iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO/PAS 5112:2022

(Main)

Road vehicles — Guidelines for auditing cybersecurity engineering

Road vehicles — Guidelines for auditing cybersecurity engineering

In addition to the guidelines in ISO 19011, this document provides guidelines to organizations that contribute to the achievement of road vehicle cybersecurity throughout the supply chain on: — managing an audit programme for a cybersecurity management system (CSMS); — conducting organizational CSMS audits; — competencies of CSMS auditors; and — providing evidence during CSMS audits. Elements of the CSMS are based on the processes described in ISO/SAE 21434. This document is applicable to those needing to understand or conduct internal or external audits of a CSMS or to manage a CSMS audit programme. This document does not provide guidelines on cybersecurity assessments.

Véhicules routiers — Lignes directrices pour l’audit de l’ingénierie de la cybersécurité

General Information

Status
Published
Publication Date
30-Mar-2022
ICS
03.120.20 - Product and company certification. Conformity assessment
43.040.15 - Car informatics. On board computer systems
Technical Committee
ISO/TC 22/SC 32 - Electrical and electronic components and general system aspects
Drafting Committee
ISO/TC 22/SC 32/WG 11 - Cybersecurity
Current Stage
6060 - International Standard published
Start Date
31-Mar-2022
Due Date
07-May-2022
Completion Date
31-Mar-2022
Ref Project

Buy Standard

ISO/PAS 5112:2022 - Road vehicles — Guidelines for auditing cybersecurity engineering Released:3/31/2022ISO/PAS 5112:2022 - Road vehicles — Guidelines for auditing cybersecurity engineering Released:3/31/2022
PreviousNext
Technical specification
ISO/PAS 5112:2022 - Road vehicles — Guidelines for auditing cybersecurity engineering Released:3/31/2022
English language
21 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

PUBLICLY ISO/PAS
AVAILABLE 5112
SPECIFICATION
First edition
2022-03
Road vehicles — Guidelines for
auditing cybersecurity engineering
Véhicules routiers — Lignes directrices pour l’audit de l’ingénierie de
la cybersécurité
Reference number
ISO/PAS 5112:2022(E)
© ISO 2022

---------------------- Page: 1 ----------------------
ISO/PAS 5112:2022(E)
COPYRIGHT PROTECTED DOCUMENT
© ISO 2022
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii
  © ISO 2022 – All rights reserved

---------------------- Page: 2 ----------------------
ISO/PAS 5112:2022(E)
Contents Page
Foreword .v
Introduction . vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Principles of auditing .2
5 Managing an audit programme .2
5.1 General . 2
5.2 Establishing audit programme objectives . 2
5.3 Determining and evaluating audit programme risks and opportunities . 3
5.4 Establishing the audit programme . 3
5.4.1 Roles and responsibilities of the individual(s) managing the audit
programme . 3
5.4.2 Competence of individual(s) managing audit programme. 3
5.4.3 Establishing extent of audit programme . 3
5.4.4 Determining audit programme resources . 4
5.5 Implementing audit programme . 4
5.5.1 General . 4
5.5.2 Defining the objectives, scope and criteria for an individual audit . 4
5.5.3 Selecting and determining audit methods . 4
5.5.4 Selecting audit team members . 5
5.5.5 Assigning responsibility for an individual audit to the audit team leader . 5
5.5.6 Managing audit programme results . 5
5.5.7 Managing and maintaining audit programme records . 5
5.6 Monitoring audit programme . . 5
5.7 Reviewing and improving audit programme . 5
6 Conducting an audit .5
6.1 General . 5
6.2 Initiating audit . 5
6.2.1 General . 5
6.2.2 Establishing contact with auditee . 5
6.2.3 Determining feasibility of audit . 5
6.3 Preparing audit activities . 5
6.3.1 Performing review of documented information . 5
6.3.2 Audit planning . 6
6.3.3 Assigning work to audit team . 6
6.3.4 Preparing documented information for audit . 6
6.4 Conducting audit activities . 6
6.4.1 General . 6
6.4.2 Assigning roles and responsibilities of guides and observers . . 6
6.4.3 Conducting opening meeting . 6
6.4.4 Communicating during audit. 6
6.4.5 Audit information availability and access . 7
6.4.6 Reviewing documented information while conducting audit. 7
6.4.7 Collecting and verifying information. 7
6.4.8 Generating audit findings . 7
6.4.9 Determining audit conclusions . 8
6.4.10 Conducting closing meeting . 8
6.5 Preparing and distributing audit report . 8
6.5.1 Preparing audit report . 8
6.5.2 Distributing audit report . 8
6.6 Completing audit . 9
iii
© ISO 2022 – All rights reserved

