Informationsteknik, kontorsutrustning

ISO 27799:2016 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s). It defines guidelines to support the interpretation and implementation in health informatics of ISO/IEC 27002 and is a companion to that International Standard. ISO 27799:2016 provides implementation guidance for the controls described in ISO/IEC 27002 and supplements them where necessary, so that they can be effectively used for managing health information security. By implementing ISO 27799:2016, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization's circumstances and that will maintain the confidentiality, integrity and availability of personal health information in their care. It applies to health information in all its aspects, whatever form the information takes (words and numbers, sound recordings, drawings, video, and medical images), whatever means are used to store it (printing or writing on paper or storage electronically), and whatever means are used to transmit it (by hand, through fax, over computer networks, or by post), as the information is always be appropriately protected. ISO 27799:2016 and ISO/IEC 27002 taken together define what is required in terms of information security in healthcare, they do not define how these requirements are to be met. That is to say, to the fullest extent possible, ISO 27799:2016 is technology-neutral. Neutrality with respect to implementing technologies is an important feature. Security technology is still undergoing rapid development and the pace of that change is now measured in months rather than years. By contrast, while subject to periodic review, International Standards are expected on the whole to remain valid for years. Just as importantly, technological neutrality leaves vendors and service providers free to suggest new or developing technologies that meet the necessary requirements that ISO 27799:2016 describes. As noted in the introduction, familiarity with ISO/IEC 27002 is indispensable to an understanding of ISO 27799:2016. The following areas of information security are outside the scope of ISO 27799:2016: a) methodologies and statistical tests for effective anonymization of personal health information; b) methodologies for pseudonymization of personal health information (see Bibliography for a brief description of a Technical Specification that deals specifically with this topic); c) network quality of service and methods for measuring availability of networks used for health informatics; d) data quality (as distinct from data integrity).

This document provides the means for understanding and associating the individual documents of the ISO/IEC “Artificial intelligence — Data quality for analytics and ML” series and is the foundation for conceptual understanding of data quality for analytics and machine learning. It also discusses associated technologies and examples (e.g. use cases and usage scenarios

This document specifies a data quality model, data quality measures and guidance on reporting data quality in the context of analytics and machine learning (ML). This document is applicable to all types of organizations who want to achieve their data quality objectives.

This document specifies requirements and provides guidance for establishing, implementing, maintaining and continually improving the quality of data used in the areas of analytics and machine learning. This document does not define a detailed process, methods or metrics. Rather it defines the requirements and guidance for a quality management process along with a reference process and methods that can be tailored to meet the requirements in this document. The requirements and recommendations set out in this document are generic and are intended to be applicable to all organizations, regardless of type, size or nature.

This document establishes general common organizational approaches, regardless of the type, size or nature of the applying organization, to ensure data quality for training and evaluation in analytics and machine learning (ML). It includes guidance on the data quality process for: — supervised ML with regard to the labelling of data used for training ML systems, including common organizational approaches for training data labelling; — unsupervised ML; — semi-supervised ML; — reinforcement learning; — analytics. This document is applicable to training and evaluation data that come from different sources, including data acquisition and data composition, data preparation, data labelling, evaluation and data use. This document does not define specific services, platforms or tools.

ISO 9241-171:2008 provides ergonomics guidance and specifications for the design of accessible software for use at work, in the home, in education and in public places. It covers issues associated with designing accessible software for people with the widest range of physical, sensory and cognitive abilities, including those who are temporarily disabled, and the elderly. It addresses software considerations for accessibility that complement general design for usability as addressed by ISO 9241-110, ISO 9241-11 to ISO 9241-17, ISO 14915 and ISO 13407. ISO 9241-171:2008 is applicable to the accessibility of interactive systems. It addresses a wide range of software (e.g. office, Web, learning support and library systems). It promotes the increased usability of systems for a wider range of users. While it does not cover the behaviour of, or requirements for, assistive technologies (including assistive software), it does address the use of assistive technologies as an integrated component of interactive systems. It is intended for use by those responsible for the specification, design, development, evaluation and procurement of software platforms and software applications.

This document defines the framework for the digital twins in the built environment. It includes the terms and definitions, the relation with building information modelling and addresses the lack of standards for the qualitative specification of a digital twin, which can include geometric, attributive, structural and infrastructural quality, as applicable. It will be based on the experiences obtained in use cases [1] and other TCs, including ISO/IEC 30173:2023 Digital twin — Concepts and terminology. This document can be used in the development of other standards and in support of communications among diverse, interested parties or stakeholders. This initiative aims to define an ecosystem of digital twins opening the opportunity to release even greater value, using data for the public good.

This document establishes the requirements for systems engineering activities to be performed on projects of the United States (US) Department of Defense (DoD) and other defense agencies across the entire system life cycle, including the planning, acquisition, modification, and sustainment of defense systems. It provides the foundation for systems engineering within the context of ISO/IEC/IEEE 152881 and the acquisition environment of DoD and other defense agencies at all levels of system hierarchy. This document provides detailed requirements for the application of the life cycle processes, activities, and tasks of ISO/IEC/IEEE 15288 for use on any defense system and includes the effective integration of agreement processes, technical processes, technical management processes, and essential specialty engineering requirements.

This document defines an incident management process and supporting documentation that can be used to manage and implement incident management within any organization, project or maintenance activity. Supporting informative diagrams describing the process and example documents are also provided. This standard is applicable to incident management in all development lifecycle models.

This part of ISO/IEC/IEEE 24748 - specifies the processes from ISO/IEC/IEEE 15288 that implement systems engineering management for the life cycles of technical solutions, - describes a required information item, termed the Systems Engineering Management Plan (SEMP) for the technical management and execution of the systems engineering of technical solutions, - provides requirements and guidance for the content of the required information item

This document provides guidelines on identification and labelling of medicinal products from the point of manufacture of packaged medicinal product to the point of dispensing the product. This document outlines best practice for AIDC barcoding solutions for applications. Users can, however, consider the coding interoperability requirements for other AIDC technologies, e.g. Radio Frequency Identification (RFID).

This standard lists the terms and definitions to be used in the IDMP (Identification of medicinal products) standards and technical specifications, when terms and definitions as to be used in more than one of these standards.