View : 59 Download: 0

A CC-based Security Engineering Process Evaluation Model

Title
A CC-based Security Engineering Process Evaluation Model
Authors
Lee J.Lee S.Choi B.
Ewha Authors
최병주
SCOPUS Author ID
최병주scopus
Issue Date
2003
Journal Title
Proceedings - IEEE Computer Society's International Computer Software and Applications Conference
ISSN
0730-3157JCR Link
Citation
pp. 130 - 135
Indexed
SCOPUS scopus
Abstract
Common Criteria(CC) provides only the standard for evaluating information security product or system, namely Target of Evaluation (TOE). On the other hand, SSE-CMM provides the standard for Security Engineering Process Evaluation. Based on the CC, TOE's security quality may be assured, but its disadvantage is that the development process is neglected. SSE-CMM seems to assure the quality of TOE developed in an organization equipped with security engineering process, but the TOE developed in such environment cannot avoid CC-based security assurance evaluation. We propose an effective method of integrating two evaluation methods, CC and SSE-CMM, and develop CC-based assurance evaluation model, CC_SSE-CMM. CC_SSE-CMM presents the specific and realistically operable organizational security process maturity assessment and CC evaluation model.
DOI
10.1016/B978-075065332-9.50008-2
Appears in Collections:
엘텍공과대학 > 컴퓨터공학과 > Journal papers
Files in This Item:
There are no files associated with this item.
Export
RIS (EndNote)
XLS (Excel)
XML


qrcode

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.

BROWSE