Beruflich Dokumente
Kultur Dokumente
http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_tc_browse.htm?
commid=52214
Standards catalogue
Subscribe to updates
Browse by ICS
Browse by TC
Published standards
Withdrawn standards
Standards and projects under the direct responsibility of ISO/TC 130 Secretariat
Standard and/or project
Stage
ICS
ISO 2834-1:2006
90.93
Graphic technology -- Laboratory preparation of test
prints -- Part 1: Paste inks
87.080
ISO 2834-2:2015
Graphic technology -- Laboratory preparation test
prints -- Part 2: Liquid printing inks
60.60
87.080
ISO 2834-3:2008
90.93
Graphic technology -- Laboratory preparation of test
prints -- Part 3: Screen printing inks
87.080
ISO 2836:2004
90.93
Graphic technology -- Prints and printing inks -Assessment of resistance of prints to various agents
87.080
ISO 2846-1:2006
Graphic technology -- Colour and transparency of
printing ink sets for four-colour printing -- Part 1:
Sheet-fed and heat-set web offset lithographic
printing
90.92
87.080
ISO/CD 2846-1
Graphic technology -- Colour and transparency of
printing ink sets for four-colour printing -- Part 1:
Sheet-fed and heat-set web offset lithographic
printing
30.20
87.080
ISO 2846-2:2007
Graphic technology -- Colour and transparency of
printing ink sets for four-colour printing -- Part 2:
Coldset offset lithographic printing
90.93
87.080
ISO 2846-3:2002
Graphic technology -- Colour and transparency of
printing ink sets for four-colour-printing -- Part 3:
Publication gravure printing
95.60
87.080
Stage
ICS
ISO 2846-5:2005
Graphic technology -- Colour and transparency of
printing ink sets for four-colour printing -- Part 5:
Flexographic printing
95.60
87.080
ISO 5776:2016
Graphic technology -- Symbols for text proof
correction
60.60
37.100.
01
ISO/TS 10128:2009
Graphic technology -- Methods of adjustment of the
colour reproduction of a printing system to match a
set of characterization data
90.93
37.100.
10
ISO 11084-1:1993
Graphic technology -- Register systems for
photographic materials, foils and paper -- Part 1:
Three-pin systems
90.60
37.100.
20
ISO 11084-2:2006
Graphic technology -- Register systems for
photographic materials, foils and paper -- Part 2:
Register pin systems for plate making
90.93
37.100.
20
ISO 12040:1997
Graphic technology -- Prints and printing inks -Assessment of light fastness using filtered xenon
arc light
90.92
87.080
ISO/NP 12040
Graphic technology -- Prints and printing inks -Assessment of light fastness using filtered xenon
arc light
10.99
87.080
ISO 12218:1997
Graphic technology -- Process control -- Offset
platemaking
90.93
37.100.
01
ISO 12632:2015
Graphic technology -- Ink, paper and labels -Requirements on hot alkali penetration and
resistance
60.60
87.080
ISO/DIS 12634
40.60
87.080
Stage
ICS
90.92
87.080
ISO 12635:2008
Graphic technology -- Plates for offset printing -Dimensions
90.93
37.100.
10
ISO/CD 12636
Graphic technology -- Blankets for offset printing
30.99
37.100.
10
ISO 12636:1998
Graphic technology -- Blankets for offset printing
90.92
37.100.
10
ISO 12637-1:2006
Graphic technology -- Vocabulary -- Part 1:
Fundamental terms
90.93
37.100.
01
01.040.
37
ISO 12637-2:2008
Graphic technology -- Vocabulary -- Part 2: Prepress
terms
90.93
37.100.
01
01.040.
37
ISO 12637-3:2009
Graphic technology -- Vocabulary -- Part 3: Printing
terms
90.93
37.100.
01
01.040.
37
ISO 12637-4:2008
90.93
Graphic technology -- Vocabulary -- Part 4: Postpress
terms
37.100.
01
01.040.
37
ISO 12639:2004
Graphic technology -- Prepress digital data
exchange -- Tag image file format for image
technology (TIFF/IT)
90.93
37.100.
