A good news I've gotten from the SC27 Secretariat yesterday morning. In the national bodies (NB) ballot process for the three new projects in WG4, the title has already included the newly allocated number for each project. With the formal approval by JTC1 NB at the end of the ballot period last month, we now have the number allocation approved for the three projects as well. As such, we can now use these numbers to represent the respective standards that are currently being developed. However, take note that they are all in preliminary draft (towards first working draft) stage. So there's no such ISO/IEC standards in the open at the moment; they are still projects in development:

  • ISO/IEC 27031 - "ICT Readiness for Business Continuity" (Preliminary Draft)
  • ISO/IEC 27032 - "Guidelines for Cybersecurity" (Preliminary Draft)
  • ISO/IEC 27034 - "Guidelines for Application Security" (Preliminary Draft)</ul>

    Note also the number 27033, although has been allocated for the revision of ISO/IEC 18028 ("Network Security"), it has not been formally approved at JTC1 level. This reference of the network security standard therefore still need to be quoted with an asterisk. </div>