---------------------- Page: 3 ----------------------
ISO/PAS 5112:2022(E)
6.7 Conducting audit follow-up . 9
7 Competence and evaluation of auditors . 9
7.1 General . 9
7.2 Determining auditor competence . 9
7.2.1 General . 9
7.2.2 Personal behaviour . 9
7.2.3 Knowledge and skills . 9
7.2.4 Achieving auditor competence . 10
7.2.5 Achieving audit team leader competence . 10
7.3 Establishing auditor evaluation criteria . 10
7.4 Selecting appropriate auditor evaluation method . 10
7.5 Conducting auditor evaluation . 10
7.6 Maintaining and improving auditor competence . 10
Annex A (informative) Audit questionnaire .11
Annex B (informative) Auditor competences .19
Bibliography .21
iv
  © ISO 2022 – All rights reserved

---------------------- Page: 4 ----------------------
ISO/PAS 5112:2022(E)
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards
bodies (ISO member bodies). The work of preparing International Standards is normally carried out
through ISO technical committees. Each member body interested in a subject for which a technical
committee has been established has the right to be represented on that committee. International
organizations, governmental and non-governmental, in liaison with ISO, also take part in the work.
ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of
electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of ISO documents should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of
any patent rights identified during the development of the document will be in the Introduction and/or
on the ISO list of patent declarations received (see www.iso.org/patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO's adherence to
the World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT), see
www.iso.org/iso/foreword.html.
This document was prepared by Technical Committee ISO/TC 22, Road vehicles, Subcommittee SC 32,
Electrical and electronic components and general system aspects.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www.iso.org/members.html.
v
© ISO 2022 – All rights reserved

---------------------- Page: 5 ----------------------
ISO/PAS 5112:2022(E)
Introduction
This document is related to ISO/SAE 21434 Road vehicles — Cybersecurity engineering and extends
ISO 19011 Guidelines for auditing management systems to the automotive domain.
This document is intended for organizations involved in automotive cybersecurity engineering in any
part of the automotive supply chain and for organizations needing to conduct audits. This document
can be used for audits of varying scope.
This document is adapted to fit the scope of an automotive cybersecurity engineering audit programme.
Cybersecurity audits in this document are aimed at cybersecurity activities at the organizational level.
While results from past projects can be used as evidence for implemented and applied processes, the
project and product levels are not in the focus of this document.
This document provides guidelines on the management of an audit programme, on the planning and
conducting of management system audits, as well as on the competence and evaluation of an audit team.
An audit can be conducted against a range of audit criteria. This document gives a set of audit criteria
based on ISO/SAE 21434 objectives. In addition, Annex A contains an example questionnaire that can be
adapted.
This document can be used for internal audits (first party), for audits conducted by organizations on
their external parties (second party) and for external audits conducted by third parties (e.g. for the
purpose of certification). This document can also be useful to organizations involved in auditor training
or personnel certification.
vi
  © ISO 2022 – All rights reserved

