iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
CEN

prEN ISO/IEC 27010

(Main)

Information technology - Security techniques - Information security management for inter-sector and inter-organizational communications (ISO/IEC 27010:2015)

Information technology - Security techniques - Information security management for inter-sector and inter-organizational communications (ISO/IEC 27010:2015)

Informationstechnik - Sicherheitsverfahren - Informationssicherheitsmanagement für sektor- und organisationsübergreifende Kommunikation (ISO/IEC 27010:2015)

Technologies de l'information - Techniques de sécurité - Gestion de la sécurité de l'information des communications intersectorielles et interorganisationnelles (ISO/IEC 27010:2015)

Informacijska tehnologija - Varnostne tehnike - Upravljanje informacijske varnosti za medsektorsko in medorganizacijsko komunikacijo (ISO/IEC 27010:2015)

General Information

Status
Not Published
Publication Date
16-Aug-2021
Withdrawal Date
16-Feb-2022
ICS
03.100.70 - Management systems
33.030 - Telecommunication services. Applications
Technical Committee
CEN/CLC/TC 13 - Cybersecurity and Data Protection
Drafting Committee
CEN/CLC/TC 13 - Cybersecurity and Data Protection
Current Stage
4098 - Decision to abandon - Enquiry
Completion Date
10-Jul-2020
Ref Project
oSIST prEN ISO/IEC 27010:2020 - Information technology - Security techniques - Information security management for inter-sector and inter-organizational communications (ISO/IEC 27010:2015)

Buy Standard

prEN ISO/IEC 27010:2020prEN ISO/IEC 27010:2020
PreviousNext
Draft
prEN ISO/IEC 27010:2020
English language
39 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-marec-2020
Informacijska tehnologija - Varnostne tehnike - Upravljanje informacijske varnosti
za medsektorsko in medorganizacijsko komunikacijo (ISO/IEC 27010:2015)
Information technology - Security techniques - Information security management for
inter-sector and inter-organizational communications (ISO/IEC 27010:2015)
Informationstechnik - Sicherheitsverfahren - Informationssicherheitsmanagement für
sektor- und organisationsübergreifende Kommunikation (ISO/IEC 27010:2015)
Technologies de l'information - Techniques de sécurité - Gestion de la sécurité de
l'information des communications intersectorielles et interorganisationnelles (ISO/IEC
27010:2015)
Ta slovenski standard je istoveten z: prEN ISO/IEC 27010
ICS:
03.100.70 Sistemi vodenja Management systems
33.030 Telekomunikacijske Telecommunication services.
uporabniške rešitve Applications
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

INTERNATIONAL ISO/IEC
STANDARD 27010
Second edition
2015-11-15
Information technology — Security
techniques — Information security
management for inter-sector and
inter-organizational communications
Technologies de l’information — Techniques de sécurité — Gestion de
la sécurité de l’information des communications intersectorielles et
interorganisationnelles
Reference number
ISO/IEC 27010:2015(E)
©
ISO/IEC 2015
ISO/IEC 27010:2015(E)
© ISO/IEC 2015, Published in Switzerland
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form
or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior
written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of
the requester.
ISO copyright office
Ch. de Blandonnet 8 • CP 401
CH-1214 Vernier, Geneva, Switzerland
Tel. +41 22 749 01 11
Fax +41 22 749 09 47
copyright@iso.org
www.iso.org
ii © ISO/IEC 2015 – All rights reserved

ISO/IEC 27010:2015(E)
Contents Page
Foreword .vi
Introduction .vii
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Concepts and justification . 1
4.1 Introduction . 1
4.2 Information sharing communities . 2
4.3 Community management . 2
4.4 Supporting entities . 2
4.5 Inter-sector communication . 2
4.6 Conformity . 3
4.7 Communications model . 4
5 Information security policies . 4
5.1 Management direction for information security . 4
5.1.1 Policies for information security. 4
5.1.2 Review of the policies for information security . 5
6 Organization of information security . 5
7 Human resource security . 5
7.1 Prior to employment . 5
7.1.1 Screening . 5
7.1.2 Terms and conditions of employment . 5
7.2 During employment . 5
7.3 Termination and change of employment . 5
8 Asset management . 5
8.1 Responsibility for assets . 5
8.1.1 Inventory of assets . 5
8.1.2 Ownership of assets . 5
8.1.3 Acceptable use of assets . 6
8.1.4 Return of assets . 6
8.2 Information classification . 6
8.2.1 Classification of information . 6
8.2.2 Labelling of information . 6
8.2.3 Handling of assets . 6
8.3 Media handling . 6
8.4 Information exchanges protection . 7
8.4.1 Information dissemination . 7
8.4.2 Information disclaimers . 7
8.4.3 Information credibility . 7
8.4.4 Information sensitivity reduction . 8
8.4.5 Anonymous source protection . 8
8.4.6 Anonymous recipient protection . 8
8.4.7 Onwards release authority . 9
9 Access control . 9
10 Cryptography . 9
10.1 Cryptographic controls . 9
10.1.1 Policy on the use of cryptographic controls . 9
10.1.2 Key management . 9
11 Physical and environmental security . 9
© ISO/IEC 2015 – All rights reserved iii

