{"id":"https://openalex.org/W2122659177","doi":"https://doi.org/10.1109/cmpsac.2003.1245332","title":"A CC-based security engineering process evaluation model","display_name":"A CC-based security engineering process evaluation model","publication_year":2004,"publication_date":"2004-03-02","ids":{"openalex":"https://openalex.org/W2122659177","doi":"https://doi.org/10.1109/cmpsac.2003.1245332","mag":"2122659177"},"language":"en","primary_location":{"id":"doi:10.1109/cmpsac.2003.1245332","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cmpsac.2003.1245332","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings 27th Annual International Computer Software and Applications Conference. COMPAC 2003","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086452481","display_name":"Jongsook Lee","orcid":null},"institutions":[{"id":"https://openalex.org/I138925566","display_name":"Ewha Womans University","ror":"https://ror.org/053fp5c05","country_code":"KR","type":"education","lineage":["https://openalex.org/I138925566"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jongsook Lee","raw_affiliation_strings":["Department of Computer Science & Engineering, Ewha Womans University, South Korea","Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science & Engineering, Ewha Womans University, South Korea","institution_ids":["https://openalex.org/I138925566"]},{"raw_affiliation_string":"Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea","institution_ids":["https://openalex.org/I138925566"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5002821481","display_name":"J.L. Lee","orcid":"https://orcid.org/0000-0002-5808-912X"},"institutions":[{"id":"https://openalex.org/I138925566","display_name":"Ewha Womans University","ror":"https://ror.org/053fp5c05","country_code":"KR","type":"education","lineage":["https://openalex.org/I138925566"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jieun Lee","raw_affiliation_strings":["Department of Computer Science & Engineering, Ewha Womans University, South Korea","Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science & Engineering, Ewha Womans University, South Korea","institution_ids":["https://openalex.org/I138925566"]},{"raw_affiliation_string":"Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea","institution_ids":["https://openalex.org/I138925566"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100605180","display_name":"Seung Hee Lee","orcid":"https://orcid.org/0000-0001-8672-5253"},"institutions":[{"id":"https://openalex.org/I138925566","display_name":"Ewha Womans University","ror":"https://ror.org/053fp5c05","country_code":"KR","type":"education","lineage":["https://openalex.org/I138925566"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Seunghee Lee","raw_affiliation_strings":["Department of Computer Science & Engineering, Ewha Womans University, South Korea","Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science & Engineering, Ewha Womans University, South Korea","institution_ids":["https://openalex.org/I138925566"]},{"raw_affiliation_string":"Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea","institution_ids":["https://openalex.org/I138925566"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5057462266","display_name":"Byoungju Choi","orcid":"https://orcid.org/0000-0003-3985-7645"},"institutions":[{"id":"https://openalex.org/I138925566","display_name":"Ewha Womans University","ror":"https://ror.org/053fp5c05","country_code":"KR","type":"education","lineage":["https://openalex.org/I138925566"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Byoungju Choi","raw_affiliation_strings":["Department of Computer Science & Engineering, Ewha Womans University, South Korea","Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science & Engineering, Ewha Womans University, South Korea","institution_ids":["https://openalex.org/I138925566"]},{"raw_affiliation_string":"Dept. of Comput. Sci. & Eng., Ewha Woman''s Univ., Seoul, South Korea","institution_ids":["https://openalex.org/I138925566"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":4.846,"has_fulltext":false,"cited_by_count":24,"citation_normalized_percentile":{"value":0.95105212,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"130","last_page":"135"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9923999905586243,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9922000169754028,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/capability-maturity-model","display_name":"Capability Maturity Model","score":0.735623836517334},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6410390734672546},{"id":"https://openalex.org/keywords/quality-assurance","display_name":"Quality assurance","score":0.6201030015945435},{"id":"https://openalex.org/keywords/common-criteria","display_name":"Common Criteria","score":0.5686025023460388},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.5682103633880615},{"id":"https://openalex.org/keywords/information-security-management-system","display_name":"Information security