Reference number
ISO/IEC TS 19608:2018
Technical Specification
ISO/IEC TS 19608:2018
Guidance for developing security and privacy functional requirements based on ISO/IEC 15408
Edition 1
2018-10
Technical Specification
Read sample
ISO/IEC TS 19608:2018
65459
Published (Edition 1, 2018)
This publication was last reviewed and confirmed in 2022. Therefore this version remains current.

ISO/IEC TS 19608:2018

ISO/IEC TS 19608:2018
65459
Language
Format
CHF 173
Convert Swiss francs (CHF) to your currency

Abstract

This document provides guidance for:

— selecting and specifying security functional requirements (SFRs) from ISO/IEC 15408-2 to protect Personally Identifiable Information (PII);

— the procedure to define both privacy and security functional requirements in a coordinated manner; and

— developing privacy functional requirements as extended components based on the privacy principles defined in ISO/IEC 29100 through the paradigm described in ISO/IEC 15408-2.

The intended audience for this document are:

— developers who implement products or systems that deal with PII and want to undergo a security evaluation of those products using ISO/IEC 15408. They will get guidance how to select security functional requirements for the Security Target of their product or system that map to the privacy principles defined in ISO/IEC 29100;

— authors of Protection Profiles that address the protection of PII; and

— evaluators that use ISO/IEC 15408 and ISO/IEC 18045 for a security evaluation.

This document is intended to be fully consistent with ISO/IEC 15408; however, in the event of any inconsistency between this document and ISO/IEC 15408, the latter, as a normative standard, takes precedence.

General information

  •  : Published
     : 2018-10
    : International Standard confirmed [90.93]
  •  : 1
     : 48
  • ISO/IEC JTC 1/SC 27
    35.030 
  • RSS updates

Got a question?

Check out our Help and Support