Information technology: Information security management systems, Overview and vocabulary
Á¤º¸±â¼ú: Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ, °³¿ä ¹× ¿ë¾î
ISO27001
This is the specification for an information security management system (an ISMS) which replaced the old BS7799-2 standard
ÀÌ°ÍÀº ¿¹ÀüÀÇ BS7799-2 Ç¥ÁØÀ» ´ëüÇÑ Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ(ISMS)À» À§ÇÑ ¸í¼¼ÀÌ´Ù.
ISO27002
This is the 27000 series standard number of what was originally the ISO 17799 standard (which itself was formerly known as BS7799-1)..
ÀÌ°ÍÀº ¿¹Àü¿¡ BS7799-1·Î ¾Ë·ÁÁ³djT´ø ISO 17799¿¡ ´ëÇÑ 27000 ½Ã¸®Áî Ç¥ÁØ ¹øÈ£ÀÌ´Ù.
ISO27003
This will be the official number of a new standard intended to offer guidance for the implementation of an ISMS (IS Management System) .
ÀÌ°ÍÀº Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ(ISMS)ÀÇ ±¸ÇöÀ» À§ÇÑ ¾È³»¼¸¦ Á¦°øÇÏ·Á´Â »õ·Î¿î Ç¥ÁØ ¹øÈ£°¡ µÉ °ÍÀÌ´Ù.
ISO27004
This standard covers information security system management measurement and metrics, including suggested ISO27002 aligned controls.
ÀÌ Ç¥ÁØÀº ISO27002¿Í ¿¬°èµÈ ÅëÁ¦¸¦ Æ÷ÇÔÇÑ Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ ÃøÁ¤¹æ¹ý ¹× ÃøÁ¤±âÁØÀ» ´Ù·ç°í ÀÖ´Ù.
ISO27005
This is the methodology independent ISO standard for information security risk management.
ÀÌ°ÍÀº Á¤º¸ º¸¾È À§Çè °ü¸®¸¦ À§ÇÑ ISO Ç¥ÁØ°ú µ¶¸³µÈ ¹æ¹ý·ÐÀÌ´Ù.
ISO27006
This standard provides guidelines for the accreditation of organizations offering ISMS certification.
ÀÌ Ç¥ÁØÀº ISMS ÀÎÁõÀ» Á¦°øÇÏ´Â Á¶Á÷ÀÇ Àΰ¡¸¦ À§ÇÑ ÁöħÀ» Á¦°øÇÑ´Ù.
ISO27007
Guidelines for Information Security Management Systems Auditing
Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ °¨»ç¸¦ À§ÇÑ Áöħ
ISO27008
Guidelines for ISM auditing with respect to security controls (approved April 2008)
º¸¾È ÅëÁ¦¿¡ °üÇÏ¿© Á¤º¸º¸¾È°ü¸® °¨»ç¸¦ À§ÇÑ Áöħ
ISO27011
Information technology: Information security management guidelines for telecommunications
Á¤º¸ ±â¼ú: Åë½ÅÀ» À§ÇÑ Á¤º¸ º¸¾È °ü¸® Áöħ
ISO27033
Network Security
³×Æ®¿öÅ© º¸¾È
ISO27799
Health Informatics: Information security management in health using ISO/IEC 17799
°Ç° Á¤º¸ °úÇÐ: ISO/IEC 17799¸¦ ÀÌ¿ëÇÑ °Ç°(°ú °ü·ÃµÈ ±â°ü)¿¡ °üÇÑ Á¤º¸ º¸¾È °ü¸®
UNCONFIRMED / NOT YET SCHEDULED
È®Á¤µÇÁö ¾Ê°Å³ª ¾ÆÁ÷ ÀÏÁ¤ÀÌ ÀâÇôÀÖÁö ¾ÊÀº
ISO27010 ISM Guidelines for Sector-Sector Working and Communications (it is suggested that this will comprise a number of documents)
ISO27013 Guideline on the Integrated Implementation of ISO/IEC 20000-1 and ISO27001
ISO27014 Information Security Governance Framework
ISO27015 Information Security Management Guidelines for the Finance And Insurance Sectors
ISO27031 ICT Readiness for Business Continuity(essentially the ICT continuity component within business continuity management))
ISO27032 Guideline for Cyber Security (essentially, 'being a good neighbor' on the Internet)
ISO27034 Guidelines for application security
ISO27035 Security Incident Management
ISO27036 Guidelines for Security of Outsourcing
ISO27037 Guidelines for Identification, Collection and/or Acquisition and Preservation of Digital Evidence
ISO27051 Telecommunications (ITU-T)
SPECULATION - INDUSTRY SPECIFIC STANDARDS:
¾÷Á¾ Æ¯È Ç¥ÁØ
ISO27012 Finance (ref ISO TC 68) À繫
ISO27013 Manufacturing Á¦Á¶
IRCA (Spain) contradicts this by reporting the following:
ISO27012 Automotive Industry ÀÚµ¿ÀÚ ¾÷°è
ISO27013 Lotteries. º¹±Ç
HOME > Ä¿¹Â´ÏƼ > IT º¸Áõ