99
35.240.
30
60.60
37.100.
99
Stage
ICS
35.240.
30
60.60
37.100.
99
35.240.
30
ISO 12640-1:1997
Graphic technology -- Prepress digital data
exchange -- Part 1: CMYK standard colour image
data (CMYK/SCID)
90.93
37.100.
99
35.240.
30
ISO 12640-2:2004
Graphic technology -- Prepress digital data
exchange -- Part 2: XYZ/sRGB encoded standard
colour image data (XYZ/SCID)
90.93
35.240.
30
37.100.
99
60.60
37.100.
99
35.240.
30
ISO 12640-3:2007
Graphic technology -- Prepress digital data
exchange -- Part 3: CIELAB standard colour image
data (CIELAB/SCID)
90.93
37.100.
99
35.240.
30
ISO 12640-4:2011
Graphic technology -- Prepress digital data
exchange -- Part 4: Wide gamut display-referred
standard colour image data [Adobe RGB
(1998)/SCID]
60.60
37.100.
99
35.240.
30
ISO 12640-5:2013
Graphic technology -- Prepress digital data
exchange -- Part 5: Scene-referred standard colour
image data (RIMM/SCID)
60.60
37.100.
99
35.240.
30
ISO 12641:1997
Graphic technology -- Prepress digital data
exchange -- Colour targets for input scanner
calibration
90.92
37.100.
99
35.240.
30
Stage
ICS
ISO 12641-1
60.00
Graphic technology -- Prepress digital data
exchange -- Colour targets for input scanner
calibration -- Part 1: Colour targets for input scanner
calibration
37.100.
99
35.240.
30
ISO 12642-1:2011
Graphic technology -- Input data for
characterization of four-colour process printing -Part 1: Initial data set
60.60
37.100.
99
35.240.
30
ISO 12642-2:2006
Graphic technology -- Input data for
characterization of 4-colour process printing -- Part
2: Expanded data set
90.93
37.100.
99
35.240.
30
ISO 12643-1:2009
Graphic technology -- Safety requirements for
graphic technology equipment and systems -- Part
1: General requirements
90.93
37.100.
10
ISO 12643-2:2010
Graphic technology -- Safety requirements for
graphic technology equipment and systems -- Part
2: Prepress and press equipment and systems
90.93
37.100.
10
ISO 12643-3:2010
Graphic technology -- Safety requirements for
graphic technology equipment and systems -- Part
3: Binding and finishing equipment and systems
90.93
37.100.
10
ISO 12643-4:2010
Graphic technology -- Safety requirements for
graphic technology equipment and systems -- Part
4: Converting equipment and systems
90.93
37.100.
10
ISO 12643-5:2010
Graphic technology -- Safety requirements for
graphic technology equipment and systems -- Part
5: Stand-alone platen presses
90.93
37.100.
10
ISO 12644:1996
Graphic technology -- Determination of rheological
properties of paste inks and vehicles by the falling
90.93
87.080
Stage
ICS
rod viscometer
ISO 12645:1998
Graphic technology -- Process control -- Certified
reference material for opaque area calibration of
transmission densitometers
90.93
37.100.
01
ISO 12646:2015
Graphic technology -- Displays for colour proofing -Characteristics
60.60
37.100.
01
ISO 12647-1:2013
Graphic technology -- Process control for the
production of half-tone colour separations, proof
and production prints -- Part 1: Parameters and
measurement methods
60.60
37.100.
01
ISO 12647-2:2013
Graphic technology -- Process control for the
production of half-tone colour separations, proof
and production prints -- Part 2: Offset lithographic
processes
60.60
37.100.
01
ISO 12647-3:2013
Graphic technology -- Process control for the
production of half-tone colour separations, proofs
and production prints -- Part 3: Coldset offset
lithography on newsprint
60.60
37.100.
01
ISO 12647-4:2014
Graphic technology -- Process control for the
production of half-tone colour separations, proof
and production prints -- Part 4: Publication gravure
printing
60.60
37.100.
01
ISO 12647-5:2015
Graphic technology -- Process control for the
manufacture of half-tone colour separations, proof
and production prints -- Part 5: Screen printing
60.60
37.100.
