ARC Advisory Group Analyst Sid Snitkin's Report on the FACT Platform
Vulnerability Exploitability eXchange (VEX) White Paper
FACT for Vendors: Securing Vendor Software Supply Chains
aDolus Executive Overview
Atlantic Council: Cyber Statecraft Initiative's Breaking Trust Project
University of Maryland Paper: Digitally Signed Malware
National Telecommunications and Information Administration: Minimum Elements of an SBOM