Skip to content
Please enter a keyword to search

  • ISO/IEC 19770-2:2015

    Current The latest, up-to-date edition.

    Information technology IT asset management Part 2: Software identification tag

    Available format(s):  Hardcopy, PDF, PDF 3 Users, PDF 5 Users, PDF 9 Users

    Language(s):  English

    Published date:  30-09-2015

    Publisher:  International Organization for Standardization

    Add To Cart

    Abstract - (Show below) - (Hide below)

    ISO/IEC 19770-2:2015 establishes specifications for tagging software to optimize its identification and management.

    This part of ISO/IEC 19770 applies to the following.

    a) Tag producers: these organizations and/or tools create software identification (SWID) tags for use by others in the market. A tag producer may be part of the software creator organization, the software licensor organization, or be a third-party organization. These organizations and/or tools can broadly be broken down into the following categories.

    1. Platform providers: entities responsible for the computer or hardware device and/or associated operating system, virtual environment, or application platform, on which software may be installed or run. Platform providers which support this part of ISO/IEC 19770 may additionally provide tag management capabilities at the level of the platform or operating system.
    2. Software providers: entities that create, license, or distribute software. For example, software creators, independent software developers, consultants, and repackagers of previously manufactured software. Software creators may also be in-house software developers.
    3. Tag tool providers: entities that provide tools to create software identification tags. For example, tools within development environments that generate software identification tags, or installation tools that may create tags on behalf of the installation process, and/or desktop management tools that may create tags for installed software that did not originally have a software identification tag.

    b) Tag consumers: these tools and/or organizations utilize information from SWID tags and are typically broken down into the following two major categories:

    1. software consumers: entities that purchase, install, and/or otherwise consume software;
    2. IT discovery and processing tool providers: entities that provide tools to collect, store, and process software identification tags. These tools may be targeted at a variety of different market segments, including software security, compliance, and logistics.

    ISO/IEC 19770-2:2015 does not prescribe Information Technology Asset Management (ITAM) or other IT-related processes required for reconciliation of software entitlements with software identification tags or other IT requirements.

    ISO/IEC 19770-2:2015 is not intended to conflict either with any organization's policies, procedures or standards or with any national or international laws and regulations.

    General Product Information - (Show below) - (Hide below)

    Document Type Standard
    Product Note this standard also have corrected version for english for the year 2017.
    Publisher International Organization for Standardization
    Status Current
    Supersedes

    Standards Referenced By This Book - (Show below) - (Hide below)

    BS ISO/IEC 19770-3:2016 Information technology. IT asset management Entitlement schema
    ISO/IEC 19770-3:2016 Information technology IT asset management Part 3: Entitlement schema
    14/30273794 DC : 0 BS ISO/IEC 16350 - SYSTEMS AND SOFTWARE ENGINEERING - APPLICATION MANAGEMENT
    16/30325997 DC : 0 BS ISO/IEC 19770-4 - INFORMATION TECHNOLOGY - SOFTWARE ASSET MANAGEMENT - PART 4: RESOURCE UTILIZATION MEASUREMENT (RUM)
    16/30327034 DC : 0 BS ISO/IEC 27034-7 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - APPLICATION SECURITY - PART 7: APPLICATION SECURITY ASSURANCE PREDICTION MODEL
    ISO/IEC 19770-4:2017 Information technology — IT asset management — Part 4: Resource utilization measurement
    ISO/IEC 27034-7:2018 Information technology — Application security — Part 7: Assurance prediction framework
    ISO/IEC 17960:2015 Information technology Programming languages, their environments and system software interfaces Code signing for source code
    CAN/CSA-ISO/IEC 16350:16 Information technology Systems and software engineering Application management (Adopted ISO/IEC 16350:2015, first edition, 2015-08-01)
    CSA ISO/IEC 15026-1 : 2015 SYSTEMS AND SOFTWARE ENGINEERING - SYSTEMS AND SOFTWARE ASSURANCE - PART 1: CONCEPTS AND VOCABULARY
    BS ISO/IEC 17960:2015 Information technology. Programming languages, their environments and system software interfaces. Code signing for source code
    15/30228996 DC : 0 BS ISO/IEC 19770-3 - INFORMATION TECHNOLOGY - IT ASSET MANAGEMENT - PART 3: SOFTWARE ENTITLEMENT SCHEMA
    BS ISO/IEC 19770-4:2017 Information technology. IT asset management Resource utilization measurement
    CAN/CSA-ISO/IEC 17960:16 Information technology Programming languages, their environments and system software interfaces Code signing for source code (Adopted ISO/IEC 17960:2015, first edition, 2015-09-01)
    BS ISO/IEC/IEEE 26531:2015 Systems and software engineering. Content management for product lifecycle, user and service management documentation
    BS ISO/IEC IEEE 24765:2010 Systems and software engineering. Vocabulary
    14/30285107 DC : 0 BS ISO/IEC/IEEE 26531 - SYSTEMS AND SOFTWARE ENGINEERING - CONTENT MANAGEMENT FOR PRODUCT LIFE-CYCLE, USER AND SERVICE MANAGEMENT DOCUMENTATION
    10/30215541 DC : 0 BS ISO/IEC 15026-2 - SYSTEMS AND SOFTWARE ENGINEERING - SYSTEMS AND SOFTWARE ASSURANCE - PART 2: ASSURANCE CASE
    BS ISO/IEC 16350:2015 Information technology. Systems and software engineering. Application management
    ISO/IEC/IEEE 26531:2015 Systems and software engineering — Content management for product life-cycle, user and service management documentation
    BS ISO/IEC 15026-1:2013 Systems and software engineering. Systems and software assurance Concepts and vocabulary
    ISO/IEC 15026-1:2013 Systems and software engineering Systems and software assurance Part 1: Concepts and vocabulary
    IEEE/ISO/IEC 15026-1-2014 IEEE Standard Adoption of ISO/IEC 15026-1--Systems and Software Engineering--Systems and Software Assurance--Part 1: Concepts and Vocabulary
    ISO/IEC/IEEE 24765:2017 Systems and software engineering — Vocabulary
    ISO/IEC 16350:2015 Information technology Systems and software engineering Application management

    Standards Referencing This Book - (Show below) - (Hide below)

    ISO/IEC 19770-5:2015 Information technology — IT asset management — Part 5: Overview and vocabulary
    ISO 8601:2004 Data elements and interchange formats Information interchange Representation of dates and times
    FIPS PUB 186 : 0 DIGITAL SIGNATURE STANDARD (DSS)
    IEEE/Open Group 1003.1, 2013 Edition IEEE Standard for Information Technology—Portable Operating System Interface (POSIX(TM)) Base Specifications, Issue 7
    View more information

    • Access your standards online with a subscription

      Features

      • Simple online access to standards, technical information and regulations
      • Critical updates of standards and customisable alerts and notifications
      • Multi - user online standards collection: secure, flexibile and cost effective