Infoteenus
35 INFOTEHNOLOOGIA
Uued standardid
ISO/IEC TS 30149:2024
Internet of Things (IoT) — Trustworthiness principles
Käsitlusala:
This document provides principles for IoT trustworthiness based on ISO/IEC 30141 - IoT Reference Architecture.
Alusdokumendid:
ISO/IEC 24787-2:2024
Information technology — On-card biometric comparison — Part 2: Work-sharing mechanism
Käsitlusala:
This document provides requirements for a biometric comparison methodology suitable for the on-card environment. In particular, it establishes the work-sharing on-card biometric comparison techniques that require an intensity exceeding the capabilities of integrated circuit cards (ICCs).
This document does not establish
— architectures of biometric comparison using an ICC,
— on-card biometric comparison, both in sensor-off-card systems and as part of biometric system-on-card,
— security policies for on-card biometric comparison,
— requirements for off-card biometric comparison,
— requirements for biometric system-on-card (defined in the ISO/IEC 17839 series), or
— modality-specific requirements for storage and comparison.
This document does not establish
— architectures of biometric comparison using an ICC,
— on-card biometric comparison, both in sensor-off-card systems and as part of biometric system-on-card,
— security policies for on-card biometric comparison,
— requirements for off-card biometric comparison,
— requirements for biometric system-on-card (defined in the ISO/IEC 17839 series), or
— modality-specific requirements for storage and comparison.
Alusdokumendid:
Asendab:
ISO/IEC 24787:2018
ISO/IEC 29794-1:2024
Information technology — Biometric sample quality — Part 1: Framework
Käsitlusala:
This document establishes the following items for any or all biometric sample types as necessary:
— terms and definitions that are useful in the specification and use of quality measures;
— purpose and interpretation of biometric quality scores;
— motivation for developing biometric sample datasets for the purpose of quality score normalization;
— format for exchange of quality assessment algorithm results;
— methods for aggregation of quality scores;
— methods for evaluating the efficiency of quality assessment algorithms.
The following are outside the scope of this document:
— specification of minimum requirements for sample, module, or system quality scores;
— standardization of quality assessment algorithms;
— assessment of utility of biometric samples or references for human examiners.
— terms and definitions that are useful in the specification and use of quality measures;
— purpose and interpretation of biometric quality scores;
— motivation for developing biometric sample datasets for the purpose of quality score normalization;
— format for exchange of quality assessment algorithm results;
— methods for aggregation of quality scores;
— methods for evaluating the efficiency of quality assessment algorithms.
The following are outside the scope of this document:
— specification of minimum requirements for sample, module, or system quality scores;
— standardization of quality assessment algorithms;
— assessment of utility of biometric samples or references for human examiners.
Alusdokumendid:
Asendab:
ISO/IEC 29794-1:2016
ISO/IEC 18477-1:2024
Information technology — Scalable compression and coding of continuous-tone still images — Part 1: Core coding system specification
Käsitlusala:
This document specifies a coding format, referred to as JPEG XT, which is designed primarily for continuous-tone photographic content. This document defines the core coding system, which forms the basis for the entire ISO/IEC 18477 series.
Alusdokumendid:
Asendab:
ISO/IEC 18477-1:2020
ISO/TS 20428:2024
Genomics Informatics — Data elements and their metadata for describing structured clinical genomic sequence information in electronic health records
Käsitlusala:
The document defines the data elements and the requisite metadata essential for implementing a structured clinical genomic sequencing report in electronic health records, particularly focusing on the genomic data generated by next-generation sequencing technology.
This document:
— defines the composition of a structured clinical sequencing report (see Clause 6);
— defines the required data fields and their metadata for a structured clinical sequencing report (see Clause 7);
— defines the optional data (see Clause 8);
— covers the DNA-level variation from human samples using whole genome sequencing, whole exome sequencing, and targeted sequencing (disease-targeted gene panels) by next-generation sequencing technologies (though whole transcriptome sequencing and other technologies are important to provide better patient care and enable precision medicine, this document only deals with DNA-level changes);
— covers mainly clinical applications and clinical research such as clinical trials and translational research which uses clinical data (basic research and other scientific areas are outside the scope of this document);
— does not cover the other biological species, i.e. genomes of viruses and microbes;
— does not cover the Sanger sequencing methods.
