SSE-CMM BPs to meet the requirements of ALC_DVS.1 component in CC

Sang Ho Kim, Eun Ser Kim, Choon Seong Leem, Ho Jun Shin, Tai Hoon Kim

Research output: Contribution to journalArticle

2 Citations (Scopus)

Abstract

Security assurance requirements about the security of development environment for IT product or system are described in ALC_DVS (Development Security) family in the part 3 of the Common Criteria (CC). But if the fact the site environment IT products or systems are being developed may meet the requirements of ALC_DVS family is assured by performing an authorized process evaluation criteria like as the SSE-CMM and evaluator recognize that fact, developer can reduce the burden for preparing the site-visiting and evaluator can save the time for site-visit evaluation. In this paper we analyze the compliance between ALC_DVS.1 of the CC and Base Practices (BPs) of the Systems Security Engineering Capability Maturity Model (SSE-CMM), and review the capability level of the SSE-CMM to meet the requirements of ALC_DVS.1

Original languageEnglish
Pages (from-to)1069-1075
Number of pages7
JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume2869
Publication statusPublished - 2003 Dec 1

Fingerprint

Security systems
Engineering
Requirements
Model
Evaluation
Compliance

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Cite this

@article{ea4068088f3e49e78123b2a4558b974d,
title = "SSE-CMM BPs to meet the requirements of ALC_DVS.1 component in CC",
abstract = "Security assurance requirements about the security of development environment for IT product or system are described in ALC_DVS (Development Security) family in the part 3 of the Common Criteria (CC). But if the fact the site environment IT products or systems are being developed may meet the requirements of ALC_DVS family is assured by performing an authorized process evaluation criteria like as the SSE-CMM and evaluator recognize that fact, developer can reduce the burden for preparing the site-visiting and evaluator can save the time for site-visit evaluation. In this paper we analyze the compliance between ALC_DVS.1 of the CC and Base Practices (BPs) of the Systems Security Engineering Capability Maturity Model (SSE-CMM), and review the capability level of the SSE-CMM to meet the requirements of ALC_DVS.1",
author = "Kim, {Sang Ho} and Kim, {Eun Ser} and Leem, {Choon Seong} and Shin, {Ho Jun} and Kim, {Tai Hoon}",
year = "2003",
month = "12",
day = "1",
language = "English",
volume = "2869",
pages = "1069--1075",
journal = "Lecture Notes in Computer Science",
issn = "0302-9743",
publisher = "Springer Verlag",

}

SSE-CMM BPs to meet the requirements of ALC_DVS.1 component in CC. / Kim, Sang Ho; Kim, Eun Ser; Leem, Choon Seong; Shin, Ho Jun; Kim, Tai Hoon.

In: Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Vol. 2869, 01.12.2003, p. 1069-1075.

Research output: Contribution to journalArticle

TY - JOUR

T1 - SSE-CMM BPs to meet the requirements of ALC_DVS.1 component in CC

AU - Kim, Sang Ho

AU - Kim, Eun Ser

AU - Leem, Choon Seong

AU - Shin, Ho Jun

AU - Kim, Tai Hoon

PY - 2003/12/1

Y1 - 2003/12/1

N2 - Security assurance requirements about the security of development environment for IT product or system are described in ALC_DVS (Development Security) family in the part 3 of the Common Criteria (CC). But if the fact the site environment IT products or systems are being developed may meet the requirements of ALC_DVS family is assured by performing an authorized process evaluation criteria like as the SSE-CMM and evaluator recognize that fact, developer can reduce the burden for preparing the site-visiting and evaluator can save the time for site-visit evaluation. In this paper we analyze the compliance between ALC_DVS.1 of the CC and Base Practices (BPs) of the Systems Security Engineering Capability Maturity Model (SSE-CMM), and review the capability level of the SSE-CMM to meet the requirements of ALC_DVS.1

AB - Security assurance requirements about the security of development environment for IT product or system are described in ALC_DVS (Development Security) family in the part 3 of the Common Criteria (CC). But if the fact the site environment IT products or systems are being developed may meet the requirements of ALC_DVS family is assured by performing an authorized process evaluation criteria like as the SSE-CMM and evaluator recognize that fact, developer can reduce the burden for preparing the site-visiting and evaluator can save the time for site-visit evaluation. In this paper we analyze the compliance between ALC_DVS.1 of the CC and Base Practices (BPs) of the Systems Security Engineering Capability Maturity Model (SSE-CMM), and review the capability level of the SSE-CMM to meet the requirements of ALC_DVS.1

UR - http://www.scopus.com/inward/record.url?scp=0142183427&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0142183427&partnerID=8YFLogxK

M3 - Article

VL - 2869

SP - 1069

EP - 1075

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

SN - 0302-9743

ER -