This document discusses the threats, risks, and controls related to:
— systems that provide digital asset custodian services and/or exchange services to their customers (consumers and businesses) and management of security when an incident occurs;
— asset information (including the signature key of the digital asset) that a custodian of digital assets manages.
This document is addressed to digital asset custodians that manage signature keys associated with digital asset accounts. In such a case, certain specific recommendations apply.
The following is out of scope of this document:
— core security controls of blockchain and DLT systems;
— business risks of digital asset custodians;
— segregation of customer's assets;
— governance and management issues.
Status: PublishedPublication date: 2020-12
Edition: 1Number of pages: 35
Technical Committee: ISO/TC 307 Blockchain and distributed ledger technologies
Buy this standard
|std 1 138||PDF + ePub|
|std 2 138||Paper|