我的标准
购物车
400-168-0010
【国外标准】 Cybersecurity - Multi-party coordinated vulnerability disclosure and handling
本网站 发布时间:
2024-08-08
开通会员免费在线看70000余条国内标准,赠送文本下载次数,单本最低仅合13.3元!还可享标准出版进度查询、定制跟踪推送、标准查新等超多特权!
查看详情>>
标准简介适用范围:
Clarifies and increases the application and implementation of ISO/IEC 30111 and ISO/IEC 29147 in multi-party coordinated vulnerability disclosure (MPCVD) settings, including the evolving commonly adopted practices in this area, by articulating: The MPCVD life cycle and application of coordinated vulnerability disclosure (CVD) stages (preparation, receipt, verification, remediation[1] development, release, post-release) in MPCVD settings. Stakeholders involved in MPCVD include users, vendors (coordinating, mitigating, and dependent vendors), reporters, and non-vendor coordinators (entities defined in ISO/IEC 29147 and ISO/IEC 30111). The exchange of information between stakeholders during the vulnerability handling and disclosure process in a MPCVD settings. Clarifying the application of ISO/IEC 30111 and ISO/IEC 29147 in MPCVD settings illustrates the benefits of vulnerability disclosure processes.
标准号:
INCITS/ISO/IEC TR 5895:2022 (2022)
标准名称:
Cybersecurity - Multi-party coordinated vulnerability disclosure and handling
英文名称:
Cybersecurity - Multi-party coordinated vulnerability disclosure and handling标准状态:
现行-
发布日期:
-
实施日期:
出版语种:
- 其它标准
- 上一篇: INCITS/ISO/IEC TR 38505-2:2018 (R2024) Information technology - Governance of IT - Governance of data - Part 2: Implications of ISO/IEC 38505-1 for data management, a Technical Report prepared by INCITS and registered with ANSI
- 下一篇: INCITS/ISO/IEC TR 9007:1987 (R2020) Information processing systems - Concepts and terminology for the conceptual schema and the information base
- 推荐标准
- AS IEC 60300.3.11-2011 Dependability management Application guide - Reliability centred maintenance
- AS IEC 60300.3.12-2011 Dependability management Application guide - Integrated logistic support
- AS IEC 60300.3.15-2011 Dependability management Application guide - Engineering of system dependability
- AS IEC 60812-2008 Analysis techniques for system reliability - Procedure for failure mode and effects analysis (FMEA)
- AS IEC 60942-2004 Electroacoustics - Sound calibrators
- AS IEC 61131.3-2004 Programmable controllers Programming languages
- AS IEC 61672.1-2004 Electroacoustics - Sound level meters Specifications
- AS IEC 62628:2014 Guidance on software aspects of dependability
- AS ISO 10006-2003 Quality management systems - Guidelines for quality management in projects
- AS ISO 10014-2007 Quality management systems - Guidelines for realizing financial and economic benefits
- AS ISO 10993.10-2002 Biological evaluation of medical devices Tests for irritation and sensitization
- AS ISO 10993.12-2002 Biological evaluation of medical devices Sample preparation and reference materials
- AS ISO 11137-2002 Sterilization of health care products - Requirements for validation and routine control - Radiation sterilization
- AS ISO 12647.1:2012 Graphic technology - Process control for the production of half-tone colour separations, proof and production prints Parameters and measurement methods
- AS ISO 12647.2-2008 Graphic technology - Process control for the production of half-tone colour separations, proof and production prints Offset lithographic processes