This document:
— defines the composition of a structured clinical sequencing report (see Clause 6);
— defines the required data fields and their metadata for a structured clinical sequencing report (see Clause 7);
— defines the optional data (see Clause 8);
— covers the DNA-level variation from human samples using whole genome sequencing, whole exome sequencing, and targeted sequencing (disease-targeted gene panels) by next-generation sequencing technologies (though whole transcriptome sequencing and other technologies are important to provide better patient care and enable precision medicine, this document only deals with DNA-level changes);
— covers mainly clinical applications and clinical research such as clinical trials and translational research which uses clinical data (basic research and other scientific areas are outside the scope of this document);
— does not cover the other biological species, i.e. genomes of viruses and microbes;
— does not cover the Sanger sequencing methods.
Alusdokumendid:
Asendab:
ISO/TS 20428:2017
EVS-EN ISO/IEC 27002:2022/AC:2024
Infoturve, küberturve ja privaatsuskaitse. Infoturvameetmed
Käsitlusala:
Standardi EVS-EN ISO/IEC 27002:2022 parandus.
Alusdokumendid:
CEN/TS 15531-6:2024
Public transport - Service interface for real-time information relating to public transport operations - Part 6: Functional service interfaces: Control Actions
Käsitlusala:
This document specifies an additional SIRI functional service to exchange information about Control Actions, between monitoring systems and servers containing real-time public transport vehicle or journey time data. These include the control centres of transport operators, as well as information systems that deliver passenger travel information services. As for Transmodel, public transport modes include new modes of transport (vehicle sharing, vehicle pooling, etc.).
This document describes the SIRI Control Action service, one of a modular set of services for the exchange of Real-time information. The Control Action service (SIRI-CA) is concerned with the exchange of information about decision made concerning the real-time management of the operation of a transport system as performed by operators while operating the services.
This document describes the SIRI Control Action service, one of a modular set of services for the exchange of Real-time information. The Control Action service (SIRI-CA) is concerned with the exchange of information about decision made concerning the real-time management of the operation of a transport system as performed by operators while operating the services.
Alusdokumendid:
CEN/TS 15531-6:2024
CEN/TS 16614-6:2024
Public transport - Network and timetable exchange (NeTEx) - Part 6: European Passenger Information Accessibility Profile
Käsitlusala:
This document is a profile of the CEN/TS 16614 series. It focuses on information relevant to feed the necessary accessibility passenger information services and excludes operational and fares information. It is based directly on EPIP (CEN/TS 16614-4).
This European Passenger Information Accessibility Profile (EPIAP) for NeTEx is for exchanging passenger information; it describes how to extend EPIP (the European Passenger Information Profile) with additional information (including a minimal set) to feed the necessary accessibility passenger information services in a European wide and multimodal context. EPIAP especially formulates a mandatory minimal implementation that needs to be filled in by everybody to deliver the necessary information for an assessment of the accessibility of site(s), vehicles and on vehicle-site interaction for impaired persons. The minimal level allows an assessment and contains the information to produce PRM TSI if necessary. It will also cover what the current legislation usually warrants. It then describes how additional information must be provided if an organisation decides to provide it (e.g. the information of the full DELFI+ standard in Germany).
EPIP does not reflect part 5 (New Modes) yet. However, EPIAP takes it into account. EPIP will have to be adapted accordingly.
For EPIAP to be of use, the EC needs to declare the minimal level of EPIAP as mandatory.
This European Passenger Information Accessibility Profile (EPIAP) for NeTEx is for exchanging passenger information; it describes how to extend EPIP (the European Passenger Information Profile) with additional information (including a minimal set) to feed the necessary accessibility passenger information services in a European wide and multimodal context. EPIAP especially formulates a mandatory minimal implementation that needs to be filled in by everybody to deliver the necessary information for an assessment of the accessibility of site(s), vehicles and on vehicle-site interaction for impaired persons. The minimal level allows an assessment and contains the information to produce PRM TSI if necessary. It will also cover what the current legislation usually warrants. It then describes how additional information must be provided if an organisation decides to provide it (e.g. the information of the full DELFI+ standard in Germany).
