ISO/TS 9546

Guidelines for security framework of information systems of third-party payment services ISO/TS 9546

General information

Current stage: 60.00 Standard under publication Feb 9, 2024

Originator: ISO

Owner: ISO/TC 68/SC 2 Financial Services, security

Type: Technical Specification

ICS: 03.060 Finances. Banking. Monetary systems. Insurance | 35.240.40 IT applications in banking

Scope

The security framework addresses the implementation of security mechanisms to achieve the security objectives as defined in ISO 23195. The security framework is concerned with defining the means of providing protection for systems and objects within the TPP system environment, and for the interactions between such systems.

This document describes a generic security framework that can apply to the provision of any TPP service, including:
- the TPP logical structural model,
- the definition of the security framework,
- the design principles, responsibilities, and functional requirements to support the security mechanism,
- guidelines for applying security framework defined in this document,
for TPP services.

Life cycle

NOW

IN_DEVELOPMENT
ISO/TS 9546
60.00 Standard under publication
Feb 9, 2024