标准号:ISO/IEC TR 15443-3-2007
实施状态:作废
中文名称:信息技术.安全技术.IT安全保障框架.第3部分:保障方法的分析
英文名称:Information technology - Security techniques - A framework for IT security assurance - Part 3: Analysis of assurance methods
发布日期:2007-12
被替代标准:ISO/IEC TR 15443-2-2012;ISO/IEC TR 15443-1-2012
采用标准:ANSI/INCITS/ISO/IEC TR 15443-3-2009,IDT
起草单位:ISO/IEC JTC 1/SC 27
标准简介:1.1 Purpose
The purpose of this part of ISO/IEC TR 15443 is to provide general guidance to an assurance authority in the
choice of the appropriate type of international communications techology (ICT) assurance methods and to lay
the framework for the analysis of specific assurance methods for specific environments.
1.2 Application
This part of ISO/IEC TR 15443 will allow the user to match specific assurance requirements and/or typical
assurance situations with the general characteristics offered by available assurance methods.
1.3 Field of Application
The guidance of this part of ISO/IEC TR 15443 is applicable to the development, implementation and
operation of ICT products and ICT systems with security requirements.
1.4 Limitations
Security requirements may be complex, assurance methods are of great diversity, and organisational
resources and cultures differ considerably.
Therefore the advice given in this part of ISO/IEC TR 15443 will be qualitative and summary, and the user
may need to analyse on his own which methods presented in Part 2 of this Technical Report will suit best his
specific deliverables and organisational security requirements.
文件格式:PDF
文件大小:450.88KB
文件页数:70
(以上信息更新时间为:2019-11-22)
ISO_IEC TR 15443-3-2007 信息技术.安全技术.IT安全保障框架.第3部分_保障方法的分析.pdf
(450.88 KB)
|
|
