Reference number
ISO/IEC TR 6114:2023
Technical Report
ISO/IEC TR 6114:2023
Cybersecurity — Security considerations throughout the product life cycle
Edition 1
2023-10
Technical Report
Read sample
ISO/IEC TR 6114:2023
82056
Published (Edition 1, 2023)

ISO/IEC TR 6114:2023

ISO/IEC TR 6114:2023
82056
Language
Format
CHF 173
Convert Swiss francs (CHF) to your currency

Abstract

This document describes security considerations throughout the product life cycle (SCLC), which is a framework that spans the entire information and communications technology (ICT) product life cycle. The aim of the framework is to align the industry and bring greater transparency to customers at every point on the ICT product life cycle.

This document describes the following items for suppliers, end users (consumers), intermediaries of the ICT supply chain, service providers, and regulators:

     definition of phases in the ICT product life cycle from concept to retirement;

     threat vectors possible in each phase of the life cycle;

     potential controls against those threat vectors.

The target audiences of this document are suppliers and consumers of ICT products, including all participants throughout the supply chain such as silicon chip designers, fabricators, product assemblers, logistics providers, service providers, and information security organizations. Clauses 5 to 11 target an organization’s strategic and risk management teams. This document provides an end-to-end view of the threats in each phase to help the organization shape their plans, procedures and policies.

General information

  •  : Published
     : 2023-10
    : International Standard published [60.60]
  •  : 1
     : 44
  • ISO/IEC JTC 1/SC 27
    35.030 
  • RSS updates

Got a question?

Check out our Help and Support