01
ISO 12647-6:2012
Graphic technology -- Process control for the
production of half-tone colour separations, proofs
60.60
37.100.
01
Stage
ICS
60.60
37.100.
01
ISO 12647-7:2013
Graphic technology -- Process control for the
production of half-tone colour separations, proof
and production prints -- Part 7: Proofing processes
working directly from digital data
90.92
37.100.
01
ISO/DIS 12647-7
Graphic technology -- Process control for the
production of halftone colour separations, proof and
production prints -- Part 7: Proofing processes
working directly from digital data
40.20
37.100.
01
ISO 12647-8:2012
Graphic technology -- Process control for the
production of half-tone colour separations, proof
and production prints -- Part 8: Validation print
processes working directly from digital data
60.60
37.100.
01
ISO/TR 12705:2011
Graphic technology -- Laboratory test method for
chemical ghosting in lithography
60.60
37.100.
01
ISO/DIS 13655
Graphic technology -- Spectral measurement and
colorimetric computation for graphic arts images
40.60
37.100.
01
ISO 13655:2009
Graphic technology -- Spectral measurement and
colorimetric computation for graphic arts images
90.93
37.100.
01
ISO 14298:2013
Graphic technology -- Management of security
printing processes
60.60
37.100.
01
ISO/TR 14672:2000
Graphic technology -- Statistics of the natural SCID
images defined in ISO 12640
60.60
37.100.
01
ISO 14861:2015
60.60
37.100.
Stage
ICS
01
ISO 15076-1:2010
Image technology colour management -Architecture, profile format and data structure -Part 1: Based on ICC.1:2010
90.93
37.100.
99
ISO/TS 15311-1
Graphic technology -- Requirements for printed
matter for commercial and industrial production -Part 1: Measurement methods and reporting
schema
60.00
37.100.
01
ISO/DTS 15311-2
Graphic technology -- Requirements for printed
matter for commercial and industrial production -Part 2: Commercial production printing
30.20
37.100.
01
ISO/PAS 15339-1:2015
Graphic technology -- Printing from digital data
across multiple technologies -- Part 1: Principles
60.60
35.240.
30
37.100.
99
ISO/PAS 15339-2:2015
60.60
Graphic technology -- Printing from digital data
across multiple technologies -- Part 2: Characterized
reference printing conditions, CRPC1-CRPC7
35.240.
30
37.100.
99
ISO 15341:2014
Graphic technology -- Method for radius
determination of printing cylinders
60.60
37.100.
10
ISO 15397:2014
Graphic technology -- Communication of graphic
paper properties
60.60
37.100.
20
ISO 15790:2004
90.93
Graphic technology and photography -- Certified
reference materials for reflection and transmission
metrology -- Documentation and procedures for use,
including determination of combined standard
uncertainty
37.100.
01
Stage
ICS
ISO/TR 15847:2008
60.60
Graphic technology -- Graphical symbols for printing
press systems and finishing systems, including
related auxiliary equipment
37.100.
01
01.080.
20
ISO 15930-1:2001
Graphic technology -- Prepress digital data
exchange -- Use of PDF -- Part 1: Complete
exchange using CMYK data (PDF/X-1 and PDF/X-1a)
90.93
37.100.
99
35.240.
30
ISO 15930-3:2002
Graphic technology -- Prepress digital data
exchange -- Use of PDF -- Part 3: Complete
exchange suitable for colour-managed workflows
(PDF/X-3)
90.93
35.240.
30
37.100.
99
ISO 15930-4:2003
90.93
Graphic technology -- Prepress digital data
exchange using PDF -- Part 4: Complete exchange of
CMYK and spot colour printing data using PDF 1.4
(PDF/X-1a)
37.100.
99
35.240.
30
ISO 15930-6:2003
90.93
Graphic technology -- Prepress digital data
exchange using PDF -- Part 6: Complete exchange of
printing data suitable for colour-managed workflows
using PDF 1.4 (PDF/X-3)
37.100.
99
35.240.
