iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO 4669-2:2025

(Main)

Document management — Information classification, marking and handling — Part 2: Functional and technical requirements for ICMH solutions

Document management — Information classification, marking and handling — Part 2: Functional and technical requirements for ICMH solutions

This document defines functional and technical requirements for solutions addressing the classification, marking, handling and sharing of sensitive documents. It complements ISO 4669-1, which specifies requirements for information classification, marking and handling (ICMH). This document addresses solutions that control and distribute content in digital format, both inside and outside the organization owning the content. The distribution of content by means of physical media is beyond the scope of this document.

Gestion des documents — Traitement, marquage et classification de l'information — Partie 2: Exigences fonctionnelles et techniques pour les solutions ICMH

General Information

Status
Published
Publication Date
05-May-2025
ICS
37.080 - Document imaging applications
Technical Committee
ISO/TC 171/SC 1 - Quality, preservation and integrity of information
Drafting Committee
ISO/TC 171/SC 1 - Quality, preservation and integrity of information
Current Stage
6060 - International Standard published
Start Date
06-May-2025
Due Date
15-Jul-2025
Completion Date
06-May-2025
Ref Project

Buy Standard

ISO 4669-2:2025 - Document management — Information classification, marking and handling — Part 2: Functional and technical requirements for ICMH solutions Released:6. 05. 2025ISO 4669-2:2025 - Document management — Information classification, marking and handling — Part 2: Functional and technical requirements for ICMH solutions Released:6. 05. 2025
PreviousNext
Standard
ISO 4669-2:2025 - Document management — Information classification, marking and handling — Part 2: Functional and technical requirements for ICMH solutions Released:6. 05. 2025
English language
9 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


International
Standard
ISO 4669-2
First edition
Document management —
2025-05
Information classification, marking
and handling —
Part 2:
Functional and technical
requirements for ICMH solutions
Gestion des documents — Traitement, marquage et classification
de l'information —
Partie 2: Exigences fonctionnelles et techniques pour les
solutions ICMH
Reference number
© ISO 2025
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii
Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Functional requirements . 2
4.1 General .2
4.2 Marking and handling requirements.3
4.2.1 Marking . .3
4.2.2 Using marks to protect documents .3
4.2.3 Authenticity of marked documents .3
4.2.4 Use of received document .3
4.2.5 Audit .4
5 Technical requirements . 4
5.1 Setting the ICMH system .4
5.1.1 Preparing the control of classifications .4
5.1.2 Handling of documents by the ICMH system .4
5.2 Content preparation.4
5.2.1 General .4
5.2.2 Content .5
5.2.3 Marking . . .5
5.2.4 Marking technology .5
5.3 Distribution and sharing .5
5.3.1 General .5
5.3.2 Distribution, sharing and exchanging policy .5
5.3.3 Management by recipients . . .5
5.4 Context .5
Annex A (informative) Example of classification and applied technologies . 7
Bibliography . 9

iii
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards
bodies (ISO member bodies). The work of preparing International Standards is normally carried out through
ISO technical committees. Each member body interested in a subject for which a technical committee
has been established has the right to be represented on that committee. International organizations,
governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely
with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are described
in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the different types
of ISO document should be noted. This document was drafted in accordance with the editorial rules of the
ISO/IEC Directives, Part 2 (see www.iso.org/directives).
ISO draws attention to the possibility that the implementation of this document may involve the use of (a)
patent(s). ISO takes no position concerning the evidence, validity or applicability of any claimed patent
rights in respect thereof. As of the date of publication of this document, ISO had not received notice of (a)
patent(s) which may be required to implement this document. However, implementers are cautioned that
this may not represent the latest information, which may be obtained from the patent database available at
www.iso.org/patents. ISO shall not be held responsible for identifying any or all such patent rights.
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and expressions
related to conformity assessment, as well as information about ISO's adherence to the World Trade
Organization (WTO) principles in the Technical Barriers to Trade (TBT), see www.iso.org/iso/foreword.html.
This document was prepared by Technical Committee ISO/TC 171, Document management applications,
Subcommittee SC 1, Quality, preservation and integrity of information.
A list of all parts in the ISO 4669 series can be found on the ISO website.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www.iso.org/members.html.

