View : 99 Download: 0

A CC-based Security Engineering Process Evaluation Model

Title
A CC-based Security Engineering Process Evaluation Model
Authors
Lee J.Lee S.Choi B.
Ewha Authors
최병주
SCOPUS Author ID
최병주scopus
Issue Date
2003
Journal Title
Proceedings - IEEE Computer Society's International Computer Software and Applications Conference
ISSN
0730-3157JCR Link
Citation
Proceedings - IEEE Computer Society's International Computer Software and Applications Conference, pp. 130 - 135
Indexed
SCOPUS scopus
Document Type
Conference Paper
Abstract
Common Criteria(CC) provides only the standard for evaluating information security product or system, namely Target of Evaluation (TOE). On the other hand, SSE-CMM provides the standard for Security Engineering Process Evaluation. Based on the CC, TOE's security quality may be assured, but its disadvantage is that the development process is neglected. SSE-CMM seems to assure the quality of TOE developed in an organization equipped with security engineering process, but the TOE developed in such environment cannot avoid CC-based security assurance evaluation. We propose an effective method of integrating two evaluation methods, CC and SSE-CMM, and develop CC-based assurance evaluation model, CC_SSE-CMM. CC_SSE-CMM presents the specific and realistically operable organizational security process maturity assessment and CC evaluation model.
DOI
10.1016/B978-075065332-9.50008-2
Appears in Collections:
엘텍공과대학 > 컴퓨터공학과 > Journal papers
Files in This Item:
There are no files associated with this item.
Export
RIS (EndNote)
XLS (Excel)
XML


qrcode

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.

BROWSE