Risk Assessment of Using Open Source Projects: Analysis of the Existing Approaches

Risk Assessment of Using Open Source Projects: Analysis of the Existing Approaches

연구 분야: Analysis

학회: Automatic Control and Computer Sciences

This article analyzes the existing approaches to assess and account for the components used in software, including open source software. The existing frameworks for assessing software development processes, including information security, are analyzed. The typical risks of using open source components and free licenses are considered. The possibility of assessing development processes to identify threats to information security in open source projects and the need to automate this process in order to ensure the efficiency of dependence management in projects that use open components as dependencies are noted.