iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO/IEC 15026:1998

(Main)

Information technology — System and software integrity levels

Information technology — System and software integrity levels

Technologies de l'information — Niveaux d'intégrité du système et du logiciel

General Information

Status
Withdrawn
Publication Date
25-Nov-1998
Withdrawal Date
25-Nov-1998
ICS
35.080 - Software
Technical Committee
ISO/IEC JTC 1/SC 7 - Software and systems engineering
Drafting Committee
ISO/IEC JTC 1/SC 7 - Software and systems engineering
Current Stage
9599 - Withdrawal of International Standard
Completion Date
16-Dec-2011
Ref Project

Relations

Revised
ISO/IEC 15026-2:2011 - Systems and software engineering — Systems and software assurance — Part 2: Assurance case
Effective Date
18-Dec-2008
Revised
ISO/IEC TR 15026-1:2010 - Systems and software engineering — Systems and software assurance — Part 1: Concepts and vocabulary
Effective Date
15-Apr-2008
Revised
ISO/IEC 15026-3:2011 - Systems and software engineering — Systems and software assurance — Part 3: System integrity levels
Effective Date
14-Aug-2010

Buy Standard

ISO/IEC 15026:1998 - Information technology -- System and software integrity levelsISO/IEC 15026:1998 - Information technology -- System and software integrity levels
PreviousNext
Standard
ISO/IEC 15026:1998 - Information technology -- System and software integrity levels
English language
12 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

INTERNATIONAL ISO/IEC
STANDARD 15026
First edition
1998-11-15
Information technology — System and
software integrity levels
Technologies de l'information — Niveaux d'intégrité du système
et du logiciel
Reference number
bc
ISO/IEC 15026:1998(E)

---------------------- Page: 1 ----------------------
ISO/IEC 15026:1998(E)
Contents Page
1 Scope . 1
2 Normative references . 1
3 Definitions . 2
4 Symbols and abbreviations. 3
5 Software integrity levels framework . 3
5.1 How to use this International Standard. 3
5.2 Overview. 3
6 System integrity level determination . 6
6.1 Risk analysis. 6
6.2 Risk evaluation. 8
6.3 System integrity level assignment. 8
7 Software integrity level determination. 8
7.1 Assumptions in software integrity level determination . 9
7.2 Reduction of software integrity level . 9
7.3 Reducing the software integrity level of software whose failure can result in a threat. 10
7.4 Reducing the software integrity level of software whose failure may result in lack of provision of
mitigating functions . 10
8 Software integrity requirements determination . 11
8.1 Degree of confidence. 11
8.2 Methods of achieving degrees of confidence in software . 11
8.3 Association of degree of confidence in software with integrity level . 11
©  ISO/IEC 1998
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced
or utilized in any form or by any means, electronic or mechanical, including photocopying and
microfilm, without permission in writing from the publisher.
ISO/IEC Copyright Office • Case postale 56 • CH-1211 Genève 20 • Switzerland
Printed in Switzerland
ii

---------------------- Page: 2 ----------------------
©
ISO/IEC ISO/IEC 15026:1998(E)
Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission)
form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC
participate in the development of International Standards through technical committees established by the
respective organization to deal with particular fields of technical activity. ISO and IEC technical committees
collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in
liaison with ISO and IEC, also take part in the work.
In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.
Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting.
Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote.
International Standard ISO/IEC 15026 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information
technology, Subcommittee SC 7, Software engineering.
iii

