1 |
CC: ISO/IEC 15408 Information technology-Security technology-Evaluation criteria for IT security V2.3, August 2005
|
2 |
'Information Assurance Technical Framework Documents,' Release 3.1, National Security Agency, September 2002
|
3 |
Frank Swiderski, Window Snyder, Threat Modeling, Microsoft Press, 2004
|
4 |
'Consistency Instruction Manual For Development of US Government Protection Profiles For Use in Medium. Robustness Environments,' Release 3.0, National Security Agency, February 2005
|
5 |
Debra S. Herrmann, Using the Common Criteria for IT Security Evaluation, Auerbach Publications, 2003
|
6 |
Ron Ross, Stu Katzke, Arnold Johnson, Marianne Swanson, Gary Stoneburner, George Rogers, 'Recommended Security Controls for Federal Information Systems, NIST Special Publication 800-53,' National Institute of Standards and Technology, 2006
|