Saturday, December 27, 2008

Deming's Quality Standards Applied to IT Security

Security guru Edward Deming's principles for quality are usually only thought of for industrial production. But in this post by Branden Williams on his VeriSign blog cleverly applies Deming's 14 points to IT security.

He compares the Deming Cycle to the Systems Development Life cycle, where progress is made through continuous improvement. He calls security a type of quality, which can't just be measured just by the number of successes and failures -- a common security metric these days -- but as a process for improvement.


Post a Comment

<< Home