---------------------- Page: 6 ----------------------
PUBLICLY AVAILABLE SPECIFICATION ISO/PAS 5112:2022(E)
Road vehicles — Guidelines for auditing cybersecurity
engineering
1 Scope
In addition to the guidelines in ISO 19011, this document provides guidelines to organizations that
contribute to the achievement of road vehicle cybersecurity throughout the supply chain on:
— managing an audit programme for a cybersecurity management system (CSMS);
— conducting organizational CSMS audits;
— competencies of CSMS auditors; and
— providing evidence during CSMS audits.
Elements of the CSMS are based on the processes described in ISO/SAE 21434. This document is
applicable to those needing to understand or conduct internal or external audits of a CSMS or to manage
a CSMS audit programme.
This document does not provide guidelines on cybersecurity assessments.
2 Normative references
The following documents are referred to in the text in such a way that some or all of their content
constitutes requirements of this document. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any amendments) applies.
ISO/SAE 21434:2021, Road vehicles — Cybersecurity engineering
ISO 19011:2018, Guidelines for auditing management systems
3 Terms and definitions
For the purposes of this document, the terms and definitions given in ISO/SAE 21434, ISO 19011 and
the following apply.
ISO and IEC maintain terminology databases for use in standardization at the following addresses:
— ISO Online browsing platform: available at https:// www .iso .org/ obp
— IEC Electropedia: available at https:// www .electropedia .org/
3.1
audit
examination of a process to determine the extent to which the process objectives are achieved
Note 1 to entry: “Audit” is defined in ISO 19011 and ISO/SAE 21434. The definition of ISO/SAE 21434 is used in
this document to support compatibility between this document and ISO/SAE 21434.
[SOURCE: ISO/SAE 21434:2021, 3.1.6, modified — Note 1 to entry has been added.]
1
© ISO 2022 – All rights reserved

---------------------- Page: 7 ----------------------
ISO/PAS 5112:2022(E)
3.2
cybersecurity management system
CSMS
systematic risk-based approach defining organisational processes, responsibilities and governance to
manage risk (3.3) associated with threats to road vehicles and protect them from threats
[SOURCE: Reference [9], 2.3, modified — added “road” to clarify application domain, replaced “treat”
with “manage”, removed “cyber”, replaced “cyber attacks” with “threats”.]
3.3
risk
cybersecurity risk
effect of uncertainty on road vehicle cybersecurity expressed in terms of attack feasibility and impact
Note 1 to entry: ISO 19011 uses a broader definition of the term risk.
[SOURCE: ISO/SAE 21434:2021, 3.1.29, modified — Note 1 to entry has been added.]
3.4
supply chain
set of organizations with a linked set of resources and processes, each of which acts as a customer,
supplier, or both to form successive supplier relationships established upon placement of a purchase
order, agreement, or other formal sourcing agreement.
Note 1 to entry: A supply chain includes organizations involved in the manufacturing, design and development of
vehicles, or service providers involved in the operation, management, and delivery of services.
Note 2 to entry: The supply chain view is relative to the position of the customer.
[SOURCE: ISO/IEC 27036-1:2021, 3.10, modified — “acquirer” replaced by “customer" and Note 1 to
entry has been modified.]
4 Principles of auditing
The principles of auditing of ISO 19011:2018, Clause 4 apply. In addition, the following guidance applies.
The guidelines given in this document are aimed at what ISO/SAE 21434 defines as an organizational
cybersecurity audit. Product level topics are not in the scope of this document. Regarding products, a
cybersecurity assessment based on ISO/SAE 21434 is used to judge the cybersecurity of the item or
component.
5 Managing an audit programme
5.1 General
The guidelines of ISO 19011:2018, 5.1 apply.
5.2 Establishing audit programme objectives
The guidelines of ISO 19011:2018, 5.2 apply. In addition, the following guidance applies.
The audit programme objectives can be based on consideration of the following:
a) demonstration of the achievement of the objectives of ISO/SAE 21434;
b) specific cybersecurity risks associated with the auditee's products;
c) specifics related to the organization’s role in the automotive supply chain; and
2
  © ISO 2022 – All rights reserved

