Informationsteknik, kontorsutrustning

ISO/IEC 27000:2018 provides the overview of information security management systems (ISMS). It also provides terms and definitions commonly used in the ISMS family of standards. This document is applicable to all types and sizes of organization (e.g. commercial enterprises, government agencies, not-for-profit organizations). The terms and definitions provided in this document - cover commonly used terms and definitions in the ISMS family of standards; - do not cover all terms and definitions applied within the ISMS family of standards; and - do not limit the ISMS family of standards in defining new terms for use.

This International Standard specifies the process of establishing, maintaining and publishing a register of data quality measures in compliance with ISO 19135-1:2015. It identifies and describes the components and content structure of a register for data quality measures, and the registration and maintenance procedure. This International Standard also specifies the required machine-readable (XML, Geospatial-API) implementation of the register and the procedure of accessing and use of the register.

This document defines the management and operations of the ISO geodetic register and identifies the data elements, in accordance with ISO 19111:2007 and the core schema within ISO 19135‑1:2015, required within the geodetic register.

ISO/IEC 19788 specifies metadata elements and their attributes for the description of learning resources. ISO/IEC 19788-2:2011 provides a base-level data element set for the description of learning resources, from the ISO 15836:2009 Dublin Core metadata element set, using the framework provided in ISO/IEC 19788-1:2011. Those data elements being cast into the metadata learning resources framework can be used with data elements defined in other parts, in order to address specific user communities' needs for extensions, modularization or refinement.

This document specifies the requirements for Digital Product Passport (DPP) access rights management, including IT security, data protection, and responsibility transfer between economic operators. It defines the framework for managing confidential information access, while acknowledging that public DPP data requires no access restrictions. The document applies to all product groups subject to DPP requirements under Regulation (EU) 2024/1781, with specific access rights to be detailed in respective delegated acts.

ISO/TS 17574:2017 provides guidelines for preparation and evaluation of security requirements specifications, referred to as Protection Profiles (PP) in ISO/IEC 15408 (all parts) and in ISO/IEC TR 15446. By Protection Profile (PP), it means a set of security requirements for a category of products or systems that meet specific needs. A typical example would be a PP for On-Board Equipment (OBE) to be used in an EFC system. However, the guidelines in this document are superseded if a Protection Profile already exists for the subsystem in consideration.

ISO/TS 21719-1:2018 describes: - an overall description of the EFC personalization process; - a description of EFC functionality that can be used for personalization. The personalization process takes place within the domain of the entity that is responsible for the application in the OBE.

ISO 13940:2015 defines a system of concepts for different aspects of the provision of healthcare. The core business in healthcare is the interaction between subjects of care and healthcare professionals. Such interactions occur in healthcare/clinical processes and are the justification for the process approach of ISO 13940:2015. To be able to represent both clinical content and clinical context, ISO 13940:2015 is related to a generic healthcare/clinical process model as well as comprehensive concept definitions and concept models for the clinical, management and resource aspects of healthcare services. In practice ISO 13940:2015 covers the concept definitions needed whenever structured information in healthcare is specified as a requirement. The definitions are intended to refer to the conceptual level only and not to details of implementation. ISO 13940:2015 will cover all levels of specifications in the development of logical reference models within the information viewpoint as a common basis for semantic interoperability on international, national or local levels, information systems, and information for specified types of clinical processes.

This part of ISO 23247 series specifies how the digital thread enables the creation, connectivity, management and maintenance of manufacturing digital twins across the product life cycle by defining principles, showing methodologies, and providing use case examples.

This part of ISO 23247 specifies digital twin composition in manufacturing by defining principles, showing methodologies, and providing use case examples of configuration, communication, combination and collaboration between digital twins during manufacturing.

This document defines the requirements and frameworks for secure information processing and communication to safeguard integrity, authenticity and reliability in the digital product passport (DPP) data exchange, minimizing product fraud and counterfeiting through data verification and integrity enforcement mechanisms. This document provides a framework for establishing trust, interoperability, and interoperation via secure electronically signed data construct (ESDC) for multi-actor applications, applicable across various sectors and in multilingual environments. Existing hardware and software systems for unique product identification and storage of this identification are to be considered. The following is out of the scope of this document: system architecture for DPP, DPP use cases, secure elements related to data carriers and cryptographic security features for unique product identifiers. NOTE 1 While not disrupting existing traceability and authentication systems, this document facilitates interoperability by introducing an ESDC scheme to be combined with existing data constructs to cover and preserve existing data models. NOTE 2 Annex A includes illustrative examples and references to supporting implementations, intended to demonstrate approaches that promote interoperability across diverse environments. These references are provided to assist stakeholders in selecting appropriate solutions that comply with applicable legal obligations and technical standards, while preserving existing systems.

This document provides information security controls for the energy utility industry, based on ISO/IEC 27002:2022, for controlling and monitoring the production or generation, transmission, storage and distribution of electric power, gas, oil and heat, and for the control of associated supporting processes.

The standard specifies interoperability requirements for personal health decision support (PHDS) based on the actors participating in PHDS, including service providers, data providers, and clients. The specifics of ‘how’ PHDS services are developed or implemented is not considered to be within the scope.

This document establishes an Artificial Intelligence (AI) and Machine Learning (ML) framework for describing a generic AI system using ML technology. The framework describes the system components and their functions in the AI ecosystem. This document is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit
organizations, that are implementing or using AI systems.

This document establishes terminology for AI and describes concepts in the field of AI.
This document can be used in the development of other standards and in support of communications among diverse, interested parties or stakeholders.
This document is applicable to all types of organizations (e.g. commercial enterprises, government agencies, not-for-profit organizations).