참고문헌
- ISO/IEC 15408 Standard, Common Criteria for Information Technology Security Evaluation Version 2.3, 2005
- ISO/IEC TR 15446, Guide for the production of Protection Profiles and Security Targets, 2004
- Shoichi Morimoto and Jingde Cheng, Patterning Protection Profiles by UML for Security Specification, CIMCA-IAWTIC '05, 2005
- CC Portal, http://www.commoncriteriaportal.org/public/expert/index.php?menu=8
- CCEVS(Common Criteria Evaluation and Validation Scheme), http://niap.bahialab.com/cc-scheme/pp/index.cfm
- CESG(Communications-Electronics Security Group), http://www.cesg.gov.uk/site/iacs/index.cfm?menu Selected=1&displayPage=19
- CSE(Communications Security Establishment), http:// www.cse-cst.gc.ca/services/common-criteria/protection- profiles-e.html
- DCSSI(Central Information Systems Security Division), http://www.ssi.gouv.fr/en/confidence/pp.html
- BSI(Bundesamt für Sicherheit in der Informationstechnik), http://www.bsi.de/cc/pplist/pplist.htm
- NIAP, U.S. Government Protection Profile Authorization Server For Basic Robustness Environments v1.0, 2005.6
- NIAP, U.S. Government Protection Profile for Web Servers in Basic Robustness Environments v0.61, 2004.12
- NIAP, Web Browser Protection Profile v0.5, 2001.4
- OWASP(Open Web Application Security Project), The Ten Most Critical Web Application Security Vulnerabilities, 2004
- ASROC R4, http://www.dualsecure.co.kr/dual/asrocr418.html
- WEB Insight, http://www.monitorapp.com/product/web.htm
- WEBFRONT, http://www.piolink.co.kr/korea/product/main2.asp
- WAPPLESECURITY Gateway, http://www.pentasecurity.com/korean/product2_1_ wapplesecurity.html
- nProtect WebFirewall, http://www.inca.co.kr/products/webfirewall.html