DIN EN ISO/IEC 27040 E : 2017

Current

Current The latest, up-to-date edition.

INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY (ISO/IEC 27040:2015)

Available format(s):

Language(s):

Published date: 27-03-2017

Publisher: German Institute for Standardisation (Deutsches Institut für Normung)

Table of Contents - (Show below) - (Hide below)

National foreword
National Annex NA (informative) - Bibliography
European foreword
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviated terms
5 Overview and concepts
6 Supporting controls
7 Guidelines for the design and implementation of storage
security
Annex A (normative) - Media sanitization
Annex B (informative) - Selecting appropriate storage security
controls
Annex C (informative) - Important security concepts
Bibliography

Abstract - (Show below) - (Hide below)

Defines detailed technical guidance on how organizations can define an appropriate level of risk mitigation by employing a well-proven and consistent approach to the planning, design, documentation, and implementation of data storage security.

General Product Information - (Show below) - (Hide below)

Document Type	Standard
ISBN
Pages
Published
Publisher	German Institute for Standardisation (Deutsches Institut für Normung)
Status	Current

International Equivalents – Equivalent Standard(s) & Relationship - (Show below) - (Hide below)

Equivalent Standard(s)	Relationship
ISO/IEC 27040:2015	Identical
EN ISO/IEC 27040:2016	Identical

Standards Referencing This Book - (Show below) - (Hide below)

ISO/IEC 27001:2013	Information technology — Security techniques — Information security management systems — Requirements
ANSI INCITS 400 : 2004	INFORMATION TECHNOLOGY - SCSI OBJECT-BASED STORAGE DEVICE COMMANDS (OSD)
ISO/IEC 27003:2017	Information technology — Security techniques — Information security management systems — Guidance
ISO/TR 10255:2009	Document management applications Optical disk storage technology, management and standards
DIN ISO/IEC 17788 E : 2016	INFORMATION TECHNOLOGY - CLOUD COMPUTING - OVERVIEW AND VOCABULARY (ISO/IEC 17788:2014)
ISO/IEC 27037:2012	Information technology — Security techniques — Guidelines for identification, collection, acquisition and preservation of digital evidence
ISO/IEC 27031:2011	Information technology Security techniques Guidelines for information and communication technology readiness for business continuity
ISO/IEC/IEEE 24765:2017	Systems and software engineering — Vocabulary
ISO/IEC 27033-1:2015	Information technology Security techniques Network security Part 1: Overview and concepts
ISO/IEC 19790:2012	Information technology — Security techniques — Security requirements for cryptographic modules
ISO/IEC 27002:2013	Information technology Security techniques Code of practice for information security controls
ISO 16609:2012	Financial services — Requirements for message authentication using symmetric techniques
ISO 16175-2:2011	Information and documentation Principles and functional requirements for records in electronic office environments Part 2: Guidelines and functional requirements for digital records management systems
ISO/TR 18492:2005	Long-term preservation of electronic document-based information
ANSI INCITS 482 : 2012	INFORMATION TECHNOLOGY - ATA/ATAPI COMMAND SET - 2 (ACS-2)
IEEE 1619-2007	IEEE Standard for Cryptographic Protection of Data on Block-Oriented Storage Devices
ISO/IEC 17826:2016	Information technology Cloud Data Management Interface (CDMI)
ISO 7498-2:1989	Information processing systems Open Systems Interconnection Basic Reference Model Part 2: Security Architecture
ISO 16175-3:2010	Information and documentation Principles and functional requirements for records in electronic office environments Part 3: Guidelines and functional requirements for records in business systems
IEEE 1619.1-2007	IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices
ANSI INCITS 458 : 2011	INFORMATION TECHNOLOGY - SCSI OBJECT-BASED STORAGE DEVICE COMMANDS - 2 (OSD-2)
ANSI INCITS 496 : 2012	INFORMATION TECHNOLOGY - FIBRE CHANNEL - SECURITY PROTOCOLS - 2 (FC-SP-2)
ISO/IEC 27005:2011	Information technology Security techniques Information security risk management
ANSI INCITS 512 : 2015	INFORMATION TECHNOLOGY - FIBRE CHANNEL - PHYSICAL INTERFACE-6 (FC-PI-6)
ANSI INCITS 470 : 2011(R2016)	INFORMATION TECHNOLOGY - FIBRE CHANNEL - FRAMING AND SIGNALING - 3 (FC-FS-3)
ISO/IEC 24775:2011	Information technology Storage management
ISO/IEC 24759:2017	Information technology Security techniques Test requirements for cryptographic modules
ISO/IEC 14776-372:2011	Information technology Small Computer System Interface (SCSI) Part 372: SCSI Enclosure Services - 2 (SES-2)
ISO/IEC 27033-3:2010	Information technology — Security techniques — Network security — Part 3: Reference networking scenarios — Threats, design techniques and control issues
ISO/IEC 27033-2:2012	Information technology — Security techniques — Network security — Part 2: Guidelines for the design and implementation of network security
ISO/IEC 10116:2017	Information technology — Security techniques — Modes of operation for an n-bit block cipher
ISO/PAS 22399:2007	Societal security - Guideline for incident preparedness and operational continuity management
ISO/IEC 27000:2016	Information technology Security techniques Information security management systems Overview and vocabulary
ISO 16175-1:2010	Information and documentation Principles and functional requirements for records in electronic office environments Part 1: Overview and statement of principles
ISO/IEC 17788:2014	Information technology — Cloud computing — Overview and vocabulary
ISO Guide 73:2009	Risk management — Vocabulary
ISO/IEC 11179-1:2015	Information technology — Metadata registries (MDR) — Part 1: Framework

Categories associated with this Standard - (Show below) - (Hide below)

Sub-Categories associated with this Standard - (Show below) - (Hide below)

Sorry this product is not available in your region.

Add To Cart