ISO/IEC 27034-1:2011 信息技术 安全技术 应用安全 第1部分：综述和概念

标准编号：ISO/IEC 27034-1:2011

中文名称：信息技术 安全技术 应用安全 第1部分：综述和概念

英文名称：Information technology — Security techniques — Application security — Part 1: Overview and concepts

发布日期：2011-11

标准范围

ISO/IEC 27034提供了指导，帮助组织将安全性集成到用于管理其应用程序的流程中。ISO/IEC 27034-1:20 11概述了应用程序安全性。它介绍了应用程序安全性涉及的定义、概念、原则和流程。ISO/IEC 27034适用于内部开发的应用程序、从第三方获得的应用程序以及应用程序的开发或操作外包的应用程序。

ISO/IEC 27034 provides guidance to assist organizations in integrating security into the processes used for managing their applications.

ISO/IEC 27034-1:2011 presents an overview of application security. It introduces definitions, concepts, principles and processes involved in application security.

ISO/IEC 27034 is applicable to in-house developed applications, applications acquired from third parties, and where the development or the operation of the application is outsourced.

标准预览图