ISO/IEC 27010:2015(E)
12 Operations security . 9
12.1 Operational procedures and responsibilities . 9
12.2 Protection from malware .10
12.2.1 Controls against malware .10
12.3 Backup .10
12.4 Logging and monitoring .10
12.4.1 Event logging .10
12.4.2 Protection of log information .10
12.4.3 Administrator and operator logs .10
12.4.4 Clock synchronization .10
12.5 Control of operational software .10
12.6 Technical vulnerability management .10
12.7 Information systems audit considerations .10
12.7.1 Information systems audit controls .10
12.7.2 Community audit rights .10
13 Communications security .11
13.1 Network security management .11
13.2 Information transfer .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

CEN
EN ISO 3379:2024(Main)
Leather - Determination of distension and strength of surface (Ball burst method) (ISO 3379:2024)
SIST EN ISO 3379:2025

This document specifies a test method for the determination of distension and strength of the leather grain or finished surface. This method is applicable to all flexible leathers and it is particularly suitable to determine the lastability of leathers for footwear uppers.

  • Draft
    10 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 12007-5:2024(Main)
Gas infrastructure - Pipelines for maximum operating pressure up to and including 16 bar - Part 5: Service lines - Specific functional requirements
SIST EN 12007-5:2025

This document describes the specific functional requirements for the transportation of gases (gaseous energy carriers) through service lines in addition to the general functional requirements of EN 12007 1 for:
a)   a maximum operating pressure (MOP) up to and including 16 bar;
b)   an operating temperature between −20 °C and +40 °C;
c)   gases and blends of gases which are in the gaseous state when conveyed in the gas pipeline infrastructure such as hydrogen, hydrogen rich, and methane rich gases, dimethyl ether (DME) and propane and butanes used for combustion and/or as feedstock, excluding steam and compressed air, where technical evaluation has ensured that operating conditions, constituents and properties of the gas do not affect the safe operation and maintenance of the service line.
It applies to their design, construction, commissioning, decommissioning, operation, maintenance, extension and other associated works including safety and environmental aspects. The service line is the physical asset comprising of pipework from the gas main branch saddle or top tee to the outlet of the distribution system operator’s nominated point(s) of delivery (for example: isolation valve, regulator, meter connection or combination of regulator and isolation valve).
This document does not apply retrospectively to installations before the publication date unless specifically stated.
Specific functional requirements for:
—   polyethylene pipelines are given in EN 12007 2;
—   steel pipelines are given in EN 12007 3;
—   polyamide (PA-U) pipelines are given in CEN/TS 12007 6;
—   pipework for buildings are given in EN 1775;
—   pressure regulating installations are given in EN 12279 or EN 12186;
—   pressure testing, commissioning and decommissioning are given in EN 12327;
—   safety management system (SMS) and pipeline integrity management system (PIMS) are given in EN 17649.
This document specifies common basic principles for gas infrastructure. Users of this document are expected to be aware that there can exist more detailed national standards and/or codes of practice in the CEN member countries. This document is intended to be applied in association with these national standards and/or codes of practice setting out the above-mentioned basic principles.
In the event of terms of additional requirements in legislation/regulation than in this document, CEN/TR 13737 (all parts) illustrates these terms.
CEN/TR 13737 gives:
—   description of legislations/regulations applicable in a member state;
—   if appropriate, more restrictive national requirements;
—   a national contact point for the latest information.

  • Draft
    30 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 18003:2024(Main)
Food authenticity - Determination of 16-O-Methylcafestol content of green and roasted coffee - HPLC-method
SIST EN 18003:2025

This document specifies a high-performance liquid chromatography (HPLC) method for determining the 16-O-Methylcafestol content in green and roasted coffee.
The method is suitable for a content of 40 mg/kg to 1 600 mg/kg of 16-O-Methylcafestol of green and roasted coffee, respectively. The collaborative study has shown that mass fractions also between 20 mg/kg to 40 mg/kg can be successfully analysed depending on the laboratory equipment.
The compliance assessment process is not part of this document.

