|
Work item:
|
X.1631 (ex X.cc-control)
|
|
Subject/title:
|
Information technology - Security techniques - Code of practice for information security controls based on ISO/IEC 27002 for cloud services
|
|
Status:
|
Approved on 2015-07-14
|
|
Approval process:
|
AAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
New
|
|
Equivalent number:
|
ISO/IEC 27017 (Common)
|
|
Timing:
|
-
|
|
Liaison:
|
ISO/IEC JTC1/SC27
|
|
Supporting members:
|
Canada, China, China Telecom, Japan, KDDI, NICT.
|
|
Summary:
|
This Recommendation | International Standard provides guidelines for information security controls applicable to the provision and use of cloud services by providing:
- additional implementation guidance for relevant controls specified in ISO/IEC 27002;
- additional controls with implementation guidance that specifically relate to cloud services.
This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.
|
|
Comment:
|
Approval process was changed on 17 April 2015 from TAP to AAP according to WSTA-12 Resolution 1 section 8.3 (ref TD 1753).
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2013-05-07 11:06:20
|
|
Last update:
2015-07-17 09:30:52
|
