ISO/IEC 27019 – IT Security for Energy Utilities

ISO/IEC 27019 has just been released.  The new standard is titled Information technology – Security techniques – Information security management guidelines based on ISO/IEC 27002 for process control systems specific to the energy utility industry.  It is the revision and upgrade of the ISO/IEC TR 27019, which is now obsolete.

If you worry about the security of our energy sector (and I do), you’ll be glad that this standard has reached this landmark “standard” status.  The previous edition was a Technical Report, which doesn’t carry the same weight as a standard.  Also of note is the expansion of the scope of the document to include the energy oil sector.

The standard itself provides principles based on the ISO/IEC 27002, Code of practice for information security controls.  This new 2017 Edition of the ISO/IEC 27019 references the 2013 Edition of the Code.  You’ll use it for information security management for process control systems in this sector.  So much of the information requirements of the energy utility industry center on process control functions.  So you can see that security for this data is essential.

The standard is organized in the usual fashion, with the scope, references, and definition clauses to start.  Next you’ll find a section on the structure of the standard.  The next clauses cover information security policies, the organization of information security, and human resource security.  The standard then covers asset management, access control, and cryptography.  Of course, physical and environmental security are important and included in Clause 11.  Clause 12 and 13 address operational and communications security.  Next, system acquisition, development and maintenance requirements are covered.  Clause 15 is on supplier relationships and 14 covers incident management.  The final 2 Clauses are on information security aspects of business continuity management and compliance.

The 44 page standard has a required Annex A on energy utility industry specific reference control objectives and controls.  And a 10-item bibliography is provided at the end of the document.

You’ll use an authorized distributor like Document Center Inc. for your purchase.  You can search for and order standards at our webstore, www.document-center.com.  Here is a direct link to the order page for the ISO/IEC 27019 for your convenience.

Remember, Document Center Inc. has been selling standards since 1982.  We are here to support your use of compliance documentation.  So contact us by phone (650-591-7600) or email (info@document-center.com) to learn more.  Then make us your Standards Experts!

JESD 69 Updated for Silicon Device Qualification Information

JESD 69, Information Requirements for the Qualification of Silicon Devices, has just been updated.  The new Revision C is available from Document Center Inc. now in both paper format and for pdf download.  It provides both suppliers and customers with the minimum requirements for information provided for the device qualification package (for silicon devices).

What is this about?  It’s information on a specific set of data elements that describe a particular device.  This includes the test results of a supplier’s qualification efforts.  Of course, the tests a supplier uses may vary from device to device.  The standard does not include specific information on what tests must be done for any particular device.

For those of you already using this standard, you’ll want to know what the changes are since you may need to change your protocols.  The JEDEC committee in charge of the JESD 69 has provided us with a synopsis of the updates.  You’ll find them in Annex A.  Now the previous Revision B (from October 2007) is obsolete with the release of this technical update.  So an understanding of the new requirements is essential.

First of all, you’ll notice that the word “component” has been replaced with the term “device.”  There are references to more standards in this new update.  Clause 3 has additional clarification of items to be included in the report.  Clauses 3D and 3F have also been revised.

Now to get your copy of this new JESD 69 Revision C.  Head to the Document Center Inc. webstore at www.document-center.com.  There you will find all standards from JEDEC, since we are an authorized distributor of these publications.  Historical editions are also available.  Here is a direct link to the order page for the JESD 69 for your convenience.

Your purchase will come with our “best-in-class” notification service at no additional charge.  And we have a number of products and services geared to help you maintain compliance for your documentation collection.  To find out more, check in with our staff.  We can be reached by phone (650-591-7600) or email (info@document-center.com).  Learn why so many companies make us their Standards Experts!

CISPR 16-1-2 Amendment Issued

CISPR 16-1-2, Specification for radio disturbance and immunity measuring apparatus and methods – Part 1-2: Radio disturbance and immunity measuring apparatus – Coupling devices for conducted disturbance measurements, has been amended.  The new CISPR 16-1-2 Amendment 1 is available from Document Center Inc. now.  You can also get a consolidated edition which combines the Edition 2.0 with this new material in a red-line format.

When standards get amended, the technical content is usually changed.  So here at Document Center Inc. we always encourage you to keep up with both new Editions and with Amendments and other correcting publications.  For this new CISPR 16-1-2 Amendment, changes have been made throughout the document.

You’ll find new definitions and abbreviations.  Section 4 on artificial mains networks has also been modified, including a new title for the section.  Tables 8 and 9 are also updated.  And Annex A has also been renamed.  Changes occur in the Annex to support the expanded scope of the material.  Additionally, a new Annex K has been added.  This is a “normative” Annex, meaning that you must comply with the material in this section.  It’s title is “Measurement of Δ-AN parameters.”

