APPENDIX A
STANDARDS
The nice thing about standards is that you have so many to choose from. Furthermore, if you do not like any of them, you can just wait for next year’s model.
Andrew S. Tanenbaum, Computer Networks, Second edition 1989, p. 254
Standards and specifications are directives telling you what should be done, whilst guidelines and recommendations are informative, and tell you how you should go about it.
There are also so-called ‘good practice’ guides and documents, which, rather than being issued by a standards body, originate from an organisation that has a legitimate claim to be the main source of knowledge on matters pertaining to it. An example of this is the Information Security Forum’s Standard of Good Practice, which we ...
Get Cyber Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
