ISO/IEC TS 27115-3

ISO/IEC TS 27115-3 — Information security, cybersecurity and privacy protection — Cybersecurity of system of systems — Part 3: Security profiles

[DRAFT]

Abstract

Introduction

Using concepts and terms in the style of the Common Criteria such as Target Of Evaluation and security profile, part 3 intends to explain how to evaluate a complex system against the security architecture.

Scope

[ISO/IEC TS 27115-3] provides a framework to describe security profiles based on ISO/IEC TS 27115-1 and ISO/IEC TS 27115-2. The framework uses basic architecture concepts to enable the definition of architecture-based security profiles and composition of profiles.

Structure

Status

Part 3 is due out in 2029.

Commentary

This page last updated:

14 March 2026

ISO27001 security