Security Process Capability Model Based on ISO/IEC 15504 Conformant Enterprise SPICE

Antanas Mitasiunas; Leonīds Novickis; Rimas Kalpokas

Security Process Capability Model Based on ISO/IEC 15504 Conformant Enterprise SPICE

2014
Antanas Mitasiunas, Leonīds Novickis, Rimas Kalpokas

In the context of modern information systems, security has become one of the most critical quality attributes. The purpose of this paper is to address the problem of quality of information security. An approach to solve this problem is based on the main assumption that security is a process oriented activity. According to this approach, product quality can be achieved by means of process quality – process capability. Introduced in the paper, SPICE conformant information security process capability model is based on process capability modeling elaborated by world-wide software engineering community during the last 25 years, namely ISO/IEC 15504 that defines the capability dimension and the requirements for process definition and domain independent integrated model for enterprise-wide assessment and Enterprise SPICE improvement.

Atslēgas vārdi
Enterprise SPICE, information security, process capability, Security SPICE
DOI
10.2478/acss-2014-0006

Mitasiunas, A., Novickis, L., Kalpokas, R. Security Process Capability Model Based on ISO/IEC 15504 Conformant Enterprise SPICE. Applied Computer Systems. Nr.15, 2014, 36.-41.lpp. ISSN 2255-8683. e-ISSN 2255-8691. Pieejams: doi:10.2478/acss-2014-0006

Publikācijas valoda
English (en)

Publikācijas veids
Publikācija RTU zinātniskajā žurnālā
Pamatdarbībai piesaistītais finansējums
Nav zināms
Pētniecības nozare
2. Inženierzinātnes un tehnoloģijas
Pētniecības apakšnozare
2.2. Elektrotehnika, elektronika, informācijas un komunikāciju tehnoloģijas
ID: 18611