research-article

Risky files: an approach to focus quality improvement effort

Authors:

Audris Mockus,

Randy Hackbarth,

John PalframanAuthors Info & Claims

ESEC/FSE 2013: Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering

Pages 691 - 694

https://doi.org/10.1145/2491411.2494572

Published: 18 August 2013 Publication History

Get Access

Abstract

As the development of software products frequently transitions among globally distributed teams, the knowledge about the source code, design decisions, original requirements, and the history of troublesome areas gets lost. A new team faces tremendous challenges to regain that knowledge. In numerous projects we observed that only 1% of project files are involved in more than 60% of the customer reported defects (CFDs), thus focusing quality improvement on such files can greatly reduce the risk of poor product quality. We describe a mostly automated approach that annotates the source code at the file and module level with the historic information from multiple version control, issue tracking, and an organization's directory systems. Risk factors (e.g, past changes and authors who left the project) are identified via a regression model and the riskiest areas undergo a structured evaluation by experts. The results are presented via a web-based tool and project experts are then trained how to use the tool in conjunction with a checklist to determine risk remediation actions for each risky file. We have deployed the approach in seven projects in Avaya and are continuing deployment to the remaining projects as we are evaluating the results of earlier deployments. The approach is particularly helpful to focus quality improvement effort for new releases of deployed products in a resource-constrained environment.

References

[1]

M. Cataldo, A. Mockus, J. A. Roberts, and J. D. Herbsleb. Software dependencies, the structure of work dependencies and their impact on failures. IEEE Transactions on Software Engineering, 2009.

Digital Library

Google Scholar

[2]

H.-F. Chang and A. Mockus. Constructing universal version history. In ICSE’06 Workshop on Mining Software Repositories, pages 76–79, Shanghai, China, May 22-23 2006.

Digital Library

Google Scholar

[3]

T. L. Graves, A. F. Karr, J. S. Marron, and H. Siy. Predicting fault incidence using software change history. IEEE Transactions on Software Engineering, 26(2), 2000.

Digital Library

Google Scholar

[4]

R. Hackbarth, A. Mockus, J. Palframan, and D. Weiss. Assessing the state of software in a large enterprise. Journal of Empirical Software Engineering, 10(3):219–249, 2010.

Digital Library

Google Scholar

[5]

Y. Kamei, E. Shihab, B. Adams, A. E. Hassan, A. Mockus, A. Sinha, and N. Ubayashi. A large-scale empirical study of just-in-time quality assurance. IEEE Transactions on Software Engineering, 2013.

Digital Library

Google Scholar

[6]

A. Mockus. Large-scale code reuse in open source software. In ICSE’07 Intl. Workshop on Emerging Trends in FLOSS Research and Development, Minneapolis, Minnesota, May 21 2007.

Digital Library

Google Scholar

[7]

A. Mockus. Software support tools and experimental work. In V. Basili and et al, editors, Empirical Software Engineering Issues: Critical Assessments and Future Directions, volume LNCS 4336, pages 91–99. Springer, 2007.

Digital Library

Google Scholar

[8]

A. Mockus. Amassing and indexing a large sample of version control systems: towards the census of public source code history. In 6th IEEE Working Conference on Mining Software Repositories, May 16–17 2009.

Digital Library

Google Scholar

[9]

A. Mockus. Succession: Measuring transfer of code and developer productivity. In 2009 International Conference on Software Engineering, Vancouver, CA, May 12–22 2009. ACM Press.

Digital Library

Google Scholar

[10]

A. Mockus. Organizational volatility and its effects on software defects. In ACM SIGSOFT / FSE, pages 117–126, Santa Fe, New Mexico, November 7–11 2010.

Digital Library

Google Scholar

[11]

A. Mockus. Quantifying and conveying risk in software development. In 1st Symposium on Mining Software Archives, Monte Verita, Switzerland, March 10-15 2013. Keynote.

Google Scholar

[12]

A. Mockus, N. Nagappan, and T. Dinh-Trong, Trung. Test coverage and post-verification defects: A multiple case study. In International Conference on Empirical Software Engineering and Measurement, Lake Buena Vista, Florida USA, October 2009. ACM.

Digital Library

Google Scholar

[13]

A. Mockus and D. M. Weiss. Predicting risk of software changes. Bell Labs Technical Journal, 5(2):169–180, April–June 2000.

Crossref

Google Scholar

[14]

E. Shihab, A. Mockus, Y. Kamei, B. Adams, and A. E. Hassan. High-impact defects: a study of breakage and surprise defects. In Proceedings of the 19th ACM SIGSOFT symposium and the 13th European conference on Foundations of software engineering, ESEC/FSE ’11, pages 300–310, New York, NY, USA, 2011. ACM.