---------------------- Page: 3 ----------------------
©
INTERNATIONAL STANDARD  ISO/IEC ISO/IEC 15026:1998(E)
Information technology — System and software integrity levels
1 Scope
This International Standard introduces the concepts of software integrity levels and software integrity requirements.
It defines the concepts associated with integrity levels, defines the processes for determining integrity levels and
software integrity requirements, and places requirements on each process. This International Standard does not
prescribe a specific set of integrity levels or software integrity requirements. These must be established either on a
project by project basis, or for a specific sector and/or country. This International Standard is applicable to
software only. The system integrity level and the integrity levels of the non-software components are only required
in this International Standard to determine the integrity levels of the software components.
This International Standard is intended for use by developers, users, procurers, and assessors of software products
or systems containing software for the administrative and technical support of those products and systems.
A software integrity level denotes a range of values of a software property necessary to maintain system risks within
tolerable limits. For software that performs a mitigating function, the property is the reliability with which the
software must perform the mitigating function. For software whose failure can lead to a system threat, the property
is the limit on the frequency or probability of that failure.
Software integrity requirements are requirements that must be met by the software engineering process used to
develop the software, requirements that must be met by the software engineering products, and/or requirements
that must be true of the software’s performance over time in order to provide a degree of confidence in the software
that is commensurate with the software’s integrity level.
This International Standard does not prescribe the way in which integrity level determination is integrated with the
overall system engineering life cycle processes.
2 Normative references
The following standards contain provisions which, through reference in this text, constitute provisions of this
International Standard. At the time of publication, the editions indicated were valid. All standards are subject to
revision, and parties to agreements based on this International Standard are encouraged to investigate the
possibility of applying the most recent editions of the standards indicated below. Members of IEC and ISO maintain
registers of currently valid International Standards.
ISO/IEC 2382-1:1993, Information technology - Vocabulary - Part 1: Fundamental terms.
ISO/IEC 2382-20:1995, Information technology - Vocabulary - Part 20: System development.
ISO 8402:1994, Quality management and quality assurance - Vocabulary.
IEC 50-191:1990, International Electrotechnical Vocabulary, Chapter 191: Dependability and quality of service.
IEC 300-3-9:1995, Dependability management - Part 3: Application guide - Section 9: Risk analysis of technological
systems.
ISO/IEC 12207:1995, Information technology - Software life-cycle processes.
1

---------------------- Page: 4 ----------------------
©
ISO/IEC 15026:1998(E) ISO/IEC
3 Definitions
For the purposes of this International Standard, the definitions given in ISO/IEC 2382-1, ISO/IEC 2382-20,
ISO 8402 and IEC 50-191 apply, except as modified or supplemented by the following definitions.
3.1 component: An entity with discrete structure, such as an assembly or software module, within a
system considered at a particular level of analysis.
3.2 degree of confidence: In this standard the term degree of confidence is used only to mean the
degree of confidence that software conforms to its requirements.
3.3 design authority: The person or organization that is responsible for producing the design of the
system.
3.4 failure: The termination of the ability of an item to perform a required function or its inability to
perform within previously specified limits.
3.5 fault isolation: The ability of a subsystem to prevent a fault within the subsystem from causing
consequential faults in other subsystems.
3.6 function: An aspect of the intended behavior of the system.
3.7 initiating event: An event that can lead to a threat.
3.8 integrity assurance authority: The independent person or organization responsible for assessment
of compliance with the integrity requirements.
3.9 integrity level: A denotation of a range of values of a property of an item necessary to maintain
system risks within tolerable limits. For items that perform mitigating functions, the property is the reliability
with which the item must perform the mitigating function. For items whose failure can lead to a threat, the
property is the limit on the frequency of that failure.
3.10 item: An entity such as a part, component, subsystem, equipment or system that can be individually
considered. An item may consist of hardware, software or both.
3.11 mitigating function: A mitigating function is a function that, if provided successfully, will prevent an
initiating event from becoming a specified threat.
3.12 risk: A function of the probability of occurrence of a given threat and the potential adverse
consequences of that threat's occurrence.
3.13 risk dimension: A perspective from which risk assessment is being made for the system (eg safety,
economic, security).
3.14 safety: The expectation that a system does not, under defined conditions, lead to a state in which
human life, health, property, or the environment is endangered.
3.15 security: The protection of system items from accidental or malicious access, use, modification,
destruction, or disclosure.
3.16 software integrity level: The integrity level of a software item.
2

