ISO/IEC 27034-7:2018
p
ISO/IEC 27034-7:2018
66229

Status : Published (Under review)

This standard was last reviewed and confirmed in 2023. Therefore this version remains current.
en
Format Language
std 1 151 PDF + ePub
std 2 151 Paper
  • CHF151
Convert Swiss francs (CHF) to your currency

Abstract

This document describes the minimum requirements when the required activities specified by an Application Security Control (ASC) are replaced with a Prediction Application Security Rationale (PASR). The ASC mapped to a PASR define the Expected Level of Trust for a subsequent application. In the context of an Expected Level of Trust, there is always an original application where the project team performed the activities of the indicated ASC to achieve an Actual Level of Trust.

The use of Prediction Application Security Rationales (PASRs), defined by this document, is applicable to project teams which have a defined Application Normative Framework (ANF) and an original application with an Actual Level of Trust.

Predictions relative to aggregation of multiple components or the history of the developer in relation to other applications is outside the scope of this document.

Read sample 

Preview this standard in our Online Browsing Platform (OBP)

General information

  •  : Published
     : 2018-05
    : International Standard confirmed [90.93]
  •  : 1
     : 29
  • ISO/IEC JTC 1/SC 27
    35.030 
  • RSS updates

Life cycle

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)