UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 27034-1

Information technology - Security techniques - Application security - Part 1: Overview and concepts

active, Most Current
Buy Now
Organization: ISO
Publication Date: 15 November 2011
Status: active
Page Count: 82
ICS Code (Information coding): 35.040
scope:

ISO/IEC 27034 provides guidance to assist organizations in integrating security into the processes used for managing their applications.

This part of ISO/IEC 27034 presents an overview of application security. It introduces definitions, concepts, principles and processes involved in application security.

ISO/IEC 27034 is applicable to in-house developed applications, applications acquired from third parties, and where the development or the operation of the application is outsourced.

Document History

ISO/IEC 27034-1
January 15, 2014
Information technology - Security techniques - Application security - Part 1: Overview and concepts TECHNICAL CORRIGENDUM 1
A description is not available for this item.
ISO/IEC 27034-1
November 15, 2011
Information technology - Security techniques - Application security - Part 1: Overview and concepts
ISO/IEC 27034 provides guidance to assist organizations in integrating security into the processes used for managing their applications. This part of ISO/IEC 27034 presents an overview of...

References

This document references:
ISO 9000 - Quality management systems — Fundamentals and vocabulary
Published by ISO on September 15, 2015
This International Standard describes the fundamental concepts and principles of quality management which are universally applicable to the following: — organizations seeking sustained success...
This document references:
NIST SP 800-53A - Assessing Security and Privacy Controls in Federal Information Systems and Organizations - Building Effective Assessment Plans
Published by NIST on December 1, 2014
A description is not available for this item.
This document is referenced by:
BS ISO/IEC 27034-6 - Information technology - Security techniques - Application security - Part 6: Case studies
Published by BSI on November 30, 2016
A description is not available for this item.
This document is referenced by:
ASD-STAN PREN 9115 - Quality Management Systems - Requirements for Aviation, Space and Defence Organizations - Deliverable Software (Supplement to EN 9100)
Published by ASD-STAN on January 1, 2017
The requirements of EN 9100 apply with the following clarification for software. This standard supplements the EN 9100 standard requirements for deliverable software and contains quality management...
This document is referenced by:
BS PD ISO/IEC TS 30103 - Software and Systems Engineering — Lifecycle Processes — Framework for Product Quality Achievement
Published by BSI on October 31, 2015
A description is not available for this item.
This document is referenced by:
BS EN ISO/IEC 30111 - Information technology — Security techniques — Vulnerability handling processes
Published by BSI on October 31, 2019
A description is not available for this item.
This document is referenced by:
ISO/IEC 27032 - Information technology - Security techniques - Guidelines for cybersecurity
Published by ISO on July 15, 2012
This International Standard provides guidance for improving the state of Cybersecurity, drawing out the unique aspects of that activity and its dependencies on other security domains, in particular:...
View Less
View All
Advertisement