---------------------- Page: 5 ----------------------
©
ISO/IEC ISO/IEC 15026:1998(E)
A subsystem is any system that is part of a larger system.
3.17 subsystem:
: An integrated composite that consists of one or more of the processes, hardware, software,
3.18 system
facilities and people, that provides a capability to satisfy a stated need or objective.
A failure related in a deterministic way to a certain cause, which can only be
3.19 systematic failure:
eliminated by a modification of the design or of the manufacturing process, operational procedures,
documentation or other relevant factors.
The integrity level of a system.
3.20 system integrity level:
A state of the system or system environment which can lead to adverse effect in one or more
3.21 threat:
given risk dimensions.
4 Symbols and abbreviations
There are no symbols used in this International Standard. Where appropriate, abbreviations are expressed fully
where appearing in the text for the first time.
5 Software integrity levels framework
5.1 How to use this International Standard
The concept of an independent integrity assurance authority is fundamental to the proper use of this International
Standard. The integrity assurance authority is the person or organization responsible for certifying compliance with
the integrity requirements. Decisions made during negotiation between the design authority and the integrity
assurance authority are documented. The decisions to be negotiated include determination of relevant risk
dimensions, the specific integrity levels to be used, the specific criteria for assigning each level, the degree of
benefit to be allowed for specific architectural features of the design, and the requirements on the software resulting
as a consequence of being assigned a particular integrity level.
The processes described in this International Standard are presented as distinct from the overall system
engineering processes, but it is not the intention of this International Standard to prevent them from being integrated
with the system engineering processes. Regardless of how the processes are implemented, compliance with this
International Standard requires that all requirements within it are met.
Subclause 5.2 provides an overview of the processes for determining integrity levels and software integrity
requirements.  Clauses 6, 7 and 8 describe the processes in more detail and define the requirements imposed on
the processes.
5.2 Overview
Figure 1 shows an overview of the processes required to determine system and software integrity levels, and
software integrity requirements. Table 1 lists the inputs and outputs for each of the three main processes of system
integrity level determination, software integrity level determination, and software integrity requirements
determination.
A risk based approach to integrity level determination is used within this International Standard. Therefore the first
step in determining the corresponding system integrity level involves the
3

---------------------- Page: 6 ----------------------
©
ISO/IEC 15026:1998(E) ISO/IEC
performance of a risk analysis. IEC Standard 300-3-9 «Risk Analysis of Technological Systems» provides guidance
on the performance of risk analysis. Sufficient information must be acquired about the system, its environment and
the risk dimensions relevant to the system to allow a risk analysis to be performed. The risks analyzed should
cover all relevant risk dimensions such as safety, economic and security as agreed to by the design authority and
integrity assurance authority.
Any risks identified by the risk analysis must be evaluated to determine if the risk is tolerable. Once the system
design has been analyzed and evaluated to have tolerable risks, a system integrity level is assigned to the system.
The system integrity level reflects the worst case risk that is associated with the system.
The integrity level of the software within the system is initially assigned to be the same as the system integrity level.
The design of the system may be analyzed to determine if there are architectural features in the system design that
would justify assigning a lower integrity level to the software than that of the system.
OVERALL SYSTEM ENGINEERING
RISK ANALYSIS
New
Threat Identification
Threats
System Definition
Risk Dimensions
Frequency Analysis
System Engineering
Consequence Analysis
Risk
Elimination/Reduction
Possibilities
Risk Calculation
RISK EVALUATION
Hardware Engineering
Tolerability of Risks
Risks
Risk Tolerability Decisions
RISK CONTROL
( Associated with Software )
System Design
System Integrity
Level Determination
Risks
Software Engineering
Threats
Risk
Initiating Events
Elimination/Reduction
Software Integrity
Possibilities
Level Determination
Software
Software Integrity
Integrity
Requirements Determination
Requirements
Figure 1 - Overview of Process for Software Integrity Level Determination and Application
4

