%0 Journal Article
%T A Method of Information Security Evaluation Combining CC with SSE-CMM<br>CC与SSE-CMM结合的信息安全评估方法
%A WU Dan WANG Zhi-Ying
%A <br>吴丹
%A 王志英
%J 计算机科学
%D 2003
%I 
%X The information security evaluation is an important part of information field. It is a general method to execute evaluation to the information security products under the instruction of Common Criteria (CC).A new method of information security evaluation, based on the combination of CC and Systems Security Engineering Capability Maturity Model CSSE-CMM) ,has been proposed in the paper. The basic idea of this method is using the reference of the security system engineer. Based on the experiment of a Target of Evaluation (TOE) in CC.the evaluation result of security assurance by this new method is proved to be more accurate, more comprehensive and more acceptable.
%K Security evaluation
%K Security system engineer
%K Assurance
%K CC
%K SSE-CMM<br>SSE-CMM
%K CC
%K 信息安全
%K TOE
%K 评估方法
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=64A12D73428C8B8DBFB978D04DFEB3C1&aid=8F6B625FA618E29B&yid=D43C4A19B2EE3C0A&vid=340AC2BF8E7AB4FD&iid=708DD6B15D2464E8&sid=04445C1D2BDA24EE&eid=E2546871E5B846EF&journal_id=1002-137X&journal_name=计算机科学&referenced_num=0&reference_num=4