header

An integrative study of selected information security techniques in ISO/IEC and CMMI-DEV standards /

Inas Abdelmonem Abbas

An integrative study of selected information security techniques in ISO/IEC and CMMI-DEV standards / ISO27001 & CMMI-DEV دراسة تكاملية فى بعض التقنيات المختارة من معايير تأمين المعلومات في Inas Abdelmonem Abbas ; Supervised Hesham Hefny , Abdelaziz A. Abdelaziz - Cairo : Inas Abdelmonem Abbas , 2018 - 140 Leaves : charts , facsimiles ; 30cm

Thesis (M.Sc.) - Cairo University - Institute of Statistical Studies and Researches - Department of Computer and Information Science

In recent years, the security objective started to become a very important issue in any software project to the degree that lack of the security factor might lead to the whole projects failure. Therefore, many studies were conducted to discuss the best ways to mitigate risks that can threaten any software project. However, most of the studies conducted in that area have analyzed the software risks from a very high level, and little of them has subjected to specific areas like the Security Requirements Engineering (SRE) risks. Even those who subjected to that area have discussed only one side of the security requirements in the software (e.g. password requirements) but they neglected the security in the requirements engineering process itself (e.g., how the requirements gathered, analyzed and documented in a secure manner). Hence, the security objective still lacks to one important side that can threaten the information security objective of the project



CMMI-DEV standards Information security techniques ISO/IEC