---------------------- Page: 7 ----------------------
©
ISO/IEC ISO/IEC 15026:1998(E)
Table 1 - Inputs and Outputs
Process Inputs Outputs
System Integrity - relevant risk dimensions - risks
Level Determination - system definition - threats
- environment definition - tolerable frequency/probability of
- system architecture (if available) threat occurrence
- initiating events
- initiating event frequency/probability
- system integrity level
Software Integrity - system integrity level - subsystem/software integrity level
Level Determination - subsystem/software architecture - architectural features credited with
- a list of threats and for each threat: reducing the integrity level
  - tolerable frequency or probability
of occurrence of the threat
  - initiating events that may lead to
the threat
  - expected frequency or probability
of occurrence of each initiating
event
Software Integrity - subsystem/software integrity level - software integrity requirements
Requirements
Determination
A system is an integrated composite that consists of one or more components. A component can be solely
software, solely hardware, or can be a subsystem consisting of a further breakdown of components. Initially, any
software component of a system is assigned the integrity level of the system. Software integrity level determination
involves the analysis of the system architecture to determine if the integrity level for a subsystem can be lowered
from that of the system integrity level. This process can be applied recursively until the integrity level for a
subsystem consisting solely of software has been determined, or until the integrity level of the subsystem containing
software is acceptable to the design authority and integrity assurance authority for assignment to any software
component in the subsystem.
It is possible that during the analysis of the architecture that new threats and risks will be identified that were not
determined during previous risk analysis. This would require risk analysis to be repeated to take into account the
new risk information.
The software integrity level is an assignment which represents either the degree of reliability of provision of a
mitigating function, or the required limit on the frequency of failure that could result in a threat. Since software
failures are strictly systematic failures, the software integrity level is an indication of the degree of confidence
required that either the mitigating function is provided reliably or the failure that would result in a threat will not
occur.
The determination and application of software integrity levels is part of the overall process of risk management.
Risk management is conducted throughout a system or software product's life, and may be done iteratively as
various levels of detail of the design are decided, or as the design evolves. Figure 1 shows the relationships
between the overall system engineering processes and the risk management processes of risk analysis, risk
evaluation and risk control.
Iteration can occur if the system design is modified to incorporate risk elimination/reduction possibilities, if new
threats are identified as the system and software integrity l
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO/IEC/IEEE 23026:2023(Main)
Systems and software engineering — Engineering and management of websites for systems, software and services information

This document defines system engineering and management requirements for the life cycle of websites, including strategy, design, engineering, testing and validation, and management and sustainment for intranet and extranet environments. This document applies to those using web technology to present information and communications technology (ICT) information, such as information for users of systems and services, plans and reports for systems and software engineering projects, and documentation of policies, plans, and procedures for IT service management. This document provides requirements for website owners and website providers, managers responsible for establishing guidelines for website development and operations, website engineers, designers, developers, and operations and maintenance staff, who can be external or internal to the website owner's organization. It applies to websites for public access and for limited access, such as for users, customers, and subscribers seeking information on IT systems, products and services. The requirements and recommendations in this document address the following aspects of usability of informational websites and ease of maintenance of managed website operations: a) locating relevant and timely information; b) applying information security management; c) facilitating accessibility and ease of use; d) providing for consistent and efficient development and maintenance practices. This document is not particularly applicable to websites used primarily for marketing or sales, to deliver instructional material (tutorials), or to provide graphical user interfaces (GUI) for business or consumer transactional application processing. However, this document can provide useful insights for managing such sites. This document does not address vendor and product considerations for website engineering and management. This document does not include specifications for application development tools, programming and scripting languages used for websites, metadata tags, or protocols for network communications. It does not address tools or systems used for management or storage of information content (data, documents) that can be presented on websites. This document does not address the design and architecture of software and systems supporting the Internet.