If you do purchase the new Amendment 1 for Edition 2.0, you’ll notice that it is 26 pages long.  However, the first half of the publication is in English and then the second half is in French.  The consolidated edition also follows this convention.

FYI: The consolidated (red-line) edition is purchased by many of our customers, since it provides both an integrated text and clearly marked changes.  But you should know that if there’s a dispute about your use of a standard like this, you’ll need to use the original Edition 2.0 and the Amendment 1 documents.  The consolidated editions are not considered to be the legally binding copies.

Now to get your updates.  IEC reminds you to use an authorized distributor like Document Center Inc. for your purchases.  You can search for and order at our webstore, www.document-center.com.  Here’s direct links to the order page for CISPR 16-1-2 Amendment 1 and to the order page for the CISPR 16-1-2 Consolidated Edition for your convenience.

All standards purchases come with our “best-in-class” notification service included.  And we have a number of other support services for standards users like you.  To learn more, just contact us by phone (650-591-7600) or email (info@document-center.com). Then make us your Standards Experts!

ISO 9241-125 – Human Factors for Information Presentation

ISO 9241-125 has recently been released.  This new standard is titled Ergonomics of human-system interaction – Part 125: Guidance on visual presentation of information.  And it has just been adopted for use by the European Union.  You can get your copies now from Document Center Inc.

The ISO 9241-125, along with the ISO 9241-112, replace the ISO 9241-12 (which is now obsolete).  It is intended to be used by user interface designers, project managers responsible for the development process, and both buyers and end users.  It may be used as a reference in the procurement process.  And it should result in better “interface style guides” for industry.

Consistent interface presentation of information results in an easier time for users of software and hardware products.  Well-designed interfaces take into account human perception and memory limitations.  So the standard addresses a wide range of interface issues like color, the structure of information and so on.

It begins with the usual scope, referenced documents, and definition sections.  Then Clause 4 reviews the application of the standard, covering general guidance on broad concerns when presenting visual information.  Clause 5, for visual structuring, includes information on sequencing, density, functional groupings and labeling, and so on.  Next Clause 6 provides you with information on user interface elements you can use to organize information  This includes things like item numbering, the use of tables and windows, and the like.

Graphical objects are covered in Clause 7.  These are elements like the cursor, icons, and so on.  The next section, Clause 8, is on coding techniques.  This is a reference to the use of codes like “US” and “CN” to replace country names, and other acronyms and symbols.  Clause 9 covers the use of color.  A 13-item bibliography concludes this 50 page standard.

Human factors have an important role to play in your product design for the presentation of information.  This standard will be of great value to those of you tasked with this challenge.  To get your copy, choose an authorized distributor of ISO standards like Document Center Inc.  You can use our webstore at www.document-center.com to search for and order your ISO standards.  Here is a direct link to the order page for ISO 9241-125 for your convenience.

Our website is also quite useful for finding standards on various topics.  One helpful tool is our list of standards by international classification codes.  Here is a link to the page for our List of Standards on Ergonomics.

Document Center Inc. offers you a wide range of products and services all geared to improving the way you use standards.  If you have further questions please get in touch.  We can be reached by phone (650-591-7600) and by email (info@document-center.com).  Make us your Standards Experts!

ISO/IEC 19592-2 – How to share secrets!

ISO/IEC 19592-2 on sharing secrets has just been released.  It is the companion document to the ISO/IEC 19592-1.  OK…  This secret sharing scheme is a cryptographic technique.  It breaks up a message into parts along with a message sharing algorithm for dividing the message and another for putting it back together again.  The new ISO/IEC 19592-2 gives you the mechanisms to do this.  Both are available from Document Center Inc. now.

I blogged about the ISO/IEC 19592-1 when it was released last year.  The new Part 2 is titled Information technology – Security techniques – Secret sharing – Part 2: Fundamental mechanisms.  It specifies how you’ll go about setting up the actual sharing scheme. It will contain two functions — message confidentiality and message recovery.

The standard begins with the usual scope, referenced documents and definition sections.  There is an additional Clause 4 with symbols and abbreviated terms.  Then we move directly into secret sharing schemes themselves in Clause 5.  A number of schemes are reviewed.  These include Shamir and Ramp Shamir.  Additive, replicated additive, and computational additive are also included.  Two informative Annexes cover object identifiers and numerical examples.  An 8-item bibliography completes this 30 page document.

If you need to know how to share a secret, the ISO/IEC 19592 standards are for you.  Purchase your copies from Document Center Inc., an authorized ISO and IEC distributor.  You can find them at our webstore, www.document-center.com.  Here is a direct link to the order pages for the new ISO/IEC 19592-2 and the ISO/IEC 19592-1 for your convenience.