EPIP does not reflect part 5 (New Modes) yet. However, EPIAP takes it into account. EPIP will have to be adapted accordingly.
For EPIAP to be of use, the EC needs to declare the minimal level of EPIAP as mandatory.
Alusdokumendid:
CEN/TS 16614-6:2024
ISO/IEC 30105-5:2024
Information technology — IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes — Part 5: Guidance
Käsitlusala:
This document contains the guidance on supporting maturity improvement for service providers. It specifies the provision of assessment results that are repeatable, objective and comparable within similar contexts, and can be used for either process improvement or process capability gap determination. The framework for the conduct of assessments is designed to support the achievement of dependable assessment results.
This document provides guidance on the usage of the core parts of the ISO/IEC 30105 series: ISO/IEC 30105-1, ISO/IEC 30105-2 and ISO/IEC 30105-3.
This document also introduces the extended parts of the ISO/IEC 30105 series: ISO/IEC TS 30105-6, ISO/IEC TR 30105-7, ISO/IEC 30105-8 and ISO/IEC TS 30105-9.
This document provides guidance on the usage of the core parts of the ISO/IEC 30105 series: ISO/IEC 30105-1, ISO/IEC 30105-2 and ISO/IEC 30105-3.
This document also introduces the extended parts of the ISO/IEC 30105 series: ISO/IEC TS 30105-6, ISO/IEC TR 30105-7, ISO/IEC 30105-8 and ISO/IEC TS 30105-9.
Alusdokumendid:
Asendab:
ISO/IEC 30105-5:2016
ISO/TR 6231:2024
Health informatics — Standardizing graphical content
Käsitlusala:
This document describes the need for standardization of graphics and images in the health informatics domain. It focuses on the current status of adoption and presents an overview of the opportunities as well as challenges in creating sets of standardized images and graphics. A plan of action is proposed to serve as the future roadmap for implementation.
Alusdokumendid:
ISO/IEC 30105-3:2024
Information technology — IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes — Part 3: Measurement framework (MF) and organization maturity model (OMM)
Käsitlusala:
This document specifies a measurement framework (MF) and an organization maturity model (OMM). It provides the overview of how an organization can use the process reference model (PRM) in ISO/IEC 30105-1 and the process assessment model (PAM) in ISO/IEC 30105-2 to measure their capability and maturity levels. It conforms to the requirements of ISO/IEC 33003 and ISO/IEC 33004 and supports the performance assessment by providing a framework to measure and derive capability and organization maturity levels.
This document is intended to be used in concurrence with the other parts of the ISO/IEC 30105 series and the assessment approach provided by ISO/IEC 33002 for assessing processes.
This document is intended to be used in concurrence with the other parts of the ISO/IEC 30105 series and the assessment approach provided by ISO/IEC 33002 for assessing processes.
Alusdokumendid:
EVS-EN IEC 61784-3:2021/A1:2024
Industrial communication networks - Profiles - Part 3: Functional safety fieldbuses - General rules and profile definitions
Käsitlusala:
Amendment to EN IEC 61784-3:2021.
Alusdokumendid:
IEC 61784-3:2021/AMD1:2024; EN IEC 61784-3:2021/A1:2024
ISO/IEC 30105-2:2024
Information technology — IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes — Part 2: Process assessment model (PAM)
Käsitlusala:
This document specifies the process assessment model (PAM). It contains process definitions of the ITES-BPO lifecycle defined in ISO/IEC 30105-1 and a model suitable for assessing process capability. The outcomes in the PAM are clearly defined, observable results, aligned to the business benefits derived by the customer and service provider.
A PAM consists of a set of indicators for process performance and process capability. The indicators are used as a basis for collecting the objective evidence that enables an assessor to determine ratings. The set of indicators included in this document is not intended to be an all-inclusive set, nor is it intended to be applicable in its entirety. Supersets and subsets are selected according to the context and the scope of the assessment.
The PAM in this document is directed at assessment sponsors and competent assessors who wish to select a model and an associated documented assessment process for the ITES-BPO lifecycle processes, for process capability gap determination.
