ISO/IEC JTC 1/SC 27
| Projekta Nr. | ISO/IEC 29147:2014 |
|---|---|
| Nosaukums | <!-- saved from url=(0098)file://O:\Documents\JTC001\SC027\045170 - ISO_IEC NP 29147 (Ed 1)\60.00\300\C045170e Abstract.html --> <p></p> <p>ISO/IEC 29147:2014 gives guidelines for the disclosure of potential vulnerabilities in products and online services. It details the methods a vendor should use to address issues related to vulnerability disclosure. ISO/IEC 29147:2014</p> <ol> <li>provides guidelines for vendors on how to receive information about potential vulnerabilities in their products or online services,</li> <li>provides guidelines for vendors on how to disseminate resolution information about vulnerabilities in their products or online services,</li> <li>provides the information items that should be produced through the implementation of a vendor's vulnerability disclosure process, and</li> <li>provides examples of content that should be included in the information items.</li> </ol> <p>ISO/IEC 29147:2014 is applicable to vendors who respond to external reports of vulnerabilities in their products or online services.</p> |
| Reģistrācijas numurs (WIID) | 45170 |
| Darbības sfēra | <!-- saved from url=(0098)file://O:\Documents\JTC001\SC027\045170 - ISO_IEC NP 29147 (Ed 1)\60.00\300\C045170e Abstract.html --> <p></p> <p>ISO/IEC 29147:2014 gives guidelines for the disclosure of potential vulnerabilities in products and online services. It details the methods a vendor should use to address issues related to vulnerability disclosure. ISO/IEC 29147:2014</p> <ol> <li>provides guidelines for vendors on how to receive information about potential vulnerabilities in their products or online services,</li> <li>provides guidelines for vendors on how to disseminate resolution information about vulnerabilities in their products or online services,</li> <li>provides the information items that should be produced through the implementation of a vendor's vulnerability disclosure process, and</li> <li>provides examples of content that should be included in the information items.</li> </ol> <p>ISO/IEC 29147:2014 is applicable to vendors who respond to external reports of vulnerabilities in their products or online services.</p> |
| Statuss | Atcelts |
| ICS grupa | 35.040 35.030 |