2008国际信息安全标准化趋势——ISO/IEC JTC1/SC27第36届工作组会议热点追踪

2008 International Information Security Standardization Trend——Focus on the 36th Workgroups Meeting of ISO/IEC JTC1/SC27

介绍了2008年 ISO/IEC JTC1/SC27第36届各工作组会议热点,分析了国际信息安全标准化发展趋势。特别是特定领域信息安全管理、低功耗加密、脆弱性披露责任、信息安全事件管理、身份管理和隐私保护等。结合我国参与 SC27的实践,提出后续工作建议。

This paper introduces the hot topics of the 36th workgroups meeting of lSO/IEC JTC1/SC27 in 2008. It analyses the development trend of the international information security standardization, especially such as sector-specific information security management, Lightweight cryptography, responsible vulnerability disclosure, information security incident management, identity management and privacy protection. In accordance with the practices that we＇ve taken part in the SC27 meetings, it presents the follow-up work suggestions.