A PAM consists of a set of indicators for process performance and process capability. The indicators are used as a basis for collecting the objective evidence that enables an assessor to determine ratings. The set of indicators included in this document is not intended to be an all-inclusive set, nor is it intended to be applicable in its entirety. Supersets and subsets are selected according to the context and the scope of the assessment.
The PAM in this document is directed at assessment sponsors and competent assessors who wish to select a model and an associated documented assessment process for the ITES-BPO lifecycle processes, for process capability gap determination.
Alusdokumendid:
Asendab:
ISO/IEC 30105-2:2016
ISO/TS 5777:2024
Health informatics — The architecture of internet healthcare service network
Käsitlusala:
This document provides the architecture of internet healthcare service network, including:
— overview of internet healthcare service network;
— infrastructure and deployment scheme of internet healthcare service network;
— security of internet healthcare service network.
This document mainly focuses on the engineering architecture and infrastructure deployment of healthcare information transmission among various healthcare organizations through services, as shown in Figure 1. The implementation of information systems and healthcare services within organizations is demonstrated in Annex A.
This document applies to the construction and application of internet healthcare service network.
— overview of internet healthcare service network;
— infrastructure and deployment scheme of internet healthcare service network;
— security of internet healthcare service network.
This document mainly focuses on the engineering architecture and infrastructure deployment of healthcare information transmission among various healthcare organizations through services, as shown in Figure 1. The implementation of information systems and healthcare services within organizations is demonstrated in Annex A.
This document applies to the construction and application of internet healthcare service network.
Alusdokumendid:
ISO/IEC 24787-1:2024
Information technology — On-card biometric comparison — Part 1: General principles and specifications
Käsitlusala:
This document provides requirements and general principles and specifications for a biometric comparison methodology suitable for the on-card environment.
This document establishes
— architectures of biometric comparison using an ICC,
— on-card biometric comparison, both in sensor-off-card systems and as part of biometric system-on-card, and
— security policies for on-card biometric comparison.
This document does not establish
— requirements for off-card biometric comparison,
— requirements for biometric system-on-card (defined in the ISO/IEC 17839 series),
— work-sharing on-card biometric comparison (defined in ISO/IEC 24787-2), or
— modality-specific requirements for storage and comparison.
This document establishes
— architectures of biometric comparison using an ICC,
— on-card biometric comparison, both in sensor-off-card systems and as part of biometric system-on-card, and
— security policies for on-card biometric comparison.
This document does not establish
— requirements for off-card biometric comparison,
— requirements for biometric system-on-card (defined in the ISO/IEC 17839 series),
— work-sharing on-card biometric comparison (defined in ISO/IEC 24787-2), or
— modality-specific requirements for storage and comparison.
Alusdokumendid:
Asendab:
ISO/IEC 24787:2018
EVS-EN IEC 61784-3:2021+A1:2024
Industrial communication networks - Profiles - Part 3: Functional safety fieldbuses - General rules and profile definitions (IEC 61784-3:2021 + IEC 61784-3:2021/AMD1:2024)
Käsitlusala:
This part of the IEC 61784 3 series explains some common principles that can be used in the transmission of safety-relevant messages among participants within a distributed network which use fieldbus technology in accordance with the requirements of IEC 61508 (all parts) for functional safety. These principles are based on the black channel approach. They can be used in various industrial applications such as process control, manufacturing automation and machinery.
This part and the IEC 61784-3-x parts specify several functional safety communication profiles based on the communication profiles and protocol layers of the fieldbus technologies in IEC 61784-1, IEC 61784-2 and IEC 61158 (all parts). These functional safety communication profiles use the black channel approach, as defined in IEC 61508. These functional safety communication profiles are intended for implementation in safety devices exclusively.
NOTE 1 Other safety-related communication systems meeting the requirements of IEC 61508 (all parts) can exist that are not included in IEC 61784-3 (all parts).
NOTE 2 It does not cover electrical safety and intrinsic safety aspects. Electrical safety relates to hazards such as electrical shock. Intrinsic safety relates to hazards associated with potentially explosive atmospheres.
All systems are exposed to unauthorized access at some point of their life cycle. Additional measures need to be considered in any safety-related application to protect fieldbus systems against unauthorized access. IEC 62443 (all parts) will address many of these issues; the relationship with IEC 62443 (all parts) is detailed in a dedicated subclause of this document.
