Change search
ReferencesLink to record
Permanent link

Direct link
Categorisation and formulation in risk management: Essential parts of a future Experience based Risk Management model within software engineering
Blekinge Institute of Technology, Department of Software Engineering and Computer Science.
Blekinge Institute of Technology, Department of Software Engineering and Computer Science.
2003 (English)Independent thesis Advanced level (degree of Master (One Year))Student thesisAlternative title
Kategorisering och formulering inom riskhantering : Essentiella delar av en framtida Erfarenhetsbaserad riskmanagement model inom programvaruutveckling. (Swedish)
Abstract [en]

This software engineering thesis addresses three main issues. When creating the risk documents for this master thesis project, we became even more aware of the problems with categorization and formulation of risk statements and the scope is now focusing on categorization and formulation as a necessity for Experience based Risk Management (EbRM). The EbRM process is the foundation of the thesis and the categorisation and formulation parts had to be solved before implementing the EbRM model. To give the reader a notion about the background of this work, a brief introduction to the Experience based Risk Management model is given in the thesis. The thesis is based on literature studies, experiences and experiments. The formulation system is gathered from the Software Engineering Institute (SEI) and is called the CTC-format (Condition, Transition, Consequence). This format allows you to separate conditions and consequence of the risk and thereby provides you with easier categorisation and understandability. The categorisation system used is the SEI Taxonomy Based Categorisation (TBC). A categorisation system built as a search tree where each leaf represents a rather narrow risk domain. In order to evaluate those two different systems we performed an experiment showing that the combination thereof gave a much higher match in sorting risks between different groups. The conclusions of this work are that the TBC in connection with the CTC structure forms a very good basis for risk management when it comes to categorisation and formulation. In addition to properly formulated and tagged names and a thorough process when identifying and documenting risks, the risk management will be facilitated by using our conclusions in further risk management. Oral information must as well be on a sufficient level to gain full benefits from a risk management process.

Place, publisher, year, edition, pages
2003. , 54 p.
Keyword [en]
Risk management, risk formulation, risk categorization, software engineering, documentation
National Category
Software Engineering
URN: urn:nbn:se:bth-1727Local ID: diva2:828977
Available from: 2015-05-11 Created: 2003-06-30 Last updated: 2015-06-30Bibliographically approved

Open Access in DiVA

fulltext(518 kB)19 downloads
File information
File name FULLTEXT01.pdfFile size 518 kBChecksum SHA-512
Type fulltextMimetype application/pdf

By organisation
Department of Software Engineering and Computer Science
Software Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 19 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 15 hits
ReferencesLink to record
Permanent link

Direct link