30
ISO 15930-7:2010
90.93
Graphic technology -- Prepress digital data
exchange using PDF -- Part 7: Complete exchange of
printing data (PDF/X-4) and partial exchange of
printing data with external profile reference (PDF/X4p) using PDF 1.6
37.100.
99
35.240.
30
ISO 15930-8:2010
Graphic technology -- Prepress digital data
exchange using PDF -- Part 8: Partial exchange of
printing data using PDF 1.6 (PDF/X-5)
90.93
37.100.
99
35.240.
30
60.60
37.100.
99
35.240.
Stage
ICS
30
ISO/NP 15930-9
10.99
Graphic technology -- Prepress digital data
exchange using PDF -- Part 9: Complete exchange of
printing data (PDF/X-6) and partial exchange of
printing data with external profile reference (PDF/X6p) using PDF 2.0
ISO/TR 16044:2004
Graphic technology -- Database architecture model
and control parameter coding for process control
and workflow (Database AMPAC)
60.60
37.100.
99
ISO/TR 16066:2003
Graphic technology -- Standard object colour
spectra database for colour reproduction evaluation
(SOCS)
60.60
37.100.
01
ISO 16612-1:2005
Graphic technology -- Variable printing data
exchange -- Part 1: Using PPML 2.1 and PDF 1.4
(PPML/VDX-2005)
90.93
35.240.
30
37.100.
99
ISO 16612-2:2010
90.93
Graphic technology -- Variable data exchange -- Part
2: Using PDF/X-4 and PDF/X-5 (PDF/VT-1 and PDF/VT2)
35.240.
30
37.100.
99
ISO/CD 16613-1
Graphic technology -- Variable content replacement
-- Part 1: Using PDF/X-4 for variable content
replacement (PDF/VCR-1)
30.20
35.240.
30
37.100.
99
ISO 16684-1:2012
Graphic technology -- Extensible metadata platform
(XMP) specification -- Part 1: Data model,
serialization and core properties
60.60
35.240.
30
37.100.
99
ISO 16684-2:2014
Graphic technology -- Extensible metadata platform
(XMP) -- Part 2: Description of XMP schemas using
RELAX NG
60.60
35.240.
30
37.100.
99
Stage
ICS
ISO 16759:2013
Graphic technology -- Quantification and
communication for calculating the carbon footprint
of print media products
60.60
13.020.
40
37.100.
01
ISO 16760:2014
Graphic technology -- Prepress data exchange -Preparation and visualization of RGB images to be
used in RGB-based graphics arts workflows
60.60
37.100.
99
35.240.
30
ISO/DIS 16762
Graphic technology -- Post press --General
Requirements for transfer, handling and storage
40.20
37.100.
01
ISO 16763:2016
60.60
Graphic technology -- Post-press -- Requirements for
bound products
37.100.
01
ISO 17972-1:2015
Graphic technology -- Colour data exchange format
-- Part 1: Relationship to CxF3 (CxF/X)
60.60
35.240.
30
37.100.
99
ISO 17972-2
Graphic technology -- Colour data exchange format
(CxF/X) -- Part 2: Scanner target data (CxF/X-2)
60.00
35.240.
30
37.100.
99
ISO/DIS 17972-3
Graphic technology -- Colour data exchange format
(CxF/X) -- Part 3: Output target data (CxF/X-3)
40.99
35.240.
30
37.100.
99
ISO 17972-4:2015
Graphic technology -- Colour data exchange format
(CxF/X) -- Part 4: Spot colour characterisation data
(CxF/X-4)
90.92
35.240.
30
37.100.
99
ISO/CD 17972-4
Graphic technology -- Colour data exchange format
(CxF/X) -- Part 4: Spot colour characterisation data
(CxF/X-4)
30.99
35.240.
30
37.100.
99
ISO 18619:2015
60.60
35.240.
Stage
ICS
30
37.100.
99
ISO 18620
Graphic technology -- Prepress data exchange -Tone adjustment curves exchange
60.00
37.100.
01
ISO/TR 19300:2015
Graphic technology -- Guidelines for the use of
standards for print media production
60.60
01.120
37.100.
