Browse Definitions :
Definition

Conway's law

Conway’s law is an observation that the design of any system is significantly affected by the communications structure of the organization that develops it. The law is commonly associated with software development but is considered applicable to systems and organizations of all types.

Melvin Conway, a computer scientist and programmer, developed his theory in 1967 as the basis for a paper, "How do committees invent?" that he was submitting to the Harvard Business Review (HBR). Here's the original formation: "Any organization that designs a system (defined broadly) will produce a design whose structure is a copy of the organization's communication structure."

HBR rejected the paper on the grounds that Conway had not proved his thesis; the paper was published in April 1968 in Datamation, the leading IT magazine of the time. Fred Brooks cited the observation in his article, "The Mythical Man-Month" and referred to it as Conway's law.

The Harvard Business School subsequently conducted a study, "Exploring the Duality between Product and Organizational Architectures," to attempt to prove Conway's thesis. Researchers compared the codebases of multiple applications of the same type that had been created by loosely-coupled open source development teams and tightly-coupled teams. They found that the tightly-coupled teams tended to develop monolithic codebases while the loosely-coupled teams tended to create more modular codebases. It has been observed, similarly, that if multiple teams are working on program modules and inter-team communication is poor, the interfaces of the program will reflect that fact.

Conway's law is often mentioned in reference to the DevOps trend, which is based on effective communication and collaboration among development and operations teams.

See Dan Slimmon's presentation, Conway's Law: The Skeleton of DevOps:

This was last updated in October 2016

Continue Reading About Conway's law

SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • VRAM (video RAM)

    VRAM (video RAM) refers to any type of random access memory (RAM) specifically used to store image data for a computer display.

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

  • virtual memory

    Virtual memory is a memory management technique where secondary memory can be used as if it were a part of the main memory.

Close