Digital Library

Google Scholar

Cited By

View all

Dey TMockus A(2020)Deriving a usage-independent software quality metricEmpirical Software Engineering10.1007/s10664-019-09791-wOnline publication date: 19-Feb-2020
https://doi.org/10.1007/s10664-019-09791-w
Dey TMockus ATurhan BTosun AMcIntosh S(2018)Modeling Relationship between Post-Release Faults and Usage in Mobile SoftwareProceedings of the 14th International Conference on Predictive Models and Data Analytics in Software Engineering10.1145/3273934.3273941(56-65)Online publication date: 10-Oct-2018
https://dl.acm.org/doi/10.1145/3273934.3273941
Hackbarth RMockus APalframan JSethi R(2016)Improving Software Quality as Customers Perceive ItIEEE Software10.1109/MS.2015.7633:4(40-45)Online publication date: Jul-2016
https://doi.org/10.1109/MS.2015.76
Show More Cited By

Index Terms

Risky files: an approach to focus quality improvement effort

Recommendations

Software Effort, Quality, and Cycle Time: A Study of CMM Level 5 Projects

The Capability Maturity Model (CMM) has become a popular methodology for improving software development processes with the goal of developing high-quality software within budget and planned cycle time. Prior research literature, while not exclusively ...
Risky trust: risk-based analysis of software systems

Measuring the security of a software system is a difficult problem. This paper presents a model using common security concepts to evaluate the security of a system under design. After providing definitions for all relevant concepts and formalizing some ...
The total quality assurance networking model for preventing defects: building an effective quality assurance system using a total QA network
ICOSSSE'10: Proceedings of the 9th WSEAS international conference on System science and simulation in engineering

The researchers construct a defect occurrence prevention technique called the Total QA Network Model that uses a combination of quality assurance tools and establishes partnerships. Their focus is on integrated quality assurance spanning different ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

ESEC/FSE 2013: Proceedings of the 2013 9th Joint Meeting on Foundations of Software Engineering

August 2013

738 pages

ISBN:9781450322379

DOI:10.1145/2491411

General Chair:
Bertrand Meyer
ETH Zurich, Switzerland
,
Program Chairs:
Luciano Baresi
Politecnico di Milano, Italy
,
Mira Mezini
TU Darmstadt, Germany

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 18 August 2013

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ESEC/FSE'13

Sponsor:

SIGSOFT

ESEC/FSE'13: Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering

August 18 - 26, 2013

Saint Petersburg, Russia

Acceptance Rates

Overall Acceptance Rate 112 of 543 submissions, 21%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

5
Total Citations
View Citations
267
Total Downloads

Downloads (Last 12 months)5
Downloads (Last 6 weeks)0

Reflects downloads up to 23 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Dey TMockus A(2020)Deriving a usage-independent software quality metricEmpirical Software Engineering10.1007/s10664-019-09791-wOnline publication date: 19-Feb-2020
https://doi.org/10.1007/s10664-019-09791-w
Dey TMockus ATurhan BTosun AMcIntosh S(2018)Modeling Relationship between Post-Release Faults and Usage in Mobile SoftwareProceedings of the 14th International Conference on Predictive Models and Data Analytics in Software Engineering10.1145/3273934.3273941(56-65)Online publication date: 10-Oct-2018
https://dl.acm.org/doi/10.1145/3273934.3273941
Hackbarth RMockus APalframan JSethi R(2016)Improving Software Quality as Customers Perceive ItIEEE Software10.1109/MS.2015.7633:4(40-45)Online publication date: Jul-2016
https://doi.org/10.1109/MS.2015.76
Duc AMockus AHackbarth RPalframan JMorisio MDybå TTorchiano M(2014)Forking and coordination in multi-platform developmentProceedings of the 8th ACM/IEEE International Symposium on Empirical Software Engineering and Measurement10.1145/2652524.2652546(1-10)Online publication date: 18-Sep-2014
https://dl.acm.org/doi/10.1145/2652524.2652546
Mockus AHerbsleb JDwyer MHerbsleb J(2014)Engineering big data solutionsFuture of Software Engineering Proceedings10.1145/2593882.2593889(85-99)Online publication date: 31-May-2014
https://dl.acm.org/doi/10.1145/2593882.2593889

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Software Effort, Quality, and Cycle Time: A Study of CMM Level 5 Projects

Risky trust: risk-based analysis of software systems

The total quality assurance networking model for preventing defects: building an effective quality assurance system using a total QA network