---------------------- Page: 8 ----------------------
ISO/PAS 5112:2022(E)
EXAMPLE 1 An organization’s role can be original equipment manufacturer (OEM), tier 1 supplier, tier 2
supplier, component manufacturer.
NOTE Organizations in the supply chain include organizations which develop components out of
context, e.g. before the placement of a purchase order, agreement, or other formal sourcing agreement.
d) clarification of whether the audit includes an evaluation of methods applied in the CSMS processes.
EXAMPLE 2 Specific audit programme objectives can include:
—   verification of conformity of the CSMS with relevant legal and contractual requirements;
—   obtaining and maintaining confidence in the auditee’s CSMS to identify, analyse and
      evaluate the cybersecurity risk and to take corresponding necessary action; and
—   evaluating the effectiveness of the CSMS to address cybersecurity risks.
5.3 Determining and evaluating audit programme risks and opportunities
The guidelines of ISO 19011:2018, 5.3 apply.
5.4 Establishing the audit programme
5.4.1 Roles and responsibilities of the individual(s) managing the audit programme
The guidelines of ISO 19011:2018, 5.4.1 apply.
5.4.2 Competence of individual(s) managing audit programme
The guidelines of ISO 19011:2018, 5.4.2 apply. In addition, the following guidance applies.
The individual(s) managing the CSMS audit programme should have the following competences:
a) knowledge of the standards regarding cybersecurity that are used by the auditee to establish and
maintain the CSMS;
b) knowledge of the general processes used by the automotive industry that are relevant for the
phase of the cybersecurity lifecycle which is evaluated within the specific scope of the audit (e.g.
processes for software development in the automotive domain);
c) ability to map the organization-specific processes, guidelines and rules with the audit criteria; and
d) if a combined audit is conducted, the ability to coordinate with other management system audit
programmes.
[8]
EXAMPLE A combined audit with IATF 16949 .
NOTE Considered competence can also include experience in audit or assessment of automotive processes
[8] [2] [5] [10]
based on automotive standards or guidelines, e.g. IATF 16949 , ISO 9001 , the ISO 26262 series , ASPICE .
5.4.3 Establishing extent of audit programme
The guidelines of ISO 19011:2018, 5.4.3 apply. In addition, the following guidance applies.
The extent of an audit programme can vary and can be impacted by the following factors:
a) size of the auditee and extent to which the auditee is involved in cybersecurity processes;
b) the cybersecurity-related supply chain and determination of which entities in the supply chain are
in scope; and
3
© ISO 2022 – All rights reserved

---------------------- Page: 9 ----------------------
ISO/PAS 5112:2022(E)
c) importance of preserving cybersecurity property of information within the scope of the
cybersecurity processes.
5.4.4 Determining audit programme resources
The guidelines of ISO 19011:2018, 5.4.4 apply.
5.5 Implementing audit programme
5.5.1 General
The guidelines of ISO 19011:2018, 5.5.1 apply.
5.5.2 Defining the objectives, scope and criteria for an individual audit
The guidelines of ISO 19011:2018, 5.5.2 apply. In addition, the following guidance applies.
The audit scope should include the CSMS processes used by the auditee during the phases of the
cybersecurity lifecycle that are within the specific scope of the audit.
EXAMPLE 1 A tier 2 supplier might not be audited for all phases of the cybersecurity lifecycle.
The audit criteria should be defined following 6.4.8 and 6.4.9.
The audit scope may include the whole organization or one or more clearly delineated organizational
units.
NOTE 1 Clearly delineated organizational units are those that have separate organizational structures and
processes.
If the CSMS process depends on interactions with other organizational processes, the interfaces and
dependencies should be identified.
NOTE 2 Interfaces can include how work products are exchanged.
Shared functions outside the organization may be included in the scope of the audit with clearly defined
interfaces. If an organization depends on another organization to achieve the objectives of CSMS
processes, the contributing organization should be identified. The extent to which the organization
manages the dependencies on external organizations to realize its CSMS should be determined.
Distributed cybersecurity activities, defined in a cybersecurity interface agreement, may be included
in the scope of the audit.
EXAMPLE 2 Cybersecurity monitoring and cybersecurity incident response.
The audit objectives can include the confirmation of the suitability of the implemented processes and
applied methods and criteria to achieve the objectives of ISO/SAE 21434.
The auditee may perform an internal audit to identify and resolve shortcomings in the CSMS before an
external audit is conducted. If an external audit is planned as part of the audit programme, the scope
and objectives of both internal and external audits should be aligned.
A subsequent follow-up audit to address identified minor non-conformities of a conditionally-passed
audit may focus solely on the identified deficiencies noted.
5.5.3 Selecting and determining audit methods
The guidelines of ISO 19011:2018, 5.5.3 apply.
4
  © ISO 2022 – All rights reserved

