Title :
A comparison of the Common Criteria with proposals of information systems security requirements
Author :
Mellado, Daniel ; Fernández-Medina, Eduardo ; Piattini, Mario
Author_Institution :
Univ. of Castilla-La Mancha, Madrid, Spain
Abstract :
Nowadays, security solutions are focused mainly on providing security defences; instead of solving one of the main reasons for security problems that refers to appropriate information systems (IS) design. Fortunately there are several standards, like the Common Criteria, which help to deal with the security requirements along all the IS development cycle. In this paper a comparative analysis of eight different relevant technical proposals, which place great importance on the establishing of security requirements in the development of IS, is carried out. And they provide some significant contributions in aspects related to security. Nevertheless, they only satisfy partly the necessary criteria for the establishment of security requirements, with guarantees and integration in the development of IS. Thus we conclude that they are not specific enough for dealing with security requirements in the first stages of IS development in a systematic and intuitive way.
Keywords :
information systems; security of data; Common Criteria standard; IS design; information systems security requirement; Information management; Information security; Information systems; Information technology; Management information systems; Proposals; Protection; Quality management; Research and development; Software systems;
Conference_Titel :
Availability, Reliability and Security, 2006. ARES 2006. The First International Conference on
Print_ISBN :
0-7695-2567-9
DOI :
10.1109/ARES.2006.2