iv
Introduction
This document describes the functional requirements for the handling and sharing of sensitive documents
by the solutions that are controlling and distributing digital content. It provides guidelines on selecting
solutions that offer adequate protection, especially in terms of privacy, security and traceability.
It is intended to be used by software developers and service providers, as well as end users.
This document can be used to compare different software solutions.

v
International Standard ISO 4669-2:2025(en)
Document management — Information classification,
marking and handling —
Part 2:
Functional and technical requirements for ICMH solutions
1 Scope
This document defines functional and technical requirements for solutions addressing the classification,
marking, handling and sharing of sensitive documents. It complements ISO 4669-1, which specifies
requirements for information classification, marking and handling (ICMH).
This document addresses solutions that control and distribute content in digital format, both inside and
outside the organization owning the content.
The distribution of content by means of physical media is beyond the scope of this document.
2 Normative references
There are no normative references in this document.
3 Terms and definitions
For the purposes of this document, the following terms and definitions apply.
ISO and IEC maintain terminology databases for use in standardization at the following addresses:
— ISO Online browsing platform: available at https:// www .iso .org/ obp
— IEC Electropedia: available at https:// www .electropedia .org/
3.1
classification
systematic identification and/or arrangement of information assets (3.7) into categories according to
logically structured conventions, methods and procedural rules
Note 1 to entry: These categories consider issues such as the sensitivity of an information asset to loss or damage, i.e.
confidentiality, integrity and availability and other impacts on the organization(s).
[SOURCE: ISO 15489-1:2016, 3.5, modified — “information assets” has replaced “business activities and/or
records” and Note 1 to entry has been added.]
3.2
document
information (3.6) and the medium on which it is contained
[SOURCE: ISO 9000:2015, 3.8.5, modified — the example and notes to entry have been deleted.]
3.3
handling
required activities relating to information assets (3.7) that have been marked with a specific classification (3.1)
[SOURCE: ISO 4669-1:2023, 3.3]

3.4
information classification, marking and handling scheme
ICMH scheme
respective, specific requirements and arrangements established for the individual activities of classification
(3.1), marking (3.8) or handling (3.3)
[SOURCE: ISO 4669-1:2023, 3.4]
3.5
information classification, marking and handling system
ICMH system
set of interrelated or interacting elements to establish information classification (3.1), marking (3.8) and
handling (3.3) policies and objectives with processes to achieve those objectives
[SOURCE: ISO 4669-1:2023, 3.5]
3.6
information
meaningful data
Note 1 to entry: Data can be regarded as lacking the context necessary to interpret its meaning. Information is accurate,
timely, specific and organized for a purpose. It is presented within a context that gives it meaning and relevance, and
can lead to an increase in understanding and decrease in uncertainty. Information is valuable because it can affect
behaviour, a decision or an outcome.
[SOURCE: ISO 9000:2015, 3.8.2, modified — Note 1 to entry has been added.]
3.7
information asset
set of information (3.6) that is capable of being shared and can be held in any form, e.g. physical or digital
[SOURCE: ISO 4669-1:2023, 3.7]
3.8
marking
process by which a classification (3.1) is documented and indicated for an information asset (3.7) (usually on
the information asset)
[SOURCE: ISO 4669-1:2023, 3.10]
4 Functional requirements
4.1 General
This document specifies requirements for classification, marking and handling of information, both inside
and outside of the organization.
In order to ensure the coordination of information classification, marking and handling (ICMH) within an
organization, the organization shall:
— develop a mapping between classifications and risk levels of information used in an organization itself
and in the organizations with whom information should be shared, especially when these organizations
have a different approach to enterprise risks;
— understand the ICMH requirements (and associated systems) of the organizations with which it will be
sharing information;
— consider risks and assess whether ICMH coordination is required;
— establish procedures for assessing the ability of a partner or third party to respond appropriately to
ICMH coordination;
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO 4669-1:2023(Main)
Document management — Information classification, marking and handling — Part 1: Requirements

