UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC DIS 27034-4

Information technology — Security techniques — Application security — Part 4: Validation and verification

active, Most Current
Buy Now
Organization: ISO
Publication Date: 7 January 2020
Status: active
Page Count: 74
ICS Code (IT Security): 35.030
scope:

This document provides a detailed description of an application security process to develop, validate, implement, verify, and continuously improve verification schemes used to audit and verify application security in an organization.

Application security validation can be done on a verification scheme to validate and verify if it clearly defines clear AS requirements and AS controls to mitigate all risks to acceptable levels and reach application security objectives for specific contexts and environments.

Application security verification and audit can be done on an organization or an application, to verify if it complies with a verification scheme.

Document History

ISO/IEC DIS 27034-4
January 7, 2020
Information technology — Security techniques — Application security — Part 4: Validation and verification
This document provides a detailed description of an application security process to develop, validate, implement, verify, and continuously improve verification schemes used to audit and verify...

References

This document references:
ISO 9000 - Quality management systems — Fundamentals and vocabulary
Published by ISO on September 15, 2015
This International Standard describes the fundamental concepts and principles of quality management which are universally applicable to the following: — organizations seeking sustained success...
This document references:
ISO 9001 - Quality management systems — Requirements
Published by ISO on September 15, 2015
This International Standard specifies requirements for a quality management system when an organization: a) needs to demonstrate its ability to consistently provide products and services that meet...
This document references:
ISO/IEC DIS 15026-1 - Systems and software engineering - Systems and software assurance - Part 1: Concepts and vocabulary
Published by ISO on February 1, 2018
This document defines assurance-related terms and establishes an organized set of concepts and relationships to establish a basis for shared understanding across user communities for assurance. It...
This document is referenced by:
BS IEC 63096 - Nuclear power plants — Instrumentation, control and electrical power systems — Security controls
Published by BSI on October 31, 2020
A description is not available for this item.
This document is referenced by:
CSA ISO/IEC 19896-3 - IT security techniques — Competence requirements for information security testers and evaluators — Part 3: Knowledge, skills and effectiveness requirements for ISO/IEC 15408 evaluators
Published by CSA on January 1, 2020
This document provides the specialized requirements to demonstrate competence of individuals in performing IT product security evaluations in accordance with ISO/IEC 15408 (all parts) and ISO/IEC...
View Less
View All
Advertisement