---------------------- Page: 10 ----------------------
ISO/PAS 5112:2022(E)
5.5.4 Selecting audit team members
The guidelines of ISO 19011:2018, 5.5.4 apply.
5.5.5 Assigning responsibility for an individual audit to the audit team leader
The guidelines of ISO 19011:2018, 5.5.5 apply.
5.5.6 Managing audit programme results
The guidelines of ISO 19011:2018, 5.5.6 apply.
5.5.7 Managing and maintaining audit programme records
The guidelines of ISO 19011:2018, 5.5.7 apply.
5.6 Monitoring audit programme
The guidelines of ISO 19011:2018, 5.6 apply.
5.7 Reviewing and improving audit programme
The guidelines of ISO 19011:2018, 5.7 apply.
6 Conducting an audit
6.1 General
The guidelines of ISO 19011:2018, 6.1 apply.
6.2 Initiating audit
6.2.1 General
The guidelines of ISO 19011:2018, 6.2.1 apply.
6.2.2 Establishing contact with auditee
The guidelines of ISO 19011:2018, 6.2.2 apply. In addition, the following guidance applies.
Auditor and auditee should mutually agree on information that is not to be disclosed.
Information can be classified as confidential and sensitive. Access to such information can be limited to
selected audit team members.
EXAMPLE Documents can only be viewed in an area controlled by the auditee. Transfer and processing of
the documents outside this environment is prohibited.
6.2.3 Determining feasibility of audit
The guidelines of ISO 19011:2018, 6.2.3 apply.
6.3 Preparing audit activities
6.3.1 Performing review of documented information
The guidelines of ISO 19011:2018, 6.3.1 apply.
5
© ISO 2022 – All rights reserved

---------------------- Page: 11 ----------------------
ISO/PAS 5112:2022(E)
6.3.2 Audit planning
6.3.2.1 Risk-based approach to planning
The guidelines of ISO 19011:2018, 6.3.2.1 apply.
6.3.2.2 Audit planning details
The guidelines of ISO 19011:2018, 6.3.2.2 apply. In addition, the following guidance applies.
The audit should be planned to address the corresponding objectives of ISO/SAE 21434 by means of a
questionnaire.
NOTE See Annex A for an example questionnaire.
6.3.3 Assigning work to audit team
The guidelines of ISO 19011:2018, 6.3.3 apply.
6.3.4 Preparing documented information for audit
The guidelines of ISO 19011:2018, 6.3.4 apply.
6.4 Conducting audit activities
6.4.1 General
The guidelines of ISO 19011:2018, 6.4.1 apply.
6.4.2 Assigning roles and responsibilities of guides and observers
The guidelines of ISO 19011:2018, 6.4.2 apply.
6.4.3 Conducting opening meeting
The guidelines of ISO 19011:2018, 6.4.3 apply. In addition, the following guidance applies.
The audit team and the auditee should agree on:
a) information and/or material types and dissemination of the information to the audit team, location
of the information and/or materials, other evidences;
b) the procedure to add audit team members on an ad-hoc basis;
c) auditing processes and methods of auditing the supp
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO 20200:2023(Main)
Plastics — Determination of the degree of disintegration of plastic materials under composting conditions in a laboratory-scale test

This document specifies a method of determining the degree of disintegration of plastic materials when exposed to a laboratory-scale composting environment. The method is not applicable to the determination of the biodegradability of plastic materials under composting conditions. Further testing is necessary to be able to claim compostability.

  • Standard
    9 pages
    English language
    sale 15% off
  • Standard
    9 pages
    French language
    sale 15% off
ISO
ISO 9241-221:2023(Main)
Ergonomics of human-system interaction — Part 221: Human-centred design process assessment model