  • Standard
    57 pages
    English language
    sale 15% off
  • Draft
    57 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 24748-6:2023(Main)
Systems and software engineering — Life cycle management — Part 6: System and software integration

This document: — provides supplemental requirements and guidance for the planning and performing of the integration processes given in ISO/IEC/IEEE 15288 and ISO/IEC/IEEE 12207; — provides guidance on the relationship between the integration process and other life cycle processes. — specifies requirements for information items to be produced as a result of using the integration process, including the content of the information items. This document is applicable to: — those who use or plan to use ISO/IEC/IEEE 12207 or ISO/IEC/IEEE 15288, or both, on projects dealing with human-made systems, software-intensive systems, and products and services related to those systems, regardless of the project scope, methodology, size, or complexity; — anyone planning or performing integration activities to aid in ensuring that the application of the integration process and its relationships to other system life cycle processes conform to ISO/IEC/IEEE 15288 or ISO/IEC/IEEE 12207.

  • Standard
    42 pages
    English language
    sale 15% off
  • Draft
    42 pages
    English language
    sale 15% off
  • Draft
    42 pages
    English language
    sale 15% off
ISO
ISO/IEC 24773-4:2023(Main)
Software and systems engineering — Certification of software and systems engineering professionals — Part 4: Software engineering

This document elaborates requirements and recommendations for certifications schemes based on ISO/IEC 24773-1, which are specific to the domain of software engineering.

  • Standard
    14 pages
    English language
    sale 15% off
  • Draft
    14 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 24748-9:2023(Main)
Systems and software engineering — Life cycle management — Part 9: Application of system and software life cycle processes in epidemic prevention and control systems

This document provides requirements and guidance on the application of system and software engineering processes to systems for epidemic prevention and control. This document provides guidance that can be employed for adopting and applying system and software life cycle processes within an organization or a project in an epidemic emergency. It includes system of systems considerations in the context of epidemic emergency. This document applies to acquisition, supply, development, operation, maintenance, and disposal (whether performed internally or externally to an organization) of system or system of systems in an epidemic emergency. Many of the requirements and recommendations in this document are also applicable to other systems developed rapidly to respond to emergency conditions affecting the public.

  • Standard
    41 pages
    English language
    sale 15% off
  • Draft
    44 pages
    English language
    sale 15% off
  • Draft
    44 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 15288:2023(Main)
Systems and software engineering — System life cycle processes

This document establishes a common framework of process descriptions for describing the life cycle of systems created by humans, defining a set of processes and associated terminology from an engineering viewpoint. These processes can be applied to systems of interest, their system elements, and to systems of systems. Selected sets of these processes can be applied throughout the stages of a system's life cycle. This is accomplished through the involvement of stakeholders, with the ultimate goal of achieving customer satisfaction. This document defines a set of processes to facilitate system development and information exchange among acquirers, suppliers, and other stakeholders in the life cycle of a system. This document specifies processes that support the definition, control, and improvement of the system life cycle processes used within an organization or a project. Organizations and projects can use these processes when acquiring and supplying systems. This document applies to organizations in their roles as both acquirers and suppliers. This document applies to the full life cycle of systems, including conception, development, production, utilization, support and retirement of systems, and to the acquisition and supply of systems, whether performed internally or externally to an organization. The life cycle processes of this document can be applied iteratively and concurrently to a system and recursively to the system elements. This document applies to one-of-a-kind systems, mass-produced systems, and customised, adaptable systems. It also applies to a complete stand-alone system and to systems that are embedded and integrated into larger more complex and complete systems. This document does not prescribe a specific system life cycle model, development methodology, method, modelling approach or technique. This document does not detail information items in terms of name, format, explicit content, and recording media. ISO/IEC/IEEE 15289 addresses the content for life cycle process information items (documentation).