01
ISO/AWI 19301
Graphic technology -- Colour quality management
certification scheme
20.00
ISO 19445
Graphic technology -- Metadata for graphic arts
workflow -- XMP metadata for image and document
proofing
60.00
35.240.
30
ISO/DIS 19593-1
Graphic technology -- Use of PDF to associate
processing steps and content data -- Part 1:
Processing steps 2016
40.00
35.240.
30
37.100.
99
ISO/DIS 19594
Graphic technology -- Test methods for the
determination of the binding strength for perfect
bound products -- Page pull test working upwards
40.20
37.100.
10
ISO/NP 20294
Graphic technology -- Quantification and
communication for calculating the carbon footprint
of e-media
10.99
ISO/NP 20654
Graphic Technology -- Measurement and Calculation
of Spot Colour Tone Value
10.99
ISO/CD 20690
Power consumption of digital printing devices
30.60
37.100.
10
ISO 28178:2009
90.93
35.240.
Sign in
Language
Help
Search
ISO 14298:2013(en)
----------------------
Search
ISO 14298:2013(en)
Graphic technology Management of security printing processes
Buy
Follow
Stage
ICS
30
37.100.
99
Table of contents
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Context of the organization
4.1 Understanding the organization and its context
4.2 Understanding the needs and expectations of interested parties
4.3 Determining the scope of the security printing management system
4.4 Security printing management system
5 Leadership
5.1 Leadership and commitment
5.2 Policy
5.3 Organization roles, responsibilities and authorities
6 Planning
6.1 Actions to address risks and opportunities
6.2 Security objectives and planning to achieve them
6.3 Security printing management system planning
7 Support
7.1 Resources
7.2 Competence
7.3 Awareness
7.4 Communication
7.5 Documented information
8 Operation
9 Performance evaluation
9.1 Monitoring, measurement, analysis and evaluation
9.2 Internal audit
9.3 Management review
10 Improvement
10.1 Nonconformity, security breaches and corrective actions
10.2 Preventive actions
fr
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national
standards bodies (ISO member bodies). The work of preparing International Standards is normally
carried out through ISO technical committees. Each member body interested in a subject for which
a technical committee has been established has the right to be represented on that committee.
International organizations, governmental and non-governmental, in liaison with ISO, also take part
in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all
matters of electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for
the different types of ISO documents should be noted. This document was drafted in accordance
with the editorial rules of the ISO/IEC Directives, Part 2. www.iso.org/directives
Attention is drawn to the possibility that some of the elements of this document may be the subject
of patent rights. ISO shall not be held responsible for identifying any or all such patent rights.
Details of any patent rights identified during the development of the document will be in the
Introduction and/or on the ISO list of patent declarations received. www.iso.org/patents
Any trade name used in this document is information given for the convenience of users and does
not constitute an endorsement.
The committee responsible for this document is ISO/TC 130, Graphic technology.
Introduction
General
This International Standard specifies requirements for a security printing management system for
security printers.
Current security printing management practices lack sufficient guarantees that effective security
controls are maintained to protect the interest of the customer as well as the general public. Using
this International Standard the organization establishes, documents, implements and maintains a
security printing management system. This security printing management system is regularly
reviewed to continually improve its effectiveness. It is recognized that customer requirements
sometimes exceed the requirements of this International Standard so the security printing
management system also addresses customer requirements that are beyond the scope of this
International Standard.
The adoption of a security printing management system is a strategic decision of an organization.
The design and implementation of an organizations security printing management system is
influenced by varying needs, particular objectives, products provided, processes employed, security
environment, cultural issues, legal limitations, risk assessment and by size and structure of the
organization.
To achieve the objectives of this security printing management system standard measures are taken
to mitigate all of the security threats determined by an organizational risk assessment. Such
controls focus upon reducing, eliminating and preventing acts that compromise the security printing
management system of the organization.
It is not the intent of this International Standard to obtain uniformity in the structure of the security
printing management system or uniformity of documented information. The security printing
management system complies with laws and regulations in force. The requirements specified in this
International Standard are supplementary to requirements for products and processes of an
organization and allow for additional specific requirements from the customer.
