Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Assessment of principle 21 #36

Closed
tamberg opened this issue Jun 19, 2018 · 1 comment
Closed

Assessment of principle 21 #36

tamberg opened this issue Jun 19, 2018 · 1 comment

Comments

@tamberg
Copy link
Contributor

tamberg commented Jun 19, 2018

[LDN meeting] re https://github.com/openiotmark/iotmark-principles/tree/v20180309#21-the-organisations-backend-may-implement-additional-secure-setup-options

"The principle should be more about: "" the organisation implements security in its processes""
Assessment criteria:

  • Awareness and training on security (for the organisation and the staff)
  • Secure development lifecycle (for the product and the staff)
  • Secure business environment (for the organisation)
  • Keep informed on the threats (for the product and the staff)
  • Perform regular security assessment (for the product and the organisation)
  • Ensure third-parties follows security requirements (for the product and the organisation)
  • Issues security communication and remediation (for the product and customers)"

Link to document with commentary


"Inform users of security issues
Secure OTA updates"

@tamberg
Copy link
Contributor Author

tamberg commented Jun 21, 2018

Replaced all security principles with a higher level version, see #3:
https://github.com/openiotmark/iotmark-principles/tree/develop#security

@tamberg tamberg closed this as completed Jun 21, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant