ISO/IEC 29146:2024
(Main)Information technology — Security techniques — A framework for access management
Information technology — Security techniques — A framework for access management
This document defines and establishes a framework for access management (AM) and the secure management of the process to access information and information and communications technologies (ICT) resources, associated with the accountability of a subject within some contexts. This document provides concepts, terms and definitions applicable to distributed access management techniques in network environments. This document also provides explanations about related architecture, components and management functions. The subjects involved in access management can be uniquely recognized to access information systems, as defined in the ISO/IEC 24760 series. The nature and qualities of physical access control involved in access management systems are outside the scope of this document.
Technologies de l'information — Techniques de sécurité — Cadre pour gestion d'accès
General Information
Relations
Buy Standard
Standards Content (Sample)
FINAL
INTERNATIONAL ISO/IEC
DRAFT
STANDARD FDIS
29146
ISO/IEC JTC 1/SC 27
Information technology — Security
Secretariat: DIN
techniques — A framework for access
Voting begins on:
2023-09-05 management
Voting terminates on:
Technologies de l'information — Techniques de sécurité — Cadre
2023-10-31
pour gestion d'accès
RECIPIENTS OF THIS DRAFT ARE INVITED TO
SUBMIT, WITH THEIR COMMENTS, NOTIFICATION
OF ANY RELEVANT PATENT RIGHTS OF WHICH
THEY ARE AWARE AND TO PROVIDE SUPPOR TING
DOCUMENTATION.
IN ADDITION TO THEIR EVALUATION AS
Reference number
BEING ACCEPTABLE FOR INDUSTRIAL, TECHNO-
ISO/IEC FDIS 29146:2023(E)
LOGICAL, COMMERCIAL AND USER PURPOSES,
DRAFT INTERNATIONAL STANDARDS MAY ON
OCCASION HAVE TO BE CONSIDERED IN THE
LIGHT OF THEIR POTENTIAL TO BECOME STAN-
DARDS TO WHICH REFERENCE MAY BE MADE IN
NATIONAL REGULATIONS. © ISO/IEC 2023
---------------------- Page: 1 ----------------------
ISO/IEC FDIS 29146:2023(E)
FINAL
INTERNATIONAL ISO/IEC
DRAFT
STANDARD FDIS
29146
ISO/IEC JTC 1/SC 27
Information technology — Security
Secretariat: DIN
techniques — A framework for access
Voting begins on:
management
Voting terminates on:
Technologies de l'information — Techniques de sécurité — Cadre
pour gestion d'accès
COPYRIGHT PROTECTED DOCUMENT
© ISO/IEC 2023
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
RECIPIENTS OF THIS DRAFT ARE INVITED TO
ISO copyright office
SUBMIT, WITH THEIR COMMENTS, NOTIFICATION
OF ANY RELEVANT PATENT RIGHTS OF WHICH
CP 401 • Ch. de Blandonnet 8
THEY ARE AWARE AND TO PROVIDE SUPPOR TING
CH-1214 Vernier, Geneva
DOCUMENTATION.
Phone: +41 22 749 01 11
IN ADDITION TO THEIR EVALUATION AS
Reference number
Email: copyright@iso.org
BEING ACCEPTABLE FOR INDUSTRIAL, TECHNO
ISO/IEC FDIS 29146:2023(E)
Website: www.iso.org
LOGICAL, COMMERCIAL AND USER PURPOSES,
DRAFT INTERNATIONAL STANDARDS MAY ON
Published in Switzerland
OCCASION HAVE TO BE CONSIDERED IN THE
LIGHT OF THEIR POTENTIAL TO BECOME STAN
DARDS TO WHICH REFERENCE MAY BE MADE IN
ii
© ISO/IEC 2023 – All rights reserved
NATIONAL REGULATIONS. © ISO/IEC 2023
---------------------- Page: 2 ----------------------
ISO/IEC FDIS 29146:2023(E)
Contents Page
Foreword .v
Introduction . vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Abbreviated terms . 4
5 Concepts . 5
5.1 A model for controlling access to resources . 5
5.1.1 Overview . 5
5.1.2 Relationship between identity management system and access
management system . 6
5.1.3 Security characteristics of the access method . 7
5.2 Relationships between logical and physical access control .
...
