참고문헌
- Guide to Security Risk Management for IT Systems CSE
- DoD Directive 5200.28 Security Requirements for Automated Information Systems DoD
- Army Regulation 380-19 Information Systems Security DoA
- Guide to Certification and Accreditation of Information Technology Systems CSE
- Computers & Security v.14 no.4 ISO 9000 and Information Security C. Wood;K. Snow
- Information Security - the Next Decade, Proceedings of the IFIP TC 11 eleventh international coference on information security, IFIP/Sec '95 Information Security Accreditation - The ISO 9000 Route R. Solms;L. Meyer;J. Eloff(ed.);S. Solms(ed.)
- AAWG TASK 1 REPORT An Alternative Assurance Package(AAP) to the CC's EAL3 assurance level (draft version 0.9) AAWG
- Information and Management v.32 no.6 ISO 9000 versus CMM: Standardization and certification of IS development G. Piji;G. Swinkels;J. Verrijdt
- 정보보호 시스템 평가방법론 연구 이강수(외 6인)
- FIPS PUB 102. Guideline for Computer Security Certification and Accreditation NBS
- NCSC-TG-029 Introduction to Certification and Accreditation NCSC
- Computers & Security v.12 no.8 Commercoal Accreditation of Infomation Security G. Hardy
- DoD Indtruction 5200.40 Information Technology Security Certification and Accreditation Process(DITSCAP) DoD
- Department of Defense Information Technology Security Certification and Accreditation Process (DITSCAP) Application Document - Draft CORB ETT Technologies, Inc.
- The Evaluation of Secure Information Systems J. Lemieux
- Computers & Security v.15 no.4 Information Security Management: The Second Generation R. Solms