Академический Документы
Профессиональный Документы
Культура Документы
ISO/IEC 15292:2001
AS ISO/IEC 15292
Australian Standard™
This is a free 7 page sample. Access the full version at http://infostore.saiglobal.com.
Information technology—Security
techniques—Protection profile
registration procedures
This Australian Standard was prepared by Committee IT-012, Information
systems—Security and identification technology. It was approved on behalf of the
Council of Standards Australia on 29 January 2004 and published on
17 March 2004.
Australian Standard™
This is a free 7 page sample. Access the full version at http://infostore.saiglobal.com.
Information technology—Security
techniques—Protection profile
registration procedures
COPYRIGHT
© Standards Australia International
All rights are reserved. No part of this work may be reproduced or copied in any form or by any
means, electronic or mechanical, including photocopying, without the written permission of the
publisher.
Published by Standards Australia International Ltd
GPO Box 5420, Sydney, NSW 2001, Australia
ISBN 0 7337 5765 0
ii
PREFACE
This Standard was prepared by the Australian members of the Joint Standards Australia/Standards
New Zealand Committee IT-012, Information systems—Security and identification technology. After
consultation with stakeholders in both countries, Standards Australia and Standards New Zealand
decided to develop this Standard as an Australian, rather than an Australian/New Zealand Standard.
This Standard is identical with, and has been reproduced from ISO/IEC 15292:2001, Information
technology—Security techniques—Protection Profile registration procedures.
The objective of this Standard is to define the procedures to be applied by the JTC 1 Registration
Authority appointed by the ISO and IEC councils to maintain a register of Protection Profiles and
packages for the purposes of IT security evaluation.
The term ‘informative’ has been used in this Standard to define the application of the appendix to
This is a free 7 page sample. Access the full version at http://infostore.saiglobal.com.
CONTENTS
Page
1 Scope...................................................................................................................................................... 1
4 Abbreviations ........................................................................................................................................ 3
15 Appeals procedure.............................................................................................................................. 12
iv
NOTES
1
AUSTRALIAN STANDARD
1 Scope
This International Standard defines the procedures to be applied by the JTC 1 Registration Authority appointed by
the ISO and IEC councils to maintain a register of Protection Profiles and packages for the purposes of IT security
evaluation. These Protection Profiles and packages are specified in accordance with criteria given in
This is a free 7 page sample. Access the full version at http://infostore.saiglobal.com.
ISO/IEC 15408.
2 Normative references
The following normative documents contain provisions which, through reference in this text, constitute provisions of
this International Standard. For dated references, subsequent amendments to, or revisions of, any of these
publications do not apply. However, parties to agreements based on this International Standard are encouraged to
investigate the possibility of applying the most recent editions of the normative documents indicated below. For
undated references, the latest edition of the normative document referred to applies. Members of ISO and IEC
maintain registers of currently valid International Standards.
ISO 15408-1, Information technology — Security techniques — Evaluation criteria for IT security — Part 1:
Introduction and general model
ISO 15408-2, Information technology — Security techniques — Evaluation criteria for IT security — Part 2: Security
functionality requirements
ISO 15408-3, Information technology — Security techniques — Evaluation criteria for IT security — Part 2: Security
assurance requirements
ISO/IEC/ITU ITSIG Guide for the use of IT in the development and delivery of standards
3.1
applicant
an entity (organisation, individual etc.) which requests the assignment of a register entry and entry label