ISO/IEC 17799:2000 (BS 7799-1:2000) (Information technology Information security management) . BS 7799-1:1995 (Information security management Part 1: Code of practice for information security management) .
ISO/IEC 17799:2000 (BS 7799-1:2000) :
;
;
;
;
;
;
;
;
;
, ;
- ;
.
BS 77992:2000 (Information security management Part 2: Specification for information security management systems), . .
British Standards Institution (BSI), 19952003 . :
(Information security managment: an introduction);
BS 7799 (Preparing for BS 7799 sertification);
BS 7799 (Guide to BS 7799 risk assessment and risk management);
(BS 7799 Guide to BS 7799 auditing);
(Code of practice for IT management).
2002 . ISO 17799 (BS 7799) . .
|
|
ISO 27001 - / 27001 " . . " ( 31 2006 .);
2005 . () ISO/IEC 27001:2005 " . . . ".
2006 / 27001.
ISO/IEC 27001:2005 BS 7799, 1995 . . 1999- BS 7799 (ISO - The International Organization for Standardization) 2000- ISO/IEC 17799:2000 (BS 7799-1:2000). ISO/IEC 17799:2005. 1999 . : BS 7799-2:1999 Information Security management - Specification for ISMS (ISMS - Information Security Management System). 2002 . , - BS 7799-2:2002. 14 2005- ISO/IEC 27001:2005. 27000 ISO/IEC 27002, ISO/IEC 17799:2005.
ISO/IEC 27001:2005 :
- ;
- ;
- , -;
- ;
- ;
- ;
- - ;
- - ;
- .
ISO/IEC 27001:2005 ISO/IEC 17799:2005 ( 5-15) (Annex A. Control objectives and controls).
27000 ISO/IEC JTC 1/SC 27. , , , , .
, 27000 .
ISO27000 | . COBIT ITIL. . |
ISO27001 | ISO/IEC 27001:2005 . . . (BS 7799-2:2005). 2005 . |
ISO27002 | ISO/IEC 27002:2005 . . ( ISO/IEC 17799:2005). |
ISO27003 | . 2007 . |
ISO27004 | . 2007 . |
ISO27005 | ( BS 7799-3:2006). 2007 . |
ISO27006 | ISO/IEC 27006:2007 . . |
ISO27007 | ( ). |
ISO27011 | ( ). |
ISO ( ) IEC ( ) . , ISO IEC, , . , , ISO IEC . , ISO IEC , ISO/IEC JTC 1. . . 75 . , ISO/IEC.
|
|
BSI
ISO 17799 .
BSI :
( , );
;
( , , );
(, , , );
( );
, Novell NetWare, UNIX Windows).
, Cisco Systems;
( 600 ).
: .