This document specifies requirements for information classification, marking and handling (ICMH). This document also defines how such information can be accessed by users, both inside and outside the organization, who own the information. This document is applicable to, but not limited to, the following: a) organizations of any size that create, store, share or otherwise process information; b) individuals who create, store, share or otherwise process information; c) individuals with responsibilities for document management, information governance and management, information security, data protection, privacy and/or compliance; and d) organizations that create, provide or support tools that enable a) to c). This document addresses information that can be understood by humans and is capable of being shared. Throughout this document such information is referred to as an “information asset” regardless of its media or format. NOTE Information assets can include structured information, unstructured information, text, pictures and audio/video recordings, i.e. anything that contains information, including information that is derived from databases and turned into a tangible asset.

  • Standard
    31 pages
    English language
    sale 15% off
ISO
ISO 19475:2021(Main)
Document management — Minimum requirements for the storage of documents

This document specifies the minimum requirements necessary to maintain the authenticity, integrity and readability of documents managed by an electronic document management system. Clarifying the methods and procedures for appropriately handling electronic documents promotes the usability of the documents, in both a legal and business context. This document expresses a general business process as a document handling process. The document handling processes include receiving, processing and delivering the documents as follows: — approving the receipt of a document in a manner that is appropriate for a work process; — storing the formal document in the work process environment; — delivery of the document to another organization. This document establishes the controls for execution of the work processes while maintaining the authenticity and integrity of the document received. This document establishes the policies for the storage of documents used as part of the work process. It also details the controls for performing the receipt and conversion process appropriately.

  • Standard
    15 pages
    English language
    sale 15% off
  • Standard
    15 pages
    English language
    sale 15% off
ISO
ISO 14641:2018(Main)
Electronic document management — Design and operation of an information system for the preservation of electronic documents — Specifications

This document specifies a set of technical specifications and organizational policies to be implemented for the capture, storage and access of electronic documents. This ensures legibility, integrity and traceability of the documents for the duration of their preservation. This document is applicable to electronic documents resulting from: - the scanning of original paper or microform documents; - the conversion of analogue audio or video content; - the "native" creation by an information system application; - other sources that create digital content such as two- or three- dimensional maps, drawings or designs, digital audio/video and digital medical images. This document is not applicable to information systems in which users have the ability to substitute or alter documents after capture. This document is intended for the following users. a) Organizations implementing information systems in which: electronic documents created from scan captures are kept in an environment that ensures fidelity with regard to the original and long-term preservation; digitally born documents are kept in an environment that ensures the content integrity of the information and document legibility; traceability is ensured for all operations relating to the electronic documents. b) Organizations providing information technology services and software publishers seeking to develop information systems that ensure the fidelity and integrity of electronic documents. c) Organizations providing third-party document archiving services.

  • Standard
    40 pages
    English language
    sale 15% off
  • Standard
    40 pages
    English language
    sale 15% off
ISO
ISO 11506:2017(Main)
Document management applications — Archiving of electronic data — Computer output microform (COM)/Computer output laser disc (COLD)

ISO 11506:2017 specifies techniques for archiving electronic data to ensure their long-term integrity, accessibility, usability, readability and reliability, in order to protect the evidential value of the data. In ISO 11506:2017, long term is considered to be a period of time lasting more than a century (see ISO 18911). Black-and-white microforms processed with liquid chemicals are used in ISO 11506:2017 because the result is always an irreversible record and because of the proven quality of microforms as a long-term preservation media. ISO 11506:2017 also specifies procedures for the parallel recording, by a single production unit, of COM and COLD output from the same data. It applies to many different types of electronic data, such as text and two-dimensional graphic data which can be represented as a black-and-white image. It is not applicable to the following: - animated images or sounds; - three-dimensional images; - images in shades of grey or in colour; - X-ray images. Neither is ISO 11506:2017 applicable to microforms created from dry thermal processes, since they offer insufficient guarantees in terms of irreversibility and longevity.

