Abstract
With the development of information technologies and their application in all spheres of activity, information security has become an actual problem. A significant step towards solving that problem was the adoption of the ISO/IEC 27000 family of standards for information security management systems (ISMS). The practical application of these standards showed that the generic standard cannot satisfy all specific requirements for information security in certain areas, so the adoption of sector standards in areas such as telecommunications, electric power systems, cloud computing, etc. At the same time, in some branches of industry, special standards were adopted to express their specificities. One of those areas is the automotive industry, where the TISAX mechanism has been established to ensure that suppliers comply with information security requirements, especially when it comes to information related to prototypes. This paper provides a summary of the TISAX mechanism, its structure and constituent elements, as well as its relationship with the ISO/IEC 27000 family of standards.
Publisher
Centre for Evaluation in Education and Science (CEON/CEES)
Reference11 articles.
1. ISO 27000:2018 Information technology -Security techniques -Information security management systems -Overview and vocabulary (ISO, 2018);
2. ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection -Information security management systems -Requirements (ISO, 2022);
3. ISO/IEC 27002:2022 Information security, cybersecurity and privacy protection -Information security controls (ISO, 2022);
4. Krolikowski T, Ubowska A, TISAX -optimization of IOT risk management in the automotive industry, 25 th International Conference on Knowledge-based and Intelligent Information & Engineering Systems, 2021 -Procedia Computer Science 192, 4259-4268, 2021;
5. TISAX Assessment Technical Guide (DEKRA, 2022);