الفهرس 
An integrative study of selected information security techniques in ISO/IEC and CMMI-DEV standards
ABSTRACTOnly 14 pages are availabe for public view
 |  | from | 154 |  |  |
| | | from | 154 | | |
Abstract
In recent years, the security objective started to become a very important issue in any software project to the degree that lack of the security factor might lead to the whole project{u2019}s failure. Therefore, many studies were conducted to discuss the best ways to mitigate risks that can threaten any software project. However, most of the studies conducted in that area have analyzed the software risks from a very high level, and little of them has subjected to specific areas like the Security Requirements Engineering (SRE) risks. Even those who subjected to that area have discussed only one side of the security requirements in the software (e.g. password requirements) but they neglected the security in the requirements engineering process itself (e.g., how the requirements gathered, analyzed and documented in a secure manner). Hence, the security objective still lacks to one important side that can threaten the information security objective of the project