A Six Sigma Approach to Assure IT Security

Today information is considered as an asset just like capital either it is related to a personal or corporate. Global sharing and information losses enforce organizations to think about their information security management. Increasing security needs of military industry, defense associated organizations, Telecommunication and personal credential privacy requirements call for standardization. Common Criteria (CC) is one of the well know IT security assurance standard that is serving for this purpose and setting assurance levels. CC not only emphasizes the customer IT security requirements and security functional needs but also establishes criteria for categorizing products at different security levels. However; organizations still need some qualitative improvements in order to attain high assurance for the security of their IT product. Well established practices, advance protocols and authentic tools can be a real contribution to these standards. Six Sigma (SS) is one of the mature statistical and data driven quality management systems that is serving from last two decades in various organization. This book reveals the interesting use of SS for Information Security.