UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO TR 23576

Blockchain and distributed ledger technologies — Security management of digital asset custodians

active, Most Current
Buy Now
Organization: ISO
Publication Date: 1 December 2020
Status: active
Page Count: 42
ICS Code (IT applications in banking): 35.240.40
ICS Code (IT applications in other fields): 35.240.99
ICS Code (IT Security): 35.030
scope:

This document discusses the threats, risks, and controls related to:

- systems that provide digital asset custodian services and/or exchange services to their customers (consumers and businesses) and management of security when an incident occurs;

- asset information (including the signature key of the digital asset) that a custodian of digital assets manages.

This document is addressed to digital asset custodians that manage signature keys associated with digital asset accounts. In such a case, certain specific recommendations apply.

The following is out of scope of this document:

- core security controls of blockchain and DLT systems;

- business risks of digital asset custodians;

- segregation of customer's assets;

- governance and management issues.

Document History

ISO TR 23576
December 1, 2020
Blockchain and distributed ledger technologies — Security management of digital asset custodians
This document discusses the threats, risks, and controls related to: — systems that provide digital asset custodian services and/or exchange services to their customers (consumers and businesses)...

References

This document references:
22739 - Blockchain and distributed ledger technologies — Vocabulary
Published by ISO on January 1, 2024
This document defines fundamental terminology for blockchain and distributed ledger technologies.
This document references:
23257 - Blockchain and distributed ledger technologies — Reference architecture
Published by ISO on February 1, 2022
This document specifies a reference architecture for Distributed Ledger Technology (DLT) systems including blockchain systems. The reference architecture addresses concepts, cross-cutting aspects,...
This document references:
ISO/IEC 14888-1 - Information technology - Security techniques - Digital signatures with appendix - Part 1: General
Published by ISO on April 15, 2008
ISO/IEC 14888 specifies several digital signature mechanisms with appendix for messages of arbitrary length. This part of ISO/IEC 14888 contains general principles and requirements for digital...
This document references:
ISO/IEC 14888-2 - Information technology - Security techniques - Digital signatures with appendix Part 2: Integer factorization based mechanisms
Published by ISO on April 15, 2008
This part of ISO/IEC 14888 specifies digital signatures with appendix whose security is based on the difficulty of factoring the modulus in use. For each signature scheme, it specifies: a) the...
This document references:
ISO/IEC 14888-3 - IT Security techniques - Digital signatures with appendix - Part 3: Discrete logarithm based mechanisms
Published by ISO on November 1, 2018
This document specifies digital signature mechanisms with appendix whose security is based on the discrete logarithm problem. This document provides — a general description of a digital signature...
This document references:
ISO/IEC 27001 - Information technology - Security techniques - Information security management systems - Requirements
Published by ISO on October 1, 2013
This International Standard specifies the requirements for establishing, implementing, maintain and continually improving an information security management system within the context of the...
This document references:
ISO/IEC 27002 - Information technology - Security techniques - Code of practice for information security controls TECHNICAL CORRIGENDUM 2
Published by ISO on November 15, 2015
A description is not available for this item.
This document references:
ISO/IEC 9796-2 - Information technology - Security techniques - Digital signature schemes giving message recovery - Part 2: Integer factorization based mechanisms
Published by ISO on December 15, 2010
This part of ISO/IEC 9796 specifies three digital signature schemes giving message recovery, two of which are deterministic (non-randomized) and one of which is randomized. The security of all three...
This document references:
ISO/IEC 9796-3 - Information technology - Security techniques - Digital signature schemes giving message recovery - Part 3: Discrete logarithm based mechanisms
Published by ISO on September 15, 2006
This part of ISO/IEC 9796 specifies six digital signature schemes giving message recovery. The security of these schemes is based on the difficulty of the discrete logarithm problem, which is defined...
This document is referenced by:
X9 TR 54 - Blockchain Risk Assessment Framework
Published by ANSI on July 25, 2021
Scope and Purpose This technical report (TR) provides a framework for the performance of operational risk assessments on blockchain systems and applications within a distributed network. Operational...
View Less
View All
Advertisement