ISO/IEC 23681:2019

INTERNATIONAL ISO/IEC
STANDARD 23681
First edition
2019-05
Information technology — Self-
contained Information Retention
Format (SIRF) Specification
Reference number
©
ISO/IEC 2019
© ISO/IEC 2019
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Fax: +41 22 749 09 47
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO/IEC 2019 – All rights reserved

Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Business Case . 2
5 Specification Overview . 3
5.1 Container Components . 3
5.2 SIRF Catalog . 4
5.3 Metadata Units . 5
6 Container Information Metadata . 5
6.1 Specification Category . 5
6.2 Container ID Category . 6
6.3 State Category . 6
6.4 Provenance Category . 8
6.5 Audit Log Category . 9
7 Object Information Metadata . 9
7.1 Object IDs Category . 9
7.2 Dates Category .11
7.3 Related Objects Category .12
7.4 Packaging Format Category .12
7.5 Fixity Category .13
7.6 Retention Category .13
7.7 Audit Log Category .14
7.8 Extension Category .15
8 Serialization for SNIA CDMI .15
8.1 Catalog Serialization: Object IDs Category .17
8.2 Catalog Serialization: Fixity Category .17
9 Serialization for SNIA LTFS .17
9.1 Catalog Serialization: Object IDs Category .18
9.2 Catalog Serialization: Fixity Category .19
10 Serialization for OpenStack Swift .19
11 Use Case Example.22
Annex A (informative) XML schema for the SIRF catalog .25
Annex B (informative) Sample XML catalog .29
Annex C (informative) Sample JSON catalog .33
Bibliography .37
© ISO/IEC 2019 – All rights reserved iii

Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that
are members of ISO or IEC participate in the development of International Standards through
technical committees established by the respective organization to deal with particular fields of
technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other
international organizations, governmental and non-governmental, in liaison with ISO and IEC, also
take part in the work.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of document should be noted (see www .iso .org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject
of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent
rights. Details of any patent rights identified during the development of the document will be in the
Introduction and/or on the ISO list of patent declarations received (see www .iso .org/patents) or the IEC
list of patent declarations received (see http: //patents .iec .ch).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO's adherence to the
World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see www .iso
.org/iso/foreword .html.
This document was prepared by SNIA (as SIRF Specification V1.0) and drafted in accordance with
its editorial rules. It was adopted, under the JTC 1 PAS procedure, by Joint Technical Committee ISO/
IEC JTC 1, Information technology.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www .iso .org/members .html.
iv © ISO/IEC 2019 – All rights reserved

Introduction
Many organizations now have a requirement to preserve and maintain access to large volumes of
digital content indefinitely into the future. Regulatory compliance and legal issues require preservation
of email archives, medical records and information about intellectual property. Web services and
applications compete to provide storage, organization and sharing of consumers' photos, movies, and
other creations. And many other fixed-content repositories are charged with collecting and providing
access to scientific data, intelligence, libraries, movies and music. A key challenge to this need is the
creation of vendor-neutral storage containers that can be interpreted over time.
Archivists and records managers of physical items such as documents, records, etc., avoid processing
each item individually. Instead, they gather together a group of items that are related in some
manner — by usage, by association with a specific event, by timing, and so on — and then perform all
of the processing on the group as a unit. The group itself may be known as a series, a collection, or in
some cases as a record or a record group. Once assembled, an archivist will place the series in a physical
container (e.g., a file folder or a filing box of standard dimensions), mark the container with a name and
a reference number and place the container in a known location. Information about the series will be
included in a label that is physically attached to the container, as well as in a “finding aid” such as an
online catalog that conforms to a defined schema and gives the name and location of the series, its size,
and an overview of its contents.
This document proposes an approach to digital content preservation that leverages the processes of
the archival profession thus helping archivists remain comfortable with the digital domain. One of
the major needs to make this strategy possible is a digital equivalent to the physical container — the
archival box or file folder — that defines a series, and which can be labelled with standard information
in a defined format to allow retrieval when needed. Self-contained Information Retention Format
(SIRF) is intended to be that equivalent — a storage container format for a set of (digital) preservation
objects that also provides a catalog with metadata related to the entire contents of the container as
well as to the individual objects and their interrelationship. This logical container makes it easier and
more efficient to provide many of the processes that will be needed to address threats to the digital
content. Easier and more efficient preservation processes in turn lead to more scalable and less costly
preservation of digital content.
SIRF components, use cases and functional requirements were defined in [1] SIRF use cases and
functional requirements, working draft — version 0.5a and further described in [2] "Towards SIRF:
Self-contained Information Retention Format." This document goes one step further and details the
actual metadata, categories and elements in the container’s catalog. The document also describes how
the SIRF logical format is serialized for storage containers in the cloud and for tape based containers.
The SIRF serialization for the cloud is being experimented with OpenStack Swift object storage, and the
[3]
implementation is offered as open source in the OpenSIRF initiative .
Creating and maintaining the SIRF catalog requires executing data-intensive computations on the
various preservation objects including fixity checks, data transformations. This can be done efficiently
via executing computational modules — storlets — close to where the data is stored. The benefits of
using storlets include reduced bandwidth (reduce the number of bytes transferred over the WAN),
enhanced security (reduce exposure of sensitive data), costs savings (saving infrastructure at the client
[4]
side) and compliance support (improve provenance tracking). The Storlet Engine (see "Storlet Engine
...