  • Standard
    116 pages
    English language
    sale 15% off
  • Draft
    116 pages
    English language
    sale 15% off
  • Draft
    116 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 24641:2023(Main)
Systems and Software engineering — Methods and tools for model-based systems and software engineering

This document deals with the tool capabilities and methods for model-based systems and software engineering (MBSSE). This document: — specifies a reference model for the overall structure and processes of MBSSE-specific processes, and describes how the components of the reference model fit together; — specifies interrelationships between the components of the reference model; — specifies MBSSE-specific processes for model-based systems and software engineering; the processes are described in terms of purpose, inputs, outcomes and tasks; — specifies methods to support the defined tasks of each process; — specifies tool capabilities to automate or semi-automate tasks or methods. This document does not bring any additional life cycle processes for system and software but specifies an MBSSE reference model considered as activities, not only from the life cycle perspectives of systems engineering problem solving and the system-of-interest evolution, but also from the cognitive perspectives of modelling and model management, which can sustain and facilitate the system and software life cycle processes during digital transformation and in the digital age. The processes defined in this document are applicable for a single project, as well as for an organization performing multiple projects or an enterprise. These processes are applicable for managing and performing the systems and software engineering activities based on models within any stage in the life cycle of a system-of-interest.

  • Standard
    85 pages
    English language
    sale 15% off
  • Draft
    85 pages
    English language
    sale 15% off
  • Draft
    85 pages
    English language
    sale 15% off
ISO
ISO/IEC TS 33010:2023(Main)
Information technology — Process assessment — Guidance for performing process assessments

This document provides an overview of process assessment and interprets the requirements of ISO/IEC 33002 and ISO/IEC 33004 through the provision of guidance on the selection and use of assessment models, documented assessment processes, and instruments or tools for assessment. Process assessment is applicable in the following circumstances: a) by or on behalf of an organization with the objective of understanding the state of its own processes for process improvement; b) by or on behalf of an organization with the objective of determining the suitability of its own processes for a particular requirement or class of requirements; c) by or on behalf of one organization with the objective of determining the suitability of another organization's processes for a particular contract or class of contracts.

  • Technical specification
    22 pages
    English language
    sale 15% off
  • Draft
    22 pages
    English language
    sale 15% off
  • Draft
    22 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 26531:2023(Main)
Systems and software engineering — Content management for product life cycle, user and service management information for users

This document specifies requirements for efficient development and management of information produced — throughout the life cycle of a system and software product; — for the provision of information for users of systems and software; — for the management of IT and support services. This document is independent of the tools, protocols, and systems used for content management. It does not address configuration management of software assets. The content management process presented in Clauses 6 to 10 is a specialization (lower-level process) of the information management process specified in ISO/IEC/IEEE 15288 and ISO/IEC/IEEE 12207.

  • Standard
    53 pages
    English language
    sale 15% off
ISO
ISO/IEC 26563:2022(Main)
Software and systems engineering — Methods and tools for product line configuration management

This document, within the context of methods and tools that support the configuration management (CM) capability of software and systems product line engineering: — specifies processes for product line CM (the processes are described in terms of purpose, inputs, tasks, and outcomes); — specifies method capabilities to support the defined tasks of each process; — specifies tool capabilities that automate or semi-automate tasks and methods. This document does not concern the processes and capabilities of tools and methods for a single system but rather deals with those for a family of products.

  • Standard
    34 pages
    English language
    sale 15% off
ISO
ISO/IEC 26564:2022(Main)
Software and systems engineering — Methods and tools for product line measurement

This document, within the context of methods and tools that support the product line measurement and management and that demonstrate the quality of the products and a product line: — specifies processes for product line measurement (the processes are described in terms of purpose, inputs, tasks and outcomes); — specifies method capabilities to support the defined tasks of each process; — specifies tool capabilities that automate or semi-automate tasks and methods. This document does not concern the processes and capabilities of tools and methods for a single system but rather deals with those for a family of products.

  • Standard
    39 pages
    English language
    sale 15% off