论文信息 - Building a Body of Knowledge for ICT Supply Chain Risk Management

Building a Body of Knowledge for ICT Supply Chain Risk Management

This paper proposes a set of Supply Chain Risk Management (SCRM) activities and practices for Information and Communication Technologies (ICT). This set can be used as a starting point to create a body of knowledge in SCRM to ensure the integrity of ICT products.

Nancy R. Mead

[1] Carol Woody,et al. Software Supply Chain Risk Management: From Products to Systems of Systems , 2010 .

[2] Nancy R. Mead,et al. Software Assurance Curriculum Project Volume I: Master of Software Assurance Reference Curriculum , 2010 .

[3] K. Schwalm. National Strategy to Secure Cyberspace , 2006 .

[4] John B. Goodenough,et al. Evaluating and Mitigating Software Supply Chain Security Risks , 2010 .

[5] George W. Bush,et al. National Strategy to Secure Cyberspace , 2003 .

[6] Christopher J. Alberts,et al. A Framework for Categorizing Key Drivers of Risk , 2009 .