Informationsteknik: allmänt

Kommittébeteckning: SIS/TK 318 (Informationssäkerhet)
Källa: ISO
Svarsdatum: den 27 mar 2018
Se merSe mindre

This document provides a description of privacy-enhancing data de-identification techniques, to be used to describe and design de-identification measures in accordance with the privacy principles in ISO/IEC 29100.

In particular, this document specifies terminology, a classification of de-identification techniques according to their characteristics, and their applicability for reducing the risk of re-identification.

This document is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations, that are PII controllers or PII processors acting on a controller's behalf, implementing data de-identification processes for privacy enhancing purposes.

Se merSe mindre

This document provides the specialized requirements to demonstrate competence of individuals in performing IT product security evaluations in accordance with ISO/IEC 15408 and ISO/IEC 18045.

Kommittébeteckning: SIS/TK 303 (IT-system och IT-tjänster)
Källa: ISO
Svarsdatum: den 22 maj 2018
Se merSe mindre

This document describes the core concepts of ISO/IEC 20000, identifying how the different parts support ISO/IEC 20000-1:2018 as well as the relationships between ISO/IEC 20000 and other International Standards and Technical Reports. This document also includes the terminology used in all parts of ISO/IEC 20000, so that organizations and individuals can interpret the concepts correctly.

This document can be used by:

a) organizations using ISO/IEC 20000-10 definitions for ISO/IEC 20000-1 and other parts;
b) organizations considering using any document and looking for guidance on how to use the different parts of ISO/IEC 20000 to achieve their goal;
c) organizations that wish to understand how ISO/IEC 20000 can be used in combination with other International Standards;
d) practitioners, auditors and other parties who wish to gain an understanding of ISO/IEC 20000.