This International Standard is intended to apply to security printers. It contains requirements that
when implemented by a security printer may be objectively audited for certification/registration
purposes.
Process approach
This International Standard promotes the adoption of a process approach when developing,
implementing and improving the effectiveness of a security printing management system.
The application of a system of processes within an organization, together with the identification and
interaction of these processes, and their management, is referred to as a process approach. An
advantage of a process approach is the ongoing control that it provides over the interaction
between individual processes within the system of processes, as well as over their combination.
Basic principles
When implemented, the security printing management system:
b) is used to continue to meet demonstrably the requirements, and naturally, the needs of
customers;
c) affords management the confidence that the targeted degree of security is actually
achieved and remains effective;
d) affords the customers the confidence that the agreed nature and degree of security is or
will be attained.
This International Standard prescribes which elements a security printing management system
contains and not how a specific organization implements these elements.
1 Scope
This International Standard specifies requirements for a security printing management system for
security printers.
This International Standard specifies a minimum set of security printing management system
requirements. Organizations ensure that customer security requirements are met as appropriate
provided these do not conflict with the requirements of this International Standard.
2 Normative references
No normative references are cited.
person or group of people that has its own functions with responsibilities, authorities and
relationships to achieve its objectives (3.8)
Note 1 to entry: The concept of organization includes but is not limited to sole-trader, company,
corporation, firm, enterprise, authority, partnership, charity or institution, or part or combination
thereof, whether incorporated or not, public or private.
3.2
interested party
stakeholder
person or organization (3.1) that can affect, be affected by, or perceive themselves to be affected
by a decision or activity
3.3
requirement
need or expectation that is stated, generally implied or obligatory
Note 1 to entry: Generally implied means that it is custom or common practice for the organization
and interested parties that the need or expectation under consideration is implied.
Note 2 to entry: A specified requirement is one that is stated, for example in documented
information.
3.4
management system
set of interrelated or interacting elements of an organization (3.1) to
establish policies (3.7) and objectives (3.8), and processes (3.12)to achieve those objectives
Note 1 to entry: A management system can address a single discipline or several disciplines.
Note 2 to entry: The system elements include the organizations structure, roles and responsibilities,
planning, operation, etc.
Note 3 to entry: The scope of a management system may include the whole of the organization,
specific and identified functions of the organization, specific and identified sections of the
organization, or one or more functions across a group of organizations.
Note 4 to entry: A management system contains documented information to direct and control the
organization.
3.5
top management
person or group of people who directs and controls an organization (3.1) at the highest level
Note 1 to entry: Top management has the power to delegate authority and provide resources within
the organization.
Note 2 to entry: If the scope of the management system (3.4) covers only part of an organization
then top management refers to those who direct and control that part of the organization.
3.6
effectiveness
extent to which planned activities are realized and planned results achieved
3.7
policy
intentions and direction of an organization (3.1) as formally expressed by its top
management (3.5)
3.8
objective
result to be achieved
Note 1 to entry: An objective can be strategic, tactical, or operational.
Note 2 to entry: Objectives can relate to different disciplines (such as financial, health and safety,
and environmental goals) and can apply at different levels [such as strategic, organization-wide,
project, product and process (3.12)].
Note 3 to entry: An objective can be expressed in other ways, e.g. as an intended outcome, a
purpose, an operational criterion, as asecurity objective (3.32) or by the use of other words with
similar meaning (e.g. aim, goal, or target).
Note 4 to entry: In the context of security printing management systems security
objectives (3.32) are set by the organization, consistent with the security policy, to achieve specific
results.
3.9
risk
effect of uncertainty
Note 1 to entry: An effect is a deviation from the expected positive or negative.
Note 2 to entry: Uncertainty is the state, even partial, of deficiency of information related to,
understanding or knowledge of, an event, its consequence, or likelihood.
Note 3 to entry: Risk is often characterized by reference to potential events (ISO Guide 73, 3.5.1.3)
and consequences(ISO Guide 73:2009, 3.6.1.3), or a combination of these.
