Minutes from the ISC Call, Thursday July 21st
Attendees:
John DiMaria
Eric Hibbard
Vrettos Moulos
Willy Fabritius
Shamun Mahmud
Jim Angle
Claude Baudoin
David Harris
Angela Dogan
Daniel Ehrenreich
Andreas Fuchsberger
Agenda:
Updates from Eric and then a deeper discussion on:Updates on 27001FDIS ISO/IEC 27005Proposed Design Specification for the revision of ISO/IEC 27000
Ballot: ISO/IEC CD 4922-2.2 Secret Sharing - Very interesting.
ISO/IEC 27006-1 In DIS mid August, close in September -2 In second CD Ballot closes July 27th
ISO?IEC 24392 Cybersecurity - Security reference model for industrial Internet platform (SRM- IIP) - In DIS
ISO/IEC 23837-1 Information technology security techniques - Security requirements, test and evaluation methods for quantum key distribution - Part 1: Requirements
ISO/IEC 23837-2 Information technology security techniques - Security requirements, test and evaluation methods for quantum key distribution - Part 2: Evaluation and testing methods - Both in DIS
ISO/IEC 27040 Information technology - Security techniques - Storage security - Being updated, currently in DIS
ISO/IEC 24760-2 IT Security and Privacy - A framework for identity management - Part 2: Reference architecture and requirements -
Being updated, currently in CD
ISO/IEC 27554-2 Application of ISO 31000 for assessment of identity-related risk -
In process in CD
IAM Standard that may be of interest to the IAM WG - ISO/IEC 24760-2 Information technology - Security techniques - A framework for identity management - Part 2: Reference architecture and requirements -
In CD3. AND
ISO/IEC 24760-3:2016/DAmd 1(en) Information technology - Security techniques - A framework for identity management - Part 3: Practice -
AMENDMENT 1: Identity Information Lifecycle processes
ISO/IEC 27036-3 Information technology - Security techniques - Information security for supplier relationships - Part 3: Guidelines for information and communication technology supply chain security -
Being updated in DIS. Closes August 3rdISO/IEC CD 14888-4
ISO/IEC 14888-4 Information technology - Security techniques - Digital signatures with appendix - Part 4: Stateful hash-based mechanisms.
In CD Ballot closes August 4th
ISO/IEC 27001:2022 - FDIS released. Ballot July 27th expected to September 21, 2022, Publication end of October
IoT - ISO/IEC 2nd PWI 27404 -Cybersecurity Labelling for Consumer IoT Security - Product testing. Consumer Technology Association (CTA) Is having a meeting on July 28th in Washington DC to discuss. UL will be represented there. Eric Hibbard will be in attendance as well.
ISO/IEC 22123 1-3 in DIS Stage - Will replace 17888 and 17889
ISO/IEC CD 4922-2.2 ISO/IEC DIS 4922-1(en) Information security - Secure multiparty computation - Part 1: General - Confidential Computing just an interesting topic and will ping research to see if a WG is being considered.
OMG is working on a white paper regarding data governance. Anyone interested should contact Claude Baudoin of OMG
Next meeting is scheduled for August 18th------------------------------
JOHN DIMARIA
ME
CSA
[email protected]------------------------------