lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <200401221816.i0MIFgV4021089@www.my-opensource.org> From: katbert at pc.jaring.my (katbert@...jaring.my) Subject: Re: BS7799/ISO17799 full-disclosure@...ts.netsys.com ÿôÿý.ÿôÿý.On Wed, 21 Jan 2004 09:36:16 -0800 n30 wrote: > How do I get BS 7799 / ISO 17799 certified? Googling gave me some results on Actually one can be certifed only on BS7799 Pt 2 and not on ISO 17799. The former specifies the requirements for an Information Security Management System (ISMS) based on ISO 17799:2000/BS 7799 Pt1:2000. ISO 17799 is just a guide to best practices in the management of information security and hence is not certifiable unlike BS7799 Pt 2 which llists down the requirements for an ISMS. Cetification for BS7799 is avauilable from several international bodies e.g. those accreditated from UKAS (http://www.ukas.com/information_centre/technical/technical_bs7799.asp). Many local national certification bodies are also in the process of getting accreditation from org like UKAS to be able to offer certification for BS7799. ISO17799:2000 itself is currently undergoing revision (see work done by ISO/IEC JTC1 SC27/WG1). In addition the ISO/IEC JTC1 SC27/WG1 is currently working on an ISMS standard which if accepted should be an alternative to BS7799.
Powered by blists - more mailing lists