Rework vs Maintenance Cost: The Distinction That Saves Budget Fights

Updated May 2026. Companion to rework vs technical debt.

The principled cut

The cleanest test for whether a piece of work is rework or maintenance is to ask: would a competent engineer have known to do this differently at the original implementation, given the information available at the time? If yes, the work is rework (the original implementation failed a knowable requirement). If no (because the environment changed in unforeseeable ways), the work is maintenance (the original implementation met its requirements but the world moved).

The test handles most cases cleanly. A bug discovered in code that should have been caught by unit tests: rework. A dependency upgrade required because the upstream library deprecated a method: maintenance. A security patch for a vulnerability that was disclosed after the original implementation: maintenance. A security patch for a vulnerability that was already known at the time of the original implementation: rework (because the requirements implicitly included not shipping known vulnerabilities).

The hard cases are dependency-version upgrades that could have been deferred (is staying on an old version a knowable failure?), and security patches that were a foreseeable risk at original implementation (does the team have to predict every future CVE?). For these cases, the cleanest operational test is the "reasonable contemporaneous practice" standard: would a competent team operating on the original timeline have invested in the prevention that would have made this fix unnecessary? If yes, count it as rework; if no, count it as maintenance.

The five canonical maintenance categories

1. Adaptive maintenance: Changes to keep the software working as the environment changes (new OS versions, new browser versions, new mobile device sizes, new third-party API contracts). Usually maintenance; sometimes rework if the original team should have made the software more portable.
2. Perfective maintenance: Non-functional improvements (performance, security, observability) to already-working software. Usually maintenance; some perfective work crosses into rework when the original implementation should have met the performance or security bar.
3. Corrective maintenance: Bug fixes. This is the category that is almost always also rework. Lehman's software evolution laws (Lehman 1969 onwards) put corrective maintenance at 17 to 21% of typical maintenance effort.
4. Preventive maintenance: Refactoring, restructuring, and modernisation to prevent future failure. This is the prevention spend that helps avoid future rework. It is rarely counted as rework even when it touches existing code.
5. Compliance maintenance: Updates driven by changes in regulatory, accessibility, or security standards. The regulatory-compliance rework page covers the rework-vs-maintenance distinction within this category specifically.

Why the distinction matters at budget time

Rework cost can be reduced through better prevention investment: design review, shift-left testing, spec quality work, requirements stability. Maintenance cost cannot. Maintenance is a function of how much shipped software exists, how fast its environment changes, and how regulated the operating context is. The team can affect the slope of maintenance cost (well-architected software is cheaper to maintain) but cannot eliminate it.

Treating maintenance as rework leads to misdirected investment. A team that books all dependency-upgrade work as rework will see its rework number stay stubbornly high no matter how much testing it adds, because testing does not reduce dependency upgrades. The team will eventually conclude that prevention does not work, when really the problem is that the wrong cost was being measured.

Treating rework as maintenance is the opposite problem and is more common. A team that books bug fixes as "maintenance" in monthly reporting hides the preventable cost, which means leadership never sees the case for prevention investment. The bug-fix cost stays the same year after year because the team has no organisational pressure to reduce it. The clean separation in measurement is the first step in unlocking prevention investment that would actually pay back.

The healthy ratio

A mature engineering operation typically runs maintenance at 30 to 50% of current-year capacity and rework at 8 to 15%, for a maintenance-to-rework ratio of roughly 3 to 5 in favour of maintenance. The maintenance share rises with product age (older products have more shipped surface to maintain); the rework share is roughly independent of product age once the team reaches steady state.

When the rework share approaches or exceeds the maintenance share, the team has a preventable-cost problem. The first investment to consider is usually improving the requirements clarity and design review discipline (see the requirements-change page and the design-defect page), which addresses the two largest single rework drivers. The investment shape and expected payback are covered on the reduce page.

Sources

• Lehman, M. M. and Belady, L. A. Program Evolution: Processes of Software Change. Academic Press, 1985.
• Jones, C. Applied Software Measurement. 3rd ed. McGraw-Hill, 2008.
• Swanson, E. B. The Dimensions of Maintenance. Proceedings of the 2nd International Conference on Software Engineering, 1976. (The original adaptive/perfective/corrective taxonomy.)
• ISO/IEC 14764:2006 Software engineering -- Software life cycle processes -- Maintenance.
• Boehm, B. Software Engineering Economics. Prentice-Hall, 1981.

Frequently asked questions