ISO/IEC 27566-3
ISO/IEC 27566-3 — Information security, cybersecurity and privacy protection — Age assurance systems — Part 3: Approaches to analysis or comparison
[DRAFT]
Abstract
ISO/IEC 27566 part 3 "establishes considerations for analysing, comparing or differentiating the characteristics of age assurance systems or components. The document includes metrics, elements and indicators of effectiveness for age assurance systems or components."
[Source: Committee Draft]
Introduction
Part 3 concerns assurance regarding the accuracy of age verification approaches through techniques to measure, analyse and compare approaches - for example when adult website or application designers are considering various ways to distinguish children from adult users.
Scope
Measuring relevant characteristics and analysing them in order to assess the suitability of various age assurance approaches.
Structure
Main clauses (so far - in the 2nd Committee Draft):
5: Approaches to analysis or comparison
6: Indicators of effectiveness
7: Analysis considerations
8: Characteristics and measurements for age assurance components
9: Reporting of analysis results
Annex A: Effectiveness analysis
Annex B: Example analysis report
Annex C: Indicative effectiveness banding
Status
The standard development project set off in 2023.
This was originally destined to become part 2, then shifted to part 3.
Part 3 is at Committee Draft stage.
Commentary
See also ISO/IEC 27566-1 and ISO/IEC 27566-2.