NOTE 3 Implementation of a functional safety communication profile according to this document in a device is not sufficient to qualify it as a safety device, as defined in IEC 61508 (all parts).
NOTE 4 The resulting SIL claim of a system depends on the implementation of the selected functional safety communication profile within this system.
NOTE 5 Annex C explains the numbering scheme used for the technology-specific parts (IEC 61784-3-x) as well as their common general structure.
NOTE 6 Annex D provides a guideline for the assessment and test of safety communication profiles as well as safety-related devices using these profiles.
Alusdokumendid:
IEC 61784-3:2021; EN IEC 61784-3:2021; IEC 61784-3:2021/AMD1:2024; EN IEC 61784-3:2021/A1:2024
ISO/IEC 30105-1:2024
Information technology — IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes — Part 1: Process reference model (PRM)
Käsitlusala:
The ISO/IEC 30105 series specifies the lifecycle process requirements performed by the IT enabled business process outsourcing service provider for the outsourced business processes. It defines the processes to plan, establish, implement, operate, monitor, review, maintain and improve its services.
This document specifies the process reference model (PRM). It contains process definitions across the lifecycle described in terms of process context, purpose and outcomes, together with a framework defining relationships between the processes.
The process purpose details the high-level objective of performing the process such that implementation of the process leads to tangible benefits for stakeholders. The process outcomes are clearly defined by observable results and aligned to the business benefits derived by the customer and service provider.
This document:
— covers IT enabled business processes that are outsourced;
— is not intended to address IT processes, but includes references to them at key touchpoints for completeness;
— is applicable to the service provider, not to the customer;
— is applicable to all lifecycle processes of ITES-BPO;
— serves as a PRM for organizations providing ITES-BPO services.
This document specifies the process reference model (PRM). It contains process definitions across the lifecycle described in terms of process context, purpose and outcomes, together with a framework defining relationships between the processes.
The process purpose details the high-level objective of performing the process such that implementation of the process leads to tangible benefits for stakeholders. The process outcomes are clearly defined by observable results and aligned to the business benefits derived by the customer and service provider.
This document:
— covers IT enabled business processes that are outsourced;
— is not intended to address IT processes, but includes references to them at key touchpoints for completeness;
— is applicable to the service provider, not to the customer;
— is applicable to all lifecycle processes of ITES-BPO;
— serves as a PRM for organizations providing ITES-BPO services.
Alusdokumendid:
Asendab:
ISO/IEC 30105-1:2016
ISO/IEC 23078-3:2024
Information technology — Specification of digital rights management (DRM) technology for digital publications — Part 3: Device key-based protection
Käsitlusala:
This document defines a technical solution for encrypting resources in digital publications (especially EPUB), effectively registering a device certificate to providers and securely delivering decryption keys to reading systems included in licenses tailored to specific devices. This technical solution uses the passphrase-based authentication method defined in ISO/IEC 23078-2 for reading systems to receive the license and access the encrypted resources of such digital publications.
Alusdokumendid:
Asendab:
ISO/IEC TS 23078-3:2021
ISO/IEC 23078-2:2024
Information technology — Specification of digital rights management (DRM) technology for digital publications — Part 2: User key-based protection
Käsitlusala:
This document defines a technical solution for encrypting resources in digital publications (especially EPUB) and for securely delivering decryption keys to reading systems, included in licenses tailored to specific users. It also defines a simple passphrase-based authentication method for reading systems to verify the license and access the encrypted resources of such digital publications.
Alusdokumendid:
Asendab:
ISO/IEC TS 23078-2:2020
ISO/IEC 23078-1:2024
Information technology — Specification of digital rights management (DRM) technology for digital publications — Part 1: Overview of copyright protection technologies in use in the publishing industry
Käsitlusala:
This document describes three types of copyright protection technologies in use in the publishing industry:
— digital rights management (DRM) free protection, i.e. technologies which do not rely on content encryption but rather use content fingerprinting or watermarking, adequate for use cases where user convenience is the top priority;
— user key-based DRM protection, adequate where user constraints are limited;
— device key-based DRM protection, adequate where the transfer of publications from one device to another is severely constrained.
