ISO/IEC /FDAmd 1. Additional terminology and concepts. General information. Status: Deleted. Edition: 1. Number of pages: Technical. ISO/IEC •defines terms for identity management, and •specifies core concepts of identity and identity management and their relationships. Aug 1, ISO/IEC consists of the following parts, under the general title Information technology — Security techniques — A framework for identity.
|Published (Last):||2 August 2015|
|PDF File Size:||18.56 Mb|
|ePub File Size:||9.17 Mb|
|Price:||Free* [*Free Regsitration Required]|
The concepts slip from being descriptive this is what the concept means to being normative this is how isk system should behave. Provides a framework for the secure and reliable management of identities by: Synonyms are given for terms that are clearly incorrect e.
ISO/IEC /FDAmd 1 – Additional terminology and concepts
Enter your email ieo to subscribe to this blog and receive notifications of new posts by email. Retrieved from ” https: Hi Doug, funny that I should come across your blog first when looking into advice onto adhering to this standard.
Latest Tweets Nice article on practical concerns with modelling.
SC 27 engages in active liaison and collaboration with appropriate bodies to ensure isl proper development and application of SC 27 standards and technical reports in relevant areas. This includes generic methods, techniques and guidelines to address both security and privacy aspects, such as: Information technology – Security techniques – A framework for identity management – Part 2: Describes the overview and vocabulary iwo ISMS .
It seems to me that major vendors are more interested in ISO when it comes to IdAM than they are ISOwhich tells you about the applicability of the standard.
This standard is supposed to define key terms for identity management and specify core concepts in identity and identity management. Notify me of new posts via email. In many cases they use terms that are just as unclear as the one they are trying to define e. Unfortunately it was adopted. It seems to favour particular implementations and approaches to identity instead of being entirely general.
Introduction and general model. Identity management and privacy technologies. Information technology — Security techniques — Application security — Part 1: Reference architecture and requirements. They redefine commonly used terms in the industry authentication is redefined to mean a form of verification. Hi Doug, I was wondering whether you ever got around to sharing other standards and resources that do a better job of describing the concepts and terminology around identity.
The definitions are mostly unclear and imprecise: The discussion of concepts seems very specific.
We are looking for an experienced Director of Finance for our head quarters in Noumea. Specifies the requirements for establishing, implementing, monitoring, and maintaining documented a documented ISMS within an organization. Applicable to entities involved in specifying, procuring, designing, testing, maintaining, administering and operating ICT systems that process PII.
Addresses the management needs for ensuring the security of applications  and presents an overview of application security through the introduction of definitions, concepts, principles and processes .
ISO/IEC JTC 1/SC 27
These were among the reasons that a nmber of key countries voted against this standard. My view is that it should be avoided. Defines a privacy architecture framework sio Fill in your details below or click an icon to log in: Create a free website or blog at WordPress. Specifies six methods for authenticated encryption with the security objectives of: Leave a Reply Cancel reply Enter your comment here