Security Process Capability Model Based on ISO/IEC 15504 Conformant Enterprise SPICE

Security Process Capability Model Based on ISO/IEC 15504 Conformant Enterprise SPICE

In the context of modern information systems, security has become one of the most critical quality attributes. The purpose of this paper is to address the problem of quality of information security. An approach to solve this problem is based on the main assumption that security is a process oriented...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Applied Computer Systems (Online) 2014-07, Vol.15 (1), p.36-41
Hauptverfasser: Mitasiunas, Antanas, Novickis, Leonids, Kalpokas, Rimas
Format: Artikel
Sprache:eng
Schlagworte:
enterprise spice
information security
process capability
security spice
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In the context of modern information systems, security has become one of the most critical quality attributes. The purpose of this paper is to address the problem of quality of information security. An approach to solve this problem is based on the main assumption that security is a process oriented activity. According to this approach, product quality can be achieved by means of process quality - process capability. Introduced in the paper, SPICE conformant information security process capability model is based on process capability modeling elaborated by world-wide software engineering community during the last 25 years, namely ISO/IEC 15504 that defines the capability dimension and the requirements for process definition and domain independent integrated model for enterprise-wide assessment and Enterprise SPICE improvement
ISSN:2255-8691
2255-8691
DOI:10.2478/acss-2014-0006