Title Security process capability model based on ISO/IEC 15504 conformant enterprise SPICE /
Authors Mitašiūnas, Antanas ; Novickis, Leonids ; Kalpokas, Rimas
DOI 10.2478/acss-2014-0006
Full Text Download
Is Part of Applied computer systems / Riga Technical University.. Walter de Gruyter GmbH. 2014, no 15, p. 36-41
Keywords [eng] Enterprise SPICE ; Information security ; Process capability ; Security SPICE
Abstract [eng] In the context of modern information systems, security has become one of the most critical quality attributes. The purpose of this paper is to address the problem of quality of information security. An approach to solve this problem is based on the main assumption that security is a process oriented activity. According to this approach, product quality can be achieved by means of process quality – process capability. Introduced in the paper, SPICE conformant information security process capability model is based on process capability modeling elaborated by world-wide software engineering community during the last 25 years, namely ISO/IEC 15504 that defines the capability dimension and the requirements for process definition and domain independent integrated model for enterprise-wide assessment and Enterprise SPICE improvement.
Published Walter de Gruyter GmbH
Type Journal article
Language English
Publication date 2014