Data storage services

The standard defines specific methodologies to help employers to certify how they approach accessing, collecting, storing, utilizing, sharing, and destroying employee data. The standard provides specific metrics and conformance criteria regarding these types of uses from trusted global partners and how vendors and employers can meet them.
You can look here for a preview of the Standard Document

Development Status: Under development
 

The primary focus of the I/O Traces, Tools, and Analysis (IOTTA) TWG is to create a worldwide repository for storage-related I/O trace collection and analysis tools, application workloads, I/O traces, and best practices around such topics. That repository is located at http://iotta.snia.org

The I/O traces of interest to the IOTTA TWG include those up at the host (e.g., system call, file system), those involving a file server (e.g., NFS, CIFS) and those at the "transport level" (e.g., SCSI, Fibre Channel). I/O traces of application workloads along with the analysis and definition of common, recommended semantics and formats for I/O traces are also specific areas of focus for the TWG. Standardized I/O trace formats/semantics will enable the development and use of common I/O trace collection and analysis tools as well as facilitate the sharing of the I/O traces themselves.

The IOTTA TWG is for those interested in the use of empirical data/metrics to better understand the actual operation and performance characteristics of storage I/O, especially as they pertain to application workloads. This includes not only storage vendors but also storage users as well as those within the academic community who are performing research related to storage I/O and storage devices.

The Cloud Storage TWG acts as the primary technical entity for the SNIA to identify, develop, and coordinate systems standards for Cloud Storage. This group aims to produce a comprehensive set of specifications and drives consistency of interface standards and messages across the various Cloud Storage related efforts. The TWG also documents system-level requirements and shares these with other Cloud Storage standards organizations under the guidance of the SNIA Technical Council and in cooperation with the SNIA Strategic Alliances Committee.

Standardization in the field of removable digital storage media utilizing optical, holographic and magnetic recording technologies, and flash memory technologies for digital information interchange, including:

• algorithms for the lossless compression of data
• volume and file structure
• methods for determining the life expectancy of digital storage media
• methods for error monitoring of digital storage media.

The SIRF format enables long-term physical storage, cloud storage and tape-based containers effective and efficient ways to preserve and secure digital information for many decades, even with the ever-changing technology landscape. This SNIA Technical Position specifies the Self-contained Information Retention Format (SIRF) Level 1 and its serialization for LTFS, CDMI and OpenStack Swift.

ISO/IEC 19286:2018 aims to normalize privacy-enhancing protocols and services by

- using the mechanisms from parts of ISO/IEC 7816 and parts of ISO/IEC 18328 that contribute to security and privacy,
- providing discoverability means of privacy-enabling attributes,
- defining requirements for attribute-based credential handling, and
- identifying data objects and commands for ICCs.

Existing privacy-enhancing protocols available in a generic context are adopted for distributed systems including ICCs. Additionally, existing authentication protocols between an ICC and an external device used for establishing a secure channel are enhanced with privacy protection. Secure communication between an ICC and an on-card device is also considered.

All the protocols and services described in this document contribute to privacy. Annex B describes an example of privacy impact assessments of respective systems.

This document provides a set of instructions for evaluation of MRPs which may incorporate contactless integrated circuits.
This evaluation is an instrument to establish the ability in principle of a specific type of document to fulfil the requirements of use. It supplies a structured approach to evaluate MRPs by:

— defining reproducible stress methods to submit the document(s) under evaluation to specific stress or environmental conditions;
— defining reproducible evaluation methods to measure numerical values for specific document properties;
— defining test sequences that specify the order in which stress methods and evaluation methods are to be performed;
— defining test plans to link specific user requirements to test sequences and related parameters.

It specifies the minimum criteria to be achieved in order to meet ICAO's expectations for durability of fully personalized MRPs.

This document establishes guidelines for the design format and data content of an ISO-compliant driving licence (IDL) in regard to both visual human-readable features and ISO machine-readable technologies. It creates a common basis for international use and mutual recognition of the IDL without impeding individual national/community/regional motor vehicle authorities in taking care of their specific needs.

ISO/IEC 12905:2011 specifies a set of data elements to be personalized into an integrated circuit card, encoding cardholder preferences. These data elements are to be retrieved from the card and to be used to indicate to the terminal that the user has special needs regarding the user interface. It is not intended to standardize the actual application programming interface or other terminal-specific software allowing the functionality, nor does it cover the actual alignment of the card to the card-reader slot.

This standard was last reviewed and confirmed in 2016. Therefore this version remains current.

This document establishes

• architectures of biometric comparison using an ICC,
• on-card biometric comparison, both in sensor-off-card systems and as part of biometric system-on-card,
• work-sharing on-card biometric comparison, and
• security policies for on-card biometric comparison.

This document does not establish

• requirements for off-card biometric comparison,
• requirements for biometric system-on-card (as defined in ISO/IEC 17839), or
• modality-specific requirements for storage and comparison.

ISO/IEC 24727 specifies a set of programming interfaces and protocols enabling interactions between integrated circuit cards (ICCs) and applications resident on a variety of computer platforms. The ICCs provide generic services for multi-sector use by the applications. The organization and the operation of the ICCs conform to ISO/IEC 7816 4. It is anticipated that some application domains will seek to achieve interoperability through ISO/IEC 24727 facilities even though the applications pre-exist these facilities. To this end, various means of backward compatibility are established through mechanisms specified in ISO/IEC 24727.

ISO/IEC 24727-1:2014 specifies

• system architecture and principles of operation,
• the means for achieving interoperability among diverse application domains,
• the conceptual service and data models that span the relevant application domains, and
• the rationale for trusted processes enabled under these models.

This standard was last reviewed and confirmed in 2015. Therefore this version remains current.

This document specifies the test methods used for conformity testing, to determine whether an ICC with at least one ICC-managed device is considered to conform with the specifications of ISO/IEC 18328-3, e.g. device management and device handling.