Why choose Document Center?  We have been selling standards since 1982. Our staff is knowledgeable and can help you with many of your standards questions.  We have a range of support services to help you meet your documentation compliance requirements.  To learn more, contact us by phone (650-591-7600) or email (info@document-center.com).  We’re your Standards Experts!

 

ANSI B11.20 – Safety for Integrated Manufacturing Systems

ANSI B11.20, the standard on Safety Requirements for Integrated Manufacturing Systems, has just been updated.  The 2017 (3rd) Edition replaces the previous 2004 Edition, which is now obsolete.  The committee recommends that you make the transition to this new edition within 30 months.  You can get your copy now from Document Center Inc. in either paper format or for pdf download. And it can be included in our company-wide access cloud service, Standards Online.

What is an integrated manufacturing system (IMS)?  It’s a shop floor layout that incorporates two or more industrial machines.  They manufacture, package, treat or move parts or assemblies.  They can operate independently of each other but are linked by a material handling system.  This control system results in coordinated operation.

Why do you need a safety standard for IMS’s?  To minimize the risk of injury to staff in this complex environment.  The number and types of risks are different when machines are operated in a coordinated fashion.  You should set up your safety system based on the installation, rather than on the hazards of each machine individually.

What’s new in this edition of the ANSI B11.20?  First, it is now harmonized with the ISO 11161.  The terms have been updated as part of an effort to set up consistent definitions for all of the B11 safety standards.  There are 2 new Annexes — Annex D on zone determination and span of control, and Annex E, special mode.  You’ll find significant updates toclauses 4, 5, 7, and 9.  Training will be impacted by new clause 10 and Annex F on general guidelines for operator training.  And there is also a new clause 11 for decommissioning.

Of course, Document Center Inc. is an authorized distributor of the ANSI B11 standards.  So you can search for and order them with confidence from our webstore, www.document-center.com.  Here is a direct link to the order page for the ANSI B11.20 for your convenience.

We have a number of services that support your compliance requirements and document control efforts. To learn more, please contact our staff by phone (650-591-7600) or email (info@document-center.com).  Then make us your Standards Experts!

ISO 28590 – Inspection by Attributes

ISO 28590 and an additional seven standards in the series have just been released.  These are the new ISO standards on sampling for inspection by attributes.  The ISO 28590 is the overview standard, providing an introduction to what is called the “ISO 2859 series.”  The complete title of this new release is Sampling procedures for inspection by attributes – Introduction to the ISO 2859 series of standards for sampling for inspection by attributes.  It and the balance of the newly released series are available now from Document Center Inc.

Of course, here in the U.S. we’ve been using the ASQ-Z1.4 (previously the MIL-STD-105) for many years.  The ISO 2859 series is the European equivalent for this sampling procedure.  The two schemes are both current and can be referenced with confidence.

ISO released the ISO-2859 series back in the 1990’s.  However, with the October release of these new issues, some frequently-used ISO publications have basically been renumbered.  Here is a list of the changed references:

What are the primary changes to these documents?  The revised numbering to bring them all into a series format.  And don’t forget, the old ISO 2859 series standards (Parts 1 through 5) remain in force.

You may also wonder what the European equivalent is for the ASQ Z1.9 standard on inspection by variables.  This would be the ISO 3951 series.

Now to get your copies.  I’ve included links to the order pages in the list above.  However, you can also search for and order other quality standards from our Document Center webstore at www.document-center.com.  We are an authorized distributor of standards and have an extensive collection for you to choose from.

Still have questions?  Need help managing your standards collection?  Reach out to our staff for assistance.  We can be reached by phone (650-591-7600) or email (info@document-center.com).  We’ve been working with standards since 1982.  Make us your Standards Experts!

 

ISO/IEC TS 33073 – Process Assessment

ISO/IEC TS 33073 has just been released to help you set up a quality management process assessment model (PAM).  This is a set of indicators for process performance and process capability.  They are to be used to collect objective evidence for your assessor.  The PAM supported by this standard meets the requirements of ISO/IEC 33004.  It is available now from Document Center Inc.

The standard is titled Information technology – Process assessment – Process capability assessment model for quality management.  It is designed to support self-assessment for process quality.  You’ll use it as the basis for your on-going improvement cycle.  And it provides you with a methodology for an actual process rating.

No matter the size of your organization or the types of processes you use, you’ll find the ISO/IEC TS 33073 to be applicable.  The 308-page standard begins with the usual scope, referenced documents and definition sections.  Section 4 reviews the process assessment model (PAM) itself.  You’ll get an overview of the structure of a PAM, the assessment indicators, and measuring process capability.

