Institute were used as input to define the risk vs. process matrix.
The method for risk likelihood calculation defines the process-oriented probability calculation and maps the results on the probability-scaling scheme as recommended by standards for space industry. The method follows a quantitative implementation of the path outlined in ISO/IEC TR 15504-8.
The risk impact estimate is subject to the expert judgement of managers, assessment team, and other experts within the organisation as a universal method is not applicable in this case. ISO/IEC TR 15504-8 provides some guidance to estimate the impact with regard to capability levels at which the related processes were not Fully or Largely achieved.
The product of the likelihood by the impact defines the risk magnitude as a basis for acceptable and non-acceptable risk ranking. All unacceptable risks are submitted to risk reduction (mitigation and/or prevention) as defined in ECSS risk management paradigm. This risk reduction may imply process improvement activities following the an ISO 15504 assessment.
The method is expected to provide a new view on process assessment results, which highlights the most significant software process risks and focuses process improvement activities on the key problems of the organisation.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
ISO/IEC TR 15504:1998(E), Information Technology - Software Process Assessment. Type 2 Technical Report.
ISO/IEC TR 15504–8:1998(E), Information Technology - Software Process Assessment, Part 8: Guide for Use in Capability Determination. Type 2 Technical Report.
Völcker C., Cass A., and Tréhin, Y., TN8 of ESA study contract No 10662/93/NL/NB WO6–CCN5: “Guidelines for Space Software Process Improvement”. Technical Note 8, Issue 1.0 Draft B, 29. 03. 01.
Combelles, A., Tréhin Y., and Larnac, M., TN11 of ESA study contract No 10662/93/NL/NB WO6–CCN5: “Recommendations for the use of Risk Management in Space Software Projects”, Technical Note 11, Issue 3.0, 26. 10. 00.
SPEC/TN3: “Space Domain Specific Software Product Quality Models, Requirements and Related Evaluation Methods”. Technical Note No. 3, Issue 3.0, Draft A, November 5, 1999.
Sisti, F. et al., “Software Risk Evaluation Method, Version 1.0”, Technical Report CMU/SEI-94-TR-19, ESC-TR, 94–019.
ECSS-M-00–03 Draft 7: Space Product Management - Risk Management. ESA-ESTEC Requirements & Standards Division, Noordwijk, 22. 2. 2000.
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2002 Springer Fachmedien Wiesbaden
About this chapter
Cite this chapter
Völcker, C., Stienen, H., Ouared, R. (2002). Taking SpiCE to the Third Dimension: Adding Risk Analysis to ISO/IEC TR 15504. In: Dumke, R., Rombach, D. (eds) Software-Messung und -Bewertung. Information Engineering und IV-Controlling. Deutscher Universitätsverlag, Wiesbaden. https://doi.org/10.1007/978-3-663-11381-2_11
Download citation
DOI: https://doi.org/10.1007/978-3-663-11381-2_11
Publisher Name: Deutscher Universitätsverlag, Wiesbaden
Print ISBN: 978-3-8244-7592-6
Online ISBN: 978-3-663-11381-2
eBook Packages: Springer Book Archive