This document specifies the process references model (PRM) for human-centred design (HCD) according to ISO 9241-220, as well as the process assessment model (PAM) for assessing these processes, based on ISO/IEC 33020 and in accordance with the requirements of ISO/IEC 33004. This HCD PAM contains a set of indicators to be considered while interpreting the intent of the HCD PRM defined in ISO 9241-220. These indicators can also be applied when implementing a process improvement programme post an assessment. NOTE 1 The PRM in this document focuses on assessing HCD processes rather than system life cycle, for example as in ISO/IEC/IEEE 15288, or software life cycle, as in ISO/IEC/IEEE 12207. NOTE 2 If processes beyond the scope of ISO 9241-220 are required, appropriate processes from other PRMs, such as ISO/IEC/IEEE 12207, ISO/IEC/IEEE 15288 or ISO/TS 18152, can be added based on the business needs of the organization. The intended application of this document is computer-based interactive systems. While the processes apply to interactive systems that deliver services, they do not cover the design of those services. The relevant aspects of the processes can also be applied to simple or non-computer-based interactive systems. NOTE 3 HCD concentrates on the human-centred aspects of design and not on other aspects of design, such as mechanical construction, programming or the basic design of services. The process descriptions in this document provide the basis for a rigorous assessment of an enterprise’s capability to carry out human-centred processes in conformity with the ISO/IEC 33004 and ISO/IEC 33020. This document is intended for use by organizations that want to address and improve their treatment of human-centred design of either their internal systems or the products and services they provide, and the procurement of systems and parts of systems. The processes can be applied by small- and medium-sized enterprises as well as by large organizations. NOTE 4 The scope of application of the PAM is the same as that of the PRM, which is described in ISO 9241-220:2019, Clause 1.

  • Standard
    102 pages
    English language
    sale 15% off
ISO
ISO/TS 24665:2023(Main)
Playground and recreational areas — Framework for the competence of playground inspectors and playground maintenance technicians

This document gives guidance and requirements for the education, examination and evaluation of the inspectors’ and maintenance technicians’ competence concerning public playground and recreational areas. This document describes the knowledge and competence required for each specific task an inspector or technician performs. This document is intended primarily for public playgrounds, but the principles are applicable to other recreational areas. This document does not include benefit/risk assessment methods. This document does not cover the competence of staff conducting product certification. NOTE 1 The different types of inspections covered are: routine visual inspection; operational inspection; annual main inspection; post-installation inspection; post-accident inspection; pre-installation consultation; mid-installation surveillance. NOTE 2 This document can be applicable to: roller-sport infrastructure; multi-sport arenas; outdoor exercise equipment; bouldering walls; portable and permanent socketed goals; parkour facilities; adventure playgrounds; ropes courses; inflatable play equipment.

  • Technical specification
    23 pages
    English language
    sale 15% off
  • Draft
    22 pages
    English language
    sale 15% off
  • Draft
    22 pages
    English language
    sale 15% off
ISO
ISO 19642-1:2023(Main)
Road vehicles — Automotive cables — Part 1: Vocabulary and design guidelines

This document defines terms in the field of cables applied in road vehicle general purpose applications, for use in the other parts of the ISO 19642 series.

  • Standard
    27 pages
    English language
    sale 15% off
ISO
ISO 23316-7:2023(Main)
Tractors and machinery for agriculture and forestry — Electrical high-power interface 700 V DC / 480 V AC — Part 7: Mechanical integration

This document instructs the manufacturers of tractors and implements how to integrate mechanically and use the HPI. NOTE The terms "tractor" and "implement” are used instead of “supply system” and “consumer system” for better understanding in this part.

  • Standard
    5 pages
    English language
    sale 15% off
ISO
ISO/IEC 9797-1:2011/Amd 1:2023(Amendment)
Information technology — Security techniques — Message Authentication Codes (MACs) — Part 1: Mechanisms using a block cipher — Amendment 1
  • Standard
    1 page
    English language
    sale 15% off
ISO
ISO 5714:2023(Main)
Clean cookstoves and clean cooking solutions — Test protocols for institutional cookstoves

