ETSI - TS 101 533-1
Electronic Signatures and Infrastructures (ESI); Data Preservation Systems Security; Part 1: Requirements for Implementation and Management
|Publication Date:||1 April 2012|
The present document addresses the Information Security Management System of Data Preservation Systems, by specifying Security requirements for Data Preservation Service Providers to abide by, when implementing and managing a DPS, in order to provide Data Preservation Services that are trustable and reliable from the Information Security viewpoint.
Sister document TR 101 533-2 [i.24] provides recommendations on how to assess electronic data preservation services against the provisions specified in the present document.
These measures are based on provisions of ISO/IEC 27001 , ISO/IEC 27002  and TS 102 573 , enhancing them where necessary.
The present document does not address specific document management related issues that are addressed by a number of ISO standards, such as ISO 14721 [i.5], ISO 15489 [i.17], ISO 23081 [i.27] and, more in general, those dealt with by ISO/TC 46/SC11 which the reader of the present document should refer to.
NOTE The present document and its sister document TR 101 533-2 [i.24] can be referred to by various archival management standards and standard families as a complementary and detailed set of specifications through which a reliable Information Security Management System can be implemented, managed and assessed, as regards the Data Preservation peculiarities.