SFS Suomen Standardit

 

This document provides guidance and recommendations for assurance of a selected claim about the system-of-interest by achieving the claim and showing the achievement. The guidance and recommendations are given in a system assurance process view on top of ISO/IEC/IEEE 15288 and a software assurance process view on top of ISO/IEC/IEEE 12207.

 

This document provides guidance for organizations to address privacy risks in artificial intelligence (AI) systems, including machine learning (ML) models. This document helps organizations identify privacy risks throughout the AI system lifecycle, and establishes mechanisms to evaluate the consequences and treatment of such risks. This document is applicable to all types and sizes of organizations that develop or use Ai system, including public and private companies, government entities, and not-for-profit organizations.

 

This document specifies homomorphic encryption mechanisms for arithmetic based on look-up table evaluation. This document also specifies parameter selection for various security levels.

 

This document provides guidelines, methodology and techniques for deriving securely information from real activities denoted to as provenance metadata about data assets from multiple sources, intermediaries or users.

 

This document defines key establishment mechanisms based on weak secrets, i.e. secrets that can be readily memorized by a human, and hence, secrets that will be chosen from a relatively small set of possibilities. It specifies cryptographic techniques specifically designed to establish one or more secret keys based on a weak secret derived from a memorized password, while preventing offline brute-force attacks associated with the weak secret. This document is not applicable to the following aspects of key management:

 

The following is in scope of this document: - business specification for long term archiving and retrieval of CAD 3D explicit geometry (see Clause 5); - essential information of CAD 3D explicit geometry (solids, curves, surfaces, and points) to be preserved (see Clause 6); - data structures detailing the main fundamentals and concepts of CAD 3D explicit geometry (see Clause 7); - verification rules to check CAD 3D explicit geometry for consistency and data quality (see Clause 8); - validation rules to be stored with the CAD 3D explicit geometry in the archive to check essential characteristics after retrieval (see Clause 9). NOTE 1 This document includes the geometrical external shape resulting from CAD 3D domain elements (e.g. 3D Structural components, 3D Tubing, 3D electrical harness, 3D composite, etc.). The following is outside the scope of this document: - the formal definition of validation and verification rules to check 3D explicit geometry for consistency and data quality using a machine-readable syntax; - implicit or parametric geometry; - Geometric Dimensioning and Tolerancing (GD&T), Product and Manufacturing Information (PMI); N0TE 2 For long term archiving of the GD&T and PMI see EN 9300 120, EN 9300 121 and EN 9300 125. - assembly structures and PDM product structures; NOTE 3 For long term archiving of assembly structure see EN 9300 115 and for product structure see EN 9300 2xx series. - model styling and organization of explicit geometry.

 

This document specifies the requirements for development and use of a reference architecture (RA), for a field of application, domain of activity or area of concern. An RA can apply to several kinds of entities, such as, enterprises, missions, organizations, systems, subsystems, components, processes, businesses, data, applications, information technologies, products, services, software items, hardware items, product lines, families of systems, systems of systems, collections of systems, and collections of applications. This document specifies the requirements to be satisfied by a reference architecture description (RAD). An RAD captures common or generalized architectural information for a category of entities or for a field of application, a domain of activity or an area of concern. This document is intended for: The applicability of this document includes, but is not limited to, fields such as the following: artificial intelligence (AI), machine learning (ML), internet of things (IoT), cloud computing, cybersecurity, big data, smart cities, smart manufacturing, digital twins, telecommunications, aerospace, defence, banking, finance, insurance, energy, automotive, logistics, hospitality, healthcare, supply chains, transportation, manufacturing and production, agriculture and infrastructure. This document offers guidance for architects developing or using an RA and its RAD that draws from various general purpose, architecture-specific standards such as ISO/IEC/IEEE 42024, 42010, 42020 and 42030 and related standards, such as ISO 15704, 19439 and 19440, ISO/IEC/IEEE 15288, 12207, 24748-1 and 24641 for enterprise, systems and software modelling, respectively.

 

 

This document specifies the Avatar Representation Format (ARF) with the goal of offering an interoperable exchange format for the storage, carriage and animation of 3D avatars. It defines the structure, components, and metadata necessary to represent and animate avatar models accurately and consistently across various systems and platforms, ensuring interoperability and efficient use in immersive media applications. Moreover, the document includes the specifications for the ARF container formats, animation stream formats, and procedures for integrating ARF into existing MPEG Scene Descriptions. It further addresses data representation methodologies, including tensor data formats for handling complex avatar-related data, as well as security and authentication mechanisms to verify avatar authenticity and prevent impersonation.

