ISO/IEC Standard 18028

ISO/IEC Standard 18028 - Information technology -- Security techniques -- IT network security

Published under Risk Management
Title: ISO/IEC 18028:2006 - Information technology -- Security techniques -- IT network security
Source reference: http://www.iso.org/

(Note: this is a reference to the ISO page where the standard can be acquired. However, the standard is not free of charge, and its provisions are not publicly available. For this reason, specific provisions cannot be quoted).
Topic: Five part standard (ISO/IEC 18028-1 to 18028-5) containing generally accepted guidelines on the security aspects of the management, operation and use of information technology networks. The standard is considered an extension of the guidelines provided in ISO/IEC 13335 and ISO/IEC 17799 focusing specifically on network security risks.
Direct / indirect relevance Direct. While not legally binding, the text is a direct resource for RM/RA with regard to network operation.
Scope: Not publicly available ISO standard, which can be voluntarily implemented.
Legal force: Nonbinding ISO standard.
Affected sectors: Generic. The standard can be followed in any sector, as the only criterion for applicability is the ownership, use or operation of a network.
Relevant provision(s): The standard is not free of charge, and its provisions are not publicly available. For this reason, specific provisions cannot be quoted.
Relevance to RM/RA: The standard is a commonly used code of practice, and serves as a resource for the implementation of security management practices and as a yardstick for auditing such practices.

We use cookies to ensure we give you the best browsing experience on our website. Find out more on how we use cookies and how you can change your settings.

Ok, I understand No, tell me more