• ISO/IEC 31000: Risk Management Framework

• ISO/IEC 31010: Risk Management Process (?)

• ISO/IEC 38500: Corporate governance of information technology (old version: American Standard 8015)

ISO/IEC JTC 1/SC27 WG 1

약어) ISMS: Information Security Management System

• ISO/IEC 27000: ISMS Fundamentals and Vocabulary

• ISO/IEC 27001: ISMS Requirements (old version: BS7799 – Part 2)

• ISO/IEC 27002: Code of Practice for Information Security Management (old version: ISO/ IEC 17799:2005 ß BS7799 – Part 1)

• ISO/IEC 27003: ISMS Implementation Guidance

• ISO/IEC 27004: Information Security Management Metrics and Measurements

• ISO/IEC 27005: Information Security Risk Management (old version: BS7799 – Part 3)

• ISO/IEC 27006: ISMS Accreditation

• ISO/IEC 27007: Guidelines for ISMS auditing

• ISO/IEC 27011: ISMS for telecommunications

• ISO/IEC 17799 Code of practice for information security management

• ISO/IEC 13335 Management of ICT security (MICTS)

약어) ICT: Information and Communication Technology

ISO/IEC JTC 1/SC27 WG 2

• ISO/IEC 9796 Digital signature schemes giving message recovery

• ISO/IEC 9797 Message authentication codes

• ISO/IEC 9798 Entity authentication

• ISO/IEC 10118 Hash-functions

• ISO/IEC 11770 Key management

• ISO/IEC 14888 Digital signatures with appendix

• ISO/IEC 15946 Cryptographic techniques based on elliptic curves

• ISO/IEC 18014 Time stamping services

• ISO/IEC 18033 Encryption algorithms

• ISO/IEC 24745 Biometric template protection

• ISO/IEC 15946 Cryptographic techniques based on elliptic curves

• ISO/IEC 18014 Time stamping services

• ISO/IEC 18031 Random bit generation

• ISO/IEC 18032 Prime number generation

• ISO/IEC 18033 Encryption algorithms

• ISO/IEC 19772 Data encapsulation mechanisms

• ISO/IEC 24745 Biometric template protection

ISO/IEC JTC 1/SC27 WG 3

• ISO/IEC 15408 Evaluation criteria for IT security

• ISO/IEC 15443 A framework for IT security assurance

ISO/IEC 18045 Methodology for IT security evaluation

• ISO/IEC 19790 Security requirements for cryptographic modules

• ISO/IEC 19791 Security assessment of operational systems

• ISO/IEC 19792 A framework for security evaluation and testing of biometric technology

• ISO/IEC 21827 SSE-CMM

약어) SSE-CMM: System Security Engineering Capability Maturity Model

ISO/IEC JTC 1/SC27 WG 4

• ISO/IEC 18028 IT Network security

• ISO/IEC 18043 Selection, deployment and operations of intrusion detection systems

• ISO/IEC 18044 Information security incident management

• ISO/IEC 24762 Disaster recovery services

• ISO/IEC 27031 ICT Readiness for Business Continuity

• ISO/IEC 27032 Cybersecurity

• ISO/IEC 27033 Network Security

• ISO/IEC 27034 Application Security

ISO/IEC JTC 1/SC27 WG 5

• ISO/IEC 24745 Biometric template protection

• ISO/IEC 24761 Authentication context for biometrics

• ISO/IEC 24760 A framework for biometrics

• ISO/IEC 24760 IdM Framework

• ISO/IEC 29146 A Framework for Access Management

• ISO/IEC 29100 Privacy Framework

• ISO/IEC 29101 Privacy Reference Architecture

약어) IdM: Identity Management