This document provides testing methods to evaluate the energy performance, emissions, safety and durability of institutional cookstoves. For general guidance (not a requirement), institutional cookstoves typically have firepower greater than 10 kW and/or cooking vessel volume greater than 25 l. The evaluation of household cookstoves is covered in ISO19867-1 and ISO19869 and is not addressed in this document. This document provides the following: — quantitative and qualitative measurements of performance and safety of institutional cookstoves – methods include uncontrolled and controlled cooking tests; — guidance for the measurement of air pollution, and; — guidance for prioritizing measurements that balance comprehensiveness and feasibility. This document includes testing methods for energy performance, emissions and durability that are applicable to institutional cookstoves that burn solid, liquid, and gaseous fuels and for energy performance, safety and durability that are applicable to institutional cookstoves powered by solar thermal energy. Safety testing methods are applicable to institutional solar cookstoves and cookstoves that burn solid fuels and are not applicable to cookstoves that burn liquid or gaseous fuels, such as LPG (liquefied petroleum gas), alcohol, plant oil or kerosene. Safety evaluation of gas-fuelled cookstoves can be found in ISO 23550 and the ISO 23551 series. Safety evaluation of liquid-fuelled cookstoves is not found in existing ISO standards. This document is not applicable to electric cookstoves.

  • Standard
    17 pages
    English language
    sale 15% off
ISO
ISO 7055:2023(Main)
Natural gas — Upstream area — Determination of drag reduction in laboratory for slick water

This document specifies a method for the determination of drag reduction of slick water, which is mainly used to evaluate the drag reduction performance of slick water. This document uses the pipeline method to evaluate the drag reduction, which is currently recognized as the best method to evaluate the drag reduction performance. This document describes the device, experimental conditions and operating steps in detail. The drag reduction value obtained by evaluation according to this document can effectively represent the on-site drag reduction performance.

  • Standard
    5 pages
    English language
    sale 15% off
ISO
ISO 10300-2:2023(Main)
Calculation of load capacity of bevel gears — Part 2: Calculation of surface durability (macropitting)

This document specifies the methods of calculation of the load capacity of bevel gears, the formulae and symbols used for calculation, and the general factors influencing load conditions. The formulae in this document are intended to establish uniformly acceptable methods for calculating the load-carrying capacity of straight, helical (skew), spiral bevel, Zerol and hypoid gears. They are applicable equally to tapered depth and uniform depth teeth. Hereinafter, the term “bevel gear” refers to all of the gear types; if not, the specific forms are identified. The formulae in this document take into account the known major factors influencing load-carrying capacity. The rating formulae are only applicable to types of gear tooth deterioration, that are specifically addressed in the individual parts of the ISO 10300 series. Rating systems for a particular type of bevel gears can be established by selecting proper values for the factors used in the general formulae. NOTE This document is not applicable to bevel gears which have an inadequate contact pattern under load (see Annex D). The rating system of this document is based on virtual cylindrical gears and restricted to bevel gears whose virtual cylindrical gears have transverse contact ratios of εvα The user is cautioned that when the formulae are used for large average mean spiral angles (βm1 + βm2)/2 > 45°, for effective pressure angles αe > 30° and/or for large facewidths b > 13 mmn, the calculated results of this document should be confirmed by experience.

  • Standard
    35 pages
    English language
    sale 15% off
ISO
ISO 10300-1:2023(Main)
Calculation of load capacity of bevel gears — Part 1: Introduction and general influence factors

This document specifies the methods of calculation of the load capacity of bevel gears, the formulae and symbols used for calculation, and the general factors influencing load conditions. The formulae in this document are intended to establish uniformly acceptable methods for calculating the load-carrying capacity of straight, helical (skew), spiral bevel, Zerol and hypoid gears. They are applicable equally to tapered depth and uniform depth teeth. Hereinafter, the term “bevel gear” refers to all of the gear types; if not, the specific forms are identified. The formulae in this document take into account the known major factors influencing load-carrying capacity. The rating formulae are only applicable to types of gear tooth deterioration, that are specifically addressed in the individual parts of the ISO 10300 series. Rating systems for a particular type of bevel gears can be established by selecting proper values for the factors used in the general formulae. NOTE This document is not applicable to bevel gears which have an inadequate contact pattern under load (see Annex D). The rating system of this document is based on virtual cylindrical gears and restricted to bevel gears whose virtual cylindrical gears have transverse contact ratios of εvα The user is cautioned that when the formulae are used for large average mean spiral angles (βm1 + βm2)/2 > 45°, for effective pressure angles αe > 30° and/or for large facewidths b > 13 mmn, the calculated results of this document should be confirmed by experience.

  • Standard
    54 pages
    English language
    sale 15% off