TY  - RPRT
A1  - Scherner, Tobias
A1  - Fritsch, Lothar
T1  - Early evaluation of security functionality in software projects - some experience on using the common criteria in a quality management process
N2  - This paper documents the experiences of assurance evaluation during the early stage of a large software development project. This project researches, contracts and integrates privacy-respecting software to business environments. While assurance evaluation with ISO 15408 Common Criteria (CC) within the certification schemes is done after a system has been completed, our approach executes evaluation during the early phases of the software life cycle. The promise is to increase quality and to reduce testing and fault removal costs for later phases of the development process. First results from the still-ongoing project suggests that the Common Criteria can define a framework for assurance evaluation in ongoing development projects.
N2  - Dieses Papier dokumentiert den Versuch, mittels der Common Criteria nach ISO 15408 bereits während der Erstellung eines Softwaresystems dessen Sicherheitseigenschaften zu überprüfen. Dies geschieht im Gegensatz zur üblichen Post-Entwicklungs-Evaluation.
KW  - Zertifizierung
KW  - Software Engineering
KW  - Trusted Computing
KW  - Internationaler Datenschutz
KW  - Zertifizierung
KW  - Datenschutz
KW  - technischer Datenschutz
KW  - Mehrseitige Sicherheit
KW  - Assurance
KW  - Privacy
KW  - Certification
KW  - Information Security
KW  - Common Criteria
KW  - ISO 15408
Y1  - 2007
UR  - http://publikationen.ub.uni-frankfurt.de/frontdoor/index/index/docId/1024
UR  - https://nbn-resolving.org/urn:nbn:de:hebis:30-44608
ER  -