国際規格動向 ISO IEC/JTC 1/SC 27の動向について (プライ シ 関連の規格のみを抜粋) (プライバシー関連の規格のみを抜粋) 2014年12月7日更新 © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 国際規格化の動向 http://bit.Ly/jtc1sc27 ISO IEC/JTC 1/SC 27 Info Information mation technolo technology -- Security Sec it techni techniques es WG5 Privacy, Identity management and Biometrics 2014年11月時点 プライバシー関連で発行されている規格 ISO/IEC ISO/IEC ISO/IEC ISO/IEC ISO/IEC ISO/IEC 29100:2011 Privacy framework →無料 29191:2013 Requirements for partially anonymous, partially unlinkable authentication 29101:201x Privacy architecture framework ( X.1254)) 29115:201x Entityy authentication assurance framework (ITU-T 27018:201x Code of practice for PII protection in public clouds acting as PII processors 29190:201x Privacy capability assessment model プライバシー関連で作成中の規格 CD registered ISO/IEC 29134 Privacy impact assessment – Methodology CD registered ISO/IEC 29151 Code of practice for protection of PII 5th WD ISO/IEC 29003 Identity proofing WD on Guidance for developing security and privacy functional requirements based on ISO/IEC 15408 (WG3 project: formerly Privacy seal programs) SD5 “Guidelines on the application of ISMS in the area of privacy“ プライバシ 関連で規格を作成するか審議中の案件 プライバシー関連で規格を作成するか審議中の案件 Study Study Study Study Study 2 period on User friendly online privacy notice and consent period on Privacy impact assessment (ISO/IEC 27009 Sector specificを参考に検討) period on Technical issue of 29115 when applied in national ID infrastructure period on Age verification © Copyright Development Company, L.P. The information contained herein is subject to change without notice. period on 2013 A Hewlett-Packard privacy-respecting identity management scheme using attribute-based credentials 国際規格化の動向 http://bit.Ly/jtc1sc27 ISO IEC/JTC 1/SC 27 Info Information mation technolo technology -- Security Sec it techni techniques es WG5 Privacy, Identity management and Biometrics プライバシー関連で発行されている規格 プライバシ 関連で発行されている規格 ISO/IEC ISO/IEC ISO/IEC ISO/IEC ISO/IEC 2014年5月時点 Downloadable from Free document page 29100:2011 Privacy framework →無料化済み, Periodical pre-reviewed 29191:2013 Requirements for partially anonymous, partially unlinkable authentication 29101:201x Privacy architecture framework 29115:201x Entity authentication assurance framework (ITU-T X.1254) 27018:201x Code of practice for PII protection in public clouds acting as PII processors プライバシ 関連で作成中の規格 プライバシー関連で作成中の規格 DIS(FDIS registered) ISO/IEC 29190 Privacy capability assessment model(検証を反映したのでFDIS) CD registered ISO/IEC 29134 Privacy impact assessment – Methodology CD registered ISO/IEC 29151 Code of practice for PII protection (ITU-T ( SG17共通文書にする方向) 共通文書 する方向) 4th WD ISO/IEC 29003 Identity proofing (法人を含めるScope変更, マルチパート化の意見あり) New Work Item on Guidance for developing security and privacy functional requirements based on ISO/IEC 15408 (WG3 project: j formerly f l Privacy Pi seall programs)) SD5 “Guidelines on the application of ISMS in the area of privacy“ プライバシー関連で規格を作成するか審議中の案件 Study period on Privacy impact assessment (ISO/IEC 27009 Sector specificを参考に今後検討) Study period Age verification (Confirmed to herein submit © Copyrighton 2013 Hewlett-Packard Development Company, L.P. The information contained is subject toNWIP) change without notice. 3 Study period on A privacy-respecting identity management scheme using attribute-based credentials 国際規格化の動向 http://bit.Ly/jtc1sc27 ISO IEC/JTC 1/SC 27 Info Information mation technolo technology -- Security Sec it techni techniques es WG5 Privacy, Identity management and Biometrics 参考 2013年11月時点 プライバシー関連で発行されている規格 プライバシ 関連で発行されている規格 ISO/IEC ISO/IEC ISO/IEC ISO/IEC 29100:2011 Privacy framework →無料化を検討中 29191:2013 Requirements for partially anonymous, partially unlinkable authentication 29101:201x Privacy architecture framework 29115:201x Entity authentication assurance framework (ITU-T X.1254) プライバシー関連で作成中の規格 DIS ISO/IEC 29190 Privacy Pi capability bili assessment model d l DIS ISO/IEC 27018 Code of practice for PII protection in public clouds acting as PII processors 3rd WD ISO/IEC 29134 Privacy impact assessment – Methodology 3rd WD ISO/IEC 29003 Identity proofing 2nd WD ISO/IEC 29151 Code of practice for PII protection プライバシー関連で審議中の案件 New Work Item Proposal on Privacy seal programs (is started as WG3 project) Study period on Privacy impact assessment Canceled: Study period on Documentation of data deletion principles Study period on Age verification 4 © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. 国際規格化の動向 http://bit.Ly/jtc1sc27 ISO IEC/JTC 1/SC 27 Info Information mation technolo technology -- Security Sec it techni techniques es WG5 Privacy, Identity management and Biometrics 参考 2012年11月時点 プライバシー関連で発行されている規格 プライバシ 関連で発行されている規格 ISO/IEC 29100:2011 Privacy framework →無料化を検討中 プライバシ 関連で作成中の規格 プライバシー関連で作成中の規格 ISO/IEC ISO/IEC ISO/IEC ISO/IEC ISO/IEC services i ISO/IEC FDIS 29115 Entity authentication assurance framework (ITU-T X.1254) DIS 29191 Requirements for partially anonymous, partially unlinkable authentication CD 29101 Privacy architecture framework WD 29190 Privacy capability assessment model NP 27018 Code of practice for data protection controls for public cloud computing NP 29134 Privacy impact assessment – Methodology プ プライバシー関連で審議中の案件 バ 関連 審議中 案件 SP SP SP SP 5 on on on on Privacy / Personal Information Management Systems (PIMS) Privacy impact assessment Study period on Privacy seal programs Documentation ofDevelopment dataCompany, deletion principles © Copyright 2013 Hewlett-Packard L.P. The information contained herein is subject to change without notice. 規格審議の協力者 絶賛 募集中です SC27国際規格の審議は、研究者以外でも会費(年間1口 70万円~)を払って規格賛助員になることで基本的に 万円 )を払 規格賛助員になる と 基本的に どなたでも参加できます。 情報処理学会情報規格調査会ホームページ http://www.itscj.ipsj.or.jp/ 6 © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
© Copyright 2024 Paperzz
