Information technology — Open Trusted Technology ProviderTM Standard (O-TTPS) — Mitigating maliciously tainted and counterfeit products — Part 2: Assessment procedures for the O-TTPS and ISO/IEC 20243-1:2018

ISO/IEC 20243-2:2018 specifies the procedures to be utilized by an assessor when conducting a conformity assessment to the mandatory requirements in the Open Trusted Technology Provider? Standard (O-TTPS).1 These Assessment Procedures are intended to ensure the repeatability, reproducibility, and objectivity of assessments against the O-TTPS. Though the primary audience for this document is the assessor, an Information Technology (IT) provider who is undergoing assessment or preparing for assessment, may also find this document useful.

Technologies de l'information — Norme de fournisseur de technologie de confiance ouverte (O-TTPS) — Atténuation des produits contrefaits et malicieusement contaminés — Partie 2: Procédures d'évaluation de l'O-TTPS et l'ISO/IEC 20243-1:2018

General Information

Status
Withdrawn
Publication Date
08-Jan-2018
Current Stage
9599 - Withdrawal of International Standard
Completion Date
24-Nov-2023
Ref Project

Relations

Buy Standard

Standard
ISO/IEC 20243-2:2018 - Information technology -- Open Trusted Technology ProviderTM Standard (O-TTPS) -- Mitigating maliciously tainted and counterfeit products
English language
33 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

INTERNATIONAL ISO/IEC
STANDARD 20243-2
First edition
2018-01
Information technology — Open
TM
Trusted Technology Provider
Standard (O-TTPS) — Mitigating
maliciously tainted and counterfeit
products —
Part 2:
Assessment procedures for the O-TTPS
and ISO/IEC 20243-1:2018
Technologies de l'information — Norme de fournisseur de technologie
de confiance ouverte (O-TTPS) — Atténuation des produits contrefaits
et malicieusement contaminés —
Partie 2: Procédures d'évaluation de l'O-TTPS et l'ISO/IEC 20243-
1:2018
Reference number
ISO/IEC 20243-2:2018(E)
©
ISO/IEC 2018

---------------------- Page: 1 ----------------------
ISO/IEC 20243-2:2018(E)

COPYRIGHT PROTECTED DOCUMENT
© ISO/IEC 2018
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva, Switzerland
Tel. +41 22 749 01 11
Fax +41 22 749 09 47
copyright@iso.org
www.iso.org
Published in Switzerland
ii © ISO/IEC 2018 – All rights reserved

---------------------- Page: 2 ----------------------
ISO/IEC 20243-2:2018(E)
Contents
1.  Introduction . 1
1.1  Scope . 1
1.2  Normative References . 1
1.3  Terms and Definitions . 1
1.3.1  Distributor . 1
1.3.2  Evidence of Conformance . 1
1.3.3  Implementation Evidence . 1
1.3.4  O-TTPS Requirements . 1
1.3.5  Organization . 1
1.3.6  Pass-Through Reseller . 2
1.3.7  Process Evidence . 2
1.3.8  Scope of Assessment . 2
1.3.9  Selected Representative Product . 2
2.  General Concepts . 3
2.1  The O-TTPS . 3
2.2  Assessment Concepts: Relevance of Scope of Assessment and Selected Representative Products . 3
2.3  Relevance of IT Technology Provider Categories in the Supply Chain . 4
3.  Assessment Requirements . 6
3.1  General Requirements for Assessor Activities . 6
3.1.1  General Requirements for Evidence of Conformance . 6
4.  Assessor Activities for O-TTPS Requirements . 8
4.1  PD_DES: Software/Firmware/Hardware Design Process . 8
4.2  PD_CFM: Configuration Management . 9
4.3  PD_MPP: Well-defined Development/Engineering Method Process and Practices . 11
4.4  PD_QAT: Quality and Test Management .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.