The Effects of Information Overload on Software Project Risk Assessment*

Pennington, Robin R.; Tuttle, Brad

doi:10.1111/j.1540-5915.2007.00167.x

Cited by 48 publications

(27 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…On average, participants in this study indicate gathering 5.32 pieces of information, an amount consistent with prior research that shows individuals have limited information processing capacity (Miller, 1956;Chewning and Harrell, 1990;Stock and Harrell, 1995;Tuttle and Burton, 1999;Pennington and Tuttle, 2007). As predicted, participants that used the absolute standard rule report gathering more information in total than those using the differences and single criterion rules.…”

Section: Discussionsupporting

confidence: 83%

“…Specifically, investors using an absolute standard rule indicate gathering more information items and more detailed (i.e., financial) information than those using a differences rule. On average, investors describe gathering five pieces of information, which is consistent with findings from human information processing research that individuals are unable to process more than seven information cues at one time (Miller, 1956;Chewning and Harrell, 1990;Stock and Harrell, 1995;Tuttle and Burton, 1999;Pennington and Tuttle, 2007). Additionally, even though investors using an absolute standard rule report using the most financial information, the overall average is only one piece of financial information.…”

Section: Introductionsupporting

confidence: 84%

“…Information overload theory posits that due to limited cognitive capacities, individuals will utilize effort minimization strategies, such as heuristics, to reduce the cognitive burden associated with the task. Accordingly, individuals will not acquire all information but rather will use approximately six to nine pieces of information depending on how severe the overload conditions are to the decision making task (Chewning and Harrell, 1990;Stock and Harrell, 1995;Tuttle and Burton, 1999;Pennington and Tuttle, 2007). Understanding the heuristics used to stop searching for information is thus critical to better understand investment-related judgments and decisions.…”

Section: Information Search and Cognitive Stopping Rulesmentioning

confidence: 99%

“…Specifically, individuals' cognitive capacities are limited and they often use heuristics, or decision rules, to lessen the cognitive burden of decision making tasks (Miller, 1956;Chewning and Harrell, 1990;Stock and Harrell, 1995;Tuttle and Burton, 1999;Pennington and Tuttle, 2007). However, prior survey research often uses long lists of items which far exceed an individual's processing capacity.…”

Section: Introductionmentioning

confidence: 98%

See 3 more Smart Citations

How much is enough? An investigation of nonprofessional investors information search and stopping rule use

Pennington

Kelton

2016

International Journal of Accounting Information Systems

View full text Add to dashboard Cite

Section: Discussionsupporting

confidence: 83%

Section: Introductionsupporting

confidence: 84%

Section: Information Search and Cognitive Stopping Rulesmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 98%

See 2 more Smart Citations

How much is enough? An investigation of nonprofessional investors information search and stopping rule use

Pennington

Kelton

2016

International Journal of Accounting Information Systems

View full text Add to dashboard Cite

“…Whereas it is obvious that the vulnerability assessment process can benefit from additional information on the vulnerable system, it is less clear whether current standard implementations result in better assessments when that information is added to the process. Human processing of information is known to significantly correlate with judgment errors (for example, [14] reports on the effects of 'information overload' on risk assessment practices in software engineering), but no account of the 'scalability' of existing security measurement best practices currently exists in the literature.…”

Section: Discussionmentioning

confidence: 99%

Estimating the Assessment Difficulty of CVSS Environmental Metrics: An Experiment

Allodi

Biagioni

Crispo

et al. 2017

Future Data and Security Engineering

View full text Add to dashboard Cite

Abstract[Context] The CVSS framework provides several dimensions to score vulnerabilities. The environmental metrics allow security analysts to downgrade or upgrade vulnerability scores based on a company's computing environments and security requirements.[Question] How difficult is for a human assessor to change the CVSS environmental score due to changes in security requirements (let alone technical configurations) for PCI-DSS compliance for networks and systems vulnerabilities of different type? [Results] A controlled experiment with 29 MSc students shows that given a segmented network it is significantly more difficult to apply the CVSS scoring guidelines on security requirements with respect to a flat network layout, both before and after the network has been changed to meet the PCI-DSS security requirements. The network configuration also impact the correctness of vulnerabilities assessment at system level but not at application level.[Contribution] This paper is the first attempt to empirically investigate the guidelines for the CVSS environmental metrics. We discuss theoretical and practical key aspects needed to move forward vulnerability assessments for large scale systems.

show abstract

Aligning technical and project management through participatory approaches: An industrial case study

Garza‐Morales,

Nizamis,

den Haan

et al. 2024

INCOSE International Symp

View full text Add to dashboard Cite

The importance of managing complexity in innovation has been highlighted both in research and practice, however the question remains: how can this be accomplished? Although there have been answers to this question, the practical alignment of process (project management) and system (technical management) viewpoints remains understudied. We responded to this challenge with an in‐depth case study in high‐tech industry. In this paper we applied Human Centered Design (HCD) and Action Research (AR) principles in a novel context, namely systems engineering. We identified main barriers and key players, essential information elements, and solution requirements. Using co‐design, we iteratively generated solution concepts, out of which we selected and evaluated one candidate concept. We highlight two main areas in our results: 1) how participatory approaches can support solving systems engineering challenges in practice; and 2) how to align the process and system viewpoints. For the first, we discuss the implications, considering aspects like the time and effort investment, along with the benefits of ownership, empathy, democracy, and collective learning. Our insights show potential to further build on the application of participatory approaches in systems engineering to match existing solutions to the practice. For the latter one, we reflect on issues such as information overload, human aspects, and the new relationship between project managers and systems engineers. Considering the current complexity demands, it is crucial to establish a better alignment between these roles and between process and system viewpoints, as they cannot be left undefined and unsupported any longer.

show abstract

The Effects of Information Overload on Software Project Risk Assessment*

Cited by 48 publications

References 50 publications

How much is enough? An investigation of nonprofessional investors information search and stopping rule use

How much is enough? An investigation of nonprofessional investors information search and stopping rule use

Estimating the Assessment Difficulty of CVSS Environmental Metrics: An Experiment

Aligning technical and project management through participatory approaches: An industrial case study

Contact Info

Product

Resources

About