More

    A Software Crisis Waiting to Happen

    When it comes to managing software many IT organizations are between the proverbial rock and a hard place. The business is more dependent on software than ever before and yet most of that software has never been more fragile.

    The reason for that fragility is most applications these days are made of independent modules that not only can be running in completely different data centers, but were also developed by some third party with little to no involvement with the IT organization tasked with running them.

    As a result, there are frequently large numbers of defects in software that have to be fixed at great cost before they have an adverse impact on the business. In fact, a survey of 336 influencers of software development projects conducted by Forrester Consulting on behalf of Coverity, a provider of application testing tools, finds that 40 percent of them have had issues with third-party code and, most surprisingly, only 35 percent manually review that code. And yet, the survey also finds that 74 percent said developers are being held more responsible for the quality of their applications.

    The trouble is that in this age of borderless applications there is an assumption that someone else checked the quality of third-party software that developers have routinely begun to embed in their applications.

    Dave Peterson, chief marketing officer for Coverity, says this lack of governance over software development is a crisis waiting to happen. Right now, companies chalk these defects up to so-called “technical debt” that result in expensive updates to applications that are already in production. But given the pervasiveness of software in business, it’s only a matter of time before something truly catastrophic occurs.

    Unfortunately, if history is any guide, it’s not until that crisis occurs that companies get serious about mitigating the risks that led to the crisis occurring. And even then, it’s not until some government or standards organization creates a specific regulation to address that issue that anything gets done proactively about it.

    There are, of course, project deadlines to be met. But right now a fair amount of the software that companies rely on is simply unsafe at any speed.

    A Software Crisis Waiting to Happen - slide 1

    Click through for results from a software integrity survey conducted by Forrester Consulting on behalf of Coverity.

    A Software Crisis Waiting to Happen - slide 2

    A lot of code comes from external sources.

    A Software Crisis Waiting to Happen - slide 3

    The application portfolio is diversifying.

    A Software Crisis Waiting to Happen - slide 4

    A multitude of factors are at work.

    A Software Crisis Waiting to Happen - slide 5

    Most software today touches the customer.

    A Software Crisis Waiting to Happen - slide 6

    Customer satisfaction and defects are now closely coupled.

    A Software Crisis Waiting to Happen - slide 7

    Customer satisfaction rules.

    A Software Crisis Waiting to Happen - slide 8

    Software issues are more visible than ever.

    A Software Crisis Waiting to Happen - slide 9

    Significant dependence on unit testing.

    A Software Crisis Waiting to Happen - slide 10

    Scope creep and rework top the list.

    A Software Crisis Waiting to Happen - slide 11

    No one is certain where every piece of code comes from.

    A Software Crisis Waiting to Happen - slide 12

    Internal code is checked more rigorously.

    A Software Crisis Waiting to Happen - slide 13

    Responsibility is everywhere and nowhere.

    A Software Crisis Waiting to Happen - slide 14

    Visibility has become a critical need.

    A Software Crisis Waiting to Happen - slide 15

    There’s more awareness than ever.

    Latest Articles