Information technology — Application security —Part 3: Application security management process Technologie de l’information — Sécurité des applications — Partie 3: Processus de gestion de la sécurité d'une application INTERNATIONAL STANDARDISO/IEC27034-3 Reference numberISO/IEC 27034‑3:2018(E)First edition2018‑05‑25 © ISO/IEC 2018 ii © ISO/IEC 2018 – All rights reserved COPYRIGHT PROTECTED DOCUMENT © ISO/IEC 2018, Published in SwitzerlandAll rights reserve Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of the requester.ISO copyright officeCh. de Blandonnet 8 • CP 401CH‑1214 Vernier, Geneva, SwitzerlandTel. +41 22 749 01 11Fax +41 22 749 09 47copyright@iso.orgwww.iso.org ISO/IEC 27034-3:2018(E) ISO/IEC 27034-3:2018(E) Forewor .......................................................................................................................................................................................................................................... v Introduction ................................................................................................................................................................................................................................ vi 1 Scope ................................................................................................................................................................................................................................. 1 2 Normative references ...................................................................................................................................................................................... 1 3 Terms and definitions ..................................................................................................................................................................................... 1 4 Abbreviated terms .............................................................................................................................................................................................. 2 5 Application Security Management Process .............................................................................................................................. 2 5.1 General ........................................................................................................................................................................................................... 2 5.2 Purpose .......................................................................................................................................................................................................... 4 5.3 Principles and concepts .................................................................................................................................................................. 4 5.3.1 General ...................................................................................................................................................................................... 4 5.3.2 Clearly communicate roles and responsibilities .................................................................................. 4 5.3.3 Relationship of the ASMP with the Organizational Normative Framework (ONF) ........................................................................................................................................................... 4 5.3.4 Use approved tools ......................................................................................................................................................... 5 5.3.5 Level of Trust ................

pdf文档 ISO IEC 27034-3-2018

文档预览
中文文档 57 页 50 下载 1000 浏览 0 评论 0 收藏 3.0分
温馨提示:本文档共57页,可预览 3 页,如浏览全部内容或当前文档出现乱码,可开通会员下载原始文档
ISO IEC 27034-3-2018 第 1 页 ISO IEC 27034-3-2018 第 2 页 ISO IEC 27034-3-2018 第 3 页
下载文档到电脑,方便使用
本文档由 思安 于 2022-11-26 11:32:13上传分享
站内资源均来自网友分享或网络收集整理,若无意中侵犯到您的权利,敬请联系我们微信(点击查看客服),我们将及时删除相关资源。