Note 4 to entry: Risk is often expressed in terms of a combination of the consequences of an event
(including changes in circumstances) and the associated likelihood (ISO Guide 73:2009, 3.6.1.1) of
occurrence.
3.10
competence
ability to apply knowledge and skills to achieve intended results
3.11
documented information
information required to be controlled and maintained by an organization (3.1) and the medium on
which it is contained
Note 1 to entry: Documented information can be in any format and media and from any source.
Note 2 to entry: Documented information can refer to the management system (3.4), including
related processes (3.12); information created in order for the organization to operate
(documentation); and evidence of results achieved (records).
3.12
process
set of interrelated or interacting activities which transforms inputs into outputs
3.13
performance
measurable result
3.19
nonconformity
non-fulfilment of a requirement (3.3)
3.20
correction
action to eliminate a detected nonconformity (3.19)
3.21
corrective action
action to eliminate the cause of a nonconformity (3.19) and to prevent recurrence
3.22
continual improvement
recurring activity to enhance performance (3.13)
3.23
risk assessment
overall process of risk identification, risk analysis and risk evaluation
[SOURCE: ISO Guide 73:2009, 3.4.1 ]
3.24
security printer
producer of printed documents or products of value or entitlement, ID documents or security
foils (3.25) which are physically protected against forgery, counterfeiting and alteration by security
features (3.26)
3.25
security printing
set of processes (3.12) which transform raw materials into documents or products of value or
entitlement, ID documents or security foils(3.25) physically protected by security features (3.26)
3.26
security foil
thin film material that contains an optical variable element or similar security feature (3.26), which
is applied onto documents or products to physically protect them against forgery, counterfeiting and
alteration
3.27
security feature
component integrated in the product to protect against forgery, counterfeiting and alteration
3.28
security
protection of products, processes, information, means of production, security features and the
supply chain
3.29
threat
action or potential occurrence, whether or not malicious, to breach the security (3.27) of the system
3.30
security breach
infraction or violation of security
3.31
documented procedure
established way of working, documented, implemented and maintained
3.32
security objective
result to be achieved with regard to security (3.28)
Note 1 to entry: Security objectives are in general based on the security policy of the organization.
Note 2 to entry: Security objectives are in general specified for relevant functions and levels in the
organization.
3.33
security management
coordinated activities to direct and control an organization with regard to security (3.28)
Note 1 to entry: Direct and control in general entails the establishment of the policy, objectives,
planning, control, security assurance and improvements with regards to security (3.28). Security
assurance represents all planned and systematic actions needed to give a sufficient degree of
confidence that a product or process (3.12) meets the security requirements.
3.34
security plan
documented information that specifies the procedures and resources to satisfy the security
requirements of the organization
3.35
security control
aspect of security management (3.33) aimed at the fulfilment of the security requirements
3.36
preventive action
action to prevent the cause of a nonconformity (3.19)
3.37
traceability
ability to trace the history, application or location of that which is under consideration
Note 1 to entry: When considering product, traceability can relate to the origin of materials and
parts, the processing history and the distribution and location of the product after delivery.
(ISO 9000:2005, 3.5.4, modified)
3.38
resource
personnel, information, premises, process equipment (software and hardware) and tools
3.39
supply chain
set of interconnected processes (3.12) and resources (3.38) that starts with the sourcing of raw
materials and ends with the delivery of products and services to the customer
Note 1 to entry: Supply chains include producers, suppliers, manufacturers, distributors,
wholesalers, vendors, and logistics providers. They include facilities, plants, offices, warehouses,
and branches and can be both internal and external to an organization.
Note 2 to entry: Supply chain management as related to this International Standard includes the
vetting of suppliers and customers from the point of initial security value, which is the point at which
security is added to the product.
Only informative sections of standards are publicly available. To view the full content, you
will need to purchase the standard by clicking on the "Buy" button.
Bibliography
[1] ISO Guide 73:2009, Risk management Vocabulary
[2] ISO 9000:2005, Quality management systems Fundamentals and vocabulary
[3] ISO 19011, Guidelines for auditing management systems
[4] ISO 31000, Risk management Principles and guidelines