  • Draft
    18 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17972:2024(Main)
Food authenticity - Food authenticity and fraud - Concepts, terms and definitions
SIST EN 17972:2025

This document provides technical definitions of terms relating to authenticity and fraud when referring to food products. All terms and definitions are in the context of food supply chains, but most of them can also be applied when referring to feed products and the feed supply chain.

  • Draft
    13 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 16214-3:2024(Main)
Sustainability and greenhouse gas emission saving criteria for biomass for energy applications - Principles, criteria, indicators and verifiers - Part 3: Sustainability criteria related to environmental aspects
kSIST FprEN 16214-3:2023

This document specifies procedures, criteria and indicators meeting the sustainability criteria of European Commission Directive 2018/EU/2001 (RED II), the recast of the Renewable Energy Directive, for agricultural biomass and forest biomass for energy applications, i.e. biofuels, bioliquids and biomass fuels. This document is applicable to production, cultivation and harvesting of biomass from agricultural land and forest land for biofuels, bioliquids and biomass fuel production.

  • Draft
    37 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17137:2024(Main)
Textiles and textile products - Determination of the content of compounds based on chlorobenzenes and chlorotoluenes
SIST EN 17137:2024

This document specifies a test method using gas chromatography with mass selective detector (GC-MS) for detection and quantification of chlorobenzenes, chlorotoluenes, and α-chlorinated toluenes in fibres, yarns, fabrics, coated fabrics and plastics.

  • Draft
    26 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17992:2024(Main)
Food authenticity - Determination of the sum of 16-O-Methylcafestol, 16-O-Methylkahweol and their derivatives in roasted coffee by ¹H-qNMR
SIST EN 17992:2025

This document specifies a method for the determination of soluble 16-O-Methylcafestol and 16-O-Methylkahweol content (the sum of free forms and derivatives, e.g. fatty acid esters, henceforth abbreviated as 16-OMD = “diterpenes”) in roasted coffee (beans or ground), using quantitative proton nuclear magnetic resonance spectroscopy (1H-qNMR).
If complying with the experimental parameters described below, this test procedure has been proven for the following mass fraction range:
w16-OMD:    20 mg/kg to 2 000 mg/kg.
The mass fraction range can be expanded by suitable changes of the experimental parameters, e.g. a different weighed portion of ground coffee or the accumulation of more NMR-transients.

  • Draft
    23 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 556-2:2024(Main)
Sterilization of medical devices - Requirements for medical devices to be designated "STERILE" - Part 2: Requirements for aseptically processed medical devices
SIST EN 556-2:2025

This document specifies the requirements for an aseptically processed medical device to be designated “STERILE”.

  • Draft
    18 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 14972-5:2024(Main)
Fixed firefighting systems - Water mist systems - Part 5: Test protocol for car garages for automatic nozzle systems
SIST EN 14972-5:2025

This document specifies the evaluation of the fire performance of water mist systems for non-stacking garages, fully enclosed garages and underground garages.
This document is applicable for horizontal, solid, flat ceilings with heights of 2 m and above.

  • Draft
    19 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 22476-16:2024(Main)
Geotechnical investigation and testing - Field testing - Part 16: Borehole shear test (ISO 22476‑16:2024)
kSIST FprEN ISO 22476-16:2023

This document is applicable to the borehole shear test using the phicometer procedure, commonly named the phicometer test (etymologically derived from phi for friction angle, co for cohesion and meter for measurement).
The test can be performed in all types of natural soils, fills and artificial soils, which can be saturated or not.
It does not apply to very soft fine soils, very loose coarse soils, medium strong to very strong rocks and natural or artificial soils with a predominance of cobbles having a particle diameter greater than 150 mm.
Generally, the test is applicable in soils with an order of magnitude of their in situ resistance characteristics as follows:
—     Ménard pressuremeter limit pressure: 0,4 MPa < plM < 3,5 MPa approximately or more than 4 MPa in granular non-cohesive soils;
—     CPT Cone resistance: 1,5 MPa —     SPT N: 8 The test can also be carried out in soils presenting a resistance outside these application limits as long as the representativeness of the results is assessed or validated by the analysis of the PBST graphs (see Clause 8).
This document applies only to tests carried out at a depth less than or equal to 30 m.
The parameters derived from this test are the shear strength properties, as the cohesion and angle of friction.

  • Draft
    50 pages
    English language
    sale 10% off
    e-Library read for
    1 day