© ISO/IEC 2022 – All rights reserved
ISO/IEC JTC 1/SC 27 Style Definition: Comment Text
Style Definition: List Continue 5: Font: Indent: Hanging:
20.15 pt, Don't add space between paragraphs of the same
Date: 2022-11-302023-08-22
style
Style Definition: RefNorm
ISO/IEC /FDIS 29146:2023(E)
Style Definition: Base_Text: Tab stops: 19.85 pt, Left +
39.7 pt, Left + 59.55 pt, Left + 79.4 pt, Left + 99.25 pt,
ISO/IEC JTC 1/SC 27/WG 5
Left + 119.05 pt, Left + 138.9 pt, Left + 158.75 pt, Left +
178.6 pt, Left + 198.45 pt, Left
ISO/IEC JTC 1/SC 27/WG 5
Style Definition: Body Text_Center
Style Definition: Code: Tab stops: 16.15 pt, Left + 32.6 pt,
Secretariat:DIN
Left + 48.75 pt, Left + 65.2 pt, Left + 81.35 pt, Left + 97.8
pt, Left + 113.95 pt, Left + 130.4 pt, Left + 146.55 pt, Left
+ 162.75 pt, Left
Information technology — Security techniques — A framework for access
Style Definition: Dimension_100
management
Style Definition: Figure Graphic
Information technology — Security techniques — A framework for access management
Style Definition: Figure subtitle
Style Definition: List Continue 1
Technologies de l'information — Techniques de sécurité — Cadre pour la gestion de l'accès
Style Definition: List Continue 2 (-): Indent: Left: 19.5 pt,
Hanging: 40.5 pt, Space After: 12 pt
Style Definition: List Number 1: Tab stops: Not at 20.15 pt
Style Definition: Example indent 2: Tab stops: 67.7 pt, Left
Style Definition: Note indent 2 continued: Tab stops: 87.9
pt, Left
Style Definition: Note indent 2
Formatted: Font: Bold
Formatted: Adjust space between Latin and Asian text,
Adjust space between Asian text and numbers
Formatted: English (United Kingdom)
Formatted: Font: Bold
Formatted: Adjust space between Latin and Asian text,
Adjust space between Asian text and numbers
Formatted: French (Switzerland)
Formatted: Adjust space between Latin and Asian text,
Adjust space between Asian text and numbers
i © ISO/IEC 2022 – All rights reserved
---------------------- Page: 1 ----------------------
ISO/IEC 29146:2022(E)
Formatted: English (United Kingdom)
Formatted
© ISO/IEC 2023
All rights reserved. Unless otherwise specified, or required in the context of its implementation,
no part of this publication may be reproduced or utilized otherwise in any form or by any means,
electronic or mechanical, including photocopying, or posting on the internet or an intranet,
without prior written permission. Permission can be requested from either ISO at the address
below or ISO's member body in the country of the requester.
ISO Copyright Office
CP 401 • CH-1214 Vernier, Geneva
Phone: + 41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland.
---------------------- Page: 2 ----------------------
Formatted
...
Formatted
...
Formatted
ISO/IEC FDIS 29146:20222023(E)
...
Formatted
...
Field Code Changed
...
Formatted
...
Contents Page
Formatted
...
Field Code Changed
...
Foreword . 5v
Formatted
...
Introduction . 6vi
Formatted
...
1 Scope . 1
Field Code Changed
...
2 Normative references . 1 Formatted
...
Formatted
...
3 Terms and definitions . 1
Formatted
...
4 Abbreviated terms . 5
Field Code Changed
...
5 Concepts . 5
Formatted
...
Field Code Changed
5.1 A model for controlling access to resources . 5
...
Formatted
5.1.1 Overview . 5
...
Formatted
...
5.1.2 Relationship between identity management system and access management system . 6
Field Code Changed
...
5.1.3 Security characteristics of the access method . 8
Formatted
...
5.2 Relationships between logical and physical access control .
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.