Risk Assessment of Using Open Source Projects: Analysis of the Existing Approaches

Risk Assessment of Using Open Source Projects: Analysis of the Existing Approaches

This article analyzes the existing approaches to assess and account for the components used in software, including open source software. The existing frameworks for assessing software development processes, including information security, are analyzed. The typical risks of using open source componen...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Automatic control and computer sciences 2023-12, Vol.57 (8), p.938-946
Hauptverfasser: Eremeev, M. A., Zakharchuk, I. I.
Format: Artikel
Sprache:eng
Schlagworte:
Computer Science
Control Structures and Microprogramming
Open source software
Project management
Risk assessment
Security
Software development
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This article analyzes the existing approaches to assess and account for the components used in software, including open source software. The existing frameworks for assessing software development processes, including information security, are analyzed. The typical risks of using open source components and free licenses are considered. The possibility of assessing development processes to identify threats to information security in open source projects and the need to automate this process in order to ensure the efficiency of dependence management in projects that use open components as dependencies are noted.
ISSN:0146-4116
1558-108X
DOI:10.3103/S0146411623080059