Section 5 covers various process performance indicators, divided into types.  COM.01 through COM.11 are administrative (like management review and operational planning).  ORG.01, ORG.02, and ORG.03 cover asset management, measurement resource management and supplier management respectively.  The 11 TEC indicators deal with configuration and product/service issues.  A final TOP indicator is on leadership.  Each of the indicators is presented as a table, featuring critical features of each.

Section 6 provides you with information on process capability indicators.  This time they’re organized by levels, from zero to five.  Information is presented in a combination of text and tables.  You’ll see how to define your requirements, identify and establish objects and measurements, create documentation, and so on.  Overview tables of the processes and attributes will supply you with visual support.

The ISO/IEC TS 33073 contains 3 informative Annexes.  Annex A is on conformity of the PAM, Annex B covers input and output characteristics, and Annex C reviews the relationship between this standard and the ISO 9001 requirements.  An 11-item bibliography completes the standard.

You can purchase your copy of this new edition now at Document Center Inc.’s webstore, www.document-center.com.  Here is a direct link to the order page for ISO/IEC TS 33073 for your convenience.  If you are ISO 9000 certified, you’ll want to learn more about our support services.  Check in with our staff by phone (650-591-7600) or email (info@document-center.com).  We have a range of products and services to help every size business improve document compliance outcomes.  Find out why so many companies make us their Standards Experts!

ISO 14644-15 – New Cleanroom Standard

The ISO 14644-15 Cleanroom Standard has just been released.  It’s title is Cleanrooms and associated controlled environments – Part 15: Assessment of suitability for use of equipment and materials by airborne chemical concentration.  It’s intended to be used with ISO 14644-8.  You can get your copy now from Document Center Inc. in either paper format or for pdf download.

The ISO 14644 series of standards on cleanrooms is widely used throughout industry.  There are many manufacturing situations where a clean environment is essential.  Some involve classifying the cleanliness level by the concentration of chemicals in the air.  The ISO 14644-15 has been developed to assist users using this method.

One issue for those in charge of cleanrooms is the impact of bringing in “foreign” materials into the cleanroom environment.  Now the ISO 14644-15 gives you a methodology for controlling contamination.  It specifically addresses evaluating equipment and materials that will be introduced into your cleanroom.  This evaluation is for the chemical airborne cleanliness of these items.  If you determine cleanliness classes by chemical concentration per ISO 14644-8, this will be immensely valuable.

The new standard begins with the usual scope, referenced documents, and definitions sections.  Nine additional sections cover symbols, test setup, representative mode, visual inspection, a description of the test, calculation of the measured concentrations, calculation of the specific emission rate, the assessment itself, and your documentation.  There are also 3 informative Annexes and a 19-item bibliography.  The Annexes can help you evaluate such items as flooring and wallpaper.

To get your copy of this and any of the ISO 14644 standards, use the Document Center Inc. webstore at www.document-center.com.  We are an authorized distributor of the ISO standards so you can purchase with confidence.  Here is a direct link to the order page for ISO 14644-15 for your convenience.

We have a number of services that allow for company-wide cloud access to standards, monitoring of your essential documentation, and reports to support the document control function.  To learn more, please get in touch with our staff.  We can be reached by phone (650-591-7600) and email (info@document-center.com).  Learn why so many companies make us their Standards Experts!

 

ANSI Z535.1 2017

ANSI Z535.1, Safety Colors, is being updated and the new 2017 Edition is due in mid-December.  This new Edition will also impact the ANSI Z535 set of the 6 standards in the series.  Remember, if you have purchased the entire set, only the Z535.1 will be updated in December.  The new revision will be available from Document Center Inc. at that time.

ANSI Z535.1 includes the technical definitions, color standards, and color tolerances for safety colors. These are the colors that are used in safety signage and other warning material.  It provides a consistent way to communicate hazardous situations and environments visually.

The standard is widely used throughout industry.  It has even been adopted by the U.S. Department of Defense.  The standard was last updated in 2006, with reaffirmation of the contents in 2011.  So this new update will be important for many businesses and other organizations.

There’s no preview available for the new ANSI Z535.1 2017 Edition at this time.  So I’m unable to give you concrete information on the up-coming changes.  I will note however that the ANSI-Z535.4 is also under review.  So a new edition of that standard could also appear soon.

Now to get your copy of the new edition.  It’s available for pre-order now at our Document Center Inc. webstore, www.document-center.com.  Here is a direct link to the order page for the ANSI Z535.1 for your convenience.  Please note:  As I stated before, this new edition will also update the information for the Z535 set.  If you already own all 6 standards, you’ll only need to get the updated Part 1 in order to remain current.

Have additional questions?  Need to purchase other standards?  Want more information about all our support services?  Just get in touch.  We can be reached by phone (650-591-7600) or email (info@document-center.com).  We’ve been working with standards since 1982.  We’re your Standards Experts!