— digital rights management (DRM) free protection, i.e. technologies which do not rely on content encryption but rather use content fingerprinting or watermarking, adequate for use cases where user convenience is the top priority;
— user key-based DRM protection, adequate where user constraints are limited;
— device key-based DRM protection, adequate where the transfer of publications from one device to another is severely constrained.
Alusdokumendid:
Asendab:
ISO/IEC TS 23078-1:2020
Asendatud standardid
ISO/IEC 29794-1:2016
Information technology -- Biometric sample quality -- Part 1: Framework (corrected 2016-09-15)
Käsitlusala:
ISO/IEC 29794-1:2016, for any or all biometric sample types as necessary, establishes the following:
- terms and definitions that are useful in the specification and use of quality metrics;
- purpose and interpretation of biometric quality scores;
- encoding of quality data fields in biometric data interchange formats;
- methods for developing biometric sample datasets for the purpose of quality score normalisation;
- format for exchange of quality algorithm results;
- methods for aggregation of quality scores.
The following are outside the scope of ISO/IEC 29794-1:2016:
- specification of minimum requirements for sample, module, or system quality scores;
- performance assessment of quality algorithms;
- standardization of quality algorithms.
- terms and definitions that are useful in the specification and use of quality metrics;
- purpose and interpretation of biometric quality scores;
- encoding of quality data fields in biometric data interchange formats;
- methods for developing biometric sample datasets for the purpose of quality score normalisation;
- format for exchange of quality algorithm results;
- methods for aggregation of quality scores.
The following are outside the scope of ISO/IEC 29794-1:2016:
- specification of minimum requirements for sample, module, or system quality scores;
- performance assessment of quality algorithms;
- standardization of quality algorithms.
Alusdokumendid:
Asendatud:
ISO/IEC 29794-1:2024
ISO 26428-3:2008
Digital cinema (D-cinema) distribution master -- Part 3: Audio channel mapping and channel labeling
Käsitlusala:
ISO 26428-3:2008 defines the mapping and labeling of channels for the digital cinema distribution master audio in a digital cinema audio system to aid the identification and location of channels. This allows uniform expression and communication of source audio channels to digital cinema playback loudspeakers.
Alusdokumendid:
ISO/IEC 30105-1:2016
Information technology -- IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes -- Part 1: Process reference model (PRM)
Käsitlusala:
ISO/IEC 30105-1:2016 specifies the lifecycle process requirements performed by the IT-enabled business process outsourcing service provider for the outsourced business processes. It defines the processes to plan, establish, implement, operate, monitor, review, maintain and improve its services. This document:
- covers IT-enabled business processes that are outsourced;
- is not intended to address IT processes but includes references to them at key touchpoints for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- serves as a process reference model for organizations providing ITES-BPO services.
- covers IT-enabled business processes that are outsourced;
- is not intended to address IT processes but includes references to them at key touchpoints for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- serves as a process reference model for organizations providing ITES-BPO services.
Alusdokumendid:
Asendatud:
ISO/IEC 30105-1:2024
ISO/IEC 30105-2:2016
Information technology -- IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes -- Part 2: Process assessment model (PAM)
Käsitlusala:
ISO/IEC 30105-2:2016 specifies the lifecycle process requirements performed by the IT enabled business process outsourcing service provider for the outsourced business processes. It defines the processes to plan, establish, implement, operate, monitor, review, maintain and improve its services. This document:
- covers IT enabled business processes that are outsourced;
- is not intended to cover IT services but includes similar, relevant process for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- serves as a process assessment model for organizations providing ITES-BPO services that:
- conforms to the requirements of ISO/IEC 33004;
- supports the performance assessment by providing indicators for the interpretation of the process purposes and outcomes, as defined in ISO/IEC 24774, and the process attributes, as defined in ISO/IEC 33020.
A process assessment model consists of a set of indicators for process performance and process capability. The indicators are used as a basis for collecting the objective evidence that enables an assessor to determine ratings. The set of indicators included in this document is not intended to be an all-inclusive set nor is it intended to be applicable in its entirety. Supersets and subsets that are appropriate to the context and scope of the assessment should be selected.
