ISO 17799 (Withdrawn)

ISO 17799 is an international security standard that was withdrawn not because anything was wrong but because it was so well received and successful that it was completely updated and turned into a new standard with a new name, which you will learn about in the next section. Because ISO 17799’s original form was such an important information security standard, it is important to understand it. This standard documents a comprehensive set of controls that represent best practices in information systems. The standard actually consists of two separate parts:

  • The ISO 17799 code of practice

  • The BS 17799-2 specification for an information security management system

The main purpose of the standard is to identify security controls ...

Get Fundamentals of Information Systems Security, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.