APPLICATION OF RISK MANAGEMENT FOR IT-NETWORKS INCORPORATING MEDICAL DEVICES - PART 2-2: GUIDANCE FOR THE DISCLOSURE AND COMMUNICATION OF MEDICAL DEVICE SECURITY NEEDS, RISKS AND CONTROLS
International Electrotechnical Committee
FOREWORD
INTRODUCTION
1 Scope
2 Normative references
3 Terms and definitions
4 Use of SECURITY CAPABILITIES
5 SECURITY CAPABILITIES
6 Example of detailed specification under
SECURITY CAPABILITY: Person authentication
- PAUT
7 References
8 Other resources
9 Standards and frameworks
Annex A (informative) - Sample scenario showing the
exchange of security information
Annex B (informative) - Examples of regional specification
on a few SECURITY CAPABILITIES
Annex C (informative) - SECURITY CAPABILITY mapping to C-I-A-A
Bibliography
Describes an informative set of common, high-level securityrelated capabilities useful in understanding the user needs, the type of security controls to be considered and the RISKS that lead to the controls.
| Document Type | Standard |
| Status | Current |
| Publisher | International Electrotechnical Committee |
| Committee | TC 62 |