The process assessment model in this document is directed at assessment sponsors and competent assessors who wish to select a model, and associated documented assessment process, for the ITES-BPO lifecycle processes, for risk determination or process improvement.
- covers IT enabled business processes that are outsourced;
- is not intended to cover IT services but includes similar, relevant process for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- serves as a process assessment model for organizations providing ITES-BPO services that:
- conforms to the requirements of ISO/IEC 33004;
- supports the performance assessment by providing indicators for the interpretation of the process purposes and outcomes, as defined in ISO/IEC 24774, and the process attributes, as defined in ISO/IEC 33020.
A process assessment model consists of a set of indicators for process performance and process capability. The indicators are used as a basis for collecting the objective evidence that enables an assessor to determine ratings. The set of indicators included in this document is not intended to be an all-inclusive set nor is it intended to be applicable in its entirety. Supersets and subsets that are appropriate to the context and scope of the assessment should be selected.
The process assessment model in this document is directed at assessment sponsors and competent assessors who wish to select a model, and associated documented assessment process, for the ITES-BPO lifecycle processes, for risk determination or process improvement.
Alusdokumendid:
Asendatud:
ISO/IEC 30105-2:2024
ISO/IEC 30105-3:2016
Information technology -- IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes -- Part 3: Measurement framework (MF) and organization maturity model (OMM)
Käsitlusala:
ISO/IEC 30105-3:2016 specifies the lifecycle process requirements performed by the IT enabled business process outsourcing service provider for the outsourced business processes. It defines the processes to plan, establish, implement, operate, monitor, review, maintain and improve its services. This document:
- covers IT enabled business processes that are outsourced;
- is not intended to cover IT services but includes similar, relevant process for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- serves as a measurement framework for processes and provide an organization maturity model for organizations providing ITES-BPO services that:
- conforms to the requirements of ISO/IEC 33003 and ISO/IEC 33004;
- supports the performance assessment by providing a framework to measure and derive capability and organization maturity levels.
- covers IT enabled business processes that are outsourced;
- is not intended to cover IT services but includes similar, relevant process for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- serves as a measurement framework for processes and provide an organization maturity model for organizations providing ITES-BPO services that:
- conforms to the requirements of ISO/IEC 33003 and ISO/IEC 33004;
- supports the performance assessment by providing a framework to measure and derive capability and organization maturity levels.
Alusdokumendid:
Asendatud:
ISO/IEC 30105-3:2024
ISO/TS 20428:2017
Health informatics -- Data elements and their metadata for describing structured clinical genomic sequence information in electronic health records
Käsitlusala:
ISO/TS 20428:2017 defines the data elements and their necessary metadata to implement a structured clinical genomic sequencing report and their metadata in electronic health records particularly focusing on the genomic data generated by next generation sequencing technology.
ISO/TS 20428:2017
- defines the composition of a structured clinical sequencing report (see Clause 5),
- defines the required data fields and their metadata for a structured clinical sequencing report (see Clause 6),
- defines the optional data (see Clause 7),
- covers the DNA-level variation from human samples using whole genome sequencing, whole exome sequencing, and targeted sequencing (disease-targeted gene panels) by next generation sequencing technologies. Though whole transcriptome sequencing and other technologies are important to provide better patient care and enable precision medicine, this document only deals with DNA-level changes,
- covers mainly clinical applications and clinical research such as clinical trials and translational research which uses clinical data. However, the necessary steps such as de-identification or consent from patient should be applied. The basic research and other scientific areas are outside the scope of this document,
- does not cover the other biological species, i.e. genomes of viruses and microbes, and
- does not cover the Sanger sequencing methods.
ISO/TS 20428:2017
- defines the composition of a structured clinical sequencing report (see Clause 5),
- defines the required data fields and their metadata for a structured clinical sequencing report (see Clause 6),
- defines the optional data (see Clause 7),
- covers the DNA-level variation from human samples using whole genome sequencing, whole exome sequencing, and targeted sequencing (disease-targeted gene panels) by next generation sequencing technologies. Though whole transcriptome sequencing and other technologies are important to provide better patient care and enable precision medicine, this document only deals with DNA-level changes,
- covers mainly clinical applications and clinical research such as clinical trials and translational research which uses clinical data. However, the necessary steps such as de-identification or consent from patient should be applied. The basic research and other scientific areas are outside the scope of this document,
- does not cover the other biological species, i.e. genomes of viruses and microbes, and
- does not cover the Sanger sequencing methods.