 

ISO/IEC 22123-1:2023 defines terms used in the field of cloud computing.

 

This document specifies concepts used in the field of cloud computing. These concepts expand upon the cloud computing vocabulary defined in ISO/IEC 22123-1 and provide a foundation for other documents that are associated with cloud computing.

 

This document specifies the cloud computing reference architecture (CCRA).

 

This document specifies the requirements and activities that focus on the process aspects of vulnerability handling applicable to manufacturers of products with digital elements (hereinafter referred to as "product").

The document is intended to support compliance with the Cyber Resilience Act (CRA) Regulation (EU) 2024/2847, particularly the essential requirements outlined in Annex I, Part II.

This document, with the appropriate requirement enhancements, is applicable across all product categories. Implementing these requirements enables a manufacturer to ensure security is maintained throughout the product life cycle.

 

_________________________________________________

 

 

 

This document provides trustworthiness requirements and guidance for data space participants in support of trusted data transactions. Specifically, it defines a set of foundational principles for trusted data transactions, and establishes general requirements and guidance that apply to all phases of a trusted data transaction, and specific requirements for each phase of a trusted data transaction. This document applies to all types of organizations participating in data spaces, regardless of their type or size.

 

This document specifies requirements for the design and installation of early suppression fast response (ESFR) and control mode specific application (CMSA) sprinklers in automatic sprinkler systems, in accordance with this standard and additionally the EN 12845 series of standards. This document does not cover all legislative requirements. NOTE In certain countries, specific national regulations can apply. Attention is drawn to the applicability or non-applicability for this document as specified by national responsible authorities.

 

This document specifies the characteristics of tab washers, in heat resisting steel, passivated, for maximum operating temperature 650 °C, for aerospace applications. Their use under hexagon head bolts is conditional upon the user accepting the possibility of some interference.

 

This document specifies references to methods for sampling of soil improvers and growing media and sample preparation of soil improvers and growing media for subsequent determination of quality and quantity. This document is applicable to the fertilizing product blends where a blend is a mix of two or more fertilising products belonging to the categories of fertilizers, liming material, soil improvers, growing media, inhibitors and plant biostimulants, and where soil improvers and/or growing media are the components with the highest percentage in the blend by mass or volume, or in the case of products in liquid form by dry mass. If the soil improvers and/or growing media are not the components with the highest percentage in the blend, the European Standard relevant to the component with the highest percentage in the blend applies. In case a blend is composed of fertilising products mixed in equal quantities, the user of the standard decides which standard to apply. NOTE A soil improver or a growing medium consists of a single bulky (volume-building) component or a mix of bulky (volume-building) components (for example peat, wood fibres, coconut coir, compost, expanded perlite).

 

This document specifies terminology for soil improvers and growing media. Annex A contains an overview of all terms defined in this document in alphabetical order.

 

This International Standard provides general guidance for the design of test rooms intended for the sensory analysis of products. It describes the requirements to set up a test room comprising a testing area, a preparation area, and an office, specifying those that are essential or those that are merely desirable. This International Standard is not specific for any product or test type. NOTE The test space can be similar for food and non-food products that are evaluated using sensory methods. However, the test rooms might need to be adapted for each specialized use. Modifications to the design are often needed for specific products and for specific types of testing. This is particularly true if the test rooms are to be used for the evaluation of non-food products. This standard can be applicable for quality control functions.

 

ISO 14001 specifies the requirements for an environmental management system that an organization can use to enhance its environmental performance. ISO 14001 is intended for use by an organization seeking to manage its environmental responsibilities in a systematic manner that contributes to the environmental pillar of sustainability. ISO 14001 helps an organization achieve the intended outcomes of its environmental management system, which provide value for the environment, the organization itself and interested parties. Consistent with the organization's environmental policy, the intended outcomes of an environmental management system include: · enhancement of environmental performance; · fulfilment of compliance obligations; · achievement of environmental objectives. ISO 14001 is applicable to any organization, regardless of size, type and nature, and applies to the environmental aspects of its activities, products and services that the organization determines it can either control or influence considering a life cycle perspective. ISO 14001 does not state specific environmental performance criteria. ISO 14001 can be used in whole or in part to systematically improve environmental management. Claims of conformity to ISO 14001, however, are not acceptable unless all its requirements are incorporated into an organization's environmental management system and fulfilled without exclusion.   Note: This is a consolidated version, which means the amendment will be published as a new version. This approach was chosen to enhance readability and improve the overall user experience.