관심표준 등록 : 표준업데이트 시 알림을 받을 수 있습니다.
PDF : 직접 파일 다운로드 및 인쇄 (마이페이지 확인)
PRINT : 인쇄본 우편발송, 2~3일 소요(PDF파일 미제공)
분야 | ISO/IEC JTC 1/SC 27 : Information security, cybersecurity and privacy protection |
---|---|
적용범위 | This document provides guidance for product and service acquirers, as well as suppliers of hardware, software and services, regarding: a) gaining visibility into and managing the information security risks caused by physically dispersed and multi-layered hardware, software, and services supply chains; b) responding to risks stemming from this physically dispersed and multi-layered hardware, software, and services supply chain that can have an information security impact on the organizations using these products and services; c) integrating information security processes and practices into the system and software life cycle processes, as described in ISO/IEC/IEEE 15288 and ISO/IEC/IEEE 12207, while supporting information security controls, as described in ISO/IEC 27002. This document does not include business continuity management/resiliency issues involved with the hardware, software, and services supply chain. ISO/IEC 27031 addresses information and communication technology readiness for business continuity. |
국제분류(ICS)코드 | 35.030 : IT 보안 |
페이지수 | 35 |
Edition | 2 |
No. | 표준번호 | 표준명 | 발행일 | 상태 |
---|---|---|---|---|
1 | CSA ISO/IEC 27036-3:24 | Cybersecurity — Supplier relationships — Part 3: Guidelines for hardware, software, and services supply chain security (Adopted ISO/IEC 27036-3:2023, second edition, 2023-06) | 2024-01-01 | 표준 |
2 | ISO/IEC 27036-3:2023 | Cybersecurity — Supplier relationships — Part 3: Guidelines for hardware, software, and services supply chain security | 2023-06-13 | 표준 |
3 | ISO/IEC 27036-3:2023 | Cybersecurity - Supplier relationships - Part 3: Guidelines for hardware, software, and services supply chain security | 2023-06-13 | 표준 |
4 | ISO/IEC 27036-3:2013 | Information technology - Security techniques - Information security for supplier relationships - Part 3: Guidelines for information and communication technology supply chain security | 2013-11-08 | 구판 |
5 | ISO/IEC 27036-3:2013 | Information technology — Security techniques — Information security for supplier relationships — Part 3: Guidelines for information and communication technology supply chain security | 2013-11-08 | 구판 |
ISO/IEC 27036-4:2016 - Information technology - Security techniques - Information security for supplier relationships - Part 4: Guidelines for security of cloud services 상세보기
ISO/IEC 27036-4:2016 - Information technology — Security techniques — Information security for supplier relationships — Part 4: Guidelines for security of cloud services 상세보기
CAN/CSA-ISO/IEC 27036-4:18 (R2022) - Information technology — Security techniques — Information security for supplier relationships — Part 4: Guidelines for security of cloud services (Adopted ISO/IEC 27036-4:2016, first edition, 2016-10-01) 상세보기
ISO/IEC 27036-1:2021 - Cybersecurity - Supplier relationships - Part 1: Overview and concepts 상세보기
ISO/IEC 27036-1:2021 - Cybersecurity — Supplier relationships — Part 1: Overview and concepts 상세보기
ISO 28003:2007 - Security management systems for the supply chain — Requirements for bodies providing audit and certification of supply chain security management systems 상세보기
IEC TS 63134:2020 - Active assisted living (AAL) use cases 상세보기
IEC 60034-5:2020 RLV - Rotating electrical machines - Part 5: Degrees of protection provided by the integral design of rotating electrical machines (IP code) - Classification 상세보기
KS B ISO TS 25740-1 - 에스컬레이터 및 무빙워크에 대한 안전요건 — 제1부: 세계공통 필수 안전요건(GESRs) 상세보기
KS B ISO TS 8100-21 - 승객 및 화물 운송용 엘리베이터 —제21부: 세계공통 필수안전요건(GESRs)을 충족하는 세계공통 안전 파라미터(GSPs) 상세보기
KS C IEC TS 62872 - 산업 시설과 스마트 그리드 사이의 산업 공정 측정, 제어 및 자동화 시스템 인터페이스 상세보기