Abstract
This paper summarizes multifaceted synergies discovered between the ISO/IEC 15408 (Common Criteria) IT Security Evaluation standard, software product quality evaluation standards and the Capability Maturity Model Integration (CMMI). In addition to serving research motivated interest, the usefulness of the synergies is demonstrated through case studies related to significant systems development projects.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Biró, M., Tully, C.: The Software Process in the Context of Business Goals and Performance. In: Messnarz, R., Tully, C. (eds.) Better Software Practice for Business Benefit, IEEE Computer Society Press, Washington, Brussels, Tokyo (1999)
Biró, M., Messnarz, R.: Key Success Factors for Business Based Improvement. Software Quality Professional (ASQ, American Society for Quality) 2(2), 20–31 (2000), http://www.asq.org/pub/sqp/past/vol2_issue2/biro.html
Biró, M.: Common Criteria for IT Security Evaluation - SPI Analogies. In: Messnarz, R. (ed.) Proceedings of the EuroSPI 2003 Conference, pp. IV.13–IV.21. Verlag der Technischen Universität Graz (2003), ISBN 3-901351-84-1
Boegh, J., Rêgo, C.M.: Combining software process and product quality standards. In: The 2nd World Conference on Software Quality, Japan (September 2000)
Prieto-Díaz, R.: Understanding the Common Criteria Evaluation Process. Commonwealth Information Center Technical Report CISC-TR-2002-003 (September 2002)
Taylor, C., Alves-Foss, J., Rinker, B.: Merging Safety and Assurance: The Process of Dual Certification for Software. In: Proc. Software Technology Conference (March 2002)
CCTA (Central Computer and Telecommunication Agency): SSADM Version 4+, Version 4.3. London, HMSO, The Stationery Office (1996)
Larman, C.: Applying UML and Patterns, 3rd edn. Prentice Hall, Englewood Cliffs (2002)
Muller, P.-A.: Instant UML. Wrox Press Ltd., Birmingham, UK (1997)
Ulferts, Karen: Why isn’t there a RUP workflow for software quality assurance? (July 11, 2007), http://www-128.ibm.com/developerworks/rational/library/jun05/ulferts/index.html#notes
Common Criteria for Information Technology Security Evaluation Introduction and general model: Version 2.1, CCIMB-99-031, ISO/IEC 15408:1999 (August 1999)
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Biró, M., Molnár, B. (2007). Synergies Between the Common Criteria and Process Improvement. In: Abrahamsson, P., Baddoo, N., Margaria, T., Messnarz, R. (eds) Software Process Improvement. EuroSPI 2007. Lecture Notes in Computer Science, vol 4764. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-75381-0_4
Download citation
DOI: https://doi.org/10.1007/978-3-540-75381-0_4
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-74765-9
Online ISBN: 978-3-540-75381-0
eBook Packages: Computer ScienceComputer Science (R0)