1ISO/IEC 15408, Common Criteria for IT security Evaluation unity management [ S ].
2ISO/IEC 17799-2005 ,Information security management-Part 1. Code of practice for information security management [ S ].
3VRAALSEN F, den BRABER F, HOGGANVIK I, et al. The CORAS tool-supported methodology for UML-based security analysis, STF90 A04015 [ R ]. NORWAY . SINTEF ,2004.
4I Carol Woody. Applying OCTAVE. Practitioners Report. Technical Note [ R ]. CMU/SEI-2006-TN-010, May 2006.