參考文獻

[1] GB/T 19000-2000 質量管理體系 基礎和術語
[2] GB/T 19001-2000 質量管理體系 要求
[3] GB/T 19004-2000 質量管理體系 業績改進指南
[4] ISO/IEC TR 15443-1: 2005, A framework for IT Security assurance - Part 1: Overview and framework
[5] ISO/IEC TR 15443-2: 2005, A framework for IT Security assurance - Part 2: Assurance methods
[6] ISO/IEC WD 15443-3, A framework for IT security assurance - Part 3: Analysis of assurance methods
[7] ISO/IEC PDTR 19791: 2004, Information technology - Security techniques - Security assessment of operational systems
[8] Information Assurance Technical Framework, Release 3.1, National Security Agency Information Assurance Solutions Technical, September 2002
[9] NSTISSI No. 4009 National Information Systems Security (INFOSEC) Glossary
[10] Carnegie Mellon University/Software Engineering Institute, CMU/SEI-2002-TR-011, CMMISM for Systems Engineering, Software Engineering, Integrated Product and Process Development, and Supplier Sourcing(CMMI-SE/SW/IPPD/SS, V1.1) Continuous Representation, CMMI Product Team, March 2002
[11] Carnegie Mellon University/Software Engineering Institute, CMU/SEI-2002-TR-012, CMMISM for Systems Engineering, Software Engineering, Integrated Product and Process Development, and Supplier Sourcing(CMMI-SE/SW/IPPD/SS, V1.1) Staged Representation, CMMI Product Team, March 2002
[12] Department of Defense Technical Reference Model, Version 2.0, 9 April 2001
[13] Department of Defense Technical Architecture Framework for Information Management, Volume 1: Overview, Version 3.0, 30 April 1996
[14] DoD Architecture Framework, Version 1.0, DoD Architecture Framework Working Group, August 2003