I'm one of the chorus of people that continually belly-aches about the closed nature of both Standards processes and Standards documents.
So, having tripped over this page of publicly-available ISO standards, I should pay the (moderate) credit where its due, and bring the page to attention. http://standards.iso.org/ittf/PubliclyAvailableStandards/index.html I wasn't even aware of these two: - ISO/IEC 15944-8:2012 Information technology -- Business Operational View -- Part 8: Identification of privacy protection requirements as external constraints on business transactions (It's massively wordy, and in part badly off-the-beam - e.g. it conflates identity and entity, which is a fundamental modelling blunder; and it has an ineffectual definition of identification; and it confuses real-world identities with records in databases. But it exists, and maybe it influences some organisations, who knows) - ISO/IEC 29100:2011 Information technology -- Security techniques -- Privacy framework Is anyone aware of a similar page on the Standards Australia site? </innocent look> -- Roger Clarke http://www.rogerclarke.com/ Xamax Consultancy Pty Ltd 78 Sidaway St, Chapman ACT 2611 AUSTRALIA Tel: +61 2 6288 6916 http://about.me/roger.clarke mailto:[email protected] http://www.xamax.com.au/ Visiting Professor in the Faculty of Law University of N.S.W. Visiting Professor in Computer Science Australian National University _______________________________________________ Link mailing list [email protected] http://mailman.anu.edu.au/mailman/listinfo/link