  • Standard
    33 pages
    English language
    sale 15% off
ISO
ISO/TR 15801:2017(Main)
Document management — Electronically stored information — Recommendations for trustworthiness and reliability

ISO/TR 15801:2017 describes the implementation and operation of information management systems that store and make available for use electronically stored information (ESI) in a trustworthy and reliable manner. Such ESI can be of any type, including "page based" information, information in databases and audio/video information. ISO/TR 15801:2017 is for use by any organization that uses systems to store trustworthy ESI over time. Such systems incorporate policies, procedures, technology and audit requirements that ensure that trustworthiness of the ESI is maintained. ISO/TR 15801:2017 does not cover processes used to evaluate whether ESI can be considered to be trustworthy prior to it being stored or imported into the system. However, it can be used to demonstrate that, once the electronic information is stored, output from the system will be a true and accurate reproduction of the ESI created and/or imported.

  • Technical report
    44 pages
    English language
    sale 15% off
ISO
ISO/TR 18159:2015(Main)
Document management — Environmental and work place safety regulations affecting microfilm processors

ISO/TR 18159:2015 provides information about environmental laws and regulations that can affect microfilm processing laboratories. These laws and regulations control the following microfilm processing activities: - storage and disposal of effluents; - storage and disposal of hazardous waste, employee safety training; - notification of the public regarding hazardous waste incidents. NOTE This Technical Report includes in an Annex, for information purposes, a discussion of The United States Environmental Protection Agency (EPA) Guidance Manual on the Development and Implementation of Local Discharge Limitations Under Pretreatment Programme and that guidance manual's relationship with state and local requirements in the United States. Also included in this Technical Report are examples of typical discharge limitations.

  • Technical report
    50 pages
    English language
    sale 15% off
ISO
ISO 12651-2:2014(Main)
Electronic document management — Vocabulary — Part 2: Workflow management

ISO 12651-2:2014 defines terms and concepts relevant to electronic document workflow management. It is intended to facilitate communication in the field of electronic document management and translation of the terms and concepts it contains into other languages. It identifies the terminology used to describe the concepts and general structure of a workflow management system for electronic images and other electronic documents, its major functional components, and their interfaces. It also provides a list of synonyms variously used within the industry as alternative terms to the preferred terminology

  • Standard
    9 pages
    English language
    sale 15% off
  • Standard
    9 pages
    French language
    sale 15% off
  • Standard
    12 pages
    Russian language
    sale 15% off
ISO
ISO/TR 17797:2014(Main)
Electronic archiving — Selection of digital storage media for long term preservation

ISO/TR 17797:2014 gives guidelines on a selection of the most appropriate storage media for use in long-term electronic storage solutions. It includes a discussion on magnetic, optical, and electronic storage.

  • Technical report
    26 pages
    English language
    sale 15% off
  • Technical report
    26 pages
    Russian language
    sale 15% off
ISO
ISO/TR 18160:2014(Main)
Document management — Digital preservation — Analog recording to silver-gelatin microform

ISO/TR 18160:2014 recommends test methods for evaluating the consistency of the digital images recorded onto black and white silver microfilm using input from both digitally born documents as well as digital documents created from document scanners. Quality control procedures to be used for optimizing and maintaining output quality onto film over time are described. ISO/TR 18160:2014 stresses the use of both commercial and ISO approved standard test targets. The test methods are based on the visual examination of the output of office document scanners and digitally born test targets on film image recorders. It is applicable to assessing the output quality of document scanners used in the office and film image recorders used to record the resultant scanned images to microfilm. Microforms can be any common formats including 16 mm, 35 mm, and 105 mm roll microfilm, as well as microfiche depending on the film image recorder capability.

  • Technical report
    9 pages
    English language
    sale 15% off
ISO
ISO 12653-3:2014(Main)
Electronic imaging — Test target for scanning of office documents — Part 3: Test target for use in lower resolution applications

ISO 12653-3:2014 specifies a test target for assessing the consistency of the output quality over time from lower resolution reflection scanning systems. It is applicable to assessing the output quality of black-and-white and colour scanners used for black-and-white or colour office documents, with or without half tone.

  • Standard
    20 pages
    English language
    sale 15% off
  • Standard
    20 pages
    English language
    sale 15% off