management system","score":0.5184240341186523},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.4986584186553955},{"id":"https://openalex.org/keywords/standard-of-good-practice","display_name":"Standard of Good Practice","score":0.4827374815940857},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.4445784389972687},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2768440246582031},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.24936547875404358},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.21413692831993103},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.1776725947856903},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.11599019169807434},{"id":"https://openalex.org/keywords/operations-management","display_name":"Operations management","score":0.09825530648231506},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.0670454204082489}],"concepts":[{"id":"https://openalex.org/C85890633","wikidata":"https://www.wikidata.org/wiki/Q929673","display_name":"Capability Maturity Model","level":3,"score":0.735623836517334},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6410390734672546},{"id":"https://openalex.org/C106436119","wikidata":"https://www.wikidata.org/wiki/Q836575","display_name":"Quality assurance","level":3,"score":0.6201030015945435},{"id":"https://openalex.org/C2777306048","wikidata":"https://www.wikidata.org/wiki/Q1116124","display_name":"Common Criteria","level":2,"score":0.5686025023460388},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.5682103633880615},{"id":"https://openalex.org/C111153917","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management system","level":5,"score":0.5184240341186523},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.4986584186553955},{"id":"https://openalex.org/C47309137","wikidata":"https://www.wikidata.org/wiki/Q7598357","display_name":"Standard of Good Practice","level":5,"score":0.4827374815940857},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.4445784389972687},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2768440246582031},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.24936547875404358},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.21413692831993103},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.1776725947856903},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.11599019169807434},{"id":"https://openalex.org/C21547014","wikidata":"https://www.wikidata.org/wiki/Q1423657","display_name":"Operations management","level":1,"score":0.09825530648231506},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.0670454204082489},{"id":"https://openalex.org/C2778618615","wikidata":"https://www.wikidata.org/wiki/Q4008393","display_name":"External quality assessment","level":2,"score":0.0},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/cmpsac.2003.1245332","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cmpsac.2003.1245332","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings 27th Annual International Computer Software and Applications Conference. COMPAC 2003","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":2,"referenced_works":["https://openalex.org/W2252777","https://openalex.org/W2375280882"],"related_works":["https://openalex.org/W578019356","https://openalex.org/W40842196","https://openalex.org/W285568228","https://openalex.org/W2154490168","https://openalex.org/W2152352067","https://openalex.org/W2162282310","https://openalex.org/W2115279357","https://openalex.org/W2230654898","https://openalex.org/W2554467211","https://openalex.org/W2379308271"],"abstract_inverted_index":{"Common":[0],"criteria":[1],"(CC)":[2],"provides":[3,24],"only":[4],"the":[5,20,25,34,47,56,70,106],"standard":[6,26],"for":[7,27],"evaluating":[8],"information":[9],"security":[10,28,37,66,79,112],"product":[11],"or":[12],"system,":[13],"namely":[14],"target":[15],"of":[16,58,87],"evaluation":[17,90,99,118],"(TOE).":[18],"On":[19],"other":[21],"hand,":[22],"SSE-CMM":[23,52],"engineering":[29,67],"process":[30,49,113],"evaluation.":[31,81],"Based":[32],"on":[33],"CC,":[35],"TOE's":[36],"quality":[38,57],"may":[39],"be":[40],"assured,":[41],"but":[42,69],"its":[43],"advantage":[44],"is":[45,50],"that":[46],"development":[48],"neglected.":[51],"seems":[53],"to":[54],"assure":[55],"TOE":[59,71],"developed":[60,72],"in":[61,73],"an":[62,84],"organization":[63],"equipped":[64],"with":[65],"process,":[68],"such":[74],"environment":[75],"cannot":[76],"avoid":[77],"CC-based":[78,97],"assurance":[80,98],"We":[82],"propose":[83],"effective":[85],"method":[86],"integrating":[88],"two":[89],"methods,":[91],"CC":[92,117],"and":[93,95,108,116],"SSE-CMM,":[94],"develop":[96],"model,":[100],"CC/spl":[101,103],"I.bar/SSE-CMM.":[102],"I.bar/SSE-CMM":[104],"presents":[105],"specific":[107],"realistically":[109],"operable":[110],"organizational":[111],"maturity":[114],"assessment":[115],"model.":[119]},"counts_by_year":[{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":2},{"year":2014,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}