12/30204847 DC : 0
Superseded
A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.
View Superseded by
BS ISO/IEC 29147 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - VULNERABILITY DISCLOSURE
Hardcopy , PDF
28-02-2014
English
Important note : Users cannot be edited or removed once added to your Multi user PDF.
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Abbreviated terms
5 Concepts
6 Vulnerability disclosure policy considerations
7 Receipt of vulnerability information
8 Possible vulnerability report among vendors
9 Dissemination of advisory
Annex A (informative) - Details to handling
vulnerability/advisory information
Annex B (informative) - Sample policies,
advisories and global coordinators
Bibliography
BS ISO/IEC 29147
| Committee |
IST/33
|
| DocumentType |
Draft
|
| Pages |
46
|
| PublisherName |
British Standards Institution
|
| Status |
Superseded
|
| SupersededBy |
| ISO/IEC 27001:2013 | Information technology — Security techniques — Information security management systems — Requirements |
| ISO/IEC TR 15443-1:2012 | Information technology Security techniques Security assurance framework Part 1: Introduction and concepts |
| ISO/IEC 27035:2011 | Information technology Security techniques Information security incident management |
| ISO/IEC 27002:2013 | Information technology Security techniques Code of practice for information security controls |
| ISO/IEC 19770-1:2012 | Information technology Software asset management Part 1: Processes and tiered assessment of conformance |
| ISO/IEC 20000-1:2011 | Information technology Service management Part 1: Service management system requirements |
| ISO/IEC TR 19791:2010 | Information technology Security techniques Security assessment of operational systems |
| ISO/IEC 15408-1:2009 | Information technology — Security techniques — Evaluation criteria for IT security — Part 1: Introduction and general model |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.