Alusdokumendid:
Asendatud:
ISO/TS 20428:2024
ISO/IEC 30105-5:2016
Information technology -- IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes -- Part 5: Guidelines
Käsitlusala:
ISO/IEC 30105-5:2016 specifies the lifecycle process requirements performed by the IT enabled business process outsourcing service provider for the outsourced business processes. It defines the processes to plan, establish, implement, operate, monitor, review, maintain and improve its services. This document:
- covers IT enabled business processes that are outsourced;
- is not intended to cover IT services but includes similar, relevant process for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- provides guidance on application of the process assessment model, how to strategically leverage the assessment and to use it in the context of an improvement programme or risk assessment for an ITES-BPO service provider organization.
- covers IT enabled business processes that are outsourced;
- is not intended to cover IT services but includes similar, relevant process for completeness;
- is applicable to the service provider, not to the customer;
- is applicable to all lifecycle processes of ITES-BPO;
- provides guidance on application of the process assessment model, how to strategically leverage the assessment and to use it in the context of an improvement programme or risk assessment for an ITES-BPO service provider organization.
Alusdokumendid:
Asendatud:
ISO/IEC 30105-5:2024
ISO/IEC 30105-3:2016/Amd 1:2020
ISO/IEC 30105-3:2016 - Amendment
Käsitlusala:
Amendment to ISO/IEC 30105-3:2016
Alusdokumendid:
Asendatud:
ISO/IEC 30105-3:2024
ISO/IEC TS 23078-1:2020
Information technology -- Specification of DRM technology for digital publications -- Part 1: Overview of copyright protection technologies in use in the publishing industry
Käsitlusala:
This document describes three types of copyright protection technologies in use in the publishing industry:
- DRM free protection, i.e. technologies which does not rely on content encryption but rather use content fingerprinting or watermarking, adequate for use cases where user convenience is the top priority;
- user key-based DRM protection, adequate where user constraints are limited;
- device key-based DRM protection, adequate where the transfer of publications from one device to another is severely constrained.
- DRM free protection, i.e. technologies which does not rely on content encryption but rather use content fingerprinting or watermarking, adequate for use cases where user convenience is the top priority;
- user key-based DRM protection, adequate where user constraints are limited;
- device key-based DRM protection, adequate where the transfer of publications from one device to another is severely constrained.
Alusdokumendid:
Asendatud:
ISO/IEC 23078-1:2024
ISO/IEC TS 23078-2:2020
Information technology -- Specification of DRM technology for digital publications -- Part 2: User key-based protection
Käsitlusala:
This document defines a technical solution for encrypting resources in digital publications (especially EPUB) and for securely delivering decryption keys to reading systems, included in licenses tailored to specific users. It also defines a simple passphrase-based authentication method for reading systems to verify the license and access the encrypted resources of such digital publications.
Alusdokumendid:
Asendatud:
ISO/IEC 23078-2:2024
ISO/IEC TS 23078-3:2021
Information technology — Specification of DRM technology for digital publications — Part 3: Device key-based protection
Käsitlusala:
This document defines a technical solution for encrypting resources of EPUB publications, effectively registering a device certificate to providers and securely delivering decryption keys to reading systems included in licenses tailored to specific devices. This technical solution uses the passphrase-based authentication method defined in ISO/IECÂ TSÂ 23078-2 for reading systems to receive the license and access the encrypted resources of such digital publications.
Alusdokumendid:
Asendatud:
ISO/IEC 23078-3:2024
ISO/IEC 18477-1:2020
Information technology -- Scalable compression and coding of continuous-tone still images -- Part 1: Core coding system specification
Käsitlusala:
This document specifies a coding format, referred to as JPEG XT, which is designed primarily for continuous-tone photographic content. This document defines the core coding system, which forms the basis for the entire ISO/IEC 18477 series.
Alusdokumendid:
Asendatud:
ISO/IEC 18477-1:2024