ISO_IEC27034-2-2015资源-CSDN文库

27034

5星 · 超过95%的资源需积分: 42 46 浏览量 2016-01-05 11:06:56 上传评论 3 收藏 2.86MB PDF 举报

资源详情

资源评论

BSI Standards Publication

BS ISO/IEC 27034-2:2015

Information technology

— Security techniques —

Application security

Part 2: Organization normative framework

British Standards Institution

Provided by IHS under license with BSI - Uncontrolled Copy

Licensee=Chongqing Institute of quality and Standardization 5990390

Not for Resale, 2015/10/15 03:27:14

No reproduction or networking permitted without license from IHS

--`,``,``,``,,```````,``,-`-``,```,,,`---

BS ISO/IEC 27034-2:2015

ISO/IEC 27034-2:2015(E)

Foreword ........................................................................................................................................................................................................................................iv

Introduction

..................................................................................................................................................................................................................................v

1 Scope

2 Normative references

...................................................................................................................................................................................... 1

 

..................................................................................................................................................................................... 1

4 Abbreviated terms

.............................................................................................................................................................................................. 1

5 Organization Normative Framework

.............................................................................................................................................. 2

5.1 General ........................................................................................................................................................................................................... 2

5.2 Purpose .......................................................................................................................................................................................................... 2

5.3 Principles ..................................................................................................................................................................................................... 2

5.4 ONF Management Process ............................................................................................................................................................ 2

5.4.1 General...................................................................................................................................................................................... 2

5.4.2 Use of RACI charts in description of activities, roles and responsibilities ..................... 4

5.4.3 Establishing the ONF committee........................................................................................................................ 5

5.4.4 Designing the ONF .......................................................................................................................................................... 6

5.4.5 Implementing the ONF ............................................................................................................................................... 8

5.4.6 Monitoring and reviewing the ONF .............................................................................................................. 10

5.4.7 Improving the ONF ...................................................................................................................................................... 11

5.4.8 Auditing the ONF ..........................................................................................................................................................13

5.5 ONF Elements........................................................................................................................................................................................ 15

5.5.1 General................................................................................................................................................................................... 15

5.5.2 Business context component .............................................................................................................................16

  ........................................................................................................................ 17

5.5.4 Technological context component ................................................................................................................. 18

  ......................................................................................................... 19

  .................................................................... 20

  ......................................................................................................................................21

  ..............................................................................................................................23

  ............................................................................. 26

  ........................................................................................................ 32

  ...........................................................................................33

  ...........................................................................................34

  ............................................................................................... 36

Annex A (informative) Aligning the ONF and ASMP with ISO/IEC 15288 and ISO/IEC 12207

through ISO/IEC 15026-4

.........................................................................................................................................................................38

Annex B (informative) ONF implementation example: implementing ISO/IEC 27034

Application Security and its ONF in an existing organization

............................................................................42

Bibliography

Contents Page

British Standards Institution

Provided by IHS under license with BSI - Uncontrolled Copy

Licensee=Chongqing Institute of quality and Standardization 5990390

Not for Resale, 2015/10/15 03:27:14

No reproduction or networking permitted without license from IHS

--`,``,``,``,,```````,``,-`-``,```,,,`---

剩余63页未读，继续阅读

评论收藏

内容反馈

netorgcom

2018-06-07

非常好的资源，希望还能找到27系列的其他标准文档

ISO_IEC27034-2-2015

评论2

最新资源

ISO_IEC27034-2-2015

评论2

最新资源

相关推荐

ISO/IEC 27034-2 Draft

ISO_IECFDIS27034-1-2011

ISO_IEC 19794-2-2011

ISO_IEC_27036-4-2016《云服务安全指南》

IEC 81346-2-2009 工业系统,装置和设备以及工业产品 .pdf

ISO 9000 2015

ISO 11452-8-2015.pdf

ISO 11452-1-2015.pdf

ISO 15031-5-2015.pdf

ISO 14229-7-2015.zip

BS ISO_IEC 23008-2-2015Information technology. High efficiency coding and media

ISO_IEC_11889_2015.zip

ISO_IEC_11889-4_2015 TPM 2.0规范2015版第四部分

iso.rar_14496_ISO-14496_ISO/IEC14496-10_ISO_IEC_14496_iso 14496-

ISO_IEC 14496-12_14.zip

IEC-81346-2中文.pdf

IEC 81346 标准 2

ISO14224 新版译文

ISO 26262 最新版（2018）1-12部分

ISO_IEC 27001-2013 Information security management systems

ISO 15118_2015-1~3.zip

ISO 11451-1-2015.pdf

ISO_15031_6_2015

ISO 14229-7-2015.pdf

ISO_7637-1：2015.pdf

_ISO_IEC_14443-3-2001(有道文档翻译结果).zip

ISO-IEC 7816-3-2006_ISO-IEC7816-3-